[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Open source firewall.

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Open source firewall.
From: Gerardus Hendricks <konfkukor@xxxxxxxxxx>
Date: Mon, 20 Jan 2014 17:59:05 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 20 Jan 2014 12:11:46 -0500
In-reply-to: <52DC8E33.4020006@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <52DC8E33.4020006@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:24.0) Gecko/20100101 Thunderbird/24.2.0

On 1/20/14 3:47 AM, TheMindwareGroup wrote:

Windows firewall is useless.


Who is your attacker?

There are two kinds of anonymity in this world: anonymity that will stopyour kid sister from reading your tweets, and anonymity that will stopmajor governments from finding your body. Microsoft is about the former.

More seriously: the (rule based or heuristic) firewalls you aredescribing are a last defense measure. Firewalls are born out of theassumption that running applications might be malicious or broken. Youshould Have A Little Faith, and trust Tails.

Realize that firewalls make sense under certain attacker models. The'family' Windows PC has to endure some strain, and (ie. unknownapplication blocking) firewalls could add some safety.

You could argue that the iOS and the Android API permissions are the new'firewall': the sandbox. It controls rough aspects of the application'sbehavior, and can present these aspects to the (casual) user in anunderstandable UI. The user unfortunately faces an 'all or nothing'dilemma (on grounds which are uncertain for the casual user).

PGP: 0xf4b6586f


What is the binary logarithm of sixteen to the power of eight?
How long does it take to generate a fresh RSA keypair?
Are the last eight bytes of keyids evenly distributed?

Thank you.
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Open source firewall.
  - From: Jim

References:
- Re: [tor-talk] Open source firewall.
  - From: TheMindwareGroup

Prev by Author: Re: [tor-talk] key generation on first boot with low entropy
Next by Author: Re: [tor-talk] Security issue
Previous by thread: Re: [tor-talk] Open source firewall.
Next by thread: Re: [tor-talk] Open source firewall.
Index(es):
- Author
- Thread