[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Sat, 29 Jun 2013 17:58:11 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 29 Jun 2013 17:58:24 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=hKfaB7rhKIHiuEL6APFbfju0xrHCZPpVTnIjGJUmNMY=; b=SBfEgBjQu4NbH9J45ueJJFZkgRWUZYgtMx2OdSVk1UZTIQFJl09gMllOLClPqE9iwp KYkAUutNCgJATF/iDc/ik29DtZmDUdaxTmqg+vAMg+9QGQjspYAt7jh5LnZAq+LCRhCy dwr0Mn4OxBvFfP8j8ePCgP9Tk8cHMGngl5DZepnMwYSkb9Lz1hWTRD/7HPuz1tgM6Olb 58JsSlq881P8mAIaBns702cT/pxdx1yaxIe/ohf4MTOMkagP27URJXNV8/yf7rtq4qL8 HCeGJFQ17GBz6f/HkFI/HcAdl6IgaUwi9uLDrL1D2fLlcM+E9XGbWXtXmh4B/Juq1kDx iXBw==
In-reply-to: <CAKDKvuyQBy6w6ALoQtkF9-vMhemWToLV_a2WkHZCF8=G8UXDRg@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20130629204351.GG4143@xxxxxxxxxxxxxxxxxxxxxx> <CAKDKvuyQBy6w6ALoQtkF9-vMhemWToLV_a2WkHZCF8=G8UXDRg@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Sat, Jun 29, 2013 at 5:53 PM, Nick Mathewson <nickm@xxxxxxxxxxxx> wrote:
> On Sat, Jun 29, 2013 at 4:43 PM, Cool Hand Luke
> <coolhandluke@xxxxxxxxxxxxxxxx> wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA512
>>
>> the below text was posted to pastebin.com (see original e-mail to the
>> full-disclosure list at the end of this message).
>>
>>
>> - ----- BEGIN PASTEBIN -----
>> Tor LOL:
>>
>> directory authorities are the point of contact for clients to locate
>> relays/exit nodes/guard nodes/etc. This is determined by a consensus
>> document that goes through an elaborate process to ensure its integrity
>> and cause bad directory authorities to be identified also via consensus.
>>
>> However, Tor developers are not the quickest lot, and this is basically
>> the only document that they serve that has integrity control on it. Most
>> interestingly, the public keys for every other node in the network is
>> served without any form of signature or other form of integrity control.
>>
>> As such, a rogue directory authority, which anyone can be simply with a
>> configuration option and an IP, can introduce path bias and other such
>> tricks by serving the wrong keys for relays/guards/exits that it doesnt
>> control. This can result in essentially directing clients through the
>> network by causing decryption failures, thereby allowing determination
>> of the source and end-point of a given tor connection with little more
>> than a couple relays and some rogue directory authorities. Moreover, it
>> can use the simple-minded metrics made to identify rogue guard nodes and
>> couple that together with the behavior of public key cryptography to
>> actually cause legitimate guard nodes to be flagged as having excessive
>> extend cell failures causing it ultimately to be marked as bad.
>
> I think this guy is confused.  I tried to tell him as much when he
> twittered at me last night; you can see more or less the full record
> if you look at the @nickm_tors from last night.

If you think he's actually got a point and you don't want to navigate
twitter's horrible search to find it , he started out tweeting as:
https://twitter.com/ewrwerwtretetet
then as https://twitter.com/ewrwerertertert
and then as https://twitter.com/ewrwerewrterter
and then as https://twitter.com/ewrwerewrterter
and finally as https://twitter.com/erertoiokoioiul

Like I said, I'm pretty sure that the stuff he's describing is simply
wrong.  Please feel free to check my work on this one though.

best wishes,
-- 
Nick
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
  - From: Cool Hand Luke
- Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
  - From: Nick Mathewson

Prev by Author: Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
Next by Author: Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
Previous by thread: Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
Next by thread: Re: [tor-talk] Fwd: [Full-disclosure] tor vulnerabilities?
Index(es):
- Author
- Thread