Delivery-Date: Tue, 05 Apr 2016 20:51:02 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_ADSP_CUSTOM_MED,
	DKIM_SIGNED,FREEMAIL_FROM,RCVD_IN_DNSWL_MED,T_DKIM_INVALID,T_RP_MATCHES_RCVD
	autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 806F51E0DC5;
	Tue,  5 Apr 2016 20:51:00 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 983933A58C;
	Wed,  6 Apr 2016 00:50:56 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id D2AA13A581
 for <tor-talk@lists.torproject.org>; Wed,  6 Apr 2016 00:50:52 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id SZzfbTde_pxT for <tor-talk@lists.torproject.org>;
 Wed,  6 Apr 2016 00:50:52 +0000 (UTC)
Received: from mail-wm0-x242.google.com (mail-wm0-x242.google.com
 [IPv6:2a00:1450:400c:c09::242])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id 908C03A540
 for <tor-talk@lists.torproject.org>; Wed,  6 Apr 2016 00:50:52 +0000 (UTC)
Received: by mail-wm0-x242.google.com with SMTP id a140so8828678wma.2
 for <tor-talk@lists.torproject.org>; Tue, 05 Apr 2016 17:50:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=googlemail.com; s=20120113;
 h=from:subject:to:references:message-id:date:user-agent:mime-version
 :in-reply-to:content-transfer-encoding;
 bh=cvTQFvjHXI6a6lQdO4b/TlECIdxfI4ER4kGhWvOH0g0=;
 b=G2iDeBmuk2yCIIgUEisM4a83U6mhU8AXKRO2RU8hq1rx1UvVlqDn4+ggUYcgfmmBO9
 sKMh0Ys6Po5TmmEMp6WPb8hWHMueyZ8mZTeDx/3NashiSIM0dmVsNLDqaEC8+Rya1VC4
 8r2yi0ERaBBMPt6+CdCeh+95ITeIljVY0wgja6A/u6QvWdUX//huGzR2KEwhNjaiaADO
 D2JpkqhnvdusY5pekPVAo0H//H5vfEw1oR5N+piIbsjtHSjJqYTeBQgDOPxdAjkbFlvP
 QZ8jT99C8vEGcOVnO1zBI5fIR7Mxu+2kwQz2aU2iHYAvaLhTkoO9kuLDzaTUqNfz1hpw
 Lxng==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:from:subject:to:references:message-id:date
 :user-agent:mime-version:in-reply-to:content-transfer-encoding;
 bh=cvTQFvjHXI6a6lQdO4b/TlECIdxfI4ER4kGhWvOH0g0=;
 b=KvuSWDtgvuareblDIO4hqqhnzl83sni6k1+OlU4dwVjZOCmuAHbyuYHdrSwGHcI3iw
 hLBnH+TuHOdDSnxR++emGEceAgvp+njs0BmEZXturZ7xjEbm7Edxw7OgYP14gCdzXSqF
 FMN7xpbD/p1trcMG2vgz6AbpovknKdEGzM25pXiSdECZAyfZ4EIjOoFJp9FehpTsa1C9
 O+0k5hyGUYLTl0WON2p50/m3LOWenkFoMrU5mJe0FRqWNGRH9NtS1rt2tHcfUf9Smh/N
 Iuor5AmHXcA/Tie1MyndGcOVSTKB9gIBa9yvtfIxQ7lMtYD1X2gN94/vTi6M/jg1sYO4
 hRbQ==
X-Gm-Message-State: AD7BkJKKM6ZDrAIrtlyFNInWtoYdzIgr+q1wi0ZqlO/NE0DLdcwUC0rt4DYCKTY3L94TCw==
X-Received: by 10.194.3.20 with SMTP id 20mr5871835wjy.59.1459903849415;
 Tue, 05 Apr 2016 17:50:49 -0700 (PDT)
Received: from [172.16.41.91] (195-154-136-42.rev.poneytelecom.eu.
 [195.154.136.42])
 by smtp.googlemail.com with ESMTPSA id b1sm370435wjy.0.2016.04.05.17.50.48
 for <tor-talk@lists.torproject.org>
 (version=TLSv1/SSLv3 cipher=OTHER);
 Tue, 05 Apr 2016 17:50:48 -0700 (PDT)
From: aka <akademiker1@googlemail.com>
X-Google-Original-From: aka <akademiker1@gmail.com>
To: tor-talk@lists.torproject.org
References: <c804de8bed012b97411a8d8f58db4c3c@cannon-ciota.info>
Message-ID: <57045D66.7010806@gmail.com>
Date: Wed, 6 Apr 2016 02:50:46 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101
 Thunderbird/38.7.1
MIME-Version: 1.0
In-Reply-To: <c804de8bed012b97411a8d8f58db4c3c@cannon-ciota.info>
Subject: Re: [tor-talk] Operation Onymous Technical Explanation?
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

CANNON NATHANIEL CIOTA:
> Seeking technical information on how hidden services were de anonymized
> and what updates to HS protocol was applied as a mitigation.
> Thanks,

A protocol flaw allowed Guard-node and Exit-node (or that thing that
does rendezvous, forgot the name) to talk to each other over a "hidden
information line" on one Tor circuit. Guard-node knows the real IP,
Exit-node knows traffic + destination IP or in the case of hidden
services, the destination onion.
If both nodes were attacker-controlled, they talked to each other via
that information line, using some weird Tor control messages which were
somehow transparently transported on the whole circuit.
Torproject disabled that weird control message and included a detection,
if any Tor client notices someone still using it, it creates a log
message with the instruction to notify Torproject.
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

