[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #2927 [Tor Relay]: Tor doesn't overwrite rotated keys
#2927: Tor doesn't overwrite rotated keys
-----------------------+----------------------------------------------------
Reporter: asn | Owner:
Type: defect | Status: new
Priority: normal | Milestone:
Component: Tor Relay | Version:
Keywords: | Parent:
Points: | Actualpoints:
-----------------------+----------------------------------------------------
Comment(by asn):
Replying to [comment:2 rransom]:
> Replying to [ticket:2927 asn]:
> > Onion keys should get memsetted somewhere around the
crypto_free_pk_env(lastonionkey);
> > of rotate_onion_key()
>
> âOnion keysâ are stored on disk, too. Do you plan to securely erase
them there? If so, how?
Yes, you are right.
I guess that even creating something like shred(1), would be a lost cause
and probably also give a false sense of security, considering modern
journaled, versioning and what not filesystems.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2927#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs