[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: TCP stack attack?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: TCP stack attack?
From: Robert Ransom <rransom.8774@xxxxxxxxx>
Date: Sat, 23 Oct 2010 17:59:47 -0700
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sat, 23 Oct 2010 20:57:11 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:subject :message-id:in-reply-to:references:x-mailer:mime-version :content-type; bh=zFuzAafHHUjlNBP0SFfsGfNV7DifFtGSJPX9nozgN6E=; b=pRFNWliNiJxrxEx6H9TIPXH6UeaIlNYgbAaFSCb1rAbpT5e/jSlpSYJQRwOP3cknyt 4EyZ1EuWoCCTqxcHgPkGC/DtzzZc+ZeDn0vkjSuLHQRMsSLcHkFGe7cfuuWlu0jveNQh Vo6E5JfA89dtJyVs8MPQ90rGrAPjNgmTxPkBc=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:subject:message-id:in-reply-to:references:x-mailer :mime-version:content-type; b=Z1gEHYmyeCxACXbrSZ37tRWb9UN/oqSSr+9iyibpkQRsK7BIfco7DhGm+hQsUTZeZZ hbV5dUnxUa3s9qyWNEs7LsqEddu/PYzGzaJw21wRbV+0W1XfeY6eVCKAMBFr2PpC5SVF CVd1pJ0tgmm6iXFSLkHipqAL1eBI9xjLrAPa0=
In-reply-to: <AANLkTim-piP6j4TPO9f4K5rzNFg0sh3LZQE0Ef7TzbA9@xxxxxxxxxxxxxx>
References: <AANLkTim-piP6j4TPO9f4K5rzNFg0sh3LZQE0Ef7TzbA9@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On Sat, 23 Oct 2010 12:42:11 -0700
Julie C <julie@xxxxxxx> wrote:

> Has anyone come across any TCP stack implementation vulnerability research?
> I am interested in reading about what has been tried, and what has not been
> tried as yet. At this point in my education it strikes me that the TCP stack
> on any Tor node could be altered to do malicious things, and no one would
> ever know, or be able to know.

Roughly every attack that can be performed in a Tor node's TCP stack
can also be performed by anyone that can stick his own hardware between
the Tor node and the Internet.  There are some attacks that can be
performed there, but an attacker who can modify a Tor node's kernel
would be able to do more damage by reconfiguring or modifying Tor
itself.

Robert Ransom

Attachment: signature.asc
Description: PGP signature

Follow-Ups:
- Re: TCP stack attack?
  - From: coderman

References:
- TCP stack attack?
  - From: Julie C

Prev by Author: Re: Where does Tor get its relay lists from?
Next by Author: Re: Question about torbrowser for mac
Previous by thread: TCP stack attack?
Next by thread: Re: TCP stack attack?
Index(es):
- Author
- Thread