[tor-talk] Source code modifying for testing

Subject: [tor-talk] Source code modifying for testing

From: NGUYEN Quoc Viet <quocviet.pfiev@xxxxxxxxx>

Date: Wed, 11 May 2011 10:11:07 +0200

Delivery-date: Wed, 11 May 2011 04:11:26 -0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:date:message-id:subject:from:to:cc :content-type; bh=i+tNVCtzXdLbgLTpRyeorszJA3/Mnc+sn25+WIFgiJI=; b=tQ4h14ORkfLMq7UHg8Kn3uFeWcyr00iBWgA1QH39zH2vND2i6SFT5tpLhbwAF0EB6f bHxVfRDBPbONPxj49VrUTkl4+UP1XXI/SNfZw62B1lT1kRfb5Tng0km6ioF7l4mv8qCG tg4as1HTJplbAUh8t3mySrQVhXTEb374yiQk8=

Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:cc:content-type; b=d0G4FfxGqPxEC3+YNJs0DqLDgmSiIFSQNv9i0HxjOf9Y/W1DOs2A8PkxkoDYZUVyRn blnSJGNjIV/UQjdb2VS3yr8SFcFArP0f8JnT1gxIMmRXK5jXaCMleJsEWEKq9yAo4Q+w WlmJb3S12aQQlpPYeeyVLOSVTU2VIgWzJ1C+4=

List-archive: <http://lists.torproject.org/pipermail/tor-talk>

List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>

List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>

List-post: <mailto:tor-talk@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>

Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx

Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

I'm now researching an attack against Tor.

Resume of Attack: We control exit node and entry node. Upon receiving a RELAY BEGIN cell,the exit node will forger a malicious webpage to client. The webpage contains some empty gif files. The entry node will be able to detect a distinctive pattern of the connection to that malicious webpage, basing on number of relay cells backward and forward.

For more details, the paper is here: http://bit.ly/mnwsDo ( from sciencedirect.com)

For implementation, it's needed to modify a piece of Tor source code at the exit node, to forger a malicious webpage to client. Notice that this is not modifying webpage response from the server, but forger attacker's webpage to the client. Could some one please give a hint about where I need to modify.

Thank you.

Regards.

--
Nguyen Quoc Viet

_______________________________________________ tor-talk mailing list tor-talk@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk