[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] obfsproxy buffering

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] obfsproxy buffering
From: David Stainton <dstainton415@xxxxxxxxx>
Date: Mon, 18 Nov 2013 07:47:55 -0800
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 18 Nov 2013 10:48:06 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=f4bXddrSGJE0J20tIOETuBCBn06mbLJleKIZZFIxVsM=; b=JgiggaitCBzxFw1n9PcKbEWzq+mKZxj9gScc2+Ys4iB5LC7yTAwhyDWuNsFyiTpwvi p2G6fCTf5L1cTVQwjb1OJx12hd4dGq3ky1k7y5PxCnX0uyIViOO/hfWOuCVqLfDAgRzX I9JJFxt77c9XMWH7Hfrs6giKSfvU7EVTqxAuIyxDay3Ke+rICgURxnSbvsOe3J1U6csP kC/5JCTQ6ug8zU9SDtrVWA7WdMNmEN6RIZOy9+Y5/8XzbDsNgihrWwu1AiSCHKsR6ykl 8kY8HPt6t2ldDFcECrgWpj3jJHpgRIgdJmTgAXTAsM/X7g9dTTR4IiEPLqHXpdalKbms C9qw==
In-reply-to: <20131118130446.GD25540@xxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAFN1edrQS2pB7aq8a6wa1BDnZiemZLbB1xuqKTeMAxd5=v4Dww@xxxxxxxxxxxxxx> <20131118130446.GD25540@xxxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> Super-simple framing protocols often fall victim to attacks in which the
> adversary messes with the length in the frame header.  See, for example,
> "Plaintext Recovery Attacks Against SSH":
> http://www.isg.rhul.ac.uk/~kp/SandPfinal.pdf
>
> So be careful here.
>
>    - Ian

Over Tor it won't be a problem because Tor is authenticated.
Thanks for the paper... I do really love to read papers like this.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] obfsproxy buffering
  - From: Zack Weinberg

References:
- [tor-dev] obfsproxy buffering
  - From: David Stainton
- Re: [tor-dev] obfsproxy buffering
  - From: Ian Goldberg

Prev by Author: [tor-dev] obfsproxy buffering
Next by Author: Re: [tor-dev] obfsproxy buffering
Previous by thread: Re: [tor-dev] obfsproxy buffering
Next by thread: Re: [tor-dev] obfsproxy buffering
Index(es):
- Author
- Thread