[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)
From: Ringo <2600denver@xxxxxxxxx>
Date: Wed, 24 Feb 2010 00:10:07 -0500
Cc: or-talk@xxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 24 Feb 2010 00:10:58 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :x-enigmail-version:content-type:content-transfer-encoding; bh=k11PczppQgKcuu7PM6TTfxLnuChlRrec7Dawu5yJBSw=; b=jDcBrJSeFsMJ74Ep+0N5wpqulkgGeCyyakbSPH0/zpZhDGf4EUlVdg0v61cIJ2OcIx /vdo2cpork406hMzB5daSYtb6wFoqcCpjaBrpNl4E7FkZ+MCMGq3mEPPN6ktARrYzZBJ tn0oQWNsh+g9C9AUh/mHsK7tKNrCDvuRBNfus=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:x-enigmail-version:content-type :content-transfer-encoding; b=w2BuRJKb/zKrp4DxJ6VkwxYJDiMxrAoDpTESHtHtQwPJ1FjZBA63N0/UCcdK288bt5 OTH7QfG+FRwlpob/L8kZIcdazDpjNrBen/nPHgW+IMcz8QEMbPbCcRDqvS7JPV22r//J noxAnQIzDj4dDGugwqKRuIpCmmMEEgDlSO2MQ=
In-reply-to: <4B841259.2010605@xxxxxxxxx>
References: <4AA06989.6070904@xxxxxxxxx> <h7r40b$tu1$1@xxxxxxxxxxxxx> <4B820D46.8000303@xxxxxxxxx> <4B841259.2010605@xxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.23 (X11/20090817)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

One update that should be noted is that this doesn't protect against
"bad nanny" attacks. With full disk encryption, the boot partition isn't
encrypted (as you have to load it so it can ask for your passphrase and
decrypt the rest of the drive). If the machine isn't physically secured,
it's vulnerable to this type of attack.

Solidarity,
Ringo

7v5w7go9ub0o wrote:
> Good job!
> 
> IMHO this is a very nice paper; well written!
> 
> (Adjusted the title of this post a bit, in case the readers weren't
> aware your goal ....)
> 
> (FWIW, some might want to read the paper - to gain a lot of insight and
> background - and then download/test a copy of your (sanitized) .img
> file. First running of the VM would be -with- saving of any changes to
> the VM so as to create and save a unique, permanent service name;
> subsequent runs discard changes!?)
> 
> ***********************************************************************
> To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
> unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkuEtK8ACgkQETpif9i/srq2lwCfZfhJCegkIYZcCkaQMMmXqIq4
aogAn1P1WK/BooxiS7hC44gRAmp4RVxb
=AAH9
-----END PGP SIGNATURE-----
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)
  - From: 7v5w7go9ub0o

References:
- Re: Please Help Me Test my Hidden Service Pt. 2
  - From: 7v5w7go9ub0o
- Re: Please Help Me Test my Hidden Service Pt. 2
  - From: Ringo
- Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)
  - From: 7v5w7go9ub0o

Prev by Author: Javascript-free blog hosts?
Next by Author: Tor 0.2.2.8-alpha is out
Previous by thread: Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)
Next by thread: Re: Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)
Index(es):
- Author
- Thread