[tor-talk] DOJ's Tor traffic estimates - reference?
Hi all, Is there a good reference for the assertion by DOJ that 3% of Tor's traffic is "bad"/used for piracy/etc? This has been referenced in a few talks, but was just wondering if this is written anywhere that can be easily referenced. thanks, Griffin -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
On Sun, May 25, 2014 at 05:40:51AM -0400, grif...@cryptolab.net wrote 0.4K bytes in 0 lines about: : Is there a good reference for the assertion by DOJ that 3% of Tor's : traffic is "bad"/used for piracy/etc? This has been referenced in a few : talks, but was just wondering if this is written anywhere that can be easily : referenced. There was an unpublished study in Nevada by some grad students who setup a few malware defense appliances on the end of a tor exit relay. They found 3% of the traffic passing through their exit relay was tagged as malware, by however the appliance was configured to determine malware or not. They never published their research because they either couldn't get ethics board clearance at their university and/or because of the Univ. of Colorado exit relay issue at PETS. I read a draft of the paper, which was subsequently pulled from publication. I've talked to a few organization who allow Tor exits, but track good/bad traffic (by their definition) who say 3% sounds high from what they have seen. None of these orgs will go on the record, but they are some of the largest social network and ecommerce sites in the world. -- Andrew pgp 0x6B4D6475 -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
Andrew Lewman wrote: > On Sun, May 25, 2014 at 05:40:51AM -0400, grif...@cryptolab.net wrote 0.4K > bytes in 0 lines about: > : Is there a good reference for the assertion by DOJ that 3% of Tor's > : traffic is "bad"/used for piracy/etc? This has been referenced in a few > : talks, but was just wondering if this is written anywhere that can be easily > : referenced. > > There was an unpublished study in Nevada by some grad students who setup > a few malware defense appliances on the end of a tor exit relay. They > found 3% of the traffic passing through their exit relay was tagged as > malware, by however the appliance was configured to determine malware > or not. Indeed, detected as malware and *is* malware are two very different things. In addition any malware that is coming from the regular internet into the Tor network should not be blamed ont Tor. Erik -- -- Erik de Castro Lopo http://www.mega-nerd.com/ -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
LOL, the DOJ is optimistic, I would say 90% is used for piracy etc... Original Message From: Griffin Boyce Apparently from: tor-talk-boun...@lists.torproject.org To: Tor Talk Subject: [tor-talk] DOJ's Tor traffic estimates - reference? Date: Sun, 25 May 2014 05:40:51 -0400 > Hi all, > >Is there a good reference for the assertion by DOJ that 3% of Tor's > traffic is "bad"/used for piracy/etc? This has been referenced in a few > talks, but was just wondering if this is written anywhere that can be > easily referenced. > > thanks, > Griffin > -- > tor-talk mailing list - tor-talk@lists.torproject.org > To unsubscribe or change other settings go to > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
I did run a tor exit with only port 25 blocked, did push 850 tb in 4 months and did got 3 abuses so far, 3 % bad traffic is much to high i think Am 25.05.2014 12:11 schrieb "Griffin Boyce" : > Hi all, > > Is there a good reference for the assertion by DOJ that 3% of Tor's > traffic is "bad"/used for piracy/etc? This has been referenced in a few > talks, but was just wondering if this is written anywhere that can be > easily referenced. > > thanks, > Griffin > -- > tor-talk mailing list - tor-talk@lists.torproject.org > To unsubscribe or change other settings go to > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk > -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
On 5/26/14, forc...@safe-mail.net wrote: > LOL, the DOJ is optimistic, I would say 90% is used for piracy etc... Sure, anecdotal evidence can be useful. But I don't know how to turn one anecdote, or even 1 million, into a useful statistic. What we see that's published may be minimal, but it's what someone's observed and recorded over time and published the result. -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
How can any true assessment be made of illegal content if it is encrypted? Robert -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
Andrew Lewman wrote: There was an unpublished study in Nevada by some grad students who setup a few malware defense appliances on the end of a tor exit relay. They found 3% of the traffic passing through their exit relay was tagged as malware, by however the appliance was configured to determine malware or not. Ahhh, many thanks for the clarification. Details on this were very spotty, and I didn't want to speculate. ~Griffin -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
On Mon, May 26, 2014 at 09:41:50PM -0400, grif...@cryptolab.net wrote 0.6K bytes in 0 lines about: : Ahhh, many thanks for the clarification. Details on this were very : spotty, and I didn't want to speculate. It would be safe to assume details are still spotty. Until someone actually publishes a their numbers, this is the best we have. -- Andrew pgp 0x6B4D6475 -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
> How can any true assessment be made of illegal content if it is encrypted? I'm curious about this too. What exactly is being measured here? On Sun, May 25, 2014 at 11:10 PM, I wrote: > How can any true assessment be made of illegal content if it is encrypted? > > Robert > > > -- > tor-talk mailing list - tor-talk@lists.torproject.org > To unsubscribe or change other settings go to > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk > -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
On 14-05-27 01:29 PM, Patrick wrote: >> How can any true assessment be made of illegal content if it is encrypted? > > I'm curious about this too. What exactly is being measured here? Exit nodes can catch the domain names of sites being accessed. They can snoop the contents which would include passwords if people arent using HTTPS. Even with HTTPS, many people still click away SSL certificate warnings without heeding them, so MITM attacks remain effective (though unethical). Another aspect is that "illegal" isnt the same in every jurisdiction. Then it is a question of estimating what percentage of Tor usage is for bypassing censorship. We dont know what methodologies were used. In other words, it would be most edifying to our curiosity if someone were to anonymously leak the allegedly unethical paper in question. -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] DOJ's Tor traffic estimates - reference?
>> How can any true assessment be made of illegal content if it is >> encrypted? > > I'm curious about this too. What exactly is being measured here? They must be referring to traffic exiting the Tor network through an exit node, after which it is unencrypted unless the user is also using https. The EFF's diagram labeled "Tor and No https" at https://www.eff.org/pages/tor-and-https shows what this looks like. -- Care about online privacy but can't run a Tor relay yourself? My relays accept Bitcoin donations: https://atlas.torproject.org/#details/3C49A7D9BEBC668352F627CE60B1FE9B628DD2EA https://atlas.torproject.org/#details/551B17B619A4A83174EDDCB2BB845055D47CD613 -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
