Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.3.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530, 042-deferred-20190918   |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by asn):

 Closing this ticket since it's no longer useful. More discussion in #31223
 and mailing list.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:  closed
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.3.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:  fixed
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530, 042-deferred-20190918   |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-
Changes (by asn):

 * status:  needs_information => closed
 * resolution:   => fixed


--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.3.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530, 042-deferred-20190918   |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by paramond):

 Replying to [comment:64 pidgin]:
 > it's a beautiful sunny day today.

 Pulled down without any notice, that's uncharacteristic.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.2.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by HelpDOS):

 Replying to [comment:62 asn]:
 > A plausible plan forward: https://lists.torproject.org/pipermail/tor-
 dev/2019-May/013849.html

 Any further developments or recent discussions you could link to? My
 hidden service has been unavailable due to this since February, glad a
 resolution is being worked on and some of the CPU fixes helped a little
 but I'm out of the loop as to where you are with the rate limiting and
 PoW, more interest in the PoW since I don't think the rate limiting will
 assist with availability at all.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.2.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by pidgin):

 it's a beautiful sunny day today.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.2.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by rckthe):

 Replying to [comment:58 pidgin]:
 > Any updates on this problem ??

 Please confirm sam-*-*- discussed by WC is official?

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.2.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm, |
  041-deferred-20190530  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by asn):

 A plausible plan forward: https://lists.torproject.org/pipermail/tor-
 dev/2019-May/013849.html

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.1.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by dgoulet):

 Replying to [comment:58 pidgin]:
 > Any updates on this problem ??

 Unfortunately not that much that could help stop this problem at once. To
 summarize:

 1. We've identified the cause of the DoS and defense vectors.
 2. Out of this investigation, a series of bugs were also found including
 reducing CPU load on path selection (#30291).
 3. We decided to focus on one important defense which will be done through
 #15516. It primarily focus on defending the network by soaking huge amount
 of introduction at the intro point so the service doesn't get bombarded.
 Should help with availability (service will not be overloaded) but not
 reachability (intro point could drop legit requests).

 Our primary goal for now is to protect the network and try as much as
 possible to avoid too much pressure on it like the last massive HS DoS
 back in the early months of 2018.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.1.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by pidgin):

 Any updates on this problem ??

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.1.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2, security, 041-longterm  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by nickm):

 Closed #30620 as a duplicate of this, but possibly a useful one: it has
 debug logs.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.1.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by HelpDOS):

 Replying to [comment:52 dgoulet]:
 > Status update:
 >
 > asn and I have setup an environment to reproduce this `INTRODUCE2` DDoS
 for which we were successful at reproducing the max CPU utilization on the
 service. However, we haven't figured out just yet how can the service
 still receives `INTRODUCE2` cells 30+ minutes after the circuit has been
 closed (found from the logs given in private).
 >
 > Ticket #30291 has been opened regarding a reason of the high CPU usage.
 And nickm already worked on improvements so we expect these upstream soon.
 >
 > We'll be working on the DoS master ticket #2, especially #15516 and
 #26294 in the coming weeks. Improvements will be coming to master
 incrementally thus expect more updates about the situation as we progress
 in this work.

 Hi, any further updates? Great to see progress is being made, it is really
 appreciated!

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.1.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by dgoulet):

 tor-dev@ discussions on possible defenses:
 https://lists.torproject.org/pipermail/tor-dev/2019-April/013790.html

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
-+-
 Reporter:  pidgin   |  Owner:  pidgin
 Type:  defect   | Status:
 |  needs_information
 Priority:  Immediate|  Milestone:  Tor:
 |  0.4.1.x-final
Component:  Core Tor/Tor |Version:
 Severity:  Normal   | Resolution:
 Keywords:  tor-hs, tor-dos, network-team-   |  Actual Points:
  roadmap-2019-Q1Q2  |
Parent ID:  #2   | Points:  10
 Reviewer:   |Sponsor:
 |  Sponsor27-must
-+-

Comment (by dgoulet):

 Status update:

 asn and I have setup an environment to reproduce this `INTRODUCE2` DDoS
 for which we were successful at reproducing the max CPU utilization on the
 service. However, we haven't figured out just yet how can the service
 still receives `INTRODUCE2` cells 30+ minutes after the circuit has been
 closed (found from the logs given in private).

 Ticket #30291 has been opened regarding a reason of the high CPU usage.
 And nickm already worked on improvements so we expect these upstream soon.

 We'll be working on the DoS master ticket #2, especially #15516 and
 #26294 in the coming weeks. Improvements will be coming to master
 incrementally thus expect more updates about the situation as we progress
 in this work.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  #2  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-must
+
Changes (by asn):

 * parent:   => #2


--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-must
+
Changes (by asn):

 * sponsor:  Sponsor27-can => Sponsor27-must


--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+

Comment (by asn):

 HelpDOS I don't know what 'librarytask' is. Also, feel free to send us any
 additional information over email. My email is `a...@torproject.org` or use
 tor-secur...@lists.torproject.org .

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+

Comment (by HelpDOS):

 Replying to [comment:44 pidgin]:
 > Problem is still not solved, still the same error.
 > I have provided everything i could to you guys i have no clue what to do
 else.

 Via "librarytask"

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+

Comment (by HelpDOS):

 Replying to [comment:44 pidgin]:
 > Problem is still not solved, still the same error.
 > I have provided everything i could to you guys i have no clue what to do
 else.

 I found a complete solution but it needs more work to be reliable enough.
 Get in touch with me via your onion.

 Will provide the solution here also but it is a novel method of
 identifying offending connections so they can then be dropped, which would
 likely not be implemented into core tor.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+

Comment (by asn):

 Replying to [comment:44 pidgin]:
 > Problem is still not solved, still the same error.
 > I have provided everything i could to you guys i have no clue what to do
 else.

 Hello. No one has provided the logs asked in comment:39 yet.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+

Comment (by pidgin):

 Problem is still not solved, still the same error.
 I have provided everything i could to you guys i have no clue what to do
 else.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  needs_information
 Priority:  Immediate   |  Milestone:  Tor: 0.4.1.x-final
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+
Changes (by nickm):

 * status:  accepted => needs_information
 * milestone:   => Tor: 0.4.1.x-final


Comment:

 Possible for 0.4.1 if we get the correct insights here, though it isn't
 guaranteed :/

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
+---
 Reporter:  pidgin  |  Owner:  pidgin
 Type:  defect  | Status:  accepted
 Priority:  Immediate   |  Milestone:
Component:  Core Tor/Tor|Version:
 Severity:  Normal  | Resolution:
 Keywords:  tor-hs tor-dos  |  Actual Points:
Parent ID:  | Points:  10
 Reviewer:  |Sponsor:  Sponsor27-can
+---
Changes (by asn):

 * keywords:   => tor-hs tor-dos


--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:  10
 Reviewer:|Sponsor:  Sponsor27-can
--+---
Changes (by asn):

 * points:   => 10


Comment:

 Any news on the logs here?

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:  Sponsor27-can
--+---

Comment (by cypherpunks):

 Have you tried contacting the writer of hackerfactor? He had many good
 posts about handling attacks against onion services:

 https://www.hackerfactor.com/blog/index.php?/archives/762-Attacked-Over-
 Tor.html
 https://www.hackerfactor.com/blog/index.php?/archives/763-The-Continuing-
 Tor-Attack.html
 https://www.hackerfactor.com/blog/index.php?/archives/777-Stopping-Tor-
 Attacks.html
 https://www.hackerfactor.com/blog/index.php?/archives/779-Behind-the-Tor-
 Attacks.html
 https://www.hackerfactor.com/blog/index.php?/archives/789-Cyber-Goat.html
 https://www.hackerfactor.com/blog/index.php?/archives/791-Tor-Attacks-
 Revisited.html
 https://www.hackerfactor.com/blog/index.php?/archives/804-A-New-Tor-
 Attack.html

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:  Sponsor27-can
--+---

Comment (by asn):

 Replying to [comment:38 HelpDOS]:
 > Replying to [comment:37 asn]:
 > > Replying to [comment:36 HelpDOS]:
 > > > Replying to [comment:35 asn]:
 > > > > Closed #29919 as a duplicate for this one. More info over there.
 > > >
 > > > Hi asn,
 > > >
 > > > Understandable why you closed my ticket, at a point of desperation
 and just hoping someone will take real interest in looking into this.
 Which is why I am able to offer access to a server that is currently being
 attacked. I believe I saw a chat log of you first discussing complex mode
 in 2015 for OnionBalance. Do you have any links for how to enable
 it/configure it? I am going to try it out to see if it is a resolution for
 this, with the theory of introduction points being attacked.
 > > >
 > > > Thank you.
 > >
 > > Hey, I just remembered that complex mode was never implemented for
 onionbalance, because it was harder to implement and we thought there was
 no real use for it.
 > >
 > > I'm not currently interested (or have the time) to get access to a
 server that is under attack.
 > >
 > > I think the most useful thing right now would be to have more logs
 that display the attack. I want debug or info logs that last for 1-2 hours
 of the attack and display the whole Tor lifetime (from startup to
 shutdown). Please sanitize them correctly (make sure that guard names and
 onion names are not visible).
 > >
 > > Same for vanguard logs on debug or info if you use vanguards.
 >
 > I will provide you with any logs I can later today. Could you please
 send a full list of anything that could help in debugging just to make
 sure you have everything relevant? Thank you

 Hm. It would be great if we could have all debug logs from Tor startup to
 Tor shutdown. Please scrub the names of your primary guards and your onion
 address and anything else that might seem pervasive, but please try to not
 destroy the accuracy of the logs (by double-pasting or removing
 surrounding lines).

