Re: [tor-talk] IMAPS login errors
Philipp Winter: On Sat, Feb 08, 2014 at 11:11:16PM +, ar...@runbox.no wrote: I'm using IMAPS over Tor for email purposes. Sporadically I get 'password incorrect' errors which usually go away when I click 'Retry'. Is this some kind of MitM attack? Real MitM attacks typically don't cause password incorrect error messages. Yes, I thought not, but it's strange behavior nonetheless as it never happens except over Tor with my provider, and it is always transient (one, maybe two failed auths, then things work - it makes me suspicious). Incidentally, there are two exit relays whose IMAPS traffic is modified by security software: https://atlas.torproject.org/#details/E5A75EE11A35F9DAF74B13BBA9D3CF0AA8F3AD2D https://atlas.torproject.org/#details/B40A3DC61FD7C18B8FFFA62FFA98CA7AAF8D8107 The former uses a Fortinet device whereas the latter uses an antivirus scanner. Is this not sufficient to get BadExit flag? Arnst -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] IMAPS login errors
Gerardus Hendricks: On 2/9/14 12:11 AM, ar...@runbox.no wrote: I'm using IMAPS over Tor for email purposes. Sporadically I get 'password incorrect' errors which usually go away when I click 'Retry'. Is this some kind of MitM attack? That's not enough information to judge. Assuming the attacker doesn't have a valid certificate, Thunderbird would give you a certificate warning upon connection, not after sending any password. That's what I was hoping! But after Flame and the novel MD5 break... one can't be too paranoid I guess? It could as well be the legitimate IMAP server, plainly failing to authenticate you. The strange thing is this only happens over Tor with my mail provider, and it's not a timeout. That's why I thought it was funny... Arnst -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] IMAPS login errors
Hello, I'm using IMAPS over Tor for email purposes. Sporadically I get 'password incorrect' errors which usually go away when I click 'Retry'. Is this some kind of MitM attack? Arnst -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk