Thanks everyone for the feedback, I'm pretty happy with my iptables
rules (and they both handled and logged the attack nicely) but I'll take
a look around and see if there is any tightening up I can do that I've
missed. (protect from more obscure attack vectors etc)
--
Freemor <[EMAIL PROTE
On Tue, Aug 29, 2006 at 01:37:18AM +0800, Adam J. Richter wrote:
> tor-0.1.1.23 has a bug in the code that is supposed to
> close connections to directory servers that have been mute for more
> than five minutes. Instead, it closes such connections that were
> opened more than five minutes a
Thus spake Fabian Keil ([EMAIL PROTECTED]):
> > So even so, it's unsettling.. You download some app, iso, video, or
> > whatever via Privoxy and it kindly tells you there's a temporary
> > failure mid-binary stream. How nice of it.
>
> How nice of you to back up your claims with enough informatio
tor-0.1.1.23 has a bug in the code that is supposed to
close connections to directory servers that have been mute for more
than five minutes. Instead, it closes such connections that were
opened more than five minutes ago, even if they are quite active
(because the code checks timestamp_la
On Mon, Aug 28, 2006 at 09:34:38AM +0200, Christian Kellermann wrote:
> Hi,
>
> * Nick Mathewson <[EMAIL PROTECTED]> [060828 04:44]:
> > Another note: if people want to continue running these checks against
> > exits (and I hope you do!) I'd suggest you keep what, exactly, you're
> > checking for
Just how do you expect the average windows user to know how to check ssl
certifications? That is now the level of the people using tor.
Well .. trying to remain anonymous while using Windows is on an order of
magnitude more difficult than doing the same with *nix.
If you're dumb enough to bli
is this common have others seen this type of behaviour?
Yes, and yes. Although I was running an exit which makes me more visible
than you. Fortunately, I was on an academic network that could easily
absorb it, and running on *BSD so it didn't hickup the server either :)
~Mike.
I built from subversion source today v8270.
Build went OK, but it dies on launch:
Aug 28 07:50:16.780 [notice] Tor 0.1.2.1-alpha-dev opening log file.
Aug 28 07:50:16.878 [err] util.c:162: _tor_strdup: Assertion s failed;
aborting.
I run NetBSD 3_Stable and do have the latest libevent.
Hi,
I just wanted to let everyone know that a new program
called "TorSignal.exe" has been released. "TorSignal
for Windows" (eg. "TorSignal.exe") was written by Cord
Schneider and makes it easy to use all Tor signals on
the Windows platform.
Read this Wiki entry for more info and a "how-to":
ht
Mike Perry <[EMAIL PROTECTED]> wrote:
> Thus spake Arrakistor ([EMAIL PROTECTED]):
> > Tell me more about the corrupt downloads, are they recent? From
> > karotte or sectoor?
>
> Weirdest shit in the world. Privoxy is dumping temporary failure
> messages mid-stream into the binaries, yet keeping
Mike Perry <[EMAIL PROTECTED]> wrote:
> Go ahead and hit up https://addons.mozilla.org.1.exit with
> socks_remote_dns and only a socks proxy (privoxy breaks the .exit
> notation), and be prepared to shit yourself.
Like Firefox, Privoxy doesn't care about the .exit notation,
and just passes it for
Thus spake Roger Dingledine ([EMAIL PROTECTED]):
> On Sun, Aug 27, 2006 at 10:49:46PM -0500, Mike Perry wrote:
> > An interface to suck a signature-verified directory out of Tor via the
> > control-port or some other means would also be nice.
>
> I noticed from your earlier statement that you're
On Sun, Aug 27, 2006 at 10:49:46PM -0500, Mike Perry wrote:
> An interface to suck a signature-verified directory out of Tor via the
> control-port or some other means would also be nice.
I noticed from your earlier statement that you're using the v1 directory
format. This is obsolete, and any v1
Hi,
* Nick Mathewson <[EMAIL PROTECTED]> [060828 04:44]:
> Another note: if people want to continue running these checks against
> exits (and I hope you do!) I'd suggest you keep what, exactly, you're
> checking for a secret until *after* you run each round of tests. Then
> announce the results,
14 matches
Mail list logo
