[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Heartbleed bug / Mainstream information

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] Heartbleed bug / Mainstream information
From: "Christopher J. Walters" <cwal989@xxxxxxxxxxx>
Date: Sun, 13 Apr 2014 16:01:09 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 13 Apr 2014 16:12:07 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20140121; t=1397419263; bh=tL2IHTmD6p7QLz9R4Q2rt3++G7jl4hb/StO67+8k8Gw=; h=Received:Received:Message-ID:Date:From:MIME-Version:To:Subject: Content-Type; b=K8/GW6Bf33MTgBEdvu9mLxiO5a4JV8i70F+G29yJdElqMGKWtt3I0ArXHCMfMzCXc Xx1G306OxMmyO4keRZujPQYJovKEQF6eqdaPcU1AYkQXH8phZxwcBGv1QXIm5If2zQ 6e+Iok59tl3Cf86HkSTtm/rGlrI76P84m6eXT4OTLeUfsz494SDUdQbNNI5LmEty7A I5UqjMwT+w8iTgVa3bmLxI4lY1SFm24gUbTOpQnsdB1w0eTKHbPSUbT19HYMAnb/vA 0o2TAJHlqC8OeLs0V4Q/smIBdjQfE2AKl9MEATJLOemBtIExdsXN3JcqqKI02ndnry da1z/FaOh8XbA==
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Organization: What is that?
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.23) Gecko/20090812 Thunderbird/2.0.0.23 Mnenhy/0.7.6.666

The discussion on the Heatbleed bug has apparently stopped here, and just abouteverywhere else, but I found (courtesy of another mailing list), some morereports on it, that you may have not seen. These reports suggest the the NSAknew about and exploited the bug for "at least" two years, and may have evenworked to stop it from being reported and fixed.


http://www.bloomberg.com/news/2014-04-11/nsa-said-to-have-used-heartbleed-bug-exposing-consumers.html

Shorter link to the above article:
http://tinyurl.com/mq8owa2

Also,
http://www.sfgate.com/opinion/editorials/article/Encryption-security-compromised-in-a-heartbeat-5396510.php

Shorter link to the above article:
http://tinyurl.com/kmmqkfv

The NSA, or course, denies any knowledge, or exploitation of the bug, but youcan read the article and make your own decisions on that.


Chris
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Heartbleed bug / Mainstream information
  - From: ÐÑÑÑÑ ÐÑÑÐÐÐÐ
- Re: [tor-talk] Heartbleed bug / Mainstream information
  - From: Roger Dingledine

Prev by Author: Re: [tor-talk] Heartbleed and TOR
Next by Author: Re: [tor-talk] Heartbleed bug / Mainstream information
Previous by thread: Re: [tor-talk] browser fingerprinting
Next by thread: Re: [tor-talk] Heartbleed bug / Mainstream information
Index(es):
- Author
- Thread