On 05.07.2013 08:41, Katya Titov wrote:
> You can't really trust the CAs, at least not from state-level
> attackers.
See: "Certified Lies - Detecting and Defeating Government Interception
Attacks against SSL" ( C. Soghoian and S. Stamm, EFF.org, 2010)
https://www.eff.org/deeplinks/2010/03/researc
On Thu, Jul 04, 2013 at 09:01:27PM +, adrelanos wrote:
> China doesn't succeed to 100%, but that's not much of a win. Look how
> many users used the Tor network before any Tor-network censorships and
> how many people figure out using bridges. The goal of preventing many
> people from gaining t
On 07/05/2013 01:41 AM, Katya Titov wrote:
>
> The certificate will be cached in the client, however if the cert is
> changed (e.g. MitMed) then the client will accept the new one as long
> as it checks out through the regular checking processes. So a MitM
> which doesn't involve coercing a CA (or
Hi,
Fabio Pietrosanti (naif) wrote (05 Jul 2013 06:06:32 GMT) :
> It would be interesting to try to build a TinyXP live-iso machine, with
> TorWall
> integrated to create a "sort of Tails based on Windows" .
Data point: Tails hasn't shipped with a transparent proxy since 0.10,
released in Januar
Karsten N.:
> On 05.07.2013 08:41, Katya Titov wrote:
>> You can't really trust the CAs, at least not from state-level
>> attackers.
>
> See: "Certified Lies - Detecting and Defeating Government Interception
> Attacks against SSL" ( C. Soghoian and S. Stamm, EFF.org, 2010)
>
> https://www.eff.or
Douglas Lucas:
> On 07/05/2013 01:41 AM, Katya Titov wrote:
>>
>> The certificate will be cached in the client, however if the cert is
>> changed (e.g. MitMed) then the client will accept the new one as
>> long as it checks out through the regular checking processes. So a
>> MitM which doesn't inv
Hello guys,
I am doing academic research on anonymity online for my final thesis and
I was wondering if you know any good literature on this topic.
There are a lot of papers dealing with this
(http://www.freehaven.net/anonbib/date.html) and also inside databases
but are there any noteworthy books?
On 05.07.2013 11:03, Katya Titov wrote:
>> Do you recommend any Firefox plugin in particular for this?
> It's quite a difficult task.
>
> I've used Certificate Patrol which alerts you if a certificate changes;
> and employs some simple checks such as automatically accepting (and
> still advising y
On Thu, Jul 04, 2013 at 09:01:27PM +, adrelanos wrote:
> Also keep in mind, that there are no Tor servers in China. When the US
> starts banning Tor, it will be almost the end of the Tor network. The
The moment they ban Tor it will be the moment the network will
start growing beyond your wild
On Wed, Jul 3, 2013 at 10:11 PM, Geoff Down wrote:
>
>
> On Wed, Jul 3, 2013, at 07:05 PM, Roger Dingledine wrote:
>> Tor 0.2.4.15-rc is the first release candidate for the Tor 0.2.4.x
>> series. It fixes a few smaller bugs, but generally appears stable.
>> Please test it and let us know whether i
05.07.2013 05:34, reqrypt:
> Hi all,
>
> I thought I'd introduce an experimental mini-project of mine: TorWall
> (Tor fireWall) - transparent Tor for Windows.
>
Thank you for your work.
I'm not a Tor official, but you should be aware of the trademark.
https://www.torproject.org/docs/trademark-
On Thu, Jul 04, 2013 at 11:39:43PM +, adrelanos wrote:
> > One can run Tor relays through VPNs with port forwarding.
>
> That just pushes the risk one step further. If Tor gets banned, VPN
> services get banned all in one go.
Great -- they should just pass a law than bans shipping software
w
Hi Katya,
thanks for looking into these solutions.
Katya Titov:
> If anyone else knows of some other good plugins or approaches then I'm
> also looking for more options.
I take you by your word.
http://web.monkeysphere.info/
https://addons.mozilla.org/en-us/firefox/addon/monkeysphere/?src=searc
On Thu, 2013-07-04 at 06:11 -0500, Anthony Papillion wrote:
>
> On 07/03/2013 07:46 PM, Ted Smith wrote:
> > On Wed, 2013-07-03 at 19:21 -0400, Griffin Boyce wrote:
> >> I don't use Tor with Gmail, because Google blocks connections nearly 100%
> >> of the time.
