[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] onionoo

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] onionoo
From: Karsten Loesing <karsten@xxxxxxxxxxxxxx>
Date: Tue, 03 Sep 2013 10:45:09 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 03 Sep 2013 04:45:24 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=ogowqg9p9BKd/hJFc4O91UABauANS2gP/Ur0d0zrHdU=; b=H4zczqKXQ32X4A/QjokyJVeE33UfI+mdr4WqpXSRGc/n9N1tZVaAo8b2lXmToypgZT s5LzemZjfSdcmvEbUTpJmfYzYL1RpYhXb9hfdcu6Mq8lUPCzgYFQ2Jt4K1cfEMVqPRlP FWxOsakQStJqPFUSZWENydspTsuUT9yqjtDMPjqisKbWhbcxnVQuMiNJM8xSdJ7kLg5z H18SG5lKfuo3FDmZVTh0W4P48+hqvFS7dZuBRT36lP4rjBx6rzfnRSmeSiY5uLHVnCeB D7u1JgQF8dD0BA3YoKovshJklaD0GEN6doPM3ta0MAqBviltR5Ayf2834he/uuWllmeC tPrw==
In-reply-to: <52255E86.3030008@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <5224980D.2070708@xxxxxxxxxx> <CAN0KoygRmJn5kXLdk7iY_nAKmFiRw_1EwHe+Q1D+1_CSAvO0zg@xxxxxxxxxxxxxx> <5224B5CD.7030600@xxxxxxxxxxxxx> <52255E86.3030008@xxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:17.0) Gecko/20130801 Thunderbird/17.0.8

On 9/3/13 5:59 AM, eliaz wrote:
> On 9/2/2013 11:59 AM, Steve Snyder wrote:
>> On 09/02/2013 10:02 AM, Kostas Jakeliunas wrote:
>>> [1]: http://globe.rndm.de/
>>
>> Having this tool on an unencrypted HTTP site doesn't seem safe to me.
>> Anybody can sniff the bridge IP addresses that users submit for reporting.
> 
> It may be different if someone compiles the program locally, but AFAICT
> no secrets are being divulged from the globe web page.  From the page
> the details of no bridge can be found without knowing the name of the
> bridge in the first place; and if someone knows that she also know the
> other details. One doesn't have to go to the page to do a brute force
> attack.

Agreed, Globe doesn't divulge any secrets, mostly because Onionoo
doesn't contain any secrets.  All bridge data that Onionoo has is
sanitized and doesn't contain sensitive information anymore.

> At the same time globe is useful in helping lower-level bridge operators
> such as myself get a better sense of what the information windows in the
> browser bundle are actually telling us.

I agree.

> If I'm wrong in any of the above, please do correct me.

No need to.  Thanks for running a bridge!

Best,
Karsten

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] onionoo
  - From: eliaz
- Re: [tor-relays] onionoo
  - From: Kostas Jakeliunas
- Re: [tor-relays] onionoo
  - From: Steve Snyder
- Re: [tor-relays] onionoo
  - From: eliaz

Prev by Author: Re: [tor-relays] onionoo
Next by Author: Re: [tor-relays] Reimbursement of Exit Operators
Previous by thread: Re: [tor-relays] onionoo
Next by thread: Re: [tor-relays] onionoo
Index(es):
- Author
- Thread