[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #15951 [Tor]: FairPretender: Pretend as any hidden service in passive mode

Subject: Re: [tor-bugs] #15951 [Tor]: FairPretender: Pretend as any hidden service in passive mode
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 10 May 2015 00:21:09 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 09 May 2015 20:21:17 -0400
In-reply-to: <044.70dd797acf816c964fa438b75972b259@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.70dd797acf816c964fa438b75972b259@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#15951: FairPretender: Pretend as any hidden service in passive mode
------------------------+-----------------------------------------
     Reporter:  twim    |      Owner:  twim
         Type:  defect  |     Status:  new
     Priority:  major   |  Milestone:
    Component:  Tor     |    Version:
   Resolution:          |   Keywords:  tor, hs, descriptor, tor-hs
Actual Points:          |  Parent ID:
       Points:          |
------------------------+-----------------------------------------

Comment (by twim):

 Replying to [comment:5 yawning]:
 > I'm unconvinced:
 >  * At some point, the adversary will need to run their own HS to do
 anything actually harmful.
 Yes, sure. I look at this as the first stage of the attack when an
 attacker could  insensibly turn the majority of the original HS users to
 use evil an address (and descriptors). Using trawling the attacker can
 determine (approximately) the portion of users that are using this evil
 address. If it's more than e.g. 96% (too good for spoofing, just example)
 the attacker perform an "active MitM" by running the evil HS and do any
 evil thing because they are already the "legitimate HS".
 >  * An attacker can host their HS on a pwned box or something, and use 1
 hop circuits to the RP and the victim HS's RP to cut out most of the
 latency.
 I didn't think of this scenario before, thanks for the tip! Now it doesn't
 seems to be conspicuously slow.
 >  * Mitigation exists in the form of a self signed SSL cert if HS
 operators currently care about this.  The lack of a trust root is
 irrelevant, as long as the user doesn't compound "clicking on the bad"
 with "accepted a SSL cert with an incorrect DN", the adversary at that
 point has to mount a full MITM.
 I don't consider self-signed certificates here because it provides almost
 zero additional security for HSes. Anyone can create it and they should be
 stored in the browser in order to validate something (problem with Tails).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15951#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #15951 [Tor]: FairPretender: Pretend as any hidden service in passive mode
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #15976 [Tor Browser]: Cannot import DER encoded x509 certificate
Next by Author: Re: [tor-bugs] #15951 [Tor]: FairPretender: Pretend as any hidden service in passive mode
Previous by thread: Re: [tor-bugs] #15951 [Tor]: FairPretender: Pretend as any hidden service in passive mode
Next by thread: Re: [tor-bugs] #15951 [Tor]: FairPretender: Pretend as any hidden service in passive mode
Index(es):
- Author
- Thread