[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] "Safeplug"

To: <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] "Safeplug"
From: aagbsn@xxxxxxxx
Date: Fri, 22 Nov 2013 20:17:05 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 22 Nov 2013 15:26:24 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=headstrong.de; h=user-agent:message-id:references:in-reply-to:from:from:date :date:content-transfer-encoding:content-type:content-type :mime-version:subject:subject:received:received; s=mail; t= 1385151425; x=1386965826; bh=OzSmyVG2ScS4BrKQyjzbwtFRRBEaiWgLfQJ /jW9hoGo=; b=X88rdOhIu2pQVXp8LOrTTa/0Nuef7iJTgIPhdElKa3+sB/Gye7L ny1E/z8RZU8DnyS/gpPyLTb92ZZVF/+xTd2WzM5lkC1+UtR/VEK3Or4Oo5hX2FUq dErdLmHpr5NTUlaSHi9jATzND6mTrtzw/u/cBy+3je1b2kn8tpgpTH04=
In-reply-to: <20131122155655.GD5908@xxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20131122165044.3343f003@natsu> <20131122112533.GB5843@tuzo> <20131122190400.190c4392@natsu> <20131122155655.GD5908@xxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Roundcube Webmail/0.7.2

On 2013-11-22 15:56, andrew@xxxxxxxxxxxxx wrote:

On Fri, Nov 22, 2013 at 07:04:00PM +0600, rm@xxxxxxxxxxx wrote 2.5K
bytes in 0 lines about:
: > On Fri, Nov 22, 2013 at 04:50:44PM +0600, Roman Mamedov wrote:
: > > https://pogoplug.com/safeplug

Out of all the concerns about how they implemented it and such, my
main concern is that it just adds more clients to the network without
giving back in the form of relays or bridges. Or at least, none of
their documentation mentions the ability to share freedom and privacy
with others.

However, this looks like a fine test case for consumer-level torouter

market analysis. It would be great to learn 6 months from now howmany

they sold and a summary of customer feedback.

I agree with the market analysis aspect, but I am concerned on thefollowing points:


1. No source or design documents are provided.

Despite making use of open source software, and linking to the relevantopen source licenses here:http://pogoplug.com/home-en-developers-open-source.html (whoops, a deadlink), there are no design documents published, additional contributionsor source linked anywhere on the website. If I wanted to contribute apatch, where would I do it? Not providing source for the device ispretty weak -- plenty of other projects, such as Tails and Whonix, haveimplemented transparent torification and provide extensive documentationand code.


2. Router Registration

According to https://pogoplug.com/safeplug, you must click on thefollowing link to activate your device.

http://shop.pogoplug.com/store/pogoplug/buy/productID.292114000/quantity.1/pgm.94629500

The link isn't https, and redirects to a page asking for billinginformation to *buy* a device. I don't have a Safeplug, so I don't knowif the page would look any different, but it does imply that they havethe ability to differentiate between a Safeplug user and a regular Toruser (me). That smells bad.


3. Automatic updates

Not only does this imply that the device must phone home and uniquelyidentify itself (see, router registration), it also means that code canbe pushed to the device. I'd say "against the operators consent", butyou agreed to that, in the TOS:


"
Updates

As part of the Service, you may from time to time receive updates tothe Software from Pogoplug that may be automatically downloaded andinstalled to your applicable device. These updates may include bugfixes, security enhancements or improvements, or entirely new versionsof the Software. You agree that Pogoplug may automatically deliver suchupdates to you as part of the Service.

"

5. TOS

Pogoplug isn't an ISP, and I've never seen a router force a TOS on mebefore. And, it's one of those nasty ever-changing TOS that assumes ifsomeone actually read it once, they will want to read it again:

Pogoplug may update or change these TOS from time to time andrecommends that you review the TOS on a regular basis atwww.pogoplug.com/safeplug. You understand and agree that your continueduse of the Service after the TOS has changed constitutes your acceptanceof the TOS as revised.

"

6. Torified Everything and Anonymity Profile

Roger and I had several long talks about the design behind atheoretical Tor Router product, and one sticking point is that althoughthe easy way to do it is to simply transparently torify everything downthe pipe, doing so does nothing for the anonymity set of the user behindthe black box. We discussed alternate options, such as providing acaptive portal that would instruct a user to download a copy of TBB anduse the local router device as a first hop into the Tor network, perhapsby configuring the device as a bridge. Clearly not as easy asplug-n-play, but since most users of this type of device would continueto use their original highly fingerprintable browser, transparentlytorifying everything probably wont provide the anonymity that theyclaim. And although they do link tohttps://www.torproject.org/docs/faq.html.en, they should probably take aread throughhttps://www.torproject.org/download/download.html.en#warning themselves.


--Aaron


--
Andrew
http://tpo.is/contact
pgp 0x6B4D6475


--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] "Safeplug"
  - From: Roman Mamedov
- Re: [tor-talk] "Safeplug"
  - From: Sean Alexandre
- Re: [tor-talk] "Safeplug"
  - From: Roman Mamedov
- Re: [tor-talk] "Safeplug"
  - From: andrew

Prev by Author: Re: [tor-talk] Social scientific research on Tor and similar technologies
Next by Author: [tor-talk] Pogoplug as a new twist on a good idea
Previous by thread: Re: [tor-talk] "Safeplug"
Next by thread: Re: [tor-talk] "Safeplug"
Index(es):
- Author
- Thread