[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] is it me or did tor talk get really quiet?

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] is it me or did tor talk get really quiet?
From: Jonathan Wilkes <jancsika@xxxxxxxxx>
Date: Thu, 22 Sep 2016 14:50:20 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 22 Sep 2016 10:50:37 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1474555821; bh=I9Mh7q6SAnEQMOTcwXfdsxY4hgFioqNlEjhsjUGmWKk=; h=Date:From:Reply-To:To:In-Reply-To:References:Subject:From:Subject; b=JUUXbuKBabSoIc2IPOrjpuGcrXs+GqYIGeXe0mpxsaIuQ/t3nXB27ssqmaPTMVmvH17t67rLmF3FPFnrHdiOFARRJbnAH46hKgawQO9W8VqsV4KzLVME2d3tVdXgTNNLa1v3v/tAa9NvDAzw2o7tfyob3jC31qYS8AbG1CL7AFHvtzdZBgPPnZpg677nKsPwHhWgdOd+KlCg/rIb6Ww0DhH6LSpFCfcEAhV+YeCHEwz+uVRVxOLwsrEwjOz41hftnxXBdirStmX8byVXs0scRitkWC5Sb8B46l6cBdEaXHk8d/3gA39DG+XLzrJb5GjerM5W5jSecxsSocKpOpjaSQ==
In-reply-to: <ad646c28d986e91bf384c8a4ac60ae12@cryptolab.net>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <706708825.543373.1474500875562.JavaMail.ngmail@webmail07.arcor-online.net> <ad646c28d986e91bf384c8a4ac60ae12@cryptolab.net>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

> tortalk@xxxxxxxx wrote:


>> It depends on what you want to read. If you want some scary rants
>> about Tor and 0 days you might want to read:
>> 
>> http://arstechnica.com/security/2016/09/bug-that-hit-firefox-and-tor-browsers-was-hard-to-spot-now-we-know-why/
>> "Bug that hit Firefox and Tor browsers was hard to spot now we know 
>> why"

>  His bug was interesting in a few ways.  For one, it appeared weeks 
> after he claimed to have it.  Perhaps most surprising was that senior 
> engineers needed to walk him through the problem he was interested in 
> reporting (by Erinn Atwater & Ryan Duff [2]) before he could articulate 
> it in any meaningful way.  His insistence that it was a Tor-exclusive 
> bug also cost him a bug bounty from Mozilla (their chart would appear to 
> indicate $10k+ for a bug like that).

Why should Tor users be interested in the expertise or motives of the person 
who reported this bug?
> It's also worth noting that Tor released a patch the same day the bug > was finally reported.  Rotor Browser (jmprcx/movrcx's project) hasn't 
> patched the issue [1], even though Mozilla and Tor both did.

   
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] is it me or did tor talk get really quiet?
  - From: tortalk
- Re: [tor-talk] is it me or did tor talk get really quiet?
  - From: Griffin Boyce

Prev by Author: Re: [tor-talk] Tor and Google error / CAPTCHAs.
Next by Author: [tor-talk] Running a relay for some months
Previous by thread: Re: [tor-talk] is it me or did tor talk get really quiet?
Next by thread: [tor-talk] Tor Browser 6.0.5 Released Early
Index(es):
- Author
- Thread