[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
From: Univibe <univibe@xxxxxxxxxxxxxx>
Date: Thu, 17 Nov 2016 14:24:38 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 17 Nov 2016 14:24:57 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1479410678; bh=XxwmHL7xsqC0/BfktlkQREoQZqTynzXJ6A1h2fBGPyY=; h=Date:To:From:Reply-To:Subject:In-Reply-To:References:Feedback-ID: From; b=hLWJt9hMGwjtKvOnFge88b/sB7mzjA66aL+NHJbGqnQERblcRgPbF4Nv6GHJ+4sLR sE5t4SUqku8SR3tDRDctAOYJkrL0c8XJ86q3L/jTBkf4n8keIDKqUCmw57hGgaKfv2 ps70XiephcWYeYxIoHg9TTBxNS5G0f2Z7Fhpwf3M=
Feedback-id: jLH1UD6phHJTsVuXfz7EXzEbHHd_pZrJO702Qe9uDikB5Cr2imFSwq5pYP7clPygZuIPvpsm0ikLK5vCh7x4lQ==:Ext:ProtonMail
In-reply-to: <CAKPZyuGao2p5hNRJGHL9OzXm9aODpaToCBdOV9Rijs+BhtWiXg@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays $exit, non-exit, bridge$" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <20161117014004.2clp7djzm2jjxqvt@riseup.net> <20161117073013.vxb72balbg2x7rwk@riseup.net> <CAKPZyuGao2p5hNRJGHL9OzXm9aODpaToCBdOV9Rijs+BhtWiXg@mail.gmail.com>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

My relays have been patched to the latest available kernels, and aren't in the list of vulnerable relays, however they still show high values for TCPSYNChallenge:

----

$ ansible tor -a 'bash -c "netstat -s | grep -i challenge"' -b --ask-become-pass

lon | SUCCESS | rc=0 >>

TCPChallengeACK: 14197

TCPSYNChallenge: 2926

fra | SUCCESS | rc=0 >>

TCPChallengeACK: 12907

TCPSYNChallenge: 3461

----

$ ansible tor -a 'bash -c "cat /etc/lsb-release && uname -rv"' -b --ask-become-pass

fra | SUCCESS | rc=0 >>

DISTRIB_ID=Ubuntu

DISTRIB_RELEASE=14.04

DISTRIB_CODENAME=trusty

DISTRIB_DESCRIPTION="Ubuntu 14.04.5 LTS"

3.13.0-101-generic #148-Ubuntu SMP Thu Oct 20 22:08:32 UTC 2016

lon | SUCCESS | rc=0 >>

DISTRIB_ID=Ubuntu

DISTRIB_RELEASE=14.04

DISTRIB_CODENAME=trusty

DISTRIB_DESCRIPTION="Ubuntu 14.04.5 LTS"

3.13.0-101-generic #148-Ubuntu SMP Thu Oct 20 22:08:32 UTC 2016

----

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
  - From: Petrusko
- Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
  - From: Petrusko

References:
- [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
  - From: dawuud
- Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
  - From: dawuud
- Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
  - From: Jason Ross

Prev by Author: Re: [tor-relays] proper way to insert PGP key in torrc?
Next by Author: Re: [tor-relays] Interrogated by Finnish police for alleged idendity crimes, fraud and attempts of fraud
Previous by thread: Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
Next by thread: Re: [tor-relays] network scan results for CVE-2016-5696 / rfc 5961
Index(es):
- Author
- Thread