[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor Browser disabled NoScript, but can't update

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor Browser disabled NoScript, but can't update
From: Georg Koppen <gk@xxxxxxxxxxxxxx>
Date: Tue, 07 May 2019 11:46:00 +0000
Autocrypt: addr=gk@xxxxxxxxxxxxxx; prefer-encrypt=mutual; keydata= mQINBFH3/woBEADHs/Q4t69Vm+mNMW0vH0Ms6HtjpzBsto/yyDAoLitmAxfMIeCuWuyuBdHR krdq9Rk5WQLYtP9eROGkuABK/UaxpLw8zkwkmqbxQ2wxytVwgonOmAFPXvPjzVy+ToJvKWJj tRGFoWwO9OEZ8q6xhVnwLUJXRQF01/XhBhU2RPzzUTHrgiY2bi6Ko34nSM8qAuidykqd/elI wE+kn4+TZ+yBC7pzwUfRK0bOqc05qtq5ooH7rYGpvdOkt9DuoFEjhLrBaL3UiP5J6D9W1Ltv 7Y239RGZyGr0wO5ClhuJwipnw6yWDt493cw4fOy7J1Lbo8dZyU4pnFIgt1Cu506/CvdQ53pR UHhCSIS/IyOiEL9PI/PPByG9UhwNQYk9U22h4MalPwa+4rZ1XA6mf5+T4QQRmghAnegPwyQw qnQzHc2ZPAal+Ill15AncyfIeMfuCLyA/TVWwQTQMzdcVwu3nljBfGOjOSTHOafBqsVlvgEo R9GB9OaTbriP7lCDJmBsgFFZ5F0m6us2pP72TpM0GMYCae7PHk7POhvcE5VJg03E3tjyQUQA zt5ZcpzjZtbcWIoYjxEJMq1Wzj0PYfZYFYZGq2lQx7xJ54gb+RlXEaKiXhDQH+EkrKZHBDWi atMbfkMWiknmn8O7VkuT4LOHsF1I9oJt1VTZ0dx2MVvk2hhs3QARAQABtCBHZW9yZyBLb3Bw ZW4gPGdrQHRvcnByb2plY3Qub3JnPokCOgQTAQgAJAIbAwULCQgHAwUVCgkICwUWAwIBAAIe AQIXgAUCUuzzUQIZAQAKCRCUNzqpS3wyI694D/90P74XiDzioGbNEH37W9P5G6unLUKp/zLf 5Ifosf6ijS5EvhKXpSXAqWu4eSpUh+i72Kr53SvzAIggWjUM61e92xt0bg4+VFaguMh6d9l0 MpDMfRJB+qoRNaDDyGk1VH9ZLBJOpTY59HcIIyg2LIMt1PHk+3npr0MnDfh/5fgyPvFRv9ZK WkKdwD4ImlqGXaxsES2pPk8tn21k7J4N8jzRAYM8oV9cMeeCbMgERilU2sRxNORs55zV6GiD A68lmwY6+OHjaKd0k+Oibs63PrTl1+P4EYBZTlXK9gSSWKiUydVP+2lQoyGVmuH0VpepEcnv zu06g+YU4TiH3f7t1chknGlEm1s872nyZo7Nd+zVDcIa4iklBMpeEsPDB6zRT7KBH+oCw5vK G+Ngjv3AO8hD2RTFHw8oAD8WPBbrOB2C9qSha/XSl7rjxTpqRillP+543xhQncC3b2x+Vk4C wlJdrjOvweMnM4xCEeg03WUeRz6a4Uuh6A9x4WZia+5Y5PrKG4GKPeBbskFdw6N0/10Gk1nF wpS42esKsrvqeltRLPzwFj0FEO+mole3y2f+iR8rJd/rik7AW9PM2YkhiF8kmcyh07GSjcCo qg7AkOJ87Bv2knZ0KYlukY5wBKK/DY55GTLGQ7w6kR/BzMOlKnru1e0+zvyZ4KijODEuaUi1 2bkCDQRblYJ6ARAAz+9QcEoz5GB8GoPRsVLDeAB33O3cHTiH/UGZjuiswnoaPZnJ+jt/1b3P CsAdWdFwj3oYHz5B2SxBl/GSslPBJAIzlLss3uGEq+DLqV5kzvL55dc3HTC8evNSJF6OBkqk 5r24yuJDbLVhpyB+34QfYN2vESBBf8usQrNqp3lfm0ePiHkLFBX8Y8hIdYg5pz5WzXywaz1t oGlyfDtfZuOqd0m8er4W5VmARb5PvB6TIGjSOhOTJPQV67c6cSxKsx+dCvgsZzBGVhlQ33nO 7yQKsvl+DFJ254s876AoyGQ7iQRxk/0/8mWOpdcmIqLjdmZNVX7OGmsJf4RfC7a+mUgImg5r za+A0qE13b+XwpzTBOgIhsFeqVySXCV865ZNSPqzOCTI5fNCa9RaOhswYQcrGsQUy7hiw3qU lJyDsOCuQ8AUxB8qHBQ9Eh4jSk0Pfgdk0/KHa8bshkbexQBq5zjQXFb6zSaSPPeJsJ3t1o68 shVV3DjX7msMP5tTvHPbM841OHxl2UIN/Lixw7tYDhXKOdshd3k3KuDZSv57vY2US5g437hh kYcYtz+EvP10ufJR/DM1ed4gozqQLMZcYR4DgzeB6q2f02paNSfOhEYliUmEHKV50tbIo3l7 1FiLRAeu/IHAupKpwjnud3XgFpwl38IROQLgUB0uf5bksGu10TUAEQEAAYkCPAQYAQoAJhYh BDXNdMJKmxWhnhqBoZQ3OqlLfDIjBQJblYJ6AhsMBQkB49aAAAoJEJQ3OqlLfDIj5z4QALaX P1KME/Eru5D4giAuflIzI7zQh2Hx+fOWwTL3fld8Cpkr3qpc8YD8aesL/y1Brrhj0cUHZsjq 3W7CdrjGj+bvNlycaGuBicpaODVcZDdn7wgvGJYmzkcgE5wWFRUCVrPPc+Q6LQNEVNyXyTQf qFikL7Cpt5q/vGvAyNxGOOTkK+hJXXRdwT4PrBS9ve9h+B+zf5dcd8mfRgQlQNjK/SEzVJpr qL7IS0dhIO1bTFLvMHz92M9MEiUz43PLKCtplF3gE++U6gcXMpWIZR/nf0Dx81lBMvWA4B8y eXuXjZW7oXa3sDrZ8tBTQ+UApHV/LCf9JUM8YA7eFL1O2KHGQKPURKeVvVBpkqSGBZj8kCqO XiGvlZCkzQTSRX0zr/j2uhaz3YjuflS94yYWDZ36Lc/pa24BHf+I+4ZW+kimoyi9VWmVYgBV iCDRs24S+++g+9wcRZ6TKYOvCW3mid5YFcOpwba1VZsPH6VBLT576KKg08rDTBixMTK6AAhb OeWcURa7bU5Q98wcexHbEfTxA0Bw6nplAW8IAksuaFjiScqJfJc9fSsjIbCArFoLkNgegpMJ BCWns156d8659oUmWZi01k3cwrDPQmOhvEqSDpVuAMK/ecLFUt+eZAABN/YD9MtDnEAwRE9U 3dS22OFRyBCGmZwuAQQD17UAc7YnwBGDuQINBFuVgrgBEADS9Y8DkhZWadmRRSJFr9z7UsNP 0GC3M9449dhWDq/cYkHKycK1t9cqDMd+cy59QdQBoZAFnIvMQ+bwzEamQyn5jSTkFU4ZYW/l DZXVqeyFCWFOFA9WXNj2Av5RtNZoL7zPLkVztNKxHIheKOx8w5XgFv/MDj1wVHMzQ5zLnCQv 6RbKslfAFIrzy2u2wW91yZ20Oqxjgku5jw8D1/cztkGa+g9a47E9jZSmUE+Nxo4hd7Vn09Qw K8wi86sQKwyCgrL3MugUoLIuiJuctF7MlmqkSKnGDKjgZSX9p64+bFqBUK+T9WEvY0abs6FX dsmMjp9T/N89pMmqvvBxu+XaVU//esApjI49az1jPOkh08UjlmtTN06KZhx6appub2tJZiNw NQDfBKtC572w1bXiHg0knyCRmwXubXtSs3bRiSY8WDRGkQa6nxky368tJ767KQvMD3Ck9gqd xrcBldPgN1bcFmSeNvQX7RA1arQzYuM+gdIUzborEYS6oFWygFNjwUIDiQzVrjiKodgWQIR+ 5MrNcU5Zw8edpDDPsYCO5yhPjVEpMtWXL7aAGUFSs+yXqj06HHSrK83I/BXaImpo1HRlCrIc Ktrbn3goAW9e3+VivWgElvvRs13/NZic7N+JjqaNfLKfPRS4oRkwVHD1kqZQ72iyXO6vtMCn DVJQBAcmPwARAQABiQRyBBgBCgAmFiEENc10wkqbFaGeGoGhlDc6qUt8MiMFAluVgrgCGwIF CQHj1oACQAkQlDc6qUt8MiPBdCAEGQEKAB0WIQSqGlmSKghzjSNCvAVNkqfkq3PsVAUCW5WC uAAKCRBNkqfkq3PsVPmaEADJL4Qsjt45hDStlhWrECSWcNdPws1klQybZ7mvjip3ChEr/6vX pDUrWvonUT70uUksC/1IMdIf/n4U/YYZDLznA4/mFfzD0sEhhQ+UzSsUV0su8uhexpY0D5uG ZC4YgVy8+CTAo0PHQV1VzEu7bbUJIqGQbum4rNUp3A0fuZJgcN0/m8z56uCCU+AWbtOThLu6 15LbIJiBNuE2ruA7fvedxAEyMAL0aSiRQIqV8iuIqWb2d1Aa6I1R3Ze0JYUotJNHkViSlhJH 1xpWurPjGWZMb2YGFI/sYbOdYvmnzvjEPT8EPgCzK8FhPkwzmUXY4X9UTZuzZQl04ajjkTd2 wt/+oHHDp9+4RlMv4259Tc3LC3CTiK9A0kyGs6VwS8r4L3f9t3r/Dp0gPXZYi4PEOFph98l5 +VFpaCI+BNIskgaKcrgp+VhjjtL80Xryw4euYaBc7TkijdaKzdk8Y1pn1tHKtgUiWMnoJq/6 zpwEntNFK86+PUzbuolPsloMx/BeQueEjFgAnRTWbq3hD9tu3plg2CfN0dicVzrzkchDqQqI N/mbpba+VXX6RZzbfYhcRwevmYb9eHmNFyLsjJotUK49yuhPCu7hdriWBpRT1tVI26HEB8OJ ZPZqnR/drMwOZNgnnyL+F00XvbbXEBJzgPM8mBlFJEw5/JQCnsXoJXJx2Ki9D/4jYWlXSTva Ux/gjT8noe8b24NJZcbOcNOj5UeRi1+D30uCWvTALaltnLgr4wBhkjLQ0AkszFrIaCwXMsvS rvcwCfoeOuO+4fnrHPpLT+gLShbY3TFXyOLXrpEDTKVbJ5DMAUjGynQuzPrsvJg46BZxsXRN bjC5qcazAcUsVs6zE7erX5+r4K52YWTNz9BPCDZ20BnUroyVjNfAngVQbVLvpvubjexLVg9Y HRkH8WKDMjFZU3FRww+blRQEhl0vdqYU0TNKgCWYE3RrvaS/F6/LzGTJSVr4B7eLZDqibE1r M1qjvrhqoLyIGpG2M1A0GfwmRoRlVs7ltoV8ZhnGwUSiQmKpuqhAGON9i/IWFL5ncAl9wfAW CCFprkVBqqFxgnB34bP9FtCu5sKeGf2+NbvqhQGaaY9kBIyouK7Pn3f//PXUxOm5vTXFkBV4 mZh1CU0y23/3G6SSdxr6WAIRUdrPD4HhDAKxxG275TsyGnTHYQ6shybdAWHcC5FoAohjTBPJ +8MYotKp3qoQBHQ2Z5BZrO4i/dgR44U1QdBL3CEjFRc9Evvi/bFpbQSdGY2p4Wx6zUqVj9b3 MhfambCS1hIZ3MzFFPlVbfcKFLbTp1op5aUM0s+R7fEgS1UkpRKoSmd+lxq7V3H43fPVoBiI iMVqRRL3IFUR+1BN4zqS9YSh6g==
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 07 May 2019 08:08:34 -0400
In-reply-to: <20190504134225.18a2ab65@natsu>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Openpgp: preference=signencrypt
References: <3b598220-a2fe-9229-e53f-86e48cbdaff4@gmx.com> <20190504134225.18a2ab65@natsu>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Roman Mamedov:
> On Sat, 4 May 2019 02:21:15 -0500
> Joe <joebtfsplk@xxxxxxx> wrote:
> 
>> I've used the latest stable TBB 8.0.8 (Linux) since released with the
>> latest NoScript (at that time).
>> Today is the 1st day I saw that NoScript was disabled by TBB.
>>
>> I see now that it's not a TBB only issue, but also Firefox.
>> A comment on Reddit said, "They [Mozilla] let their add-on signing
>> certificate expire and it invalidated a shitload of add-ons."
> 
> It is very surprising to see that TBB relies on Mozilla like this. Turns out

I think we should differentiate a bit here. Of course, Tor Browser
relies on that as we support installing extensions as long as they are
signed by Mozilla. It's a fair point, though, saying the extensions we
ship as essential Tor Browser extensions should be resistent to Mozilla
PKI failures or we should fall back to safer defaults or... We have some
options here which we will discuss in the near future and then we'll
implement those we deem worthwhile.

> an unrelated 3rd party can suddenly remotely disable Tor anonymity protections
> at their whim, and possibly endanger TBB users (or deliberately help in
> deanonymizing them).

I think that's not adequately describing the situation we were in.
Mozilla did not suddenly remotely disable Tor anonymity protections at
their whim. What happened was that Tor Browser users on higher security
levels got suddenly essentially the same experience as any Tor Browser
user that is using Tor Browser as we ship it. This is definitely a
serious bug, I agree. However that did not happen by pressing some
button remotely as the certificate you had *locally* in your browser
expired.

You could argue that Mozilla could just sign any exension and ship that
one as an "update" to NoScript and Tor Browser would happily install it.
Yes, this possibility exists and we will revisit that screnario (see
above). However, there are no known ways that Mozilla can induce a Tor
bypass be it remotely or by installing an extension into Tor Browser (or
by failing to monitor expiration dates of certificates) (if I am wrong
here, please let us know). I think that should be kept in mind as well
when talking about the scope of the problem at hand.

Finally, if you look at the amount of code we inherit from Firefox (way
more than 99%) then there is plenty of room where things can go wrong
(for a bunch of "wrong"s), so even if we avoid the NoScript problem in
the future (which we should), we are pretty dependent on Mozilla.

Georg

Attachment: signature.asc
Description: OpenPGP digital signature

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor Browser disabled NoScript, but can't update
  - From: Joe
- Re: [tor-talk] Tor Browser disabled NoScript, but can't update
  - From: Roman Mamedov

Prev by Author: Re: [tor-talk] Tor Browser disabled NoScript, but can't update
Next by Author: Re: [tor-talk] How Greypony fucks everyone over
Previous by thread: Re: [tor-talk] Tor Browser disabled NoScript, but can't update
Next by thread: [tor-talk] temporary fix for disabled browser extensions
Index(es):
- Author
- Thread