 Another thing that might be helpful would be to try with a blank
 '''state''' file so that Tor discards any previous circuit timeouts and
 performance measurements etc. (you can find the state file in your data
 directory. please don't delete it, just backup it somewhere else so that
 you can then restore it).

 Furthermore, it would be cool if we knew exactly when Tor tops up to 100%
 CPU. Will it happen immediately? When will it happen? I would like to
 correlate the time with the log lines. But if that's too much to track,
 just do all the rest well and it should be OK.

 Again, I cannot guarantee that such a log file will result in us instantly
 solving the problem, but it might move us forward.

 Cheers.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:  Sponsor27-can
--+---

Comment (by HelpDOS):

 Replying to [comment:37 asn]:
 > Replying to [comment:36 HelpDOS]:
 > > Replying to [comment:35 asn]:
 > > > Closed #29919 as a duplicate for this one. More info over there.
 > >
 > > Hi asn,
 > >
 > > Understandable why you closed my ticket, at a point of desperation and
 just hoping someone will take real interest in looking into this. Which is
 why I am able to offer access to a server that is currently being
 attacked. I believe I saw a chat log of you first discussing complex mode
 in 2015 for OnionBalance. Do you have any links for how to enable
 it/configure it? I am going to try it out to see if it is a resolution for
 this, with the theory of introduction points being attacked.
 > >
 > > Thank you.
 >
 > Hey, I just remembered that complex mode was never implemented for
 onionbalance, because it was harder to implement and we thought there was
 no real use for it.
 >
 > I'm not currently interested (or have the time) to get access to a
 server that is under attack.
 >
 > I think the most useful thing right now would be to have more logs that
 display the attack. I want debug or info logs that last for 1-2 hours of
 the attack and display the whole Tor lifetime (from startup to shutdown).
 Please sanitize them correctly (make sure that guard names and onion names
 are not visible).
 >
 > Same for vanguard logs on debug or info if you use vanguards.

 I will provide you with any logs I can later today. Could you please send
 a full list of anything that could help in debugging just to make sure you
 have everything relevant? Thank you

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:  Sponsor27-can
--+---

Comment (by asn):

 Replying to [comment:36 HelpDOS]:
 > Replying to [comment:35 asn]:
 > > Closed #29919 as a duplicate for this one. More info over there.
 >
 > Hi asn,
 >
 > Understandable why you closed my ticket, at a point of desperation and
 just hoping someone will take real interest in looking into this. Which is
 why I am able to offer access to a server that is currently being
 attacked. I believe I saw a chat log of you first discussing complex mode
 in 2015 for OnionBalance. Do you have any links for how to enable
 it/configure it? I am going to try it out to see if it is a resolution for
 this, with the theory of introduction points being attacked.
 >
 > Thank you.

 Hey, I just remembered that complex mode was never implemented for
 onionbalance, because it was harder to implement and we thought there was
 no real use for it.

 I'm not currently interested (or have the time) to get access to a server
 that is under attack.

 I think the most useful thing right now would be to have more logs that
 display the attack. I want debug or info logs that last for 1-2 hours of
 the attack and display the whole Tor lifetime (from startup to shutdown).
 Please sanitize them correctly (make sure that guard names and onion names
 are not visible).

 Same for vanguard logs on debug or info if you use vanguards.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:  Sponsor27-can
--+---

Comment (by HelpDOS):

 Replying to [comment:35 asn]:
 > Closed #29919 as a duplicate for this one. More info over there.

 Hi asn,

 Understandable why you closed my ticket, at a point of desperation and
 just hoping someone will take real interest in looking into this. Which is
 why I am able to offer access to a server that is currently being
 attacked. I believe I saw a chat log of you first discussing complex mode
 in 2015 for OnionBalance. Do you have any links for how to enable
 it/configure it? I am going to try it out to see if it is a resolution for
 this, with the theory of introduction points being attacked.

 Thank you.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #29607 [Core Tor/Tor]: 2019 Q1: Denial of service on v2 and v3 onion service (was: Denial of service on v2 and v3 onion service)

[Tor Bug Tracker & Wiki]

#29607: 2019 Q1: Denial of service on v2 and v3 onion service
--+---
 Reporter:  pidgin|  Owner:  pidgin
 Type:  defect| Status:  accepted
 Priority:  Immediate |  Milestone:
Component:  Core Tor/Tor  |Version:
 Severity:  Normal| Resolution:
 Keywords:|  Actual Points:
Parent ID:| Points:
 Reviewer:|Sponsor:  Sponsor27-can
--+---

Comment (by asn):

 Closed #29919 as a duplicate for this one. More info over there.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs