[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization

To: Tor-Talk <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
From: Manfred Ackermann <yo@xxxxxxx>
Date: Wed, 30 Oct 2013 23:39:07 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 30 Oct 2013 19:41:18 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=isxgGmnCBouARTWXFEvQJRwakUuUt2Xe+Lyk3JC95Ho=; b=wSad1NHu5BHZH+0/lnbAvFk48qFZUUkqcnF21th0edwy094b2z7SqM693xZh+91ALR 0v5oJK/TW6sn1UFSKK8hEYUjA87xHtLNCNqRfGx7d6JT6SidPZbiRdi36xOI7dATkQ/O Gy6ipSa4XEolRZglGYMjobUp6aRtSuEjHruJ4116g75kYBwZ/WEb8Sz5Zq1zgNTYcnKJ Qm6L7Xm4tnjJYEDgqRCR1U2OI1Ka5B4iDLL6u4UhiI7+MUNIF8BwQPh1U7t7ljN26zYL x/aOcJIZH77bg5blByCrHl89X0j9910x6t+jm3HCpJiPcHKEwBU8kogzHdo2hUXd5TBQ 41Ng==
In-reply-to: <BLU0-SMTP133026877976E1FC67EA991D70A0@xxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CACD2FgQkUTpQh9G=wuaukEVAALnnepBAccmQyGRR9a3uHTqhfw@xxxxxxxxxxxxxx> <CACD2FgSi+GaarLq+Jfbgief_zno9UhFe3ZknQMNR6JVF81-gtQ@xxxxxxxxxxxxxx> <BLU0-SMTP133026877976E1FC67EA991D70A0@xxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi Anthony.

If the first-in-line server gets compromised then the users using this
HiddenService have to cross fingers that their privoxy or similar
anonymizer is well configured.

Because the first server-in-line is the tor node handling the public
HiddenService declaration and the Tor network as transport network imho
needs to stay transparent, there is nothing I can imagine that can be done
apart of intergration of request modification into the HiddenService
declaration so this personal informations would never leave the Tor network.

But also the actual approach should be capable of injecting a warning into
the response when personal information is found in the request.Something
like injecting a div-layer with a warning after the body tag when a
accept-language tag is found other than 'en'. Expecially when the installed
server only supports 'en' why sending anything else that changes nothing.Or
instead the response can be only a warning and no content from the
HiddenService. But this would force the users to setup a special
configuration... something I wouldn't like.

But I think the relay isn't the primary target in first place for the
authorities so risk is acceptable. And if one in the chain gets compromised
the other will know. A (manual human executed) protocol of changing the
X-OnionRelay-Auth code for example would prevent that users get through to
the server even if the proxy will forward the request.  This would be well
paranoid but still the request leaves the Tor network unfiltered and
unencrypted.

Greetings, Manfred
Am 30.10.2013 14:26 schrieb "Anthony Papillion" <anthony@xxxxxxxxxxxx>:

> On 10/29/2013 08:48 AM, Manfred Ackermann wrote:
> > Hi List.
> >
> > Sorry to push this up, just wondering if this approach is such stupid
> that
> > it's not even worth leaving a related comment to it ;-) Or is it just of
> no
> > interest?
> >
> > Any comments apriciated.
>
> Hello Manfred,
>
> Sounds like a fantastic idea. But I think I'm missing something that I'm
> hoping you can clear me up on. How does this protect the user if the
> first-in-line server is compromised? So the user connects to HS on
> computer1 which is compromised. How does your system stop them from
> being compromised instead of forwarded deeper into the network to
> computer2?
>
> Cheers,
> Anthony
>
>
> --
> Anthony Papillion
> XMPP/Jabber:      cajuntechie@xxxxxx
> OTR Fingerprint:  1515393D53BA593C19E2CD549AE59FB650F82ABC
> SIP:              17772471988@xxxxxxxxxxxxxxx
> PGP Key:          0xDC89FF2E
>
> --
> tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
> To unsubscribe or change other settings go to
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
>
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
  - From: Marcos Eugenio Kehl

References:
- Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
  - From: Manfred Ackermann
- Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
  - From: Anthony Papillion

Prev by Author: Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
Next by Author: Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
Previous by thread: Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
Next by thread: Re: [tor-talk] Tor Double HiddenService w/ Server Level Intercepting Request and Content Anonymization
Index(es):
- Author
- Thread