[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #4744 [Tor Bridge]: GFW probes based on Tor's SSL cipher list (was: GFW probes based on Tor's SSL cipher list (?))

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #4744 [Tor Bridge]: GFW probes based on Tor's SSL cipher list (was: GFW probes based on Tor's SSL cipher list (?))
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Wed, 08 Feb 2012 12:19:22 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 08 Feb 2012 07:19:33 -0500
In-reply-to: <043.7f6071672bc6560be46416d542ff3270@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.7f6071672bc6560be46416d542ff3270@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#4744: GFW probes based on Tor's SSL cipher list
--------------------------------+-------------------------------------------
 Reporter:  asn                 |          Owner:  nickm             
     Type:  defect              |         Status:  accepted          
 Priority:  major               |      Milestone:  Tor: 0.2.3.x-final
Component:  Tor Bridge          |        Version:                    
 Keywords:  tls fingerprinting  |         Parent:  #4185             
   Points:                      |   Actualpoints:                    
--------------------------------+-------------------------------------------

Comment(by phw):

 I can confirm that it is the cipher list, the chinese DPI boxes are
 looking for. I did some testing and was able to consistently trigger
 scanning by setting all fields in the TLS Client Hello to 0-bytes except
 the cipher list.

 Also, since the goal of the cipher list change is to render Tor
 recognition in China useless, I would suggest to adapt the cipher list to
 something which is very common in China (and, if possible, in the rest of
 the world too). According to some quick Google search, IE is much more
 used than Chrome and Firefox in China.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4744#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #4930 [Company]: bridgedb is not monitored enough by nagios?
Next by Author: Re: [tor-bugs] #5045 [Vidalia]: Vidalia cannot authenticate Tor, control socket not connected
Previous by thread: Re: [tor-bugs] #4011 [Tor Relay]: 0.2.3.3 relay won't fetch microdesc consensus on startup if it already has a normal consensus
Next by thread: Re: [tor-bugs] #4744 [Tor Bridge]: GFW probes based on Tor's SSL cipher list
Index(es):
- Author
- Thread