[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Is Taking Checksum of Packet Payloads a Vulnerability?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Is Taking Checksum of Packet Payloads a Vulnerability?
From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
Date: Sat, 17 Dec 2011 12:52:58 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 17 Dec 2011 12:53:12 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=KdgT8/xocAXzjlMWFC4Pigrm8GHVhxZOj3ZLDyUOARY=; b=FcdDqaFgz/ZO7lci7DFou9Jvjd0qRGsSDnEPr36H27ck+mvSzuc4TGVdEujhkh1/Yc /F4ZQps6F3TV+o2UyqGyKfN0c1I75tDuUARnJOvX/TBq0Yvk8FCyahrdpRKL+AOAdc/B O/zrI7iZ/0npKjDzNlzRdbP6Q+O8JRn36H9OA=
In-reply-to: <CACy_D8iProXLYrY4Sw_z5ys7q+HDCLZJy5LQ9jHg9SfEo5eu6w@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CACy_D8iEizzxtVFBvagVETnr+iq7MwZTxZYyM+njhVV_7NkOrQ@xxxxxxxxxxxxxx> <CACy_D8iProXLYrY4Sw_z5ys7q+HDCLZJy5LQ9jHg9SfEo5eu6w@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Sat, Dec 17, 2011 at 11:49 AM, Daniel Cohen <danielc192@xxxxxxxxx> wrote:
> Is this a problem with Tor's architecture? If so, has this issue
> already been addressed?

You're mistaking the normal purpose of entry nodes.

Normally if Alice is using Tor then she is running it herself. If she
is running it herself the traffic is encrypted between her and the
subsequent nodes. I don't just mean the end to end httpsâ Tor itself
encrypts the traffic so that the traffic leaving her node can only be
read by the next hop. Effectively, for this purpose, the traffic
'enters' the tor network inside Alice's  computer.  The packets
observable as not identifiable as the ones leaving the network later.

If Alice was in fact not running Tor herself, then the 'entry' node
could completely compromise her privacy without checksums or exit
sniffing or anything like that, which is why Tor is not used that way.
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Is Taking Checksum of Packet Payloads a Vulnerability?
  - From: Nick Mathewson

References:
- [tor-talk] Is Taking Checksum of Packet Payloads a Vulnerability?
  - From: Daniel Cohen

Prev by Author: Re: [tor-talk] How important is it that the MyFamily option be set correctly?
Next by Author: [tor-talk] [Ubuntu] Tor not available for install, but referenced
Previous by thread: [tor-talk] Is Taking Checksum of Packet Payloads a Vulnerability?
Next by thread: Re: [tor-talk] Is Taking Checksum of Packet Payloads a Vulnerability?
Index(es):
- Author
- Thread