Re: [tor-talk] Question for those who say "Tor is pwned"

Paul, it pains me to see someone, who has contributed so much to humanity through a long and celebrated career as a scientist, feel the need to engage with what is at worst an agent of some oppressive government hoping to scare people off Tor, and at best a hostile crank. As a counterpoint, I'd

Re: [tor-talk] Tor and solidarity against online harassment

On Thu, 2014-12-11 at 22:29 +, Gregory Maxwell wrote: > On Thu, Dec 11, 2014 at 10:07 PM, Roger Dingledine wrote: > > I'd like to draw your attention to > > https://blog.torproject.org/blog/solidarity-against-online-harassment > > https://twitter.com/torproject/status/543154161236586496 > > >

Re: [tor-talk] Another Tor is Possible, Kane/Ksec

On Tue, 2014-10-07 at 14:34 -0400, Nick Mathewson wrote: > On Tue, Oct 7, 2014 at 2:29 PM, Öyvind Saether wrote: > >> Revocable anonymity. > >> http://cryptome.org/2014/10/another-tor.pdf > > > > I almost can not believe someone would write a paper describing a way > > to change Tor in a way which

Re: [tor-talk] Tor in the media

Torizens, this is a concern troll: https://en.wikipedia.org/wiki/Troll_% 28Internet%29#Concern_troll They have repeatedly said they "support Tor" and "want to be wrong, but..." and then spread poison. List administrators, you have dedicated significant resources towards stopping censorship, and I

Re: [tor-talk] How does Tor help abuse victims?

On Thu, 2014-10-02 at 10:56 -0400, Andrew Lewman wrote: > On 2014-10-01 13:20, Sebastian G. wrote: > > I appear to lack imagination on how Tor helps abuse victims. Since some > > of you are involved with some organizations working in that field, I > > hope you give some insight. > > > > Personally

Re: [tor-talk] Wikimedia and Tor

On Wed, 2014-10-01 at 16:33 -0400, Derric Atzrott wrote: > > So then blocking Tor is intended to block people that temporarily have > > access to large amounts of unblocked IP addresses, but usually are IP > > blocked? > > > > Who does this apply to? If a vandal has access to unblocked IP addresse

Re: [tor-talk] Wikimedia and Tor

On Wed, 2014-10-01 at 15:50 -0400, Derric Atzrott wrote: > > this is extremely interesting--thank you! but would this work for Tor, > > since presumably the IPs that are blocked are those of the exit relays? > > > > I am proposing keeping the IPs blocked but opening them up for certain > > logged-

Re: [tor-talk] wake up tor devs

On Wed, 2014-09-17 at 17:07 -0700, Seth David Schoen wrote: > Ted Smith writes: > > > There's a reason why the NSA has "Tor Stinks" presentations and not > "I2P > > stinks" presentations. > > I don't know of a good basis for es

Re: [tor-talk] wake up tor devs

On Thu, 2014-09-18 at 02:42 -0400, grarpamp wrote: > On Wed, Sep 17, 2014 at 7:00 PM, Ted Smith wrote: > > This seems very counterproductive, given that some networks (Tor) are > > far more researched and developed than others. > > The exact same thing would have been sai

Re: [tor-talk] wake up tor devs

On Wed, 2014-09-17 at 18:08 -0400, grarpamp wrote: > > Another example... there was, or is, at least one group > accepting funds and then running some of the various > overlays equally at once... tor, i2p, freenet, cjdns, mailmix. This seems very counterproductive, given that some networks (Tor)

Re: [tor-talk] Misogyny on tor-talk is an existential threat to Tor (was: Re: Comcast looking for Tor traffic, contacting customers to threaten termination of service.)

On Mon, 2014-09-15 at 10:00 -0700, Damian Johnson wrote: > > This is to the side of your main point (with which I am largely in > > agreement), and I mean this in the most serious and respectful way > > possible: can you point to statistics, metrics, data that support this > > point? > > > > I susp

[tor-talk] Misogyny on tor-talk is an existential threat to Tor (was: Re: Comcast looking for Tor traffic, contacting customers to threaten termination of service.)

