[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor Blog: "Thoughts and Concerns about Operation Onymous"

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor Blog: "Thoughts and Concerns about Operation Onymous"
From: Matthew Finkel <matthew.finkel@xxxxxxxxx>
Date: Sun, 9 Nov 2014 19:50:21 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 09 Nov 2014 14:50:47 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:date:to:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=EIaa1mUYy5Uock+E94IgAh7wyJYMgBPegdpzpetQpMg=; b=mBGT3rPls7d0VoI0rouEapJjYWprG5Ocd1OVTQgFlMlFYt3bnbS+nKzh+G7zPkWAQW yXWyVQqmqqG4AFVSRom5tHXu8dJZ5XWDvkPwBIedrk/Aa/9nW78SnVYQivCBTzxxPM3X Aa6TLO52ihFGmfEw+PdkF/VW+y7NWtgwA/bigtUKgGB49//yP1TTe6zie/K3cacgqj3T TZUZ4W8q1OoD3NouXJeT8DqRFiJEmWxMNn+060u6sqBV08l5jXmStppEfY94T5jn/WCB QVwtLfoqW7NOAWh7rvbBnsb1ljhUkpoKzXhYB18zgge8ODFUgLETBWE+S04++ItFJ8Nh QEIA==
In-reply-to: <CAJVRA1SiV81+=X6U21merRjxE58L4SxR-LOb=xjY-G0EFN5U2w@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAJVRA1SiV81+=X6U21merRjxE58L4SxR-LOb=xjY-G0EFN5U2w@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.21 (2010-09-15)

On Sun, Nov 09, 2014 at 08:48:35AM -0800, coderman wrote:
> Griffin, Matt, Adam, Roger, David, George, Karen, and Jake worked on a
> wonderful write up of all the questions and concerns regarding this
> Op:
> 
> https://blog.torproject.org/blog/thoughts-and-concerns-about-operation-onymous
> 

Thanks for sending this!

For those who read this earlier, two new paragraphs were added:

Under "Attacks on the Tor network":

*Similarly, there exists the attack where the hidden service selects
the attacker's relay as its guard node. This may happen randomly or
this could occur if the hidden service selects another relay as its
guard and the attacker renders that node unusable, by a denial of
service attack[0] or similar. The hidden service will then be forced to
select a new guard. Eventually, the hidden service will select the
attacker.

And under "Advice to concerned hidden service operators"

*Another possible suggestion we can provide is manually selecting the
guard node of a hidden service. By configuring the EntryNodes option
in Tor's configuration file you can select a relay in the Tor network
you trust. Keep in mind, however, that a determined attacker will
still be able to determine this relay is your guard and all other
attacks still apply.

* Added information about guard node DoS and EntryNodes option - 2014/11/09 18:16 UTC

> 
> 
> also,
> the performance link to doc/TUNING shows it could use much help.
> currently this is minimal, focused on file descriptor limits. more
> tuning guidance is needed!

Yes please!

> 
> there is a good thread a few years past on tor-relays,
> https://lists.torproject.org/pipermail/tor-relays/2010-August/000164.html
> , which could provide instruction for additional knobs to turn for a
> solid relay or client under load.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor Blog: "Thoughts and Concerns about Operation Onymous"
  - From: coderman

Prev by Author: Re: [tor-talk] Website no longer accessible via TOR
Next by Author: Re: [tor-talk] misleading advice in Ars Technica article about patched binaries
Previous by thread: [tor-talk] Tor Blog: "Thoughts and Concerns about Operation Onymous"
Next by thread: Re: [tor-talk] Tor Blog: "Thoughts and Concerns about Operation Onymous"
Index(es):
- Author
- Thread