[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Trac accounts and potential account compromise

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Trac accounts and potential account compromise
From: Karsten Loesing <karsten@xxxxxxxxxxxxxx>
Date: Tue, 06 May 2014 08:57:34 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 06 May 2014 03:11:16 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=YzK5lZJhenN3xggl8bONxtJgrHbgYq+ebqDlhBaWTVk=; b=x1Yi7/L4IderzPULfa3Tzp153dRCEY4h21xIbaVcs7M/WDHywvrrjAeQakulOqT0UZ BJ0MSpDjnv+sauwVhE3zTiUecX1uucy7UXPKjDr/ErSEbnz2i8mDoXKQZqD4l/4hWV6f /G7lyYUgn8AcZOzvhsSpnsyqWvk6MoJ65M4l33dmBYJrYCW63QPrjpOrmYeOf2yQ5bvM wzYP3mdvr3U9jMwrvzCUU6rp/eqT9vUvQUqpatIrQ2z8OloWEE4MvL64J1hiPy/4cvbM 2CMykBZrmy+X/2SXLhiShstNGxrstlDrXzEBnpLZC/l53o4hTbAu+8GfKP0EBC8x+05T kXUA==
In-reply-to: <5368470D.3070208@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20140502024141.GK19193@xxxxxxxxxxxxxxxxxxxxxxxxxx> <5363E51C.3070107@xxxxxxxxxxxxx> <53673D74.7060602@xxxxxxxxxxxxxx> <5368470D.3070208@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.5.0

On 06/05/14 04:21, Nusenu wrote:
> Karsten, thanks for taking the time to answer these questions.
> 
>> AFAIK, there's no way to find out whether an account has been
>> compromised, other than asking users to log in and see if their password
>> still works.
> 
> Ok, I thought that might be possible by looking into <auth
> backend>/trac/apache logs to see if an existing account was registered
> again (or more than once).

You're right, that might work.  I don't have access to those logs, so
I'll leave it to Erinn to decide whether she wants to investigate this more.

To be honest, it's rather unlikely that somebody would have compromised
an account with no special privileges and left the developer and admin
accounts untouched.  And we already made sure that none of the latter
has been compromised by asking people.

All the best,
Karsten

> https://trac.torproject.org/projects/tor/ticket/11545#comment:3
> 

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Trac accounts and potential account compromise
  - From: Erinn Clark
- Re: [tor-talk] Trac accounts and potential account compromise
  - From: Nusenu
- Re: [tor-talk] Trac accounts and potential account compromise
  - From: Karsten Loesing
- Re: [tor-talk] Trac accounts and potential account compromise
  - From: Nusenu

Prev by Author: Re: [tor-talk] Trac accounts and potential account compromise
Next by Author: Re: [tor-talk] ExoneraTor commandline?
Previous by thread: Re: [tor-talk] Trac accounts and potential account compromise
Next by thread: [tor-talk] How do I separate/isolate Tor streams in TorBirdy
Index(es):
- Author
- Thread