Re: security of systems using Tor 0.2.0.26 [was: JanusVM ...]

2008-05-26 Thread coderman
On Mon, May 26, 2008 at 9:00 AM, Mad Hatter [EMAIL PROTECTED] wrote: ... Is it [[old JanusVM with Tor 0.2.0.26-rc]] even still ^safe^ to use, given that several security bugs have been fixed in subsequent versions of TOR? from http://archives.seul.org/or/announce/May-2008/msg0.html

Re: Default Exit Policy

2008-05-26 Thread Juliusz Chroboczek
Just as with SMTP, security [with SMTP-submit] is optional. See RFC 4409 for details on the protocol. 4.3. Require Authentication The MSA MUST by default issue an error response to the MAIL command if the session has not been authenticated using [SMTP-AUTH], unless it has already

JanusVM - Is it dead?

2008-05-26 Thread Mad Hatter
It appears development of this little gem has ceased (nothing new since Oct '07). Is it even still ^safe^ to use, given that several security bugs have been fixed in subsequent versions of TOR?

Re: Default Exit Policy

2008-05-26 Thread Nathaniel Dube
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 What about creating a white list/black list for domains in Tor. That way Tor could allow certain domains (such as google.com) to bypass the default blocks. This way you would be maintaining security while adding functionality. -BEGIN PGP

Re: Default Exit Policy

2008-05-26 Thread Roger Dingledine
On Mon, May 26, 2008 at 08:04:16PM -0500, Nathaniel Dube wrote: What about creating a white list/black list for domains in Tor. That way Tor could allow certain domains (such as google.com) to bypass the default blocks. This way you would be maintaining security while adding

clock jump bug(s?) update (was Re: security of systems using Tor 0.2.0.26 [was: JanusVM ...])

2008-05-26 Thread Scott Bennett
On Mon, 26 May 2008 11:33:21 -0700 coderman [EMAIL PROTECTED] wrote: On Mon, May 26, 2008 at 9:00 AM, Mad Hatter [EMAIL PROTECTED] wrote: ... Is it [[old JanusVM with Tor 0.2.0.26-rc]] even still ^safe^ to use, given that several security bugs have been fixed in subsequent versions of

Questions about the connection

2008-05-26 Thread Xizhi Zhu
Hi, all I run a relay in a LAN with a public IP address. However, for only a few times, my server can be reached from outside, though the connection speed is really fast. I tried to ping some of the relays which responded within 1 second. Can anyone tell me why this would happen and any

Re: Default Exit Policy

2008-05-26 Thread Scott Bennett
On Mon, 26 May 2008 20:04:16 -0500 Nathaniel Dube [EMAIL PROTECTED] wrote: What about creating a white list/black list for domains in Tor. That way Tor could allow certain domains (such as google.com) to bypass the default blocks. This way you would be maintaining security while adding