[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] A question about hidden services and tor in general

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] A question about hidden services and tor in general
From: DeveloperChris <developerchris@xxxxxxxxxxxx>
Date: Sat, 02 Nov 2013 21:31:25 +1030
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 02 Nov 2013 07:11:22 -0400
In-reply-to: <20131102094957.GZ31806@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <52744466.4010307@xxxxxxxxxxxx> <20131102094551.GH4792@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <20131102094957.GZ31806@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 5.1; rv:24.0) Gecko/20100101 Thunderbird/24.1.0

On 02/11/2013 8:19 PM, Roger Dingledine wrote:

On Sat, Nov 02, 2013 at 02:45:51AM -0700, Andrea Shepard wrote:

Snip

Actually, technically, the analogy would be trying to deanonymize a
client from a subverted website.

The Tor client running the hidden service picks its own three hops,
so it's

HS -> Guard -> Middle -> Middle -> Rendpoint <- Middle <- Guard <- Client

--Roger

I hate to say it that gives me no confidence at all. Only the randomlychosen guard at the HS end needs to be compromised and the whole chainbecomes worthless. A timing attack will reveal all. But there are betterways and far more reliable ways than a timing attack. Your diagram hascrystalised a thought that has been running through my head for the last day.

DC

Please keep the replies civil. I know there is one in every crowd. Don't bethat one.


--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] A question about hidden services and tor in general
  - From: grarpamp

References:
- [tor-talk] A question about hidden services and tor in general
  - From: DeveloperChris
- Re: [tor-talk] A question about hidden services and tor in general
  - From: Andrea Shepard
- Re: [tor-talk] A question about hidden services and tor in general
  - From: Roger Dingledine

Prev by Author: Re: [tor-talk] New to list and questions about exit nodes
Next by Author: Re: [tor-talk] A question about hidden services and tor in general
Previous by thread: Re: [tor-talk] A question about hidden services and tor in general
Next by thread: Re: [tor-talk] A question about hidden services and tor in general
Index(es):
- Author
- Thread