[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Mon, 19 Dec 2011 11:08:28 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 19 Dec 2011 11:08:49 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; bh=nIorjSYWh653dlNklg75vr8CWB5hRoDZ+MQov8CAKzk=; b=MuyNHR9Yy8R7V19muF3aTZAGeOsiKRyN/EWdSBHWFDkxNC7KHwkxrkxkCWB/GMAVH7 D+8qX61VWX13S1CEHUTsbV2lZUCcqoamH+oNVy06+nJQuU271ne6asAW/TnJTQRbF+La miR1VQMv2fko/5ntZreWGfIPnCmeUfxfYvFmo=
In-reply-to: <20111219135440.GA6120@xxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for discussion by the developers of Tor." <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CACy_D8gfwjp1YN-pPmQ2FC-ne8x++vZCOqwnOvaOkcDOQ2zqqw@xxxxxxxxxxxxxx> <1E47D8A1-EEDE-415B-BAFE-8AA49A550893@xxxxxxxxxxx> <20111219135440.GA6120@xxxxxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

On Mon, Dec 19, 2011 at 8:54 AM, Paul Syverson
<syverson@xxxxxxxxxxxxxxxx> wrote:
>                                                              Onions, per
> se, were never used in Tor (even though Tor's onion routing ;>)

As long as we're doing historical notes, let me amend that to "onions,
per se, were never used in any *released version* of Tor."  It looks
like I implemented the  backend for the onionskin-based circuit
handshake back in May 2003 (svn revision 259, git commit 1eeb3f65fc),
which predates any version of Tor we ever put out a public tarball
for.  So Tor *did* once use onions for circuit setup; just not any Tor
that ever got a public release.

peace,
-- 
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?
  - From: Daniel Cohen
- Re: [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?
  - From: Dave Jevans
- Re: [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?
  - From: Paul Syverson

Prev by Author: Re: [tor-dev] common/aes.c troubles
Next by Author: Re: [tor-dev] Drafting a proposal for mnemonic onion URLs
Previous by thread: Re: [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?
Next by thread: Re: [tor-dev] Is Taking Checksum of Packet Payloads a Vulnerability?
Index(es):
- Author
- Thread