[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-dev] obfsproxy buffering
> Super-simple framing protocols often fall victim to attacks in which the
> adversary messes with the length in the frame header. See, for example,
> "Plaintext Recovery Attacks Against SSH":
> http://www.isg.rhul.ac.uk/~kp/SandPfinal.pdf
>
> So be careful here.
>
> - Ian
Over Tor it won't be a problem because Tor is authenticated.
Thanks for the paper... I do really love to read papers like this.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev