[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8170 [Tor]: get independent from host clock time / insecure NTP

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #8170 [Tor]: get independent from host clock time / insecure NTP
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 05 May 2013 02:51:12 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 05 May 2013 04:47:00 -0400
In-reply-to: <046.f9e36db3b56ebf44e1be9b67fc0763da@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.f9e36db3b56ebf44e1be9b67fc0763da@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8170: get independent from host clock time / insecure NTP
-------------------------+--------------------------------------------------
 Reporter:  proper       |          Owner:                    
     Type:  enhancement  |         Status:  new               
 Priority:  major        |      Milestone:  Tor: 0.2.5.x-final
Component:  Tor          |        Version:                    
 Keywords:  tor-client   |         Parent:  #3059             
   Points:               |   Actualpoints:                    
-------------------------+--------------------------------------------------

Comment(by proper):

 How could this be solved? Some thoughts... (Also known as, "how Tor fixes
 the mess, if operating systems and NTP messed up".)

  * torclock is the hypothetical name of a time synchronization mechanism
 and package to be invented which fits in to the threat model of Tor.
  * Tor deb/rpm packages recommends [1] torclock.
  * torclock deb/rpm packages should conflict [2] NTP, rdate and other
 insecure similar packages.
  * torclock dep/rpm packages depend on Tor.
  * torclock uses #6894 to securely get the time.
  * Once torclock used #6894 to get the system time, it sets the system
 time.
   * I am quite sure, that this will require installation (root) on most
 systems, hence it will be difficult to use in the portable TBB package, so
 perhaps TBB has to use #6894 directly.
  * Tor waits until torclock has set the system time. (Unless told, not to
 care using torrc or control protocol.)

 Feedback?

 Better ideas?

 ,,
 Footnotes:
 [1] Recommends: This declares a strong, but not absolute, dependency. The
 Recommends field should list packages that would be found together with
 this one in all but unusual installations.
 [2] Conflicts: When one binary package declares a conflict with another
 using a Conflicts field, dpkg will refuse to allow them to be unpacked on
 the system at the same time.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8170#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #8525 [Tor bundles/installation]: ask build dependency maintainers to get HTTPS and GPG
Next by Author: Re: [tor-bugs] #8825 [TorBrowserButton]: Tor Browser Bundle leave "traces" on Mac OS X
Previous by thread: Re: [tor-bugs] #8825 [TorBrowserButton]: Tor Browser Bundle leave "traces" on Mac OS X
Next by thread: Re: [tor-bugs] #8525 [Tor bundles/installation]: ask build dependency maintainers to get HTTPS and GPG
Index(es):
- Author
- Thread