This thread is a good example of basic human rights for women being neutrally debated on tor-talk, by men. While this is a subject that most if not all men can discuss neutrally, it's a much more personal topic for most women, and seeing this "discussed" (or rather: seeing the sexual assault of wo

Re: [tor-talk] Escalating hidden services

On Wed, 2014-07-16 at 14:10 -0400, Griffin Boyce wrote: > Fosforo wrote: > > I am a big fan of pinkmeth hidden service > > Then I question your ethics. Nonconsensual porn is an extreme > violation of someone's trust -- not to mention gross and illegal. It's > also a slap in the face to people wh

Re: [tor-talk] Programming language for anonymity network

OCaml. http://ocaml.org/ 1. OCaml is more obscure than many languages, but it supports programming in imperative, object-oriented, and functional styles (though it's obviously best suited for a functional style). I've seen people write Java in OCaml and produce clean,

Re: [tor-talk] [tor-relays] Is Kaspersky right to be concerned?

On Mon, 2014-03-10 at 14:37 -0400, grarpamp wrote: > > [oh the bad..., re: ] > > http://cryptome.org/2013/09/tor-analysis-hidden-services.pdf > > Do you seriously think that reporters, aid workers, freedom > fighters, investigators, whistleblowers, and simple chatfriends, > etc are going to publis

Re: [tor-talk] TIMB vs TextSecure

On Sat, 2014-03-01 at 09:07 +0100, Felix Eckhofer wrote: > Hey. > > Am 01.03.2014 08:23, schrieb Gordon Morehouse: > > With the news hitting some tech sites about TIMB, I went digging > > around briefly to find the reasoning for rolling something anew rather > > than backing e.g. TextSecure. (I kn

Re: [tor-talk] Harvard student used Tor to send bomb threats, gets caught by old-fashioned policework

On Wed, 2013-12-18 at 11:13 -0500, Adrian Crenshaw wrote: > The guy apparently confessed, but they may not have really had > anything on > him besides using Tor. The cops may have said "Tell the truth and we > will > go easy on you", which was not in his best interest. This is a third-hand anecdot

Re: [tor-talk] (no subject)

On Wed, 2013-11-20 at 22:42 -0500, Griffin Boyce wrote: > David Huerta wrote: > > $11.55 on Amazon.com: > > > http://www.amazon.com/Be-Amazing-Toys-SNO-500-Insta-Snow/dp/B000FA6APE/ref=sr_1_3?ie=UTF8&qid=1384993405&sr=8-3&keywords=snow > > Honestly, I can't believe you'd promote this closed-sour

Re: [tor-talk] TAILS uses one DNS server from OpenDNS **WARNING **

On Sun, 2013-10-27 at 03:41 -0400, Michael Wolf wrote: > On 10/27/2013 12:15 AM, communicationsys...@safe-mail.net wrote: > > Tails uses one DNS server from OpenDNS. > > > > What prevents a malicious party from signing up exit nodes at OpenDNS and > > logging traffic, blocking content, and/o

Re: [tor-talk] Tor Weekly News — October 9th, 2013

On Wed, 2013-10-09 at 20:35 +0100, mick wrote: > On Wed, 9 Oct 2013 18:51:50 - > harmon...@riseup.net allegedly wrote: > > > > > > I wouldn't take seriously anything that ANY gov't publicly reveals > > > about their technology or intelligence capability (or lack there > > > or). Over a long hi

Re: [tor-talk] Guardian Tor article

On Fri, 2013-10-04 at 11:38 -0400, Roger Dingledine wrote: > http://www.theguardian.com/world/interactive/2013/oct/04/tor-stinks-nsa-presentation-document Since it hasn't been quoted on-list yet, page two: TOR STINKS * We will never be able to de-anonymize all

Re: [tor-talk] Silk Road taken down by FBI

On Fri, 2013-10-04 at 03:22 +, mirimir wrote: > OK, I just read the Maryland complaint. It's obvious what happened. > > An FBI undercover agent contacted him, wanting to sell large > quantities > of cocaine. He found a buyer, and delegated the details to his > employee. > Said employee had ful

Re: [tor-talk] Silk Road taken down by FBI

On Thu, 2013-10-03 at 20:58 +, mirimir wrote: > So they did have the server before they knew who he was. We also knew > that he was sold out by his VPN provider. Hopefully, the identity of > that VPN provider will come out soon. I don't see evidence in your quote that implies that. The sectio

Re: [tor-talk] Silk Road taken down by FBI

Who says they arrested him as soon as he was located? I'd bet a few bitcoins that he was found as soon as the first news story on Silk Road came out. Looking at the origins of the Silk Road and finding the first announcements of it would've been the first thing the FBI did. Everything else was jus

Re: [tor-talk] suppression of Guardian story on Tor in Snowden disclosures / FLYING PIG, others?

On Thu, 2013-10-03 at 05:59 -0700, coderman wrote: > @ioerror "@jamesrbuk Stop suppressing the story on Tor." > @ioerror "@smarimc @guardian The Guardian is sitting on a story about Tor - > I'll do one better: @jamesrbuk refused to show us the story/docs." > > > this begs two questions: > > 1. i

Re: [tor-talk] Silk Road taken down by FBI

Page 26 paragraph 38 (I think) is where it has the first indication of how they caught him. Summary: * The very first mention of the Silk Road was from a user named "altoid" on a forum * Someone else named "altoid" on the bitcoin forums advertised for developers, using

Re: [tor-talk] [monkeysphere] [Fwd: Why the Web of Trust Sucks]

Thanks for the reply, dkg! I think you sent this before finishing a few paragraphs -- I've marked them below. On Mon, 2013-09-30 at 19:20 -0400, Daniel Kahn Gillmor wrote: > > 2. Every time I verify a signature from a key sent to an email address > > that is not mine (like a mailinglist), my ma

Re: [tor-talk] ***[SPAM]*** Re: Tor and Financial Transparency

On Fri, 2013-08-30 at 15:02 -0400, The Doctor wrote: > On 08/29/2013 06:55 PM, > bm-2d9whbg2vekslcsgbtplgwdlqypizsq...@bitmessage.ch wrote: > > > Hopefully you can understand why someone might wonder in good > > faith why a third of the Tor Project's 2012 funding appears to be > > disclosed only

Re: [tor-talk] Contents of PirateBrowser 0.6b

On Fri, 2013-08-30 at 16:29 +, Matt Pagan wrote: > http://uj3wazyk5u4hnvtk.onion/ > http://omcwtrnyrzlwzv22.onion/ These hidden services point to the pirate bay and eztv, for anyone curious (I was). -- Sent from Ubuntu signature.asc Description: This is a digitally signed message part --

Re: [tor-talk] Tor and Financial Transparency

On Fri, 2013-08-30 at 07:34 -0300, Juan Garofalo wrote: > By the way, my original point was that if Tor people believe that > their funding scheme is not going to raise a red flag in the minds of > 'ordinary people', they are mistaken. Until you can find a better funding source in the US than the

Re: [tor-talk] Tor and Financial Transparency

On Thu, 2013-08-29 at 17:27 -0300, Juan Garofalo wrote: > The fact that there are power struggles between different government > factions doesn't mean government isn't 'monotholitic' for a lot of practical > purposes. > > better worded : > > > Government can still be 'monolothic'

Re: [tor-talk] Hiding IP address from my ISP

Don't, I2P is broken: http://lists.randombit.net/pipermail/cryptography/2013-June/004580.html On Fri, 2013-07-26 at 21:57 -0400, jimba...@bellsouth.net wrote: > Thanks, I will look into I2P > > Sent from my HTC Inspire™ 4G on AT&T > > - Reply message - > From: "krishna e bera" > To: >

Re: [tor-talk] How intensely do you use Tor?

On Thu, 2013-07-04 at 06:11 -0500, Anthony Papillion wrote: > > On 07/03/2013 07:46 PM, Ted Smith wrote: > > On Wed, 2013-07-03 at 19:21 -0400, Griffin Boyce wrote: > >> I don't use Tor with Gmail, because Google blocks connections nearly 100% > >> of the time

Re: [tor-talk] How intensely do you use Tor?

