@xxshtxx @eTerrorist @D00B @Eris @PROtoss987 @Returned_tryhard @applejack @ew @q @zero im not gonna read this huge stupid thread but just in case people actually care, im autistic about computer security & some of the ways i remember tor being compromised
- generally compromising nodes
- firefox bugs in tor browser exploitable with js
- issues in surrounding components on oses like tails able to be exploited with eg crafted video files sent through tor
etc etc
even if the cryptography is rigorous a given threat model includes the side channels in all surrounding components
- generally compromising nodes
- firefox bugs in tor browser exploitable with js
- issues in surrounding components on oses like tails able to be exploited with eg crafted video files sent through tor
etc etc
even if the cryptography is rigorous a given threat model includes the side channels in all surrounding components
Follow
@rats @eTerrorist @zero @Returned_tryhard @xxshtxx @ew @Eris @D00B @PROtoss987 @q Large sponsor of the tor project is the US gov, but people like Snowden still swear by it. Even if there are hypothetical ways to exploit it (aswell as unfixable statistical attacks), chances are low they'll be used on small targets individually to not risk exposing them, so you don't really need to worry. And you never run tor with JS
@applejack @rats @eTerrorist @zero @Returned_tryhard @xxshtxx @ew @Eris @D00B @PROtoss987 @q it benefits the government to have Tor. Especially if they're trying to investigate technologically smart criminals. I'll also add that 99 percent of crypto is state sponsored. What's ultimately important is that as many eyes are on the source code.
@applejack @eTerrorist @zero @Returned_tryhard @xxshtxx @ew @Eris @D00B @PROtoss987 @q yes, at this point if there are 0day exploits in components for tor/tails theyre very valuable and would be used only on high profile targets
it does not seem probable to me that tor is inherently broken in some way (like, more than any other given piece of software) but people should do their research and think about what they are trying to accomplish by using it and see if it makes sense
it does not seem probable to me that tor is inherently broken in some way (like, more than any other given piece of software) but people should do their research and think about what they are trying to accomplish by using it and see if it makes sense
