[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Exit relay seized by police

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Exit relay seized by police
From: Tim Wilson-Brown - teor <teor2345@xxxxxxxxx>
Date: Tue, 10 Nov 2015 11:50:28 +1100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 09 Nov 2015 19:50:52 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:message-id :references:to; bh=4xzH8y3HfvD2K9eW3cmGcFwrzwic9AyKcGP1ul8yt24=; b=AwGD8uzPe1Ixx4aGtf362uC2hLPOICtvSOVxqMl8VyY1XwdosXkL9NrsLl6kvVOtvz 2EEN2OU6TNPIYbuccTZP3bDAYutVRGnM7xjWD3mrDATXMUHXBmcDHFxOM+iRBa7T5BIF 3ownFhAnV/KIIpG1PXjsac086dRL6hhOwkIG6bkSYvCZ12di6J7Jto4l2tH44pd0rewT TXshPm9wEt8Flk/dcXzBMMwg88M5GuYgNh1e0KaBVYLm1u9Z/pRPR6Ewd1YVdLmREgzZ KzMKxbEx7dwEZmT/43C9qIEEsVl7nZVpkukEYoMm0HTHBp1/1tmQMzqo3d+/9rB+d6PW sgew==
In-reply-to: <56413CF3.4080809@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <6A1A7197064.00000712beatthebastards@xxxxxxxxx> <563D0B17.4010306@xxxxxxxxxxx> <563D0B74.8030001@xxxxxxxxxxx> <A42181D5-B443-4750-8657-1F14DC39CA84@xxxxxxxxx> <56413A3B.4090109@xxxxxxxxxxxxxx> <6B405BED-D4E1-4997-8E73-A07A232DBB73@xxxxxxxxx> <56413CF3.4080809@xxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

On 10 Nov 2015, at 11:40, Tim Sammut <tim@xxxxxxxxxxxxxx> wrote:

Hi Tim, sorry.

On 11/10/2015 12:33 AM, Tim Wilson-Brown - teor wrote:
On 11/06/2015 08:41 PM, Tim Wilson-Brown - teor wrote:
The directory authorities are generally more concerned when
they *don't* stop it afterwards, and instead keep running it,
perhaps with extra logging, packet dumps, and decryption via
seized private keys.

Is there a reliable way for an operator to detect this?

If the directory authorities have removed the relay from the
consensus, only they will see its fingerprint in their logs.

If they haven't, and it's running on the public network, the
fingerprint will be visible in Globe as a running relay.

I meant is it possible for a relay operator to detect if a snapshot of a
running VM or VPS has been taken? Asked slightly differently, if I have
a relay running as a VPS or VM, can I somehow detect if my provider took
a snapshot of the relay without informing me?

As far as I know, there are ways to detect some kinds of access, but I'm pretty sure there are exceptions.

Pedantically, I'm not even sure it's possible:

* to detect all memory snapshots on some physical hardware configurations.

* to detect whether you're running on a VM/VPS or dedicated machine (but most hypervisors will tell you).

However, it's worth noting that the Tor network security model relies on semi-trusted directory authorities and untrusted relays.

Occasional compromises can be tolerated while maintaining overall network security (of course, some specific users of those relays may have some specific activity disclosed, particularly if information from multiple sources is combined).

Following from that, are uninterrupted snapshots of running VMs possible
in all hypervisors or should we be using the provider's hypervisor
technology choice to inform how we decide which providers to use?

I don't know enough to answer this.

Tim

Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B

teor at blah dot im
OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- Re: [tor-relays] Exit relay seized by police
  - From: I
- Re: [tor-relays] Exit relay seized by police
  - From: Josef Stautner
- Re: [tor-relays] Exit relay seized by police
  - From: Josef Stautner
- Re: [tor-relays] Exit relay seized by police
  - From: Tim Wilson-Brown - teor
- Re: [tor-relays] Exit relay seized by police
  - From: Tim Sammut
- Re: [tor-relays] Exit relay seized by police
  - From: Tim Wilson-Brown - teor
- Re: [tor-relays] Exit relay seized by police
  - From: Tim Sammut

Prev by Author: Re: [tor-relays] Exit relay seized by police
Next by Author: Re: [tor-relays] TorFlow
Previous by thread: Re: [tor-relays] Exit relay seized by police
Next by thread: Re: [tor-relays] Exit relay seized by police
Index(es):
- Author
- Thread