On Wed, 2013-07-03 at 19:21 -0400, Griffin Boyce wrote: > I don't use Tor with Gmail, because Google blocks connections nearly 100% > of the time. A Google employee posted how to avoid this -- you have to log into Gmail via Tor, solve whatever security puzzle they give you, then (using a non-Torbr

Re: [tor-talk] DNS provider that does not hijack failures

On Fri, 2013-05-31 at 21:02 +0200, Andreas Krey wrote: > On Fri, 31 May 2013 11:32:27 +0000, Ted Smith wrote: > ... > > 30 second brainstorm of reasons why Google would run a public DNS: > > > > * Reduce load times/increase positive UX on Google services >

Re: [tor-talk] DNS provider that does not hijack failures

On Fri, 2013-05-31 at 10:23 -0500, Joe Btfsplk wrote: > On 5/31/2013 8:54 AM, Robin Kipp wrote: > > Hi Joe and Sean, > > thanks a lot for your suggestions and discussion! > > I have to say Google DNS really isn't an option for me, because I simply > > don't trust Google. Even if they do have a dec

Re: [tor-talk] Email provider for privacy-minded folk

On Wed, 2013-02-13 at 13:14 -0700, the_simple_computer wrote: > 3. Autistici and > Riseup are two companies worth donating to, imo but especially if > you're > using their service. This is a nitpick, but riseup.net isn't a company. Riseup Labs (http://riseuplabs.org/) is a registered (donations ta

Re: [tor-talk] Email provider for privacy-minded folk

On Tue, 2013-02-12 at 11:23 -0600, Joe Btfsplk wrote: > On 2/12/2013 8:41 AM, Ted Smith wrote: > > I use riseup.net -- I trust their promise not to store any logs, I > > know they'll never block Tor, and they don't have any ads in their web > > interface. That sai

Re: [tor-talk] Email provider for privacy-minded folk

On Tue, 2013-02-12 at 10:13 +0100, Karsten N. wrote: > On 02/12/2013 01:47 AM, bvvq wrote: > > I would like to change. > > You may try VFEmail https://www.vfemail.net/ > > For a one-time payment of $15 you get an good service. Use an anonymous > prepaid credit card to stay anonymous. Free service

Re: [tor-talk] William was raided for running a Tor exit node. Please help if

On Wed, 2012-12-05 at 14:54 +, Julian Yon wrote: > On Wed, 05 Dec 2012 09:19:20 -0500 > Ted Smith wrote: > > > On Wed, 2012-12-05 at 04:42 -0700, Jim wrote: > > > (A lot > > > of the NANOG discussion seems to imply that he himself must have > > >

Re: [tor-talk] William was raided for running a Tor exit node. Please help if

On Wed, 2012-12-05 at 04:42 -0700, Jim wrote: > (A lot > of the NANOG discussion seems to imply that he himself must have been > doing something illegal.) As far as I can tell, most of those accusations come from one person, and have no base in reality. It's a common cognitive bias to assume th

Re: [tor-talk] torsocks is broken and unmaintained

On Sat, 2012-12-01 at 23:14 +, John Case wrote: > On Fri, 2 Nov 2012, grarpamp wrote: > > >>> I don't agree. torsocks is still useful to prevent identity correlation > >>> through circuit sharing. Pushing all traffic through Trans- and DnsPort > >>> is not the answer. > >> > >> Also, I don't w

Re: [tor-talk] William was raided for running a Tor exit node. Please help if you can.

On Fri, 2012-11-30 at 16:31 -0600, Naslund, Steve wrote: > Guess who has power over the networks and Internet. We do and power > corrupts us too. There are some bad guy ISPs and engineers out there > too. Just because you are running a Tor server to allow for "privacy > protection" does not mean

Re: [tor-talk] torsocks is broken and unmaintained

On Fri, 2012-11-02 at 18:12 -0400, grarpamp wrote: > >> I don't agree. torsocks is still useful to prevent identity correlation > >> through circuit sharing. Pushing all traffic through Trans- and DnsPort > >> is not the answer. > > > > Also, I don't want all of my applications using Tor -- just so

Re: [tor-talk] torsocks is broken and unmaintained

On Fri, 2012-11-02 at 19:49 +, adrelanos wrote: > grarpamp: > >> I'd like to see more discussion from more people here first, and see > >> whether somebody steps up to say, "Yeah, I can maintain that" here, or > >> whether somebody else who knows more than me about the issues has something > >>

Re: [tor-talk] torsocks is broken and unmaintained

On Fri, 2012-11-02 at 13:09 -0400, Nick Mathewson wrote: > On Fri, Nov 2, 2012 at 1:02 PM, adrelanos wrote: > > > Hi, > > [ > > > [...] > > > What are the consequences? > > > > Probably somebody should fork it? > I consider myself someone moderately familiar with the Tor culture. However,

Re: [tor-talk] help us:Korean government started to fine netizen who download child pornography without child

This seems similar to when Australia outlawed porn involving women with small breasts: Nobody is trying to support actual images of child abuse as far as I can tell in this thread. There are just some who think that anything th

Re: [tor-talk] Tor with IRC chat

On Wed, 2012-10-17 at 18:37 +, Runa A. Sandvik wrote: > On Wed, Oct 17, 2012 at 5:59 PM, wrote: > > How does one configure Xchat to use Tor? > > Configure it to use a socks4/socks5 proxy on 127.0.0.1:9050 or > whatever port Tor is currently using (9050 for TBB on Windows, random > port on OS

Re: [tor-talk] Can we come up with a lighter, easier torified client apps ?

On Thu, 2012-10-04 at 22:36 +, John Case wrote: > Tom, Andrew, > > On Thu, 4 Oct 2012, Tom Ritter wrote: > > > Of course those are the huge, monolithic cases. Take simpler apps > > like gpg, ssh, putty, pidgin (god help us), git, svn. While tracking > > upstream would certainly be a problem

Re: [tor-talk] [tor-relays] clockskewer attack

On Thu, 2012-10-04 at 05:07 +0300, Sampo Syreeni wrote: > On 2012-10-03, Ted Smith wrote: > > > So it actually assumes that the targeted hidden service is running a > > Tor relay _and_ an open HTTP server. > > The basic attack pattern is extensible to a relay and any

Re: [tor-talk] [tor-relays] clockskewer attack

pherpunks on this so that you don't have to keep forwarding things around, Eugen.) On Wed, 2012-10-03 at 17:39 +0200, Eugen Leitl wrote: > - Forwarded message from Ted Smith - > > From: Ted Smith > Date: Wed, 03 Oct 2012 11:09:00 -0400 > To: Eugen Leitl > Cc: cyp

Re: [tor-talk] Tor and P2P (Hidden SMS)

On Wed, 2012-09-26 at 11:42 +0100, t...@lists.grepular.com wrote: > > This is not the same as using XMPP over Tor. XMPP requires a trusted > third party server to handle the relaying. This is P2P direct > communication using hidden services. It's not real-time IM chat. It's > SMS style chat (with

Re: [tor-talk] Wget over TBB

On Thu, 2012-09-20 at 05:52 +0200, Andreas Krey wrote: > On Wed, 19 Sep 2012 22:17:18 +, David H. Lipman wrote: > > From: "David H. Lipman" > > > > > > >On the WGET command line add the following switch parameter after Tor has > > >been loaded. > > > > > >--execute=http_proxy=http://127.0.0

Re: [tor-talk] Download videos

On Tue, 2012-09-18 at 01:02 +, r...@tormail.org wrote: > Is the addon "unplug" safe to use with Tor for downloading videos? That > is, will it (Unplug) provide anonymity? Unplug is free software, so you can look at the source and see for yourself. If you can't, maybe someone else on this lis

Re: [tor-talk] Almost anon real time chat

On Mon, 2012-09-10 at 12:16 +0200, antispa...@sent.at wrote: > Pidgin is one. But I have read about it having leaks, thus the removal > from the TBB. What leaks does Pidgin have? I've configured it to connect to hidden services before, so it can't have DNS leaks, can it? Tor used to support a To

Re: [tor-talk] End-to-end correlation for fun and profit

On Wed, 2012-08-22 at 04:42 +0300, Maxim Kammerer wrote: > > Also, it's not immediately clear whether eavesdropping those > networks > > would actually get you strong enough correlation to accurately > > de-anonymize users[1]. If our rodent(?) friend(s?) could comment on > > this, I'd appreciate th

Re: [tor-talk] End-to-end correlation for fun and profit

On Mon, 2012-08-20 at 10:33 +0300, Maxim Kammerer wrote: > Hello gentlemen, > [1] http://pastebin.com/hgtXMSyx I ran this script on the current consensus. The full results (the nodes-sniff-summary file) are below my signature. How did you compile the country-codes to IPs list? That wasn't produce

Re: [tor-talk] Tor as ecommerce platform

On Sat, 2012-08-11 at 10:16 +0300, Maxim Kammerer wrote: > > Sure, I rely on my intuition. It is based on interacting with a > diverse userbase of Tor users. Yours is based on disliking my > conclusions and nothing else — you never brought up actual > references. The burden of proof is on you, s

Re: [tor-talk] Tor as ecommerce platform

On Fri, 2012-08-10 at 02:00 +0300, Maxim Kammerer wrote: > On Thu, Aug 9, 2012 at 7:00 PM, Ted Smith wrote: > > How would you do that without facing the same problem as someone > > wiretapping their own exit node? Do you have a CP classifier? Are you > > going to load eac

Re: [tor-talk] Tor as ecommerce platform

On Fri, 2012-08-10 at 22:21 +0300, Maxim Kammerer wrote: > On Fri, Aug 10, 2012 at 5:26 PM, With Weather Eye Open > wrote: > > It is, in fact, difficult to do just by the nature of how Tor > functions. Even if you were logging everything that came out of an > exit node that you control, you would

Re: [tor-talk] Tor as ecommerce platform

On Thu, 2012-08-09 at 09:54 +0300, Maxim Kammerer wrote: > On Thu, Aug 9, 2012 at 3:29 AM, Ted Smith wrote: > > What did that commenter do? They don't say. > > > > Further, "get an idea" isn't "statistics". > > Where did I talk abo

Re: [tor-talk] Tor as ecommerce platform

On Thu, 2012-08-09 at 03:08 +0300, Maxim Kammerer wrote: > On Thu, Aug 9, 2012 at 2:35 AM, Ted Smith wrote: > > Are we to believe that the Reddit commenter you're referencing wrote > > some mechanical-turk-esque system that allowed them to classify large > > amoun

Re: [tor-talk] Tor as ecommerce platform

On Thu, 2012-08-09 at 02:25 +0300, Maxim Kammerer wrote: > Also, the “immediate deletion” part is often not achievable, even if > server admins actively try to remove such content — CP videos (for > whatever definition of CP) in various social networks are a known > problem, especially when they ar

[tor-talk] [Fwd: Re: [tor-relays] Call for discussion: turning funding into more exit relays]

Did this actually happen, or is it just jya being overly paranoid again? (Sorry if this is just more noise.) Forwarded Message From: John Young To: cypherpu...@al-qaeda.net Subject: Re: [tor-relays] Call for discussion: turning funding into more exit relays Date: Mon, 30 Jul 201

Re: [tor-talk] Creating distributed social networks with WebId behind Tor

On Tue, 2012-05-15 at 21:07 -0400, ahmed wrote: > On Tue, 2012-05-15 at 22:32 +0200, Henry Story wrote: > > 4) this requires every user to have an always on machine > > Not really. Users can synchronize their data with their friends when > they become online, and their friends can pass it to the o

Re: [tor-talk] duckduckgo.com blocking tor users?

On Thu, 2012-04-12 at 22:52 +0100, Mr Dash Four wrote: > That didn't last long, did it? > > The block seems to be across both http and https protocols on the same > domain (duckduckgo.com). I can reach it via Tor; maybe you have a bad exit node or luck. -- Sent from Ubuntu signature.asc Desc

Re: [tor-talk] access sites

On Fri, 2012-04-06 at 00:01 +0300, Maxim Kammerer wrote: > E.g., in Russia, if I am not mistaken, every ISP of certain size must > (by law) duplicate all of its traffic to an FSB-supplied box — where > are the users? According to the paper *you linked*, they're outnumbering Chinese users. -- Se

Re: [tor-talk] access sites

On Thu, 2012-04-05 at 03:57 +0300, Maxim Kammerer wrote: > On Thu, Apr 5, 2012 at 01:45, Roger Dingledine wrote: > > There has been some research on what Tor *traffic* is, but the methodology > > soundness is always a question. The question here though is what the > > breakdown of Tor *users* is.

Re: [tor-talk] How can the video play in TBB without plagins?

