[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Running tor in VPS - keep away snooping eyes

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Running tor in VPS - keep away snooping eyes
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Wed, 2 Jul 2014 11:53:51 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 02 Jul 2014 11:54:03 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=Q4pY7FwZDiNej2j0p/+g6kLXMxn6kIPRqZQwQf9sqDE=; b=del/JBLX3k4GC5srrTxzZXkytObG+1zblRvCY7usk9cDLbmgtB4lpSR/jrxuAFaDE2 Ys558yz09Skf3gX/4Om0MKYCUM6NQpi6qHm5qUSyXCqAIop0gLKKqKzgC0HKoRoVC9f0 LKhrKzcjFSj2YB96Jnmkr3BCb005g5uSS27J9DbqDa6oH0+oOZSbGQDt0OyK/Gx0NcCQ MGW8CvHS5PT4KhIWb+KAKbKyySyrxtfWi51h7KM9H1W0aNzXMriG+T6Z1ng4BF2QDuYT soH615xv9NivO8J4KpN+nP+U/bYeloNc5Gq7ojBZqPUTui7zeBYMsa2Io/BlguBPk6rc 0ZYQ==
In-reply-to: <1404301567.46495.YahooMailNeo@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <1404283812.42931.YahooMailNeo@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <53B3E622.9020809@xxxxxxxxxx> <1404301567.46495.YahooMailNeo@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, Jul 2, 2014 at 7:46 AM, Kali Tor <kalitor42@xxxxxxxxx> wrote:
> I have done all that, so covered on that aspect. Was wondering if disk encryption and use of something like TRESOR would be useful?

The private keys for the node are sensitive, and even the
.tor/state file for the guard nodes could be if the attacker
does not already have that info, same for any non default
node selection stuff in torrc. Tor presumably validates
the disk consensus files against its static keys on startup
so that's probably ok yet all easily under .tor anyway.

There was a thread on this some time ago you can find.
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Running tor in VPS - keep away snooping eyes
  - From: Lunar

References:
- [tor-relays] Running tor in VPS - keep away snooping eyes
  - From: Kali Tor
- Re: [tor-relays] Running tor in VPS - keep away snooping eyes
  - From: s7r
- Re: [tor-relays] Running tor in VPS - keep away snooping eyes
  - From: Kali Tor

Prev by Author: Re: [tor-relays] optimize performance of a relay running on a VM
Next by Author: Re: [tor-relays] Oubound Ports
Previous by thread: Re: [tor-relays] Running tor in VPS - keep away snooping eyes
Next by thread: Re: [tor-relays] Running tor in VPS - keep away snooping eyes
Index(es):
- Author
- Thread