[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Exit nodes can redirect requests?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Exit nodes can redirect requests?
From: Matthew Finkel <matthew.finkel@xxxxxxxxx>
Date: Thu, 9 Aug 2018 18:47:05 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 09 Aug 2018 14:47:25 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:date:to:subject:message-id:references:mime-version :content-disposition:in-reply-to:user-agent; bh=Dadskgayd3P90Z1q6ls2VV+tWVv/KxgaRCoEgl3h+bA=; b=QuzrPSoHgV2w6AUPsa2h70lMYvLwXBFensQlY+TanEkb/meAvzRPbsvUUDRWsQRwZU 394Jk4tUENsVZ11ThPXXH8Nbh7N21D96cgAZjMWPrcqquTueMscB7+4b7+LeqPuuYfy/ 1OXCKxzMQkzS4ERJOKd9voOuT6m9xj9jiddgG7NYBljx5DJOK+VjC/puTFRD+mCXKJr/ fPiYcn2/ACz6w8DWjUc/xgPIR9uDuQkMiAHG3ZIYUOfO6QwanKDh5Xrrg88WMFLRpGHL KlpSa82jvetUw77JxhZsYYoa9/TitNhR23tdE61ttJzQOYYodIz6P2562zTiQeP1ERyP Wpgw==
In-reply-to: <LJUtJAR--3-1@tutanota.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <LJUtJAR--3-1@tutanota.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: NeoMutt/20170113 (1.7.2)

On Thu, Aug 09, 2018 at 08:14:03PM +0200, onionsmasher@xxxxxxxxxxxx wrote:
> 
> So I was browsing some old clearnet forum posts using Tails and Tor browser. Some posts had embedded images from a Tor hidden site via onion.casa gateway. That gateway site seems to be inactive nowadays.
> I refreshed the page a few times, and sometimes Tor browser was attempting to load something from the same site but using tor2web.xyz gateway instead.
> I checked page source and didn't spot any references to tor2web.xyz.
> So what happened?

Without seeing the actual website, we can only guess what caused this.
Did you have javascript enabled in Tor Browser? Maybe there was a
javascript file that tries alternative tor2web gateways?

>Can exit nodes redirect requests like this?

It depends. In theory, yes, it could in this case. This would qualify
the exit node as a bad relay, but in practice it could detect onion.casa
is a dead website and it sent a HTTP redirect for tor2web.xyz.

> I mean, if original request was to site.onion.casa/foo but it was redirected to site.tor2web.xyz/foo?
> This was rather strange and I don't really understand what happened. I think it's very questionable if exit nodes do redirects like this. Is it even possible? What have I not noticed?

It seems more likely this was a feature provided by the forum, but if
the exit relay injected a redirect from onion.casa to tor2web.xyz then
it is a good idea to find which relay this is and investigate it.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Exit nodes can redirect requests?
  - From: Nathaniel Suchy

References:
- [tor-talk] Exit nodes can redirect requests?
  - From: onionsmasher

Prev by Author: Re: [tor-talk] HSTS forbids "Add an exception" (also, does request URI leak?)
Next by Author: Re: [tor-talk] Measuring on-line anonymity
Previous by thread: Re: [tor-talk] Exit nodes can redirect requests?
Next by thread: Re: [tor-talk] Exit nodes can redirect requests?
Index(es):
- Author
- Thread