[tor-relays] "What fraction of the tor network by consensus weight are the openssl-vulnerable relays?"

To: Roger Dingledine <arma@xxxxxxxxxxxxx>

Subject: [tor-relays] "What fraction of the tor network by consensus weight are the openssl-vulnerable relays?"

From: Kostas Jakeliunas <kostas@xxxxxxxxxxxxxx>

Date: Wed, 9 Apr 2014 03:49:39 +0300

Delivery-date: Tue, 08 Apr 2014 20:50:11 -0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:from:date:message-id:subject:to:cc:content-type; bh=RZHPl7rfO5wbApo9ENCAQQIbjC3+ff9+tKE7cog0G3U=; b=TcdaiBW2LeBWhA9xip8KLq7xzkRAoQ8gv5RtO92gx33Wa7Wr9siL0SKEiJmAk3Ne8n lz5PVKDi3m3ul8WT9P44oK6YOz3EiSe5PQ5ivQwlrP9Vt9uhkPiV/lN8uhy4c5XNAnvN MhtW4SoEZKT7JmfQxmMAfOrIb5M05BaZrOmHNJcA6Yif99IzIdABkqYTlkKZYFYfbA6X JcNgx3T5Mmblq8SwNT1tfOMkhe+pnT9HZYRN+timCUJ+4fPAK5l3WE2s0K7UCkvhn6ou XL6WYnqwdhH0ffBO3QOoMMEQYmezwcnOQyaeR0tVFFMko1rp3P42imL0lPT/9ltEwRp3 nWVw==

List-archive: <http://lists.torproject.org/pipermail/tor-relays/>

List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>

List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>

List-post: <mailto:tor-relays@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>

Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx

Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Making a separate thread so as not to pollute the challenger[1] one.

Roger: you wanted to know (times are UTC if anyone cares),

[22:08:35] [...] we now have a list of 1000 fingerprints, and we could pretend those are in the challenge and use our graphing/etc plans on them
[22:08:45] they happen to be the relays vulnerable to our openssl bug
[22:11:43] "what fraction of the tor network by consensus weight are they?"
[22:11:49] "over time"

Given them[2], the challenger (with minimal changes to fix downloader and to make Onionoo not falter)[4] will spit out the following results:

Â -Âhttp://ravinesmp.com/volatile/challenger-stuff/vuln1024-combined-bandwidth.json

Â -Âhttp://ravinesmp.com/volatile/challenger-stuff/vuln1024-combined-weights.json

Â -Âhttp://ravinesmp.com/volatile/challenger-stuff/vuln1024-combined-clients.json [uh oh, this one's empty. Why is it empty? Didn't look into it.]

Â -Âhttp://ravinesmp.com/volatile/challenger-stuff/vuln1024-combined-uptime.jsonÂ

The 'combined-weights.json' is probably the one you might be after. But that's all I did for now.

You also said that these aren't all the vulnerable relays that there are out there. You linked to a more complete list[3], but it has some typos, etc. I haven't done anything with it, maybe someone will take over, or I will do something later on.

[1]:Âhttps://lists.torproject.org/pipermail/tor-relays/2014-April/004214.html

[2]:Âhttp://ravinesmp.com/volatile/challenger-stuff/vuln_fingerprints.txt

[3]:Âhttp://freehaven.net/~arma/vulnerable-keys-2014-04-08b

[4]: commits:

Â -https://github.com/wfn/challenger/commit/38d88bcb1136f97881f81152d3d883c4e9480188

Â -https://github.com/wfn/challenger/commit/39c800643c040474402fc62d2a2db75c25889dfc

Â -https://github.com/wfn/challenger/commit/7425ef6fc00dedf3b2b7f2649e832fb4c93909ae

kostas / wfn

0x0e5dce45Â@ pgp.mit.edu

_______________________________________________ tor-relays mailing list tor-relays@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays