[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: False certificates

To: or-talk@xxxxxxxxxxxxx
Subject: Re: False certificates
From: Roger Dingledine <arma@xxxxxxx>
Date: Wed, 29 Nov 2006 10:18:34 -0500
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Wed, 29 Nov 2006 10:18:45 -0500
In-reply-to: <20061129015641.GA22480@fscked.org>
References: <N1N-Khud0I8vc5@Safe-mail.net> <20061129005229.GA30506@fscked.org> <20061129012604.GD13617@moria.seul.org> <20061129015641.GA22480@fscked.org>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mutt/1.5.9i

On Tue, Nov 28, 2006 at 07:56:41PM -0600, Mike Perry wrote:
> > Yuck. Actually, Peter Palfrader just pointed out that it's probably just
> > an iptables screw-up. "bach" is that Tor server's nickname. It looks
> > like he's redirecting all outgoing port 443 requests back into his ORPort.
> > 
> > So, yet another instance of a non-malicious attacker. :)
> 
> Heheh, I guess this goes in the "never blame conspiracy when you can
> blame incompetence" column. Damn, it's so much more exciting to find
> malicious nodes ;)

Looks like bach is all fixed now.

Thanks. Let me know if you find other misconfigured exits. One day
we'll get the automated scanning going. :)
--Roger

References:
- False certificates
  - From: force44
- Re: False certificates
  - From: Mike Perry
- Re: False certificates
  - From: Roger Dingledine
- Re: False certificates
  - From: Mike Perry

Prev by Author: Re: False certificates
Next by Author: Re: Precompiled tor binary for openwrt/dd-wrt?
Previous by thread: Re: False certificates
Next by thread: Gibraltar - tor linux gateway distribution/appliance
Index(es):
- Author
- Thread