[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)
From: Blibbet <blibbet@xxxxxxxxx>
Date: Fri, 26 Jul 2013 18:33:21 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 26 Jul 2013 21:31:04 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:x-priority :references:in-reply-to:content-type:content-transfer-encoding; bh=SealqYDpqfkiFGTdluwozsfhkIf9/VfKEqEu3avFZIE=; b=EcJ/3BQlgzTFVyZLGbLt9zKIYG0kDnnz4AVopICBpwuUYu+dnKblpdwiUmpN2S9rEh Ru9ODs/X+1ZRapgkWZzJtC7YluvnaMnA3Rybxobcz+rYZt3IUdwYWrBdiyMY4o/8FpKs OKnH4SkTZT1bOkDoxwUU3xvYLx4E7NGSbt8HcMSWPsLOS6aZjOvZ9oQ5LJf7irMJGms7 kZhsWmSNG79HKg3Ias4DXXmlXFE81Q8g6lgOACwwxmIdgobI8bhT/UsHqGe7MhV+98YX GkhNrKmdtNf9iPrWkSsP0z5IkZcwIRxZXik2nhdeNdkc91VdyZYok+zNqx3t5DGguPXg 4Y1A==
In-reply-to: <51F2FD07.5000903@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20130721064834.222800@xxxxxxx> <BAY172-W4509C3B7F6101628C3E446C4690@xxxxxxx> <51F2841A.2020405@xxxxxxxxxxxxxx> <51F2FD07.5000903@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.5; rv:16.0) Gecko/20121005 Thunderbird/16.0

>>> "Could a printer or another software that I have check for updates or
>>> something like that and reveal information about me or my machine?"
[...]

Modern versions of Windows uses the Windows Update mechanism, behind thescenes, to update a systems' root certs. In the middle of browsing withInternet Explorer, Windows Update is used, and your certs are updated.Older versions of Windows did not do this. I've heard there are ways todisable this behavior, but not sure how. Pretty scary, especiallyconsidering how attackers could misuse this feature.

.NET Framework is a Microsoft-based middleware technology from about adecade ago, now well-baked into the Windows OS, and Internet Explorer.Amongst the code protection features of .NET Frameworks's code signingis background CRL lookups to determine if the software being run isvalid. Last time I looked, you cannot disable this behavior, only askfor lazy initial checks for ASP.NET web apps (so as not to impactperformance benchmarks of ASP.NET apps).

I expect there's half a dozen other new ways Windows "phones home"during normal usage. Reasons to not rely on any Windows-based privacyonline, and instead use Linux or natively boot TAILS when wanting to useTor.

--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsusbscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)
  - From: Achter Lieber
- Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)
  - From: Marcos Eugenio Kehl
- Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)
  - From: Sebastian G. <bastik.tor>
- Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)
  - From: krishna e bera

Prev by Author: Re: [tor-talk] TorWall - experimental transparent Tor proxy for Windows
Next by Author: Re: [tor-talk] Tor2web meeting at OHM2013
Previous by thread: Re: [tor-talk] Will Tor affect Internet Explorer? (newbie question)
Next by thread: [tor-talk] [Question] How to use chutney to test private network for TOR
Index(es):
- Author
- Thread