[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Delivery Status Notification (Delay)

To: or-talk@xxxxxxxxxxxxx
Subject: Delivery Status Notification (Delay)
From: JHWKMYXBOWMA@xxxxxxxxxxxxx
Date: Thu, 17 Jul 2008 10:00:35 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 17 Jul 2008 10:36:09 -0400
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

This is an automatically generated Delivery Status Notification.

THIS IS A WARNING MESSAGE ONLY.

YOU DO NOT NEED TO RESEND YOUR MESSAGE.

Delivery to the following recipients has been delayed.

       SKelley@xxxxxxxxxxx

Reporting-MTA: dns;mail.tecedge.net
Received-From-MTA: dns;spammotel.com
Arrival-Date: Thu, 17 Jul 2008 08:56:34 -0400

Final-Recipient: rfc822;SKelley@tecedge.net
Action: delayed
Status: 4.4.7
Will-Retry-Until: Sat, 19 Jul 2008 08:56:34 -0400
X-Display-Name: Stephen Kelley

--- Begin Message ---

To: or-talk@xxxxxxxxxxxxx

Subject: **or-talk: Re: Mixed pages - serious bug of tor

From: Anon Mus <my.green.lantern@xxxxxxxxxxxxxx>

Date: Thu, 17 Jul 2008 12:56:30 +0100

Delivered-to: or-talk-outgoing@xxxxxxxx

Delivered-to: or-talk@xxxxxxxx

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=sc71m11osWiCID7IfwF2jnFgph4sbnrBUi1EGXUObzU=; b=FJGCwcC45oMsrt78d8TVs6X1QmC0WXMyHyWYnBfMlHwRzZhCjS+BIdWJ+oIXCb3YJG Hhd1tMkC6s1N0gI04AzrMh+EIH+eT2B0g7XPzaZAmV9IaJYQRGiih9r8y5Vw/y8jkeuK gDmsOVTogtKNPAsdBqhlHsYKBWcWK1P5ny+Po=

Domainkey-signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=lE5AytzZRcruRVkXApNmKcC6++jHFDjlHOBSL9SU9wO3LBBoI76YKQn/eaZEck8O8B Qi6u12y0ONY3jFKSF9f5JgK9KvgVGUxtDKGgJozbPM4NNkW5A55kybItdPIsQ2FlCERR hfZKPAAK+zQae6X4nkgVAWWVTt5N4/BLVm/As=

In-reply-to: <bd9056300807170327v7bf7baew5e86d929270f2d72@xxxxxxxxxxxxxx>

Old-reply-to: or-talk@xxxxxxxxxxxxx

Old-return-path: <owner-or-talk@xxxxxxxxxxxxx>

Old-subject: Re: Mixed pages - serious bug of tor

References: <bd9056300807161716g314de85uf9bd45a1b8db6fc8@xxxxxxxxxxxxxx> <bd9056300807170327v7bf7baew5e86d929270f2d72@xxxxxxxxxxxxxx>

Reply-to: <re.ZUR9JXU6CW98C@xxxxxxxxxxxxx>

Sender: owner-or-talk@xxxxxxxxxxxxx

User-agent: Thunderbird 2.0.0.14 (Windows/20080421)
slush wrote:
Hi to all again,
because it looks like conference did not receive emails withattachments, Im resending my initial email about problem I found.Attachments from original email are here:
http://www.slush.cz/centrumyahoo.png
http://www.slush.cz/centrum.png
http://www.slush.cz/centrumok.png

Regards,
Marek
On Thu, Jul 17, 2008 at 2:16 AM, slush <slush@xxxxxxxxxx<mailto:slush@xxxxxxxxxx>> wrote:
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    Hi all,

    I dont have better contact (I cannot find any bugzilla for Tor), but I
    have to say, that there is serious problem in Tor (using last
    0.2.0.30 <http://0.2.0.30>
    version). It looks like buffer overflow, but I dont know, if it is
    problem of client or exit node (I dont suspect relays).

    In attachment, you can see three screenshot of the same page. On two
    of that, there are big artefacts from other pages (first of them is
    yahoo - see "Yahoo privacy policy", second is unknown - Serbia? -
    website). Because Im not using yahoo and I dont speak Serbia, these
    pages are not from my cache (latest stable Opera without any plugin).

    On third screenshot is original look&feel of centrum.cz
    <http://centrum.cz>, one of
    biggest portal in Czech Republic. It is almost impossible, that this
    is problem on their side. I hear about this Tor problem before weeks,
    but I did not believe that.

    Some IMPORTANT additional info. I found this bug when I broke my
    program using Tor, that he created very much circuits thru Tor (~ 1000
    circuits at the same time). I think it is very important for this
    description. On other case, I created them using standard Tor
    interface (extend circuit command on tor controller) and Tor did not
    say me about any problem. So it is definitely bug of tor (even if
    suspect, that 1000 circuits are not standard behaviour).

    Unfortunately, I dont know, which exit node serves me when error
    occured, so I dont know version of exit node :(

    Regards,
    slush (admin of tor relays slush and mwserver)


    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.4.6 (GNU/Linux)
    Comment: http://getfiregpg.org

    iD8DBQFIfo9Hr7KgZiv8EokRAskDAKCuYxXcd4g3beMQP4Lj/4awpXBoeQCeM7OV
    rnAkbBw/a8ssDO6U92u2qVk=
    =wVDS
    -----END PGP SIGNATURE-----
At first sight this appears to be an exit node problem but then, as I
read it, you say it occurs with more than one exit node and only at this
"higher" level of throughput.

Alarm bells are ringing ... to mix streams up like this then streams at
the "higher" throughput would have to be unencrypted clear streams - yes?

This would mean that either all tor exits are vulnerable and are mixing
the streams. Or that traffic is being passed wholesale *-unencrypted-*
between nodes (so that nodes other than the exit nodes are doing the
mixing).

Sh*ttt.. whatever.. this is a major BUG.
--- End Message ---

Prev by Author: Delivery Status Notification (Delay)
Next by Author: Delivery Status Notification (Delay)
Previous by thread: Delivery Status Notification (Delay)
Next by thread: Delivery Status Notification (Delay)
Index(es):
- Author
- Thread