[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

SSL MITM attack by a Tor exit



Hello everyone,

The Tor exit JustaNode (fingerprint: dcc1c3f96b8459dc7a88e711f9cb2416126eb9d6, http://torstatus.blutmagie.de/router_detail.php?FP=dcc1c3f96b8459dc7a88e711f9cb2416126eb9d6 ) does a MITM attack on every SSL connection. The SSL certificate is self signed for every SSL'ed website you want to request. I think this exit must be marked a BadExit.

- Tom