[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Tor and DNS attacks

To: or-talk@xxxxxxxxxxxxx
Subject: Tor and DNS attacks
From: Sven Anderson <sven@xxxxxxxxxxx>
Date: Thu, 13 Nov 2008 20:37:58 +0100
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 13 Nov 2008 14:38:07 -0500
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Hi,

I just wondered if Tor might be vulnerable to DNS attacks during thebootstrapping phase? Is there a public key of a directory serverincluded in all the Tor download packages to secure the initialcontact to the directory servers?

I also want to emphasize again that everybody, but especially Tor nodeoperators, should check that he/she is not vulnerable to DNS cachepoisoning, for example by visiting this website:

http://member.dnsstuff.com/tools/vu800113.php

or by querying the TXT record of the domain porttest.dns-oarc.net witha command like 'host -t TXT porttest.dns-oarc.net'.



Sven

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Follow-Ups:
- Re: Tor and DNS attacks
  - From: John Brooks

Prev by Author: Re: Any plans to fix tor for OpenDNS?
Next by Author: No data retention in germany for donated services
Previous by thread: TypePad - Fwd: Post Confirmation 2879f420325dc7d6 [Was: Any plans to fix tor for OpenDNS?]
Next by thread: Re: Tor and DNS attacks
Index(es):
- Author
- Thread