[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] FBI cracked Tor security

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] FBI cracked Tor security
From: Jon Tullett <jon.tullett@xxxxxxxxx>
Date: Tue, 19 Jul 2016 11:50:05 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 19 Jul 2016 05:58:29 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=Wr1auskhUaDO3WCfvZ8MJ6NRE8GObwHKpdfbe3z7W7Q=; b=w1zy//2P5+Ki/G+z73lFLKxiSWNvK7GkriGwuelKroirrJ7KE3L8kk4kJBSY1LQfC1 L0zIeaukt8NoG129N7JIYQuCHCl+NYD8hI7ZIBgR6wrCpgqV+u1/Ru+IWC2S1eiODN0q JCKvJJp49x30iXM6BWaQ8BUm6Dh87vKY+V/CY5LYZEtse8Mz8fG4exmQVydDzxbkvmHR 5Lx2VJIIyLU+LjbUdr/xFM119iINXVcKtqKtnuBUY57YiqnhfhmbYxOSvBLZBrnlY7yf j3YJH9XFkSTPi5pfs0ucjCJYPgUCOxADv4Sw4kyQE593jK1A5t9dUhq/15yFhFkTB1k4 9V3A==
In-reply-to: <578DC942.3080201@riseup.net>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <652210562.2768097.1468453881242.JavaMail.yahoo.ref@mail.yahoo.com> <652210562.2768097.1468453881242.JavaMail.yahoo@mail.yahoo.com> <CAPkfgVYU_T9w0SJ9QsqSo8EXHgbJx68hROb6E8ELsrS2J6W6kg@mail.gmail.com> <5787332E.5000708@riseup.net> <CAPkfgVbkpVVxe1xzhVSPRLdGUEEFt+KknE1xdYcH-zLa0gMEkg@mail.gmail.com> <57875032.1070206@riseup.net> <CAPkfgVbLk=q1c65KffvSiWZ-Ffu4j2Mv+CiR-2m7oogU9YjpbQ@mail.gmail.com> <578A2DC1.7070603@riseup.net> <131570253.378767.1468722075564.JavaMail.yahoo@mail.yahoo.com> <578AF771.6020009@riseup.net> <CAPkfgVYsmnGPLsWmR3Lmc+U22eWziazgPjbzkyOzwJrV03vuMg@mail.gmail.com> <578CD24E.40002@riseup.net> <CAPkfgVZVZOwX4JM_hYu3f-JyvuESL1roe_ahLGgH=OvC8hAmWQ@mail.gmail.com> <578CE4E4.9050803@riseup.net> <CAPkfgVZty+tD1QZe630vHP3jHE+v1PE+s8EKM-ReCdSBStXvTA@mail.gmail.com> <578DC942.3080201@riseup.net>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On 19 July 2016 at 08:31, Mirimir <mirimir@xxxxxxxxxx> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 07/18/2016 07:08 PM, Jon Tullett wrote:
>> On 18 July 2016 at 16:17, Mirimir <mirimir@xxxxxxxxxx> wrote:
>>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

>>> A few years ago, I wrote
>>> <https://www.ivpn.net/privacy-guides/will-a-vpn-protect-me>.
>>
>> Have you updated it to account for subverted VPN providers?
>> Advising people to use VPNs which may have been subject to national
>> security letters is arguably bad.
>
> Which VPNs have received NSLs?

I take it that's a no, then?

Point being, not only do we now know which operators have received
letters, we _can't_ know. The first rule of NSL club is you don't talk
about NSL club. I have yet to see much evidence that warrant canaries
help. And that's not the only risk; operators can be coerced, hacked,
suborned, or otherwise compromised. Belgacom, for example.

We mitigate that by layering services, but that's back to the question
of how complex an environment suits your risk profile. Not everyone
has the same nut; not everyone needs the same size hammer.

-J
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir

References:
- [tor-talk] FBI cracked Tor security
  - From: Nick Levinson
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jonathan Wilkes
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir

Prev by Author: Re: [tor-talk] FBI cracked Tor security
Next by Author: Re: [tor-talk] FBI cracked Tor security
Previous by thread: Re: [tor-talk] FBI cracked Tor security
Next by thread: Re: [tor-talk] FBI cracked Tor security
Index(es):
- Author
- Thread