[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Torbutton-birdy version 0.0.2

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Torbutton-birdy version 0.0.2
From: tagnaq <tagnaq@xxxxxxxxx>
Date: Sun, 27 May 2012 17:43:15 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 27 May 2012 11:47:55 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=O2veB/CrNQq/RWPGZmG2JK4pHKqFt+Zw5oKYfK02zK0=; b=bFkHiajZybhU1jahCsa2eIvcdm6KwWpMjv05LBma0HVt29BRLFhUB0ogfdDqZSnw3p PPgbCsk+Lh7MvlwfAR8ImHNsccmjEBNe4MsuxnsflOQAw0hgnENKrvKFJP1X+qdo8oT6 FPYI8ZiYym52J8LYQJf3GU3cop5AUneDlxvCu4VXyS3k39eOzIU+lfGcPKBeITCrxvFt JNbu96BBo40bG3JeY0Pbrr2hH3Ryv8U2c1S6B3F5g9n6hqHNBo8zIt3Pe+E3DwGCIeX0 SJ1a4dR/zXZLpxViXnaeJD+oyeyal94fhyZgN2G4rjxifONKTv9RQBcFIH1FnUsaFDNm 4NwQ==
In-reply-to: <CA+cU71=LtoAwS5bxRQ49Jj__G83wb1Ph6t1rSiNhJo5sR2wB6Q@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4FBFCE43.2060707@xxxxxxxxxxxxx> <4FC0B56F.3070507@xxxxxxxxx> <4FC0CA20.2040901@xxxxxxxxx> <CA+cU71=LtoAwS5bxRQ49Jj__G83wb1Ph6t1rSiNhJo5sR2wB6Q@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi Tom,

> Wouldn't this (or some of the other header settings) allow the 
> recipient or general public (if a mailing list post) to learn that
> a person was using TorBirdy?

I don't think that Sukhbir and Jake aim for an undetectable TorBirdy,
but as soon as another email client has also an extension like
TorBirdy and agrees on the same header field settings I guess it
wouldn't be easy to determine the client in use by looking at the
header. The MSA would very likely still have the "power" to determine
the client (version).

> I hate to say it, but "What's the threat model?"

My thread model is described on page 6 of the following paper:
http://bit.ly/qDZm7C

> The entire SMTP-server path is in email headers AFAIK - does that 
> include the connecting IP (e.g. the tor exit node?).

It depends on the mailserver settings but in almost all cases it
includes the connecting IP (the exit node's IP if you send your emails
through Tor). If you use gmail via webmail it does not include your
source IP in the outgoing email header.

> If it does, then the next part doesn't matter - if it does not: a
> recipient wouldn't be able to learn that the sender sent it using
> TorBirdy... unless TorBirdy used some non-standard and
> distinguishing email header or setting... like this one.

As soon as you decide to modify the header to reduce certain leaks
your mail header is easily distinguishable. As soon as you introduce a
new header fingerprint it will always be more unique (at the
beginning) but someone has to start with a new one that leaks less
information even if your fingerprint is used by fewer people.

> Is that important?  It seems like it would be.  As an example, go 
> through this thread, and see whose reply header is of the form "On
> X, Y wrote:" and now you know who's not running the latest
> version.

I'd consider it as important to have all torbirdy "stable" users in
one anonymity set as soon as there is a feature complete stable
version. I consider the current version as experimental.

> [1] https://ritter.vg/blog-no_email_security.html
typo: trsnafers

btw: Great talk at BH EU.
-----BEGIN PGP SIGNATURE-----

iF4EAREKAAYFAk/CS5MACgkQyM26BSNOM7a4aQEAscy78aHDVsD3D+2/0Sufyqzg
wGK6GKZVyUiXRTZrNagA/j27mViQ4zzeZyByVPkR53vLk6YUopbt0GLZfxek43DO
=V6pO
-----END PGP SIGNATURE-----
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Torbutton-birdy version 0.0.2
  - From: Mike Perry

References:
- [tor-talk] Torbutton-birdy version 0.0.2
  - From: Jacob Appelbaum
- Re: [tor-talk] Torbutton-birdy version 0.0.2
  - From: Karsten N.
- Re: [tor-talk] Torbutton-birdy version 0.0.2
  - From: Sukhbir Singh
- Re: [tor-talk] Torbutton-birdy version 0.0.2
  - From: Tom Ritter

Prev by Author: Re: [tor-talk] Technical Documentation for the TBB Update Notification Mechanism
Next by Author: Re: [tor-talk] Multiple Tor instances
Previous by thread: Re: [tor-talk] Torbutton-birdy version 0.0.2
Next by thread: Re: [tor-talk] Torbutton-birdy version 0.0.2
Index(es):
- Author
- Thread