[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #16824 [Tor]: coexistence of client and relay processing on same thread poses traffic confirmation risk

Subject: Re: [tor-bugs] #16824 [Tor]: coexistence of client and relay processing on same thread poses traffic confirmation risk
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 01 Sep 2015 01:19:23 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 31 Aug 2015 21:19:32 -0400
In-reply-to: <049.f1db087795313ea44093f1905eb71396@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.f1db087795313ea44093f1905eb71396@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16824: coexistence of client and relay processing on same thread poses traffic
confirmation risk
---------------------------+--------------------------------
     Reporter:  starlight  |      Owner:
         Type:  defect     |     Status:  new
     Priority:  normal     |  Milestone:  Tor: 0.2.7.x-final
    Component:  Tor        |    Version:  Tor: 0.2.6.10
   Resolution:             |   Keywords:  PostFreeze027
Actual Points:             |  Parent ID:
       Points:             |
---------------------------+--------------------------------

Comment (by mikeperry):

 While serious, the side channel in #16585 doesn't fully differentiate all
 client and relay traffic. It only lets you know that a client circuit
 setup is happening, not if or when an existing circuit is being used for
 client traffic. As far as I can tell, it also doesn't directly disclose
 the volume of client traffic relative to relay traffic, either. Nor does
 it expose when client circuits are actually closed.

 This means that significantly less information is available to an
 adversary who is monitoring a relay (that is also used as a client) than
 is available to an adversary who is watching a machine that has a separate
 relay tor instance and a client tor instance, even with the side channel.

 I do believe that #16585 is serious and should be fixed, especially since
 it seems like it could also be a vector for other side channels as well,
 and potentially even in client-only scenarios. However, shouting
 confusing, nuanced, and/or partially correct information at users in our
 loglines isn't the right stopgap in the meantime, IMO.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16824#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #16824 [Tor]: coexistence of client and relay processing on same thread poses traffic confirmation risk
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.
Next by Author: Re: [tor-bugs] #16824 [Tor]: coexistence of client and relay processing on same thread poses traffic confirmation risk
Previous by thread: Re: [tor-bugs] #16824 [Tor]: coexistence of client and relay processing on same thread poses traffic confirmation risk
Next by thread: Re: [tor-bugs] #16824 [Tor]: coexistence of client and relay processing on same thread poses traffic confirmation risk
Index(es):
- Author
- Thread