[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] New Tor paper: One Bad Apple Spoils the Bunch

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] New Tor paper: One Bad Apple Spoils the Bunch
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Tue, 15 Mar 2011 15:29:51 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 15 Mar 2011 15:30:09 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=EBv8LJqXDy53ejfOGOleKIQfQ61JTjc8e9X8Y0j7Fd8=; b=v/MtkT0z3Re+O3dr1zboz6+I6CNZsC+p+APLxInQH1Rl+jkUhPCJlSohTlJrq2SqJA 8h4DBYW3xhtqVOxcI+0wVfelhQHDHttLFecJp/uUI8QO7CrCretPW4Xot0dg+NnUSWzH 2PdcdTXklmZWxmWYD+c8zK2Zs9TQx4gH0CfT0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=R1gqlB+PJLfJnBxcxTDG+VmwJOfDZhnliUlvQYsj9ku0Gv0n51KBem4UuYUgPFY48E Vf3ElOJNU+p/Hw71YnmSlMik38yEZv2N9LxC2h1AyklkIXuw/3F1KVxFSa3ovVEIqPKU LR8rztpFv+2E/EaynDolP9SVOfrxinoeG2PfU=
In-reply-to: <20110311192419.GD3356@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CDC33B4B-41BE-4B21-8A9E-92130CD6C654@xxxxxxx> <20110311192419.GD3356@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

>> http://hal.inria.fr/inria-00574178/en/
> https://blog.torproject.org/blog/bittorrent-over-tor-isnt-good-idea

Having briefly read these... all the mentioned attacks
seem to rely on whatever apps the user is using being
tricked into doing things involving the public IP space.
Assuming the user's apps are bound to RFC1918 space
and residing behind a packet filter that catches all traffic
and forwards it to Tor, these attacks appear to be nullified.
The only drawback being maybe the apps not working too
well due to end to end connectivity issues as a trade off.

Sadly, many users bind their apps/hosts to public IP addresses,
configure them to use proxies into Tor instead of packet
filters, and give them free access to their entire filesystem.
Should it be of any suprise that these 'attacks' apply to them?
Perhaps rather than 'attack', the phrase 'user error' would be
more fitting?
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] New Tor paper: One Bad Apple Spoils the Bunch
  - From: Chris Palmer
- Re: [tor-talk] New Tor paper: One Bad Apple Spoils the Bunch
  - From: Roger Dingledine

Prev by Author: [tor-talk] Phantom anonymity project - update
Next by Author: [tor-talk] Better MAPADDRESS [was: FB/Yahoo]
Previous by thread: Re: [tor-talk] New Tor paper: One Bad Apple Spoils the Bunch
Next by thread: [tor-talk] Torrents for Tor
Index(es):
- Author
- Thread