[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Firefox sends your uptime
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Firefox sends your uptime
- From: "Gregory Maxwell" <gmaxwell@xxxxxxxxx>
- Date: Sat, 5 Apr 2008 17:11:38 -0400
- Cc: or-talk@xxxxxxxx
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Sat, 05 Apr 2008 17:11:44 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=cq075DBWGcvR+5cccSg/A7JXvd6qB3iG82jlpPjlHKA=; b=q7Ym9kiouMfAnu6RQrP9LFfJwq0m/aC7W0kSYu8AaQJZwdNIXSdYaBZ3QBANXfZ48+O4j42s/5CGsG0K8nbb5reHMZQmevtpErsJ7hqZ8e6hydStiHz/YQG63u67UAlL3GoiCPX1wO7gdZ2dfQu9a/6KFbXSPmpvLg8ATwNAozY=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=fi5x1RmETBHy1qU4t1uVXsdjz1+fe5jc5BYnGoCADxVP90y2mTAkJ8pJXCX/hLHA4EyrYEZk1NHwc8l9OJKdnVnxUex6J/zobRno0Azy86qQZ9MUw9Pq17jsXlPI8V3mTsV4IHGHBanm+IlOhAVLVeLJexuK7Mow7Q51OwSyANk=
- In-reply-to: <47F74DF9.6060909@xxxxxxxxxxxx>
- References: <47F74DF9.6060909@xxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
On Sat, Apr 5, 2008 at 6:01 AM, .FUF <fuf@xxxxxxxxxxxx> wrote:
> Mozilla Firefox sends your computer's uptime while establishing TLS
> (SSL) connection. This could be used to correlate anonymous traffic with
> non-anonymous (e.g. LAN traffic) by correlating intercepted uptime
> values (or to search the originator of anonymous traffic by correlating
> uptime values from TCP timestamps in GNU/Linux and some other operating
> systems)
Why does TLS include this? Is it used for some kind of replay prevention?