Op 05-10-16 om 19:36 schreef Evan d'Entremont:
to be more clear, those devices can currently be surveilled passively.
If they were encrypted they couldn't be.
ic, valid point. I was thinking more of the recent rise in exploited IoT
devices[1] and the sad state of IoT security in general.
[1]
Op 04-10-16 om 16:59 schreef Tim Kuijsten:
Op 03-10-16 om 19:43 schreef Evan d'Entremont:
Not if IoT dev's start encrypting things.
How would encryption help against exploited IoT devices?
sorry, i meant to ask how would encryption help against *exploiting* Io
Op 03-10-16 om 19:43 schreef Evan d'Entremont:
Not if IoT dev's start encrypting things.
How would encryption help against exploited IoT devices?
___
tor-dev mailing list
tor-dev@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listin
It's also worth noting that newer (0.2.7.x) versions of Tor should not
be doing DHE except when talking to old versions of Tor, linked
against old versions of OpenSSL as ECDH is both mandatory and preferred
in the current stable series.
Is ECDH currently mandatory or did you mean ECDHE?
