[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] EFF Tor Challenge

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] EFF Tor Challenge
From: CACook@xxxxxxxxxxxxxxx
Date: Thu, 2 Jun 2011 11:12:36 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 02 Jun 2011 14:12:55 -0400
In-reply-to: <BANLkTik1-GgdKSb9uLSekmeHiL+mPB96qw@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <BANLkTikB8BtA8Rdf0eH7-zWi1W6UsZO8Ng@xxxxxxxxxxxxxx> <4DE7B1CA.7020403@xxxxxxxxxxxxxxxxxx> <BANLkTik1-GgdKSb9uLSekmeHiL+mPB96qw@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.13.5 (Linux/2.6.38; KDE/4.4.5; x86_64; ; )

On Thursday 2 June, 2011 09:53:05 Javier Bassi wrote:
> On Thu, Jun 2, 2011 at 12:52 PM,  <tor@xxxxxxxxxxxxxxxxxx> wrote:
> > "If Tor has vulnerabilities, it might get exploited!"
> >
> > Of course, you can replace "Tor" with any other application name. Tor is
> > not special in this regard.
> 
> Yeah, thats why I found his argument strange and said 'I think he's
> trying to say' although maybe he's not. But if he is, then a browser
> or any app that use Internet is as 'insecure' as Tor.

'If I take cash with me I might misplace it, so I should never carry any cash.'  'If I drive a car I might have an accident, so I should never drive a car.'

Diluting the question with equivocation does not reduce the value of securing Tor.  The case is, I have no other out-looking daemons, so this is very relevant to me.  To those who don't care or are frightened by this discussion please ignore this subject.

I see now that few here have actually considered this question before.  There's a good deal of trust going on, which seems to be well-placed given the apparent infrequency of attack.  That's a good thing, but I come from an intel background and I prefer to secure.  It's why I've run Debian for 14 years.

For those interested, so far my best idea is running the daemon in a VirtualBox VM running SELinux as guest, and bridged to the outside.  This should substantially solve most problems except membership in the local LAN.  

If only consumer-grade routers had VLan, although routers aren't necessarily secure.  Maybe a switch on the WAN side of the router, to flange the LAN and Tor interface together in a class C different from the LAN.

_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] EFF Tor Challenge
  - From: Martin Fick

References:
- [tor-talk] EFF Tor Challenge
  - From: Javier Bassi
- Re: [tor-talk] EFF Tor Challenge
  - From: tor
- Re: [tor-talk] EFF Tor Challenge
  - From: Javier Bassi

Prev by Author: Re: [tor-talk] EFF Tor Challenge
Next by Author: Re: [tor-talk] EFF Tor Challenge
Previous by thread: Re: [tor-talk] EFF Tor Challenge
Next by thread: Re: [tor-talk] EFF Tor Challenge
Index(es):
- Author
- Thread