[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] [tor-relays] clockskewer attack

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] [tor-relays] clockskewer attack
From: Ted Smith <tedks@xxxxxxxxxx>
Date: Wed, 03 Oct 2012 13:21:19 -0400
Cc: Cypherpunks list <cypherpunks@xxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 03 Oct 2012 13:21:33 -0400
In-reply-to: <20121003153944.GN9750@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20121003153944.GN9750@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

From the script (pastebin link):


> #!/usr/bin/env python2.7
> #
> # clockskewer.py -- skewers http servers in onionland to an ip address
> #
> # This script takes advantage of the fact that no one
> # in onionland configures their http server correctly
> # by having it send datetime stamps in every response
> # 
> # calculates the clockskew and then finds a corrilating
> # tor relay with an open http server with the same skew
> 
So it actually assumes that the targeted hidden service is running a Tor
relay _and_ an open HTTP server.

(I've cc'd cypherpunks on this so that you don't have to keep forwarding
things around, Eugen.)


On Wed, 2012-10-03 at 17:39 +0200, Eugen Leitl wrote:
> ----- Forwarded message from Ted Smith <tedks@xxxxxxxxxx> -----
> 
> From: Ted Smith <tedks@xxxxxxxxxx>
> Date: Wed, 03 Oct 2012 11:09:00 -0400
> To: Eugen Leitl <eugen@xxxxxxxxx>
> Cc: cypherpunks@xxxxxxxxxxxx
> Subject: Re: [tor-talk] clockskewer attack
> 
> The "attack" assumes that the targeted hidden service is running a Tor
> relay.
> 
> On Wed, 2012-10-03 at 16:52 +0200, Eugen Leitl wrote:
> > ----- Forwarded message from Webmaster <webmaster@xxxxxxxxxxxxxxxx> -----
> > 
> > From: Webmaster <webmaster@xxxxxxxxxxxxxxxx>
> > Date: Wed, 03 Oct 2012 09:50:02 -0400
> > To: tor-talk@xxxxxxxxxxxxxxxxxxxx, tor-relays-request@xxxxxxxxxxxxxxxxxxxx
> > Subject: [tor-talk] clockskewer attack
> > User-Agent: Mozilla/5.0 (X11; Linux x86_64;
> > 	rv:15.0) Gecko/20120912 Thunderbird/15.0.1
> > Reply-To: tor-talk@xxxxxxxxxxxxxxxxxxxx
> > 
> > Found some interesting news on reddit.    I dont know the tech behind it, 
> > but is sounds like playing with Clock allows you to get the IP address of 
> > the hidden service
> > 
> > http://www.reddit.com/r/onions/comments/10usgv/clock_skewing_a_clever_unconventional_means_of/
> > 
> > http://pastebin.com/PfXUm3VQ
> > 
> > 
> > Is this something to be worried about?
> > _______________________________________________
> > tor-talk mailing list
> > tor-talk@xxxxxxxxxxxxxxxxxxxx
> > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
> > 
> > ----- End forwarded message -----
> 
> 
> -- 
> Sent from Ubuntu
> 
> 
> 
> ----- End forwarded message -----


-- 
Sent from Ubuntu

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] [tor-relays] clockskewer attack
  - From: Roger Dingledine

References:
- Re: [tor-talk] clockskewer attack
  - From: Eugen Leitl

Prev by Author: Re: [tor-talk] Questions on latest linux torbundle
Next by Author: Re: [tor-talk] [tor-relays] clockskewer attack
Previous by thread: Re: [tor-talk] clockskewer attack
Next by thread: Re: [tor-talk] [tor-relays] clockskewer attack
Index(es):
- Author
- Thread