Re: [Full-disclosure] Compromise of Tor, anonymizing networks/utilities

On Dec 9, 2007 12:02 AM, jf <jf@xxxxxxxxxxxxxxxxxxxx> wrote:
It's really quite simple. If you or I can setup a tor node and use it to
mitm/pop people/etc, or use it and the various tracking methods previously
shown (wasnt it hd who did the js/flash callhome stuff?)

there is no "if", anyone can join the network and contribute,
including exit traffic. a proper _implementation_ and _use_ of Tor
will protect against the leakage you describe. improved scanning of
the Tor network and rapid flagging of "bad exit"s at the directories
is a work in progress and can definitely be improved upon.

HD Moore did write a tool to check for common side channels and obtain
the true IP this way:

to date, JanusVM (and most other transparent proxy impls) have
protected against these and all other known side channel attacks like
this that trick some plugin or externally launched app to reveal the
user's IP. and there are a lot of them for many different content

If you consider who has those types of resources you're basically stuck
with mega-corporations, governments, telcos and potentially some

the most significant compromise of Tor to date was pulled off by two
people and three broadband lines, actually. the biggest threats to
Tor users are implementation and usage weaknesses, not attacks on the
onion routing design or the network as a whole.

That all considered, it becomes obvious that, if you presume that its
goal was anonymity to everyone, which is dubious at best if you consider
some of its .mil background, that this is a deep design flaw. Or at least
that's my opinion.

a useful anonymity service is like a utility; it needs lots of
different types of participants and provides for a common need. in
this sense, .mil background only shows that the Navy understood this,
and for Tor to be truly useful they had to set it free.

the code is available for all, and the network has continued to grow
in size and diversity (mostly). the hardest part of anonymity for
everybody is usability and scale. Tor has significant hurdles yet to
address in this respect, but this can be hardly viewed as failure and
design flaw, more like growing pains...

Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia -

Relevant Pages

  • Tor anonymity is NOT foolproof!
    ... Tor anonymity is not foolproof. ... Tor itself warns about one vulnerability on its site: ... Such a technique wouldn't help the FBI unless they already knew enough about their suspects to plant an eavesdropper on their network, ...
  • Re: Tor problem
    ... Privoxy is a non-caching web proxy with advanced filtering capabilities for enhancing privacy, modifying web page data and HTTP headers, controlling access, and removing ads and other obnoxious Internet junk. ... Tor is free software and an open network that helps you defend against a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security known as traffic analysis. ...
  • Re: New "worst nightmare" for network admins
    ... It can defeat all filtering, monitoring, and traffic analisys ... military uses Tor in the field to communicate with the top brass in ... Just because you don't understand network ...
  • Re: The Classical Hour
    ... a new show that is coming to the lineup ought to give network ... I honor my clients requests. ... server with Tor, with can only be deciphred by the user running tor, ... and then point to the encrypted stream. ...
  • RE: Tor
    ... If you want to just be a relay, ... Really in this mode you are just a relay/router on the Tor network and you ... You might have issues if you want to be an exit node. ...