Re: [tor-dev] Proposal 246: Defending Against Guard Discovery Attacks using Vanguards

On Sat, Jul 18, 2015 at 03:11:26AM +0300, s7r wrote: > I still see the third hop (speaking from hidden service server start > point) is the weak part here. An attacker can connect to a hidden > service at his malicious relay selected as rendezvous. Before you know > it, all relays in third_guard_se

Re: [tor-dev] Proposal 246: Defending Against Guard Discovery Attacks using Vanguards

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, Your points are correct and I cannot agree more. I don't think that an adversary running his own relays is less of a threat, just that it depends on the adversary and the context. Running his own relays might be the more expensive and time consu

Re: [tor-dev] Fwd: [DNSOP] [Gen-art] review: draft-ietf-dnsop-onion-tld-00

On 07/18/2015 04:15 PM, Wendy Seltzer wrote: > > What if we take a versioned snapshot of the git repository -- or include > the versioning hashes in the references to the git repo? > *** Well, the documents are subject to change, but the URLs should not. Pointing https://torproject.org/spec#tor-p

Re: [tor-dev] Fwd: [DNSOP] [Gen-art] review: draft-ietf-dnsop-onion-tld-00

On 07/18/2015 02:43 PM, hellekin wrote: > On 07/18/2015 01:33 PM, Wendy Seltzer wrote: >> >> We have https://www.torproject.org/docs/documentation.html.en#DesignDoc >> which points to >> >> https://gitweb.torproject.org/torspec.git/tree/tor-spec.txt >> https://gitweb.torproject.org/torspec.git/tree

Re: [tor-dev] Fwd: [DNSOP] [Gen-art] review: draft-ietf-dnsop-onion-tld-00

On 07/18/2015 01:33 PM, Wendy Seltzer wrote: > > We have https://www.torproject.org/docs/documentation.html.en#DesignDoc > which points to > > https://gitweb.torproject.org/torspec.git/tree/tor-spec.txt > https://gitweb.torproject.org/torspec.git/tree/rend-spec.txt > etc. > > Do you think we nee

Re: [tor-dev] Fwd: [DNSOP] [Gen-art] review: draft-ietf-dnsop-onion-tld-00

Hi hellekin, On 07/18/2015 12:22 PM, hellekin wrote: > Dear Tor developers, > > would it be possible to add https://torproject.org/spec page, We have https://www.torproject.org/docs/documentation.html.en#DesignDoc which points to https://gitweb.torproject.org/torspec.git/tree/tor-spec.txt https

[tor-dev] Fwd: [DNSOP] [Gen-art] review: draft-ietf-dnsop-onion-tld-00

Dear Tor developers, would it be possible to add https://torproject.org/spec page, including anchors for the various specifications: #tor-protocol, #tor-rendezvous, etc. pointing to the repository, to accommodate the General Area Review Team's comments, enable future stable reference to Tor specs,

[tor-dev] Some statistics on introduction point stability and correctness

Hello, during the past months we have been working on evaluating and confirming the stability and correctness of Tor hidden services. The hidden services protocol has multiple steps, and its soundness depends on various components of the Tor network. Throughout this document, we assume that the re