[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #16659 [- Select a component]: Linux TCP Initial Sequence Numbers may aid correlation

Subject: Re: [tor-bugs] #16659 [- Select a component]: Linux TCP Initial Sequence Numbers may aid correlation
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 27 Jul 2015 11:27:54 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 27 Jul 2015 07:28:03 -0400
In-reply-to: <046.a93f69999ace798ba68471a423b8e6ae@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.a93f69999ace798ba68471a423b8e6ae@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16659: Linux TCP Initial Sequence Numbers may aid correlation
--------------------------------------+--------------------
     Reporter:  source                |      Owner:
         Type:  defect                |     Status:  closed
     Priority:  normal                |  Milestone:
    Component:  - Select a component  |    Version:
   Resolution:  not a bug             |   Keywords:
Actual Points:                        |  Parent ID:
       Points:                        |
--------------------------------------+--------------------

Comment (by proper):

 NTP, as per [https://www.ietf.org/rfc/rfc5905.txt NTP RFC] does leak the
 local clock.

    Origin Timestamp (org): Time at the client when the request departed
    for the server, in NTP timestamp format.

    Destination Timestamp (dst): Time at the client when the reply
    arrived from the server, in NTP timestamp format.

 So using it doesn't make things better, but worse. (Also NTP is in default
 configuration unencrypted/unauthenticated, therefore accessible to
 observation and modification by any ISP level adversary.)

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16659#comment:13>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #16659 [- Select a component]: TCP Initial Sequence Numbers Leak Host Clock
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16659 [- Select a component]: Linux TCP Initial Sequence Numbers may aid correlation (was: TCP Initial Sequence Numbers Leak Host Clock)
Next by Author: [tor-bugs] #16674 [Tor]: Allow FQDNs ending with a single '.' in our SOCKS host name checks.
Previous by thread: Re: [tor-bugs] #16659 [- Select a component]: Linux TCP Initial Sequence Numbers may aid correlation (was: TCP Initial Sequence Numbers Leak Host Clock)
Next by thread: Re: [tor-bugs] #16659 [- Select a component]: Linux TCP Initial Sequence Numbers may aid correlation
Index(es):
- Author
- Thread