[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Use of TBB behind a physically isolated Tor router?

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] Use of TBB behind a physically isolated Tor router?
From: Lolint <lolint@xxxxxxxxxxxxxx>
Date: Mon, 22 May 2017 05:27:23 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 22 May 2017 05:27:45 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1495445244; bh=NWeK4GkqdpxVTwraGPOqNMbgUxsbeqTbWnLBoOAuvvc=; h=To:From:Reply-To:Subject:In-Reply-To:References:Feedback-ID:From; b=mahrsQOBir16y37yrGYkgkn0DNVmOC4GzsnDzY0XVQU8V8sI2oTA4uJtd3w0Fhto2 /hEPb7GtnNjyoA4cr0FI5MyjohznUEy/s2jJijxqQIexvsTsDXidgqdaFOTbQpEAWS AC/S+K8yGvogGavxFlBiYdIVB1rBhY4hi6+VGpVc=
Feedback-id: 6F9pVqg-lsRd1_Tra4UtVlP6itDrE1T-kH-UBH0bKHs5InB8Glsn5wTuB1pnF2MXRBemXwjs7ZPqA6AHmD--EQ==:Ext:ProtonMail
In-reply-to: <71cba250-1143-d439-0b80-59a20ee102ab@cannon-ciota.info>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <76e97272-e6b4-153b-1f68-056b87702211@cannon-ciota.info> <20170521220102.GZ14369@moria.seul.org> <71cba250-1143-d439-0b80-59a20ee102ab@cannon-ciota.info>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

> Even with software isolation though I am beginning to think that hardware isolation
when implemented properly is more secure than software isolation, with all the Xen
bugs recently.

The Qubes OS team are going to ditch paravirtualization for hardware-based virtualization
since all the fatal Xen bugs that affected Qubes have been in mechanisms for handling
memory virtualization for paravirtualized (PV) VMs.

> Is there any comments on the way Whonix gateway and TBB work together?

In the Whonix workstation they use this package to prevent Tor over Tor with the TBB,

https://github.com/Whonix/anon-ws-disable-stacked-tor

Its implementation is well documented here,

https://www.whonix.org/wiki/Dev/anon-ws-disable-stacked-tor#Why.3F
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Use of TBB behind a physically isolated Tor router?
  - From: CANNON
- Re: [tor-talk] Use of TBB behind a physically isolated Tor router?
  - From: Roger Dingledine
- Re: [tor-talk] Use of TBB behind a physically isolated Tor router?
  - From: CANNON

Prev by Author: [tor-talk] Alec Muffet "Tor is a very attractive proposition for secure networking"
Next by Author: Re: [tor-talk] Other Metrics events
Previous by thread: Re: [tor-talk] Use of TBB behind a physically isolated Tor router?
Next by thread: [tor-talk] atlas.torproject.org problems
Index(es):
- Author
- Thread