Re: [tor-bugs] #18361 [Tor Browser]: Issues with corporate censorship and mass surveillance

["Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>]

#18361: Issues with corporate censorship and mass surveillance
------------------------------------------+--------------------------
 Reporter:  ioerror                       |          Owner:  tbb-team
     Type:  enhancement                   |         Status:  new
 Priority:  High                          |      Milestone:
Component:  Tor Browser                   |        Version:
 Severity:  Critical                      |     Resolution:
 Keywords:  security, privacy, anonymity  |  Actual Points:
Parent ID:                                |         Points:
 Reviewer:                                |        Sponsor:  None
------------------------------------------+--------------------------

Comment (by tne):

 Replying to [comment:223 jgrahamc]:
 > I need to think about it. I don't have a ready answer to whether that
 would work. Will do some internal investigation.

 Greatly appreciated.

 > It's more a question of how you mix this stuff. Suppose you have a bad
 IP reputation for some IP, plus you look at the request and it looks it
 might be SQLi then you impede that, but if you see a request and it's
 clean then you downplay the IP reputation and let the request through.
 Equally you have a good IP and it's certain it's a known exploit, you
 block that.

 That is more nuanced. We're now on the same wavelength; thank you for your
 patience.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18361#comment:224>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs