Re: [tor-bugs] #2927 [Tor Relay]: Tor doesn't overwrite rotated keys

["Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>]

#2927: Tor doesn't overwrite rotated keys
-----------------------+----------------------------------------------------
 Reporter:  asn        |          Owner:     
     Type:  defect     |         Status:  new
 Priority:  normal     |      Milestone:     
Component:  Tor Relay  |        Version:     
 Keywords:             |         Parent:     
   Points:             |   Actualpoints:     
-----------------------+----------------------------------------------------

Comment(by asn):

 Replying to [comment:2 rransom]:
 > Replying to [ticket:2927 asn]:
 > > Onion keys should get memsetted somewhere around the
 crypto_free_pk_env(lastonionkey);
 > > of rotate_onion_key()
 >
 > âOnion keysâ are stored on disk, too.  Do you plan to securely erase
 them there?  If so, how?

 Yes, you are right.
 I guess that even creating something like shred(1), would be a lost cause
 and probably also give a false sense of security, considering modern
 journaled, versioning and what not filesystems.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2927#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs