[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] FBI cracked Tor security

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] FBI cracked Tor security
From: Mirimir <mirimir@xxxxxxxxxx>
Date: Tue, 19 Jul 2016 00:44:34 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 19 Jul 2016 02:45:02 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1468910677; bh=GsGgXFQqR7mGNgCDsacPXo/tgbXPvSZ61JMHv2KSjuE=; h=Subject:To:References:From:Date:In-Reply-To:From; b=VhCvqPqVy3TmIlRDejPCUlsrUZv1c48FuOw7nbIBmRMjc7UOdH9kBXzW5nSoTRAFd e5S243Aw8uRyDgemozhT0R+jUkrKozCZ4yaNpVZ0UBNVEEuh/iuNiFlf731q8cVsul Ly8mUarJti673pN61eCpC3zs3IRSZQxU6VgiH17k=
In-reply-to: <CAPkfgVZawqXw7viZwXU3ScD5QRUOaA4hsK0YFMryfTUohbS9LQ@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <652210562.2768097.1468453881242.JavaMail.yahoo.ref@mail.yahoo.com> <652210562.2768097.1468453881242.JavaMail.yahoo@mail.yahoo.com> <CAPkfgVYU_T9w0SJ9QsqSo8EXHgbJx68hROb6E8ELsrS2J6W6kg@mail.gmail.com> <5787332E.5000708@riseup.net> <CAPkfgVbkpVVxe1xzhVSPRLdGUEEFt+KknE1xdYcH-zLa0gMEkg@mail.gmail.com> <57875032.1070206@riseup.net> <CAPkfgVbLk=q1c65KffvSiWZ-Ffu4j2Mv+CiR-2m7oogU9YjpbQ@mail.gmail.com> <578A2DC1.7070603@riseup.net> <131570253.378767.1468722075564.JavaMail.yahoo@mail.yahoo.com> <578AF771.6020009@riseup.net> <CAPkfgVYsmnGPLsWmR3Lmc+U22eWziazgPjbzkyOzwJrV03vuMg@mail.gmail.com> <578CD24E.40002@riseup.net> <CAPkfgVZVZOwX4JM_hYu3f-JyvuESL1roe_ahLGgH=OvC8hAmWQ@mail.gmail.com> <e1062ae0b520c20b7f525751ab90dca5@openmailbox.org> <CAPkfgVZawqXw7viZwXU3ScD5QRUOaA4hsK0YFMryfTUohbS9LQ@mail.gmail.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 07/18/2016 07:14 PM, Jon Tullett wrote:
> On 18 July 2016 at 18:15, Spencer <spencerone@xxxxxxxxxxxxxxx>
> wrote:
>> Hi,
>> 
>>> 
>>> Jon Tullett: you just asked a user to conduct a risk analysis.
>>> 
>> 
>> Who else should do it, someone less contextualized to their
>> context?
> 
> Context matters. Mirimir was asking for what amounts to a very
> complex assessment measuring risk in monetary terms. Anyone who can
> do that reliably can get a very high paid job doing so. It's really
> not trivial.

I used money because it makes it real. Most people simply can't afford
to defend themselves. May I should find some examples.

> Absolutely individuals should conduct their own risk assessments.
> But not in those terms. For most consumers, security is not about
> money. Going to jail is about freedom and personal safety, not
> cash.

Ask someone who's been arrested ;)

> Even losing data is a balance between losing work (money) and
> personal items (sentimental value, not money).

How did losing data get into this? Maybe having computer gear
impounded? Or neglecting backups?

> Understanding your risk profile, for most people, actually has 
> relatively little to do with money

You can measure it however you like. The point is that, unless
prompted, people tend to discount risk.

> (though "losing all my money to phishing" is absolutely a risk to
> be considered).

Phishing is arguably no worse a risk for Tor users.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJXjcxQAAoJEGINZVEXwuQ+oksH/2T4O3fU0ggM4si8V7m3RJxU
84aWEnHB4qgml+MLA4zsmNbRbogJgFkDSkARS67RoT0st2naCMMI8Be/4p2Pnvfd
AEQq4w0SKYk//c9NMfZ16SUzGSi4LzgWOzhRTygNqo2B2mBQqcpOVRwTVeDLJcMu
nVlCBdySCvlcIxlp89HYeN9xGRrclV3ZiaxSYtJzDNwtFJhbD0iV5d4Yk9T4MljV
KF6lHt48+sI+FKCwM53f3o4WmFQFbOeIelhxJ6RUSMq51s9RNdAvY8uh5dvMDGPw
msvVUF6u0axfIfuP52cKaXDFKc2q8lRhUSFkklnKbnathqkdLtMDQ6K/Tbb+G8E=
=OQ72
-----END PGP SIGNATURE-----
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] FBI cracked Tor security
  - From: Nick Levinson
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jonathan Wilkes
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Spencer
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett

Prev by Author: Re: [tor-talk] FBI cracked Tor security
Next by Author: Re: [tor-talk] Tor Project Corporate Document FOI Request
Previous by thread: Re: [tor-talk] FBI cracked Tor security
Next by thread: Re: [tor-talk] FBI cracked Tor security
Index(es):
- Author
- Thread