[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor in Mexico

To: tor-talk@xxxxxxxxxxxxxxxxxxxx, tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor in Mexico
From: "Mondior Folimun" <mfolimun@xxxxxxxxxxxxx>
Date: Wed, 16 Nov 2011 01:33:30 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 15 Nov 2011 19:33:48 -0500
Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=elitemail.org; h= message-id:from:to:mime-version:content-transfer-encoding :content-type:in-reply-to:references:subject:date; s=mesmtp; bh= C4oXGxG+eF/DJJocDeTogQqrT+8=; b=TRPXL+E95hmr1PqhSy2dYsH0lXQ36UAf iBy0cRCrvcXq7mAoUvy+/n+6BzcSVJqx/phrHTxpXG4qFFdAbt47b7Hg9M0QsPJ3 UCZbd2ovSIELHUwnOhTDjpmrZauHKTbhDEE/Mc/AUsuuHIEUSO5lBIUSlxEzN/la em13UZ3wrjQ=
Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:from:to:mime-version :content-transfer-encoding:content-type:in-reply-to:references :subject:date; s=smtpout; bh=C4oXGxG+eF/DJJocDeTogQqrT+8=; b=mvk fB65RLL60qHE9qVG85Xm+JYaPjPv2bzdDx9ufzJ5cnLxAh6DJKKs9yAYTNvVAgBY b23aQJGMymzbD4VYqDfu0UegolgfjBYW5sjyIPphctiCh1zNHyj4Hm66vTSn9isL ZPM8cia/QWi6KWDZUbDCMSi0oOspCZyZprtclgXk=
In-reply-to: <4EC2FF18.8020304@xxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4EBEC965.4030306@xxxxxxxxx><1321131059.28365.140660998084217@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <4EC062CA.5080508@xxxxxxxxxxxx><1321400397.32635.140660999422945@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <4EC2FF18.8020304@xxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Wednesday, November 16, 2011 12:08 AM, "Gozu-san" <gozu@xxxxxxxxxxxx>
wrote:
> On 15/11/11 23:39, Mondior Folimun wrote:
>
> > On Monday, November 14, 2011 12:37 AM, "Gozu-san"
> > <gozu@xxxxxxxxxxxx> wrote:
> >> On 12/11/11 20:50, Mondior Folimun wrote:
> >>
> >>> To be on the safe side, someone who speaks Spanish should create a
> >>> fake email account and make sure these people know about Tor
> >>> Bridges. If the Zetas are as reckless as they seem, it might not
> >>> be too long before any Tor user who directly accesses the Tor
> >>> network from the area is in danger, regardless of what they use
> >>> Tor for. https://www.torproject.org/docs/bridges
> >>
> >> Assume that the Zetas have full admin access for all local and
> >> regional ISPs in the areas that they control.  Also assume that
> >> they know Tor very well, run relays, and routinely communicate
> >> through it.
> >>
> >> How safe would it be, in those areas, to access Tor through
> >> bridges?
> >
> > Isn't this exactly the situation for which bridges were designed?
> > For when your opponent has full control of your upstream and really
> > wants to stop you from using Tor?
>
> Arguably, the prudent threat model is that the Zetas will kill you if
> they learn that you're using Tor.  They can access available resources
> for finding bridge addresses <http://www.torproject.org/docs/bridges>.
> And they may have connection logs, so provisional obscurity isn't
> sufficient.

Prudent, yes.. But the product of probabilities of all of these events
seems low once you tack on bridge enumeration. Enumerating bridges is a
statistics game. You can only get a subset of them, which represents
your probability of finding a particular bridge user. Additionally, it
is possible to create unpublished bridges that are not available to the
public for discovery or use and share them directly with those in need.

I think that is why we're seeing random killings. If the Zetas have
these sorts of Internet surveillance capabilities, they don't seem to
always be inclined to pay the cost for their use if it is possible to
create fear without them.

I do think they may decide to change this policy, but most likely they
will find someone who is connecting to their target blogs directly and
torture or make an example out of them rather than going after Tor
bridge users. Tor bridge users will be much more expensive endeavor, and
killing a repeat blog commenter/user will have just as much if not more
effect to demonstrate their power. :/

-- 
http://www.fastmail.fm - Access your email from home and the web

_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor in Mexico
  - From: Matej Kovacic
- Re: [tor-talk] Tor in Mexico
  - From: Mondior Folimun
- Re: [tor-talk] Tor in Mexico
  - From: Gozu-san
- Re: [tor-talk] Tor in Mexico
  - From: Mondior Folimun
- Re: [tor-talk] Tor in Mexico
  - From: Gozu-san

Prev by Author: Re: [tor-talk] Tor in Mexico
Next by Author: Re: [tor-talk] Implement JSONP interface for check.torproject.org
Previous by thread: Re: [tor-talk] Tor in Mexico
Next by thread: Re: [tor-talk] Tor in Mexico
Index(es):
- Author
- Thread