[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] detecting harmful relays

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] detecting harmful relays
From: Anders Andersson <pipatron@xxxxxxxxx>
Date: Wed, 1 Jun 2011 22:10:54 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 01 Jun 2011 16:11:11 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type:content-transfer-encoding; bh=Gh+pSOArkuS689jdZKXFfpLuara+M+jHbmehKhTzO7Y=; b=r0JWry68F2zGRVhEic9nsZqaftJn1JTZiyR1P9zCAJkDvtZ6sEMst9ZA7b6wDEufy5 9Hq8mUwd6bcqELssrZMp3zaAyJr/gSsCcU85HO+he6PQuQE1vh2rFoVWvAWiNPzd1j4c 2RLJkNRFILCNCnj1MmhPlajFK1APJ7WKKseK4=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=kteojLci3K5RX6b+mchC3jIm4TIpt+quGx9ckWDM/Y2tPX7GvK0uyNdXcIQpIJ2FQz BR1nWXiUtt8ZcceGalODDSi2wbSzCQm2kF9DlCfHmfDY8n6LDmHo6IaeCOlav/Eiqof/ h5SckXJ/UFbCtG/lEmXoN93pGzfbjnCYOXzAA=
In-reply-to: <20110601114611.GB9135@xxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4DD03C00.4030305@xxxxxxxxx> <20110515225718.GD3356@xxxxxxxxxxxxxx> <BANLkTi=0uJO-2CduUW6ztP78ZnYAUiAo6g@xxxxxxxxxxxxxx> <20110601114611.GB9135@xxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Wed, Jun 1, 2011 at 1:46 PM,  <andrew@xxxxxxxxxxxxxx> wrote:
> On Wed, Jun 01, 2011 at 05:31:41AM +0000, kraktus@xxxxxxxxxxxxxx wrote 1.9K bytes in 45 lines about:
> : A few weeks ago, there was one that tried to give me a .bin file
> : whenever I tried to visit a non-SSL website, but I haven't had a
> : problem like that since. I always rejected the .bin file.
>
> I don't think this is a malicious relay, as I get these from time to
> time as well. ÂIt only happens with firefox and only when going through
> really busy exit relays. ÂI think it's firefox misinterpreting a partial
> stream of data as a binary file.

Not to mention there are thousands of better and easier ways to run a
malicious relay than to replace everyones data with unnamed binary
downloads.
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] detecting harmful relays
  - From: Kraktus
- Re: [tor-talk] detecting harmful relays
  - From: andrew

Prev by Author: Re: [tor-talk] Firefox v.5 - Torbutton supported?
Next by Author: [tor-talk] unbound, ttdnsd and DNSPort config
Previous by thread: Re: [tor-talk] detecting harmful relays
Next by thread: Re: [tor-talk] detecting harmful relays
Index(es):
- Author
- Thread