[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] The heartbleed bug, hidden service private_key leakages and IP revealing

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] The heartbleed bug, hidden service private_key leakages and IP revealing
From: Roger Dingledine <arma@xxxxxxx>
Date: Fri, 11 Apr 2014 18:28:36 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 11 Apr 2014 18:41:53 -0400
In-reply-to: <N1-Fib2jc2PA8@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <N1-Fib2jc2PA8@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.20 (2009-06-14)

On Thu, Apr 10, 2014 at 05:13:02PM -0400, hikki@xxxxxxxxxxxxx wrote:
> It says in the blog:
> 
> "Hidden services: Tor hidden services might leak their long-term hidden service identity keys to their guard relays.
> Like the last big OpenSSL bug, this shouldn't allow an attacker to identify the location of the hidden service,
> but an attacker who knows the hidden service identity key can impersonate the hidden service.
> Best practice would be to move to a new hidden-service address at your convenience."
> 
> *If* the entry guard has obtained your private_key, or is capable of doing so, it *must* be capable of linking that private_key with the hidden service's real IP also. It is afterall your *entry* guard!
> 
> Right?

Huh. I think you're right. I've changed the blog post. Thanks.

> I think this bug is more severe than most people think or want to believe!

It sure is showing interesting details as we explore it more.

For example, I think the SSL spec says that you shouldn't be able to ask
for a heartbeat until the SSL handshake is finished, but I think OpenSSL
lets you ask for a heartbeat during the SSL handshake. If so, that means
any local network mitm attacker, not just your entry guard, can intercept
your outgoing TCP connection and ask you for some heartbeats.

--Roger

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] The heartbleed bug, hidden service private_key leakages and IP revealing
  - From: unknown

References:
- [tor-talk] The heartbleed bug, hidden service private_key leakages and IP revealing
  - From: hikki

Prev by Author: Re: [tor-talk] Small server, not much bandwidth
Next by Author: Re: [tor-talk] Viewing current Dir Auth votes
Previous by thread: [tor-talk] The heartbleed bug, hidden service private_key leakages and IP revealing
Next by thread: Re: [tor-talk] The heartbleed bug, hidden service private_key leakages and IP revealing
Index(es):
- Author
- Thread