[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] FBI cracked Tor security

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] FBI cracked Tor security
From: Mirimir <mirimir@xxxxxxxxxx>
Date: Tue, 19 Jul 2016 04:01:47 -0600
Cc: cpunks <cypherpunks@xxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 19 Jul 2016 06:02:18 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1468922511; bh=Asks7lHpOSbr/yGb63PBCR9Tz++Eqr9Uu3HQPKFHJSo=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From; b=lq4BDqsxRpQ7i2LNraWROlUxqhzsdHJnpQompkopo84WxJ9vWSunbsBJJHgFdSA+D K0nOkSx7/HVCPZA3TTjCphLwO+vBLpxhBo9izEX6id+Eh6ZDxFSZi3s5TRVaC+zIR/ LY/Z0Un6KznIxd6qtHM8bdqIj/IbZlaf987ltcEs=
In-reply-to: <CAPkfgVZbZ7_80Y0TtaBwJL0m7j8MtSydjsApv2vdC4Zd_A32dQ@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <652210562.2768097.1468453881242.JavaMail.yahoo.ref@mail.yahoo.com> <652210562.2768097.1468453881242.JavaMail.yahoo@mail.yahoo.com> <CAPkfgVYU_T9w0SJ9QsqSo8EXHgbJx68hROb6E8ELsrS2J6W6kg@mail.gmail.com> <5787332E.5000708@riseup.net> <CAPkfgVbkpVVxe1xzhVSPRLdGUEEFt+KknE1xdYcH-zLa0gMEkg@mail.gmail.com> <57875032.1070206@riseup.net> <CAPkfgVbLk=q1c65KffvSiWZ-Ffu4j2Mv+CiR-2m7oogU9YjpbQ@mail.gmail.com> <578A2DC1.7070603@riseup.net> <131570253.378767.1468722075564.JavaMail.yahoo@mail.yahoo.com> <578AF771.6020009@riseup.net> <CAPkfgVYsmnGPLsWmR3Lmc+U22eWziazgPjbzkyOzwJrV03vuMg@mail.gmail.com> <578CD24E.40002@riseup.net> <CAPkfgVZVZOwX4JM_hYu3f-JyvuESL1roe_ahLGgH=OvC8hAmWQ@mail.gmail.com> <578CE4E4.9050803@riseup.net> <CAPkfgVZty+tD1QZe630vHP3jHE+v1PE+s8EKM-ReCdSBStXvTA@mail.gmail.com> <578DC942.3080201@riseup.net> <CAPkfgVZbZ7_80Y0TtaBwJL0m7j8MtSydjsApv2vdC4Zd_A32dQ@mail.gmail.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 07/19/2016 03:50 AM, Jon Tullett wrote:
> On 19 July 2016 at 08:31, Mirimir <mirimir@xxxxxxxxxx> wrote:
>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>> 
>> On 07/18/2016 07:08 PM, Jon Tullett wrote:
>>> On 18 July 2016 at 16:17, Mirimir <mirimir@xxxxxxxxxx> wrote:
>>>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> 
>>>> A few years ago, I wrote 
>>>> <https://www.ivpn.net/privacy-guides/will-a-vpn-protect-me>.
>>> 
>>> Have you updated it to account for subverted VPN providers? 
>>> Advising people to use VPNs which may have been subject to
>>> national security letters is arguably bad.
>> 
>> Which VPNs have received NSLs?
> 
> I take it that's a no, then?

I account for it by distributing trust, just as Tor does.

> Point being, not only do we now know which operators have received 
> letters, we _can't_ know. The first rule of NSL club is you don't
> talk about NSL club. I have yet to see much evidence that warrant
> canaries help. And that's not the only risk; operators can be
> coerced, hacked, suborned, or otherwise compromised. Belgacom, for
> example.

What Tor relays have received NSLs?

> We mitigate that by layering services, but that's back to the
> question of how complex an environment suits your risk profile. Not
> everyone has the same nut; not everyone needs the same size
> hammer.

The NSA is a pretty big nutcracker ;)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iQEcBAEBAgAGBQJXjfqHAAoJEGINZVEXwuQ+jfsH/j2m+GIEfHEG/Ye1mKviqiYB
2NpeeI5W/r6Zq/Bv/xoqnid+qhwtP/4BwkukXeJ2LhXHBinDKJuKJluOzqiSOqMI
7ThceELgk0ec2eiPSDNJAfH784ShDMpwZEJIJ4I6MmuPXBJ6CJFdzau0rf/M0vGT
tm2m5SfPKh66ZvtGzvoHGsyUV0p1Hu5I3H3ID+EiBbP2uqSi/mL1OXaezT5tGamu
OxczvVFo5cl3uGCJechHXq/jlTyiNrRf6YAUocitFXwXejMHpUQrvU/TlDnZqN5u
rA9Ezxg2YFZ3NltC1Owob8oEgA8/VfWhUZ5v+w9poWG8c6WgOfB4pti5Jq6TAfo=
=W8Yj
-----END PGP SIGNATURE-----
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett

References:
- [tor-talk] FBI cracked Tor security
  - From: Nick Levinson
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jonathan Wilkes
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett
- Re: [tor-talk] FBI cracked Tor security
  - From: Mirimir
- Re: [tor-talk] FBI cracked Tor security
  - From: Jon Tullett

Prev by Author: Re: [tor-talk] Tor Project Corporate Document FOI Request
Next by Author: Re: [tor-talk] FBI cracked Tor security
Previous by thread: Re: [tor-talk] FBI cracked Tor security
Next by thread: Re: [tor-talk] FBI cracked Tor security
Index(es):
- Author
- Thread