[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Bad exit?
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Bad exit?
- From: "F. Fox" <kitsune.or@xxxxxxxxx>
- Date: Sun, 04 May 2008 15:54:22 -0700
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Sun, 04 May 2008 18:54:35 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; bh=CZ+S7M9uhoKCtywnqbbtnsN+9gc/TFlY1WMSJlI3sAo=; b=b99JX87QQvTCYlSPCJBX/nMGYsiIHzfP4Iy2e3nqga6wdaltt0JSJqtDn9nVwtnC1AhsIb7Vl1qAkJQc+Np5Y9Pyoka3+y2wkAwu53EcB5Ipyx/agsoDBzB0bfqB8CwfTKq8icLlArKHsGCQw6TUDg4vxN4tXRRoS/2MA4MLMxI=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=QsumdH9/seWGvmFiVjpOVtQPaSOgTERn9G4HdVsFi1eNuwm/c+6gFryA8XwXq+ni04siPmGUGnMqZ7ckS4sBldrEUSHRpLZiFv4wtM9xmFcREBO+g+52dVQiSlC6+/sYrI1LiMKTU3sbQOho5gYhZEvIy9per+A1U45LfdQ/6t8=
- In-reply-to: <481CAB9F.50108@xxxxxxxxxxxxxxx>
- References: <481CAB9F.50108@xxxxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Mozilla-Thunderbird 2.0.0.12 (X11/20080420)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
I also saw what appeared to be a node injecting random nonsense (a lot
of mojibake, in addition to what would have been active content) into
retrieved pages. It sounds a lot like what you mention.
I didn't manage to figure out the particular node in question, though.
On a slightly different note: I seem to remember someone broaching the
idea of an exit node security scanner service for Tor, perhaps to be
done as part of the Summer of Code. It'd be nice to have something
looking for this kind of shenanigans...
- --
F. Fox
AAS, CompTIA A+/Network+/Security+
Owner of Tor node "kitsune"
http://fenrisfox.livejournal.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org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=JUEZ
-----END PGP SIGNATURE-----