[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: "Practical onion hacking: finding the real address of Tor clients"

Thus spake Jacob Appelbaum (jacob@xxxxxxxxxxxxx):

> Hi *,
> Fortconsult wrote this and it may be of some interest to people on this
> list:
> http://www.packetstormsecurity.org/0610-advisories/Practical_Onion_Hacking.pdf

Wow. I think the most telling statement is that most of the people
they got were from China. Probably unfortunate side effect of most of
the Tor docs being in English..

Incidently, I tried out TorPark the other day, and I must say it is
pretty magnificent. Having a well-configured browser like that for Tor
usage solves nearly every one of these problems. 

Would be nice if NoScript defaulted to All-Off instead of All-On, and
they used AdBlock Plus with some feeds instead of just AdBlock, but
otherwise excellent for casual "only sometimes" Tor users who are
likely to be tripped up by this sort of stuff.

Mike Perry
Mad Computer Scientist
fscked.org evil labs