[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Wed, 18 Jan 2012 09:25:28 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 18 Jan 2012 09:25:44 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=+bIEM5itSXNhmgsdNCRCycS+0uMkNvm1oUbr9Vz7NhA=; b=AbXXdZB+CzuOiqavdvBCPccl8iGeDANZw9qTu/yXOek46sxQSeX3R7itjaEuGyUFP4 Y/YUFRz3tzmMJ6fhSUHI1kiLVyUOyRKeA37lWNkqeXGKS4b/Sgj51GsTiOVfXWbNB/27 w2xti+aQq+MNr7FF4Hy973JEikLaLRFPkK7OA=
In-reply-to: <CABqy+sq2mSZmPqxgh8qJ38EEMK-THedcPvYb0LNUfZVDYYoaAQ@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for discussion by the developers of Tor." <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <87obwrg56f.fsf@xxxxxxxxxx> <CABqy+sqqToj+QdAsmNeJ_SSy0hTpF1aaBMTmT175b1z7gfbW2w@xxxxxxxxxxxxxx> <CABqy+srpd-kfMT1R3fqRCtc+gKGKcFgkOf3o=MgbJpA24WrOog@xxxxxxxxxxxxxx> <8739e0d6jo.fsf@xxxxxxxxxx> <CAKDKvux0HgK+LezBPO8jQkq=4JkhXgKh_BG_UqrTfF4t6gXW3g@xxxxxxxxxxxxxx> <CABqy+sq2mSZmPqxgh8qJ38EEMK-THedcPvYb0LNUfZVDYYoaAQ@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

On Tue, Jan 17, 2012 at 1:28 PM, Robert Ransom <rransom.8774@xxxxxxxxx> wrote:

> With that hack on top of the v3 protocol, any client able to detect
> that a bridge is not being MITMed can impersonate the bridge through
> the TLS handshake, until after the (honest, victim) client speaks the
> Tor protocol at the fake bridge.

Seems mostly harmless; the only point of a shared secret there is to
keep scanning from working.  Anybody who tries the above attack
already know that the bridge is there; all they learn is that the
client knew too, which they probably could have figured out as an
eavesdropper.

-- 
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
  - From: Robert Ransom

References:
- Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
  - From: Nick Mathewson
- Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
  - From: Robert Ransom

Prev by Author: Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
Next by Author: Re: [tor-dev] Tor and DNS
Previous by thread: Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
Next by thread: Re: [tor-dev] Proposal 190: Password-based Bridge Client Authorization
Index(es):
- Author
- Thread