[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #10221 [Tor]: Implement BGP malicious route checks before publishing descriptor in consensus

Subject: [tor-bugs] #10221 [Tor]: Implement BGP malicious route checks before publishing descriptor in consensus
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 23 Nov 2013 09:43:26 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 23 Nov 2013 04:43:28 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#10221: Implement BGP malicious route checks before publishing descriptor in
consensus
-------------------------+---------------------
 Reporter:  anon         |          Owner:
     Type:  enhancement  |         Status:  new
 Priority:  normal       |      Milestone:
Component:  Tor          |        Version:
 Keywords:  BGP          |  Actual Points:
Parent ID:               |         Points:
-------------------------+---------------------
 Alternatively, treat as normal and simply flag the BGP route as malicious
 or not for the listed endpoints in a consensus.

 This is in response to observed, repeated, malicious route jacking attacks
 for specific address ranges through monkey-in-the-middle attackers.

 "Malicious route jacking" is explicitly mentioned here as distinct from
 anomalous route changes or advertisement behavior, nor does it encompass
 benign incompetence affecting widespread route behavior of an
 indiscriminate nature.

 See also:
 http://www.renesys.com/2013/11/mitm-internet-hijacking/
 http://www.renesys.com/2010/11/chinas-18-minute-mystery/

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10221>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #10221 [Tor]: Implement BGP malicious route checks before publishing descriptor in consensus
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #10218 [Tor]: Provide "users-per-transport-per-country" statistics for obfsbridges
Next by Author: Re: [tor-bugs] #9901 [TorBrowserButton]: DoS of TBB 2.4/3.0 when no Content-Type header and more than 512 bytes of content are sent
Previous by thread: Re: [tor-bugs] #10220 [TorBrowserButton]: TBB 3.0b1 sends me to TBB3.0a4 download directory for update
Next by thread: Re: [tor-bugs] #10221 [Tor]: Implement BGP malicious route checks before publishing descriptor in consensus
Index(es):
- Author
- Thread