[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.

To: Griffin Boyce <griffin@xxxxxxxxxxxxx>, tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
From: Mirimir <mirimir@xxxxxxxxxx>
Date: Wed, 10 Sep 2014 10:49:43 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 10 Sep 2014 12:50:05 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1410367787; bh=dnx4Fb6HquybH24JZfuRoSdGO6KA/zgNslhaY7+OH+Y=; h=Date:From:To:Subject:References:In-Reply-To:From; b=qhvoih22R1ANvkTmrbtqSlXhtqNDszJ9eHBrVA3B+PYNYDrEGaif9ViG9zeqP+jpd fO2fsWxvHdJmtXDc3ewsRHDP1ZWYVmhkbsGt7WTp6ZE1rjc2vIapXY35hesfj6wsZj qR1Fe7wSsYxhYd9SHb+uje/coc5F/oI/fFeJOVcQ=
In-reply-to: <d99a66e76527ecf9696bd35286fa4cc0@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4dbf80e1a3ae8b182a15ea2af6fa10dc@xxxxxxxxxxxxxxx> <20140814001854.GO8819@xxxxxxxxxxxxxx> <cd0f0f8d006df59c665f6e8cba21e16f@xxxxxxxxxxxxxxx> <540D5911.1060506@xxxxxxxxxx> <7f4a7e28fce1849455b0d162fddf059f@xxxxxxxxxxxxx> <540D685A.9080600@xxxxxxxxxx> <c31b4308564c424f53838ac19d02a2cc@xxxxxxxxxxxxx> <540FBDB9.30509@xxxxxxxxxxxxxx> <d99a66e76527ecf9696bd35286fa4cc0@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.0

On 09/09/2014 10:26 PM, Griffin Boyce wrote:

<SNIP>

> Things that are important to note for hidden service operators:
>   - Firewall rules are really useful for keeping out unwarranted scrutiny.

It's also good to have server and tor process in separate machines, or
at least in separate VMs, and to configure both machines such that the
server can't reach anything except the tor process.

>   - Don't hardcode your IP address in any links (though this is one of
> the least-likely theories).
>   - Having a pseudonym isn't a replacement for excellent security
> practices.
>   - Don't run a hidden service host.

Do you mean to say not to run one at home, work, a friend's house, etc?

>   - For best security, run your own services rather than relying on
> someone else's security.  I feel like this is often overlooked in the
> name of "easiness" but it's really important IMO. [1]
> 
> best,
> Griffin
> 
> [1] Incidentally, the hidden service documentation rewrite has been
> underway for a while now.
> [2] As Salvador Dali once said "I don't do drugs, I *am* drugs." #fact
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: blobby
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: Mirimir
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: Griffin Boyce
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: Mirimir
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: Griffin Boyce
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: Kyle Maxwell
- Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
  - From: Griffin Boyce

Prev by Author: Re: [tor-talk] What should our 31c3 talk be?
Next by Author: Re: [tor-talk] HTTP CGI and Tor Hidden Services?
Previous by thread: Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
Next by thread: Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
Index(es):
- Author
- Thread