17.11.2013 20:29, [email protected]: > If I were going to perform a de-anonymization attack on Tor users en > masse, I would take advantage of the fact that TorBrowser and Tails > Linux* both load a page with client-side scripting enabled upon startup. > How secure is this single point of failure? >
It's about check.torproject.org Without answering any of your questions let me tell you that with the upcoming release of TBB 3.X, which should be in beta right now, the browser will no longer visit check.torproject.org The reason is that it is a single point of soemthing* *failure for sure, maybe trust as well. Regards, Sebastian G. (aka bastik_tor) -- tor-talk mailing list - [email protected] To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
