[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
From: Kevin P Dyer <kpdyer@xxxxxxxxx>
Date: Fri, 21 Aug 2015 17:51:20 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 21 Aug 2015 20:52:12 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=MRg/T59BAzUVzHbAWQzdmvC8Mb3m3M/uVOJIz0NPydM=; b=glA2g/ZO9qY/sROV+t+G9M7iRK/hI5l06OS9FAf83QWUP2V7TwYXeJlwc6HspajduX jlI+8bGSzpB/+PZ41YzB11EQ09eBvO+espnwSGuflHVmypSZI68Py6xhXgcG7yrrh0Ft SSHjPAyBVMYM+rX60g8XzTVhm+46ocjkx/Gi9SJ2aY3hT9T9FlyXsEVDm1aWJW9i+EBy aNuWFSbRicCZEBU6Q5+LIOS5g3y7AYRg7xi4B7+2v0qiVgFvcME628+j+8icxrvXznth rpqGmTvdFXxC+gFLhdqkRMECjZkvd5MnHdrdIhjr5CtjBeZGN20tdcIT2oBsOfCXjWAg 8ftA==
In-reply-to: <20150819185836.6ae54df7@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <20150819181303.GE12802@xxxxxxxxx> <20150819185836.6ae54df7@xxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, Aug 19, 2015 at 11:58 AM, Yawning Angel <yawning@xxxxxxxxxxxxxxx> wrote:

[snip]

The FTE semantic attack they presented isn't the easiest one I know of
(the GET request as defined by the regex is pathologically malformed).

Very interesting! This is news to me. I'm assuming I did something silly. (Even though I tested it against bro, wireshark, etc.)

How is it pathologically malformed?

[snip]

-KevinÂ

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
  - From: Yawning Angel

References:
- [tor-dev] "Seeing through Network-Protocol Obfuscation"
  - From: Philipp Winter
- Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
  - From: Yawning Angel

Prev by Author: Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
Next by Author: Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
Previous by thread: Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
Next by thread: Re: [tor-dev] "Seeing through Network-Protocol Obfuscation"
Index(es):
- Author
- Thread