Delivery-Date: Thu, 26 Jun 2014 03:41:54 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.8 required=5.0 tests=BAYES_00,FREEMAIL_FROM,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 03AA81E0A22
	for <archiver@seul.org>; Thu, 26 Jun 2014 03:41:52 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id F0C9E2F63C;
	Thu, 26 Jun 2014 07:41:50 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 32FEC2F856
 for <tor-talk@lists.torproject.org>; Thu, 26 Jun 2014 07:30:51 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id EfN7sr4BbLGU for <tor-talk@lists.torproject.org>;
 Thu, 26 Jun 2014 07:30:51 +0000 (UTC)
Received: from continuum.iocl.org (continuum.iocl.org [217.140.74.2])
 by eugeni.torproject.org (Postfix) with ESMTP id 8A7112F853
 for <tor-talk@lists.torproject.org>; Thu, 26 Jun 2014 07:30:50 +0000 (UTC)
Received: (from krey@localhost)
 by continuum.iocl.org (8.11.3/8.9.3) id s5Q7Ujh14259;
 Thu, 26 Jun 2014 09:30:45 +0200
Date: Thu, 26 Jun 2014 09:30:45 +0200
From: Andreas Krey <a.krey@gmx.de>
To: tor-talk@lists.torproject.org
Message-ID: <20140626073045.GA10980@inner.h.apk.li>
References: <53AB742E.5000400@riseup.net>
 <DUB121-W1602424B2673FF14097129C8180@phx.gbl> <53ABAAFA.1040406@riseup.net>
 <C21E9389-F7C9-47E7-B475-A3D23C8C4F14@hidemeta.com>
Mime-Version: 1.0
Content-Disposition: inline
In-Reply-To: <C21E9389-F7C9-47E7-B475-A3D23C8C4F14@hidemeta.com>
User-Agent: Mutt/1.4.2.1i
X-message-flag: What did you expect to see here?
Subject: Re: [tor-talk] Secure Hidden Service (was: Re: ... Illegal Activity
	As A Metric ...)
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On Thu, 26 Jun 2014 00:50:29 +0000, Tor Talker wrote:
...
> > enough to do it securely enough. Also, hidden services are far more
> > vulnerable than Tor users, simply because they serve stuff.
...
> What sort of vulnerabilities would you expect to see?

Problem: Your hidden server can be made to talk by accessing it
(which is not the case for tor clients). Thus correlation attacks
are possible if you have access to the bandwith data of a server
you suspect to be a hidden service. Also the downtime of a hidden
service could be correlated with obtained downtimes of IP addresses
of machines at usual hosting providers (or elsewhere; apparently
pinging the entire v4 internet is quite feasible nowadays).

Which means it might be advisable to run the hidden service in
multiple instances (no load balancing thereby, though), and use
a rock-solid server and connection.

Andreas

-- 
"Totally trivial. Famous last words."
From: Linus Torvalds <torvalds@*.org>
Date: Fri, 22 Jan 2010 07:29:21 -0800
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