On Sun, 2012-03-25 at 23:56 -0400, Andrew Lewman wrote: > On Sun, 25 Mar 2012 20:37:55 -0500 > Joe Btfsplk wrote: > > Don't you have to opt in to the html5 videos (or technology), thus > > meaning creating an acct on (youtube)? Or has that changed? > > No, you do not have to login to youtube, n

Re: [tor-talk] Tor and HTTPS graphic

On Tue, 2012-03-06 at 16:20 -0800, Seth David Schoen wrote: > and...@torproject.is writes: > > > The GPA is in every paper on the topic. But only Seth has the real > > answer. > > I was concerned that the graphic should not make people think that > _no one_ can ever associate them with their brow

Re: [tor-talk] Tor and HTTPS graphic

On Tue, 2012-03-06 at 12:22 -0500, Andrew Lewman wrote: > On Tue, 06 Mar 2012 11:22:33 -0500 > Ted Smith wrote: > > While I like the graphic overall, I think the "NSA as a global passive > > adversary" element is an example of the graphic being overloaded with >

Re: [tor-talk] Tor and HTTPS graphic

On Tue, 2012-03-06 at 15:38 +, ix4...@gmail.com wrote: > > In particular well done for keeping it at just the right level of > complexity and not overloading it with information that will > confuse/scare away most people. While I like the graphic overall, I think the "NSA as a global passive

Re: [tor-talk] Tails and a way to permanently install it on a removable media

On Tue, 2012-02-21 at 00:03 +0330, kamyar b wrote: > On Mon, Feb 20, 2012 at 10:57 PM, Runa A. Sandvik > wrote: > > > On Mon, Feb 20, 2012 at 8:44 AM, KRZS wrote: > > > I found Tails perfect for tor onion networking but it's impossible to > > > use it on different pcs .A permanent install would

Re: [tor-talk] Tails and a way to permanently install it on a removable media

On Mon, 2012-02-20 at 22:00 +0100, Matej Kovacic wrote: > Hi, > > > Far be it from me to speak for the developers here, but it seems to me > > that the stated purpose of the project is to provide a live CD or live USB > > system, not provide an installation method. > True. However, it would be ver

Re: [tor-talk] Adblock Plus and Ghostery should be included in Tor bundle

On Sun, 2012-02-12 at 07:53 -0800, Brian Franklin wrote: > The Adblock should be configured to work and not need setup. Select a > few good lists and have them automatically in. This will save users > the time of doing it themselves and help people who don't know how. For on this list who are not

Re: [tor-talk] tor-blocking sites

On Mon, 2012-02-06 at 22:11 +, Mr Dash Four wrote: > > Yes. There are plenty of lists of open single-hop SOCKS proxies, and > > software exists to "chain" SOCKS proxies. Just create a chain in some > > such software that is Tor -> , and you've circumvented > > such a block. > > > How? The ex

Re: [tor-talk] tor-blocking sites

On Mon, 2012-02-06 at 19:24 +, Mr Dash Four wrote: > I am sick of them all! > > Initially, there was a small number of these in the wild, but now it is > widely spread - google is the main offender, but youtube (which is, as > we all know, google-owned) and now, wait for it, scroogle.org (a

Re: [tor-talk] Tormail?

On Thu, 2011-11-10 at 09:56 +, t...@lists.grepular.com wrote: > It's quite different for non-anonymous providers. They are restricted by > laws, and are held responsible for their actions, legally and > commercially. If we don't even know where TorMail is hosted, we don't > know what laws they'

Re: [tor-talk] Tor and big files

On Wed, 2011-11-09 at 10:56 +, James Brown wrote: > Earlie it was written that torificatuon of torrent-clients for > uploading/downloading big file is able to deanonimize tor users using > such scheme. > But what about downloading/uploading big files through ssh (scp, sftp, > `rsync -e ssh` and

Re: [tor-talk] Fwd: Anonymous to attacks Hidden Wiki and others hiddenservice

On Sun, 2011-10-23 at 15:52 -0400, hi...@safe-mail.net wrote: > > This _is_ an attack on Tor! And they've already proven, to a certain > extend, that Tor has some weaknesses. This is an attack on Tor to exactly the same extent it's an attack on TCP. signature.asc Description: This is a digita

Re: [tor-talk] attacks on Tor hidden services

On Sat, 2011-10-22 at 23:50 +, Gozu-san wrote: > I didn't mean that people are intentionally DDoSing the Tor network. > I > meant that the attacks on hidden-service sites may have spillover > effects. Let's say that SlowLoris attacks bog Apache serving some > hidden-service site. With enough

