[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Is Tor still valid?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Is Tor still valid?
From: Andrew F <andrewfriedman101@xxxxxxxxx>
Date: Tue, 6 Aug 2013 05:00:50 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 06 Aug 2013 01:11:30 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=pARmFZ0J09U2TdCPn5NOAz8CffpRP83+mCy8BkRz9PY=; b=Etv0BA71EirPUD5AEufbYK5sQGZbdPjk6bpfKzlR3ywd9TKpuc+vpVdhqwIGa9bl57 jwfs7AWBadxXGXIMHqagcX91eWoACrYMMpMYBSgBMbZoRLxhDSnKvj7Q6foxG8k0mgiR 3EwkM4fPH+Y1NqGxsPYT1KhLJXZ5CsSeutkIReKAo0WKM6bjYXpYdyQkSrTnb11eUFIG gDq/axTANG+0HPlMOGPfNCYpyE82TXKeVIFGm8sp3E2YiMkYPiMLYDshnUvyVKump+kA QWXiNLRPBn0XrOWafA3mq+Dv4kEWG0g/Am5vFpzCyg3RWB+5ulwNTNcv4jAhwoVz9CRY ddCQ==
In-reply-to: <51FFF497.2050604@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAMnnSdieCC+A8QAUanr4qjwJxWv9GzTQHTMF=7tQPqAYmQWpyA@xxxxxxxxxxxxxx> <51FFF497.2050604@xxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

 On 08/05/2013 06:53 PM, Crypto wrote:

On 8/5/2013 1:29 PM, Andrew F wrote:

 Is Tor still Valid now that we know the nsa is actively exploiting holes in
technology anonymity tools?  We know that Tor and hidden services has
issues, not to mention the whole fingerprinting problems.

Is Tor too vulnerable to trust?    Watch the video below.

XKeyscorehttp://www.youtube.com/watch?v=TSEbshxgUas

 I'm curious as to why everyone is so intent on blaming Tor itself? Tor
was not exploited. It was a hole in FF 17 in conjunction with the
application running behind the hidden service. It's like saying "My car
got a flat tire! Should I ever drive again?" I agree that the exploit
was a bad one and in turn it's a big security issue. But if we're going
to point fingers let's not point at Tor. Let's focus on the underlying
issue(s) that caused this to happen. FF 17 was the target, not Tor.
Mozilla has addressed the issue. How did the exploit occur? Let's look
at the application(s) that were running behind the hidden service.


 That was not my focus. My concern is for known Tor venerabilities that are
documented and know by all.
If we know that Government agencies are actively and successfully attacking
soft technology targets. then how can we assume the know Tor Venerabilities
are not being used at this very moment.   The Tor Venerabilities are going
to be dealt with one day.. but what about right now.  We know about them,
therefore everyone knows about them.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsusbscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Is Tor still valid?
  - From: Andrew F

References:
- [tor-talk] Is Tor still valid?
  - From: Andrew F
- Re: [tor-talk] Is Tor still valid?
  - From: Crypto

Prev by Author: [tor-talk] Is Tor still valid?
Next by Author: Re: [tor-talk] Is Tor still valid?
Previous by thread: Re: [tor-talk] Is Tor still valid?
Next by thread: Re: [tor-talk] Is Tor still valid?
Index(es):
- Author
- Thread