> >
> > A Google employee posted ho
On Fri, Jul 5, 2013, at 02:44 PM, Nick Mathewson wrote:
> On Wed, Jul 3, 2013 at 10:11 PM, Geoff Down
> wrote:
> >
> >
> > On Wed, Jul 3, 2013, at 07:05 PM, Roger Dingledine wrote:
> >> Tor 0.2.4.15-rc is the first release candidate for the Tor 0.2.4.x
> >> series. It fixes a few smaller bugs, b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
> Thanks for the explanation. For now we're in the middle of
> including the blutmagie list. But yes, switching off the entire
> system if there's evidence of recent Tor usage is an alternative
> approach we should consider.
In case you are trying t
On 07/05/2013 01:48 PM, Eugen Leitl wrote:
> On Thu, Jul 04, 2013 at 09:01:27PM +, adrelanos wrote:
>
>> Also keep in mind, that there are no Tor servers in China. When the US
>> starts banning Tor, it will be almost the end of the Tor network. The
>
> The moment they ban Tor it will be the
On Thu, Jul 4, 2013 at 8:34 PM, reqrypt wrote:
> ...
> I thought I'd introduce an experimental mini-project of mine:
> TorWall (Tor fireWall) - transparent Tor for Windows...
can you explain more about the following signer of the pre-built driver?
who maintains updates to the built driver when
On Thu, Jul 04, 2013 at 08:34:35PM -0700, reqrypt wrote:
> In a nutshell, TorWall does two things:
> 1) It (transparently) reroutes all HTTP traffic through the Tor anonymity
> network; and
> 2) It blocks all non-Tor traffic (including DNS) to and from your computer.
Neat!
Bastik pointed out the
Karsten N.:
> HTTPSEverywhere can use the SSL Observatory of EFF.org to warn you, if
> something goes wrong with the SSL certificate of a visited webserver.
> But I am not sure, if it was now proxy safe. In TorBrowser this option
> is disabled.
Thanks Karsten, I use HTTPSEverywhere but wasn't awa
adrelanos:
> Hi Katya,
>
> thanks for looking into these solutions.
>
> Katya Titov:
>> If anyone else knows of some other good plugins or approaches then
>> I'm also looking for more options.
>
> I take you by your word.
>
> http://web.monkeysphere.info/
> https://addons.mozilla.org/en-us/fir
Katya Titov:
> adrelanos:
>
>> Hi Katya,
>>
>> thanks for looking into these solutions.
>>
>> Katya Titov:
>>> If anyone else knows of some other good plugins or approaches then
>>> I'm also looking for more options.
>>
>> I take you by your word.
>>
>> http://web.monkeysphere.info/
>> https://add
Katya Titov:
> Karsten N.:
>
>> HTTPSEverywhere can use the SSL Observatory of EFF.org to warn you,
>> if something goes wrong with the SSL certificate of a visited
>> webserver. But I am not sure, if it was now proxy safe. In
>> TorBrowser this option is disabled.
>
> Thanks Karsten, I use HTTP
adrelanos:
> Katya Titov:
>> adrelanos:
>>> http://web.monkeysphere.info/
>>> https://addons.mozilla.org/en-us/firefox/addon/monkeysphere/?src=search
>>
>> Thanks adrelanos.
>>
>> Do you have any thoughts on the amount of effort involved in using
>> Monkeysphere?
>
> No. I never came to look int
> can you explain more about the following signer of the pre-built driver?
>
> who maintains updates to the built driver when security or other
> source updates are available?
The driver is my own project. Nemea just sign my pre-built binaries on my
behalf.
If you prefer it is possibl
> Bastik pointed out the trademark thing:
> But I'll take it a step farther to explain that there actually
> already *is* a Torwall in the past:
Yeah oops...In hindsight the project was mis-named.
However, this is a proof-of-concept prototype. I'll rename it if it's
worthwhile developing
Burkhard Schroeder wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>On 02-Jul-13 11:39 PM, Nathan Freitas wrote:
>
>> However, I think *someone* should start working on a lightweight
>> Tor javascript client now, just to see whether or not it is
>> possible, because I think it could hav
27 matches
Mail list logo
