Delivery-Date: Mon, 30 Jun 2014 18:41:42 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	FREEMAIL_FROM,RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 505571E0C0B
	for <archiver@seul.org>; Mon, 30 Jun 2014 18:41:40 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 1F4462E8A5;
	Mon, 30 Jun 2014 22:41:37 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 7BB2E2E883
 for <tor-talk@lists.torproject.org>; Mon, 30 Jun 2014 22:33:18 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id Lv3lrdxTAc5C for <tor-talk@lists.torproject.org>;
 Mon, 30 Jun 2014 22:33:18 +0000 (UTC)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com
 [66.111.4.25])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id 5D3E22E73A
 for <tor-talk@lists.torproject.org>; Mon, 30 Jun 2014 22:33:18 +0000 (UTC)
Received: from compute1.internal (compute1.nyi.mail.srv.osa [10.202.2.41])
 by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id 79B25212D4
 for <tor-talk@lists.torproject.org>; Mon, 30 Jun 2014 18:33:15 -0400 (EDT)
Received: from web6 ([10.202.2.216])
 by compute1.internal (MEProxy); Mon, 30 Jun 2014 18:33:15 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=fastmail.net; h=
 message-id:from:to:mime-version:content-transfer-encoding
 :content-type:in-reply-to:references:subject:date; s=mesmtp; bh=
 Y4dONBvru0fRSZJtH9Vj492At7c=; b=WyhLlvthLPOJl3FJGSaF5XN3BLNUEbnp
 98EC5Jo9bkQoMH/Ui1IsVy4wlG0ajHzifKCAdHFCvSFcBHes3IIcMNdiXEU8mg9+
 3vfgaaQwuyDhY