Re: The best way to run a hidden service: one or two computers?
Use the macchanger utility. Make sure you write down your original MAC first, in case you need to switch back to it later. Original is commonly available in Unixlike boot dmesg output. I'm as yet unaware of an available changer that will burn the hardware itself, as opposed to simply programming the running MAC register till next reboot. sudo ifconfig eth1 hw ether 00:00:00:00:00:00 # make this something believable Beware setting the layer2 multicast frame bit. Note also its tricky position and endianness. See some preliminary design thoughts [1] we've been having for T(A)ILS to try and find an approach that makes your network interface appear different from the one it really is, and at the same time prevents it to appear real weird (a bit like the default User-Agent used by Torbutton). Set to current Intel vendor prefix, randomize suffix, ban original MAC, 0x0, 0xf, other obviousness, etc. Full random might look like a flaky nic to various hats, mostly old ones. you'll likely need to have the interface down before changing mac: Some will bounce interface, all should gratuitous arp unless forbidden. Be careful with ipv6 emissions on ifup. however, if an attacker has access to read this locally they've already compromised Unknown here if original MAC can be read, or reset the nic for reading, via the same original boot-time routines at any given later runtime. *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: The best way to run a hidden service: one or two computers?
On Sun, Sep 26, 2010 at 09:16:12PM -0700, coderman wrote: Chrome only has a prayer as live browser instance (which it does well by the way!). This means you discourage use of Chrome for Tor-related issues, did I get that correct? -- Eugen* Leitl a href=http://leitl.org;leitl/a http://leitl.org __ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: The best way to run a hidden service: one or two computers?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 09/27/2010 05:46 AM, grarpamp wrote: Original is commonly available in Unixlike boot dmesg output. I'm as yet unaware of an available changer that will burn the hardware itself, as opposed to simply programming the running MAC register till next reboot. This used to be possible on some Sun machines, usually in the context of resetting the NVRAM for some reason (like replacing the chip). There was a how-to floating around that you could use at the OpenBoot prompt and change the MAC addresses of the network interfaces. searches http://www.squirrel.com/sun-nvram-hostid.faq.html http://www.obsolyte.com/sunFAQ/faq_nvram.html (older version) This is, however, probably not helpful to the previous poster. I don't know if this is possible if the machine in question runs EFI (but I'm curious to find out). - -- The Doctor [412/724/301/703] PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F DD89 3BD8 FF2B 807B 17C1 WWW: http://drwho.virtadpt.net/ File not found: A)bort, R)etry, M)assive heart attack? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkygxkoACgkQO9j/K4B7F8GRAQCglVQUlzDMJuv30bb8Agj5odWy iC8AoOYnGlAVC78y3dmpRQ+JiV0GXaaT =KFdc -END PGP SIGNATURE- *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/