Re: [tor-talk] WSJ- Google- Sonic Mr. Applebaum

On Mon, 2011-10-10 at 18:42 +0200, Andre Risling wrote: > Here's how Google is a compliant slave. > > You still use Gmail?! > > http://online.wsj.com/article/SB10001424052970203476804576613284007315072.html#ixzz1aMoq8l2i > This thread has exploded into a tangent, but I'd like to hijack this t

Re: [tor-talk] WSJ- Google- Sonic Mr. Applebaum

On Tue, 2011-10-11 at 17:29 +0200, Eugen Leitl wrote: > If they have to dispatch a warm body to a remote physical > location my job is done already. If it has to be a warm sentient > body who has to analyze an unfamiliar situation and attempt an > undetected physical layer attack I've already succe

Re: [tor-talk] Best Tool to connect to my Private TOR Network

On Fri, 2011-10-07 at 10:58 -0400, Andrew Lewman wrote: > On Friday, October 07, 2011 10:35:31 Faisal Rehman wrote: > > Okay I will run some more directory authorities but how these will be tied > > with each other via relays, sorry for asking very basic questions but I am > > unable to find help f

Re: [tor-talk] Tor banned in Pakistan.

On Sat, 2011-09-10 at 22:08 +0100, Matthew wrote: > >> It would be good to know what technologies these ISPs will implement to > >> do the packet inspection for encrypted tunnels. Half the problem is you > >> don't really know what they'll be looking for and so you don't know how > >> to circumven

Re: [tor-talk] Hidden services for mundane things (was: Re: Pirate Linux)

On Tue, 2011-08-16 at 16:14 -0400, and...@torproject.org wrote: > On Tue, Aug 16, 2011 at 11:38:35AM -0400, te...@riseup.net wrote 2.6K bytes > in 68 lines about: > : Is there a reason for doing this over a hidden service instead of just > : Tor? I use a hidden service to check if my home server i

[tor-talk] Hidden services for mundane things (was: Re: Pirate Linux)

On Sun, 2011-08-14 at 17:53 -0400, and...@torproject.org wrote: > On Sun, Aug 14, 2011 at 02:38:37PM -0600, aka...@gmail.com wrote 4.4K bytes > in 107 lines about: > : Ya its not just the Live CD aspect of it. But also, people aren't going to > : use Tor 24/7. So if all internet traffic goes throu

Re: [tor-talk] Pirate Linux

On Thu, 2011-08-04 at 19:44 -0600, AK wrote: > - No need to trust nonstandard binary executables. Polipo, tor, vidalia, > piratepack binaries are automatically compiled from source on installation. How do I know that the sources are trustworthy? Or that the programs used to compile (or verify the

Re: [tor-talk] detecting harmful relays

On Wed, 2011-06-01 at 21:35 -0600, Jim wrote: > > and...@torproject.org wrote: > > On Wed, Jun 01, 2011 at 05:31:41AM +, krak...@googlemail.com wrote 1.9K > > bytes in 45 lines about: > > : A few weeks ago, there was one that tried to give me a .bin file > > : whenever I tried to visit a non-

Re: [tor-talk] Natty packages

On Fri, 2011-05-06 at 07:44 -0700, Damian Johnson wrote: > > Hi, it seems that there is no packages available for Natty yet.. > > From Natty on Tor should be available from the main Ubuntu repositories: > https://bugs.launchpad.net/ubuntu/+source/tor/+bug/689188 I think this needs to be publicize

Re: [tor-talk] Better Privacy for Tor Node Operators

On Mon, 2011-04-25 at 16:18 +0200, tagnaq wrote: > - Not all ISPs log assignments (yet) or are not even allowed to do so > in > certain cases/legislations > - I doubt every ISP (that does store assignments) will give you all > IPs > a certain subscriber ever had in the past by just demanding them >

Re: [tor-talk] Better Privacy for Tor Node Operators

On Sun, 2011-04-24 at 19:18 +0200, tagnaq wrote: > If you run a Tor node at your home IP address you will loose the > positive side effect of a dynamic IP address and your IP layer > anonymity > decreases to that of a static IP address because your node identity > links all your public IP addresses