Delivery-Date: Tue, 01 Jul 2014 18:12:19 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.9 required=5.0 tests=BAYES_00,DKIM_ADSP_ALL,
	DKIM_SIGNED,RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 3C54B1E0C18
	for <archiver@seul.org>; Tue,  1 Jul 2014 18:12:18 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id D30112F3D7;
	Tue,  1 Jul 2014 22:12:07 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 4CBCA2EC4A
 for <tor-talk@lists.torproject.org>; Tue,  1 Jul 2014 21:59:59 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id JxvO_gIwTZk0 for <tor-talk@lists.torproject.org>;
 Tue,  1 Jul 2014 21:59:59 +0000 (UTC)
X-Greylist: delayed 353 seconds by postgrey-1.34 at eugeni;
 Tue, 01 Jul 2014 21:59:59 UTC
Received: from mail2.openmailbox.org (mail2.openmailbox.org [212.129.8.132])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id 1FF272138C
 for <tor-talk@lists.torproject.org>; Tue,  1 Jul 2014 21:59:59 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by mail2.openmailbox.org (Postfix) with ESMTP id BDFDA201BEA
 for <tor-talk@lists.torproject.org>; Tue,  1 Jul 2014 23:54:02 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=openmailbox.org;
 h=user-agent:message-id:references:in-reply-to:subject:subject
 :from:from:date:date:content-transfer-encoding:content-type
 :content-type:mime-version:received:received; s=openmailbox; t=
 1404251641; bh=oreqpeOYi2Loxct99u8aGWHIvI1OagaOOLfN0ZTH5Ds=; b=t
 ilPOlMBhDanaUnHQb8xGP9nhOfEilCq77kyYrijyuZXu6zFQVLm1nVjNDBglB0JC
 QunlftH2E9w/NdxuJTqRsE21E3kfzfHeSKpnZRfAvxyKMqlJR4flVzt6Bi0S6Erb
 hcRatWQNnYGYty4OF3gZDRAIhYIWzSD3SqLZ9C64yc=
X-Virus-Scanned: at openmailbox.org
Received: from mail2.openmailbox.org ([212.129.8.132])
 by localhost (mail.openmailbox.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id B_XKw4-3ApXz for <tor-talk@lists.torproject.org>;
 Tue,  1 Jul 2014 23:54:01 +0200 (CEST)
Received: from www.openmailbox.org (localhost [127.0.0.1])
 by mail2.openmailbox.org (Postfix) with ESMTP id 2D2A8202187
 for <tor-talk@lists.torproject.org>; Tue,  1 Jul 2014 23:54:01 +0200 (CEST)
MIME-Version: 1.0
Date: Tue, 01 Jul 2014 21:54:01 +0000
From: williamwinkle@openmailbox.org
To: tor-talk@lists.torproject.org
In-Reply-To: <1404167595.11621.136296125.460A0113@webmail.messagingengine.com>
References: <1404162914.91055.YahooMailBasic@web122401.mail.ne1.yahoo.com>
 <1404167595.11621.136296125.460A0113@webmail.messagingengine.com>
Message-ID: <453fa6292a86de226a955dc5a4255b1a@openmailbox.org>
X-Sender: williamwinkle@openmailbox.org
User-Agent: Roundcube Webmail/1.0.1
Subject: Re: [tor-talk]
 =?utf-8?q?Bruce_Schneier=27s_Guardian_Article_about_N?=
 =?utf-8?q?=5FS=5FA_and_Tor=2E?=
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 2014-06-30 22:33, Geoff Down wrote:
> On Mon, Jun 30, 2014, at 10:15 PM, Bobby Brewster wrote:
> 
>> 
>> But how can the person's computer be identified since all that is seen 
>> is
>> the connection between the exit node and the destination
>> target_website.com
>> 
>> The point, surely, is that real time code injection should not be
>> possible since no-one can trace the connection from the exit node back 
>> to
>> the user.
>> 
> 
>  If the code is injected between the target_website.com and the exit
>  node, the exit node will relay it faithfully back through the Tor
>  network to the client.
> It's all just bytes to Tor.
> 

This is presumably dependent on the TBB having a vulnerability. So, even 
if all users of target_website.com were considered evil and should be 
targeted, this could only happen if a) there was a 0-day for Firefox on 
which TBB is based or b) there is a known vulnerability for Firefox but 
certain users did not bother to update.

The injected code would only be able to discern the client's real IP if 
the malware was successfully deployed and that would require the TBB to 
be compromised.

Right?

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

