On Sat, Dec 27, 2014 at 9:38 AM, Tom van der Woerdt wrote:
> Hi all,
>
> After reading the Tor spec [1] I did some digging and realized that the old
> handshakes and link protocols (v1 (certs up-front) and v2 (renegotiation))
> are not used anymore as of 0.2.3.6-alpha which introduced link proto v
In short: The implementation of ScrambleSuit's replay protection is
incomplete which means that an active adversary can circumvent it. All
the credit for this discovery goes to Lasse Ă˜verlier.
ScrambleSuit uses Uniform Diffie-Hellman as one of its authentication
mechanisms. To defend against rep
