[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
From: Maxim Kammerer <mk@xxxxxx>
Date: Wed, 12 Jun 2013 12:13:40 +0300
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 12 Jun 2013 05:14:27 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dee.su; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type:content-transfer-encoding; bh=kXUbcOcZEifEw0M2FxuydXKv+eT4+lNhLnv4jU6cDxg=; b=i7LCfi/pPc1yosW5tMRwt0tIXGxJabiJksZ8CbJlVVGiUYuWLnO5cy/78hn4ZI1aaG pEA8psEcK4z3Nv6Cs0CIkLLMxaGDEI5mhbwWn+vV2UNEUWy+6egE6Ru8RFUZWEj3B/ik TWhbcQRy7wCXppZRcGFCiDZURpvmcDdbnk3fY=
In-reply-to: <8761xmp0wm.fsf@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <1ce4ad2adaab4af523c4be2419e9c5df.squirrel@xxxxxxxxxxxxxxxxxxxxx> <5196481D.90207@xxxxxxxxxx> <dbc2e4df2cc5a843292a8bbeac25d8a8.squirrel@xxxxxxxxxxxxxxxxxxxxx> <5196CCE6.6060200@xxxxxxxxxx> <20130518033142.GB5645@xxxxxxxxxxxxxx> <8761xmp0wm.fsf@xxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

On Mon, Jun 10, 2013 at 4:10 PM, George Kadianakis <desnacked@xxxxxxxxxx> wrote:
> FWIW, it seems that the I2P folks took a similar approach:
> http://www.i2p2.de/naming.html
> http://www.i2p2.de/hosts.txt
>
> Unfortunately, I don't know how well that system has worked for them
> so far. It seems that their threat model doesn't include the adversary
> who hacks and alters the i2p2.i2p website or an evil operator of that
> site (although I guess that such an entity could also backdoor i2p
> anyway).

hosts.txt is not automatically fetched — it is bundled with I2P
package, and can be extended manually by the user via several
“redirect” services that are automatically used for a name that's not
in hosts.txt. E.g., when hiddenchan.i2p is put into browser URL, the
local I2P proxy, seeing that the domain is unknown, redirects to one
of the services (located in .i2p namespace), resulting in an offer to
confirm the eepSite public key (which is shown) to be added to
hosts.txt (or just the current session).

--
Maxim Kammerer
Liberté Linux: http://dee.su/liberte
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
  - From: George Kadianakis

Prev by Author: Re: [tor-dev] Torsocks development status
Next by Author: [tor-dev] atlas.torproject.org question
Previous by thread: Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
Next by thread: Re: [tor-dev] stem
Index(es):
- Author
- Thread