-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I also saw what appeared to be a node injecting random nonsense (a lot of mojibake, in addition to what would have been active content) into retrieved pages. It sounds a lot like what you mention.
I didn't manage to figure out the particular node in question, though. On a slightly different note: I seem to remember someone broaching the idea of an exit node security scanner service for Tor, perhaps to be done as part of the Summer of Code. It'd be nice to have something looking for this kind of shenanigans... - -- F. Fox AAS, CompTIA A+/Network+/Security+ Owner of Tor node "kitsune" http://fenrisfox.livejournal.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQIVAwUBSB4+nej8TXmm2ggwAQjVqA//SZrdgHCzguLXOQG0euXhzlQZYpE2BujU DKUOsE9eZ5hZDdmxnpnPjdnf97ihApzUJYkWxWFw505R0lX4VWMyxBuDy0+JO0ik wJn95XEqrEUsDWfSmNpJKoo2jmIVFOdYztTKAiuaRRcPuWuPnnO+nR3kGKckzN/u oomh/QgUtFAFuJ8NHqlnQWK9IRVjnveETLrFDrhcoNqD3TmpMajM2DkDZSAOyoz+ qMsfgXrUKHrG/kfqYkm+7g1vtWpM2vCCmaGTqfNgCQQpifBvEvUweSrVdNCuQeI6 tHXjhlj7J/25xOBmjIHFJDgmddtjxewlzkKP57aAtgwquEzklhyy5/FeTzLNhIF9 ZGKiezsMLNXdeBsrjI3fxcxLBmJmbtW8Zwxi9tmG/JC9FjtTJCyH9EM0PYwB6mMb WWje2YYihAldkRgdjTmyZ/0KXat1T3yQmR6w5ySL+PDEP3SljxG6tiEQIE88m7eP XolCbAppVdyPt6T4mv1PlRoVX3eYms8kYD6A0nSS16Ci7QHPFjahM6kyOPDVdQZA FRrPxFVP6CO+WDnPy/SmJV6pxQHGwWIW32eI6iwiHsbEQfrFp8T3gtJ070O9euM+ dWlGFkrlKMg0goxyTikKLiv2u6VhL9H4raw1yCbu+D44q9HTigvELkmdEUdMXejY cwHh7tvDzvQ= =JUEZ -----END PGP SIGNATURE-----
