[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] FBI cracked Tor security

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] FBI cracked Tor security
From: Mirimir <mirimir@xxxxxxxxxx>
Date: Thu, 14 Jul 2016 00:37:34 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 14 Jul 2016 02:38:09 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1468478258; bh=21nDAJwQi3s8mEP6a4FQ6SPrmRMdDLHqMrlUbPSr1gU=; h=Subject:To:References:From:Date:In-Reply-To:From; b=Wvcn7c20y29yooPoAKk6LLNLHwwPywwPtuRD8JPKkKCaOUIahrWgbLoSC6Owo38Lu s7znKIhIRva9LHJIMbKCkr/M0YqoaI9ieLhxMe89MuhnTpIpHVUAaiIyeK01qZFAPD WbdUTMWjzhYhEPms82/qslE7uY9MNt44k0E4XX20=
In-reply-to: <CAPkfgVYU_T9w0SJ9QsqSo8EXHgbJx68hROb6E8ELsrS2J6W6kg@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <652210562.2768097.1468453881242.JavaMail.yahoo.ref@mail.yahoo.com> <652210562.2768097.1468453881242.JavaMail.yahoo@mail.yahoo.com> <CAPkfgVYU_T9w0SJ9QsqSo8EXHgbJx68hROb6E8ELsrS2J6W6kg@mail.gmail.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 07/14/2016 12:23 AM, Jon Tullett wrote:
> On 14 July 2016 at 01:51, Nick Levinson <nick_levinson@xxxxxxxxx>
> wrote:
>> The FBI reportedly cracked Tor's security to crack a child porn
>> case with over 100 arrests of Tor users.
> 
> I think what you'll find in such cases is that the FBI generally
> crack the servers hosting the illicit material, not Tor itself.
> 
> In other words, the feds locate onion sites hosting illegal
> material, using standard intelligence gathering techniques. They
> establish (encrypted, secure, private, and presumably uncracked)
> Tor connections to those servers, and then attack them over those
> connections. There are frequently vulnerabilities in hosting
> services - content platforms, web forums, third-party Javascript
> libraries, file uploads, management interfaces...many sites,
> darkweb or not, have much broader attack surfaces than their owners
> understand.

Truth.

> Having pwned the server, a malware component is then injected to 
> visiting computers. Ie: when the criminal visits the infected
> site, his PC is infected (over that encrypted, secure, etc)
> connection. Now infected, his PC will be under the control of the
> FBI, and the investigation will proceed from there. As soon as it's
> connected to the regular internet, that connection will be traced,
> but that connection is not necessary - data on the PC can be
> exfiltrated by the feds over Tor and used to identify the user.

Tor Project ought to inform users about this risk, and recommend
countermeasures. It's not like this is new. I see nothing at
<https://www.torproject.org/download/download.html.en#warning>.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJXhzMrAAoJEGINZVEXwuQ+aNcH/RuVar64z8teBVyE+lW6ttkj
1WAQUzoPwzowHgQqlzrGLg2U48DRFXAkvYDREnKJ1kyXHvva39vwuRxLOFclslWR
52jszspAlcQvDaM53NIvgusNMw6B1l6yvhvuf6aKb74W2BA5dWcfJxSd2QmVZYF7
b63uVPFRBBlvBwNcFvfwAgpOVXUklErp44QvWoQ2RpTIygVNFw6bKufX/ECt+uu/
7vgkKxRySabeIPlDDA8q08Wi5Prze1Ge1fZ8lt7tAHJgOW5FXaFbyWDnGipFggwG
2LNE0LQk1BkUV/o6IUlciY5QFZpoB+MSY1g7TDysKokLrrkOHZ9wYqBshI8HTwI=
=v9+h
-----END PGP SIGNATURE-----
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett

References:
- [tor-talk] FBI cracked Tor security
  - From: Nick Levinson
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett

Prev by Author: Re: [tor-talk] FBI cracked Tor security
Next by Author: Re: [tor-talk] using a VPN, proxy or ssh can make you actually less anonymous
Previous by thread: Re: [tor-talk] FBI cracked Tor security
Next by thread: Re: [tor-talk] FBI cracked Tor security
Index(es):
- Author
- Thread