Delivery-Date: Thu, 29 Jan 2015 20:01:17 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID,UNPARSEABLE_RELAY,
	URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 3C98E1E0B7E
	for <archiver@seul.org>; Thu, 29 Jan 2015 20:01:16 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id F2A6531B43;
	Fri, 30 Jan 2015 01:01:12 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 4FBC92EF0E
 for <tor-talk@lists.torproject.org>; Fri, 30 Jan 2015 01:01:09 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id kGtEJBPSTCmn for <tor-talk@lists.torproject.org>;
 Fri, 30 Jan 2015 01:01:09 +0000 (UTC)
Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "*.riseup.net",
 Issuer "COMODO RSA Domain Validation Secure Server CA" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id 2EDE12849C
 for <tor-talk@lists.torproject.org>; Fri, 30 Jan 2015 01:01:09 +0000 (UTC)
Received: from berryeater.riseup.net (berryeater-pn.riseup.net [10.0.1.120])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (Client CN "*.riseup.net",
 Issuer "COMODO RSA Domain Validation Secure Server CA" (verified OK))
 by mx1.riseup.net (Postfix) with ESMTPS id 3C405413A4
 for <tor-talk@lists.torproject.org>; Fri, 30 Jan 2015 01:01:06 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak;
 t=1422579666; bh=DNTTkqUjPn/OeD3eoik0ie6I9ric08Yu6qVYdKqJG2I=;
 h=Date:From:To:Subject:References:In-Reply-To:From;
 b=rASp+hOLIT14F6P0Cz7bmctkUZw5PmAMpcy2NEbcKjLuqQhUM+hF5qGPBeaRXtj6D
 DOWul3e2V4GZ5NNDVM1XA5JIn+G2jNAcO84OthtorLoUoXMJLHuF5HivDXR9tlrqfk
 xp1/TJd+bz08cfCCMgRiOeanUOzHkIEUDQh87Owo=
Received: from [127.0.0.1] (localhost [127.0.0.1])
 (Authenticated sender: mirimir) with ESMTPSA id 6FD5042B22
Message-ID: <54CAD7E0.1020406@riseup.net>
Date: Thu, 29 Jan 2015 18:01:20 -0700
From: Mirimir <mirimir@riseup.net>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
 rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <4896dcf43cbf1e811dc789519b150192@openmailbox.org>
In-Reply-To: <4896dcf43cbf1e811dc789519b150192@openmailbox.org>
X-Virus-Scanned: clamav-milter 0.98.5 at mx1
X-Virus-Status: Clean
Subject: Re: [tor-talk] WebRTC to uncover local IP
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 01/29/2015 12:31 PM, spencerone@openmailbox.org wrote:
> Katya Titov kattitov at yandex.com:
>> This PoC has made its ways around. Using webRTC to deanonomize your
>> IP. New to me: https://diafygi.github.io/webrtc-ips/
>>
> 
> My IPAs are displayed when using Firefox, but not using Tor, as
> expected, I think.
> 
> Understanding very little about WebRTC and STUN servers, what does this
> mean for people?

This means that people need to be using gateways (VMs or hardware) for
accessing Tor, VPNs, JonDonym or whatever. There must be _no_ path to
the Internet except through the anonymity system. There must also be no
path to anything sensitive on local networks. For Tor, that means
something like Whonix, the equivalent in Qubes, or a pfSense Tor
gateway. Just sayin'.

> Wordlife,
> SpencerOne
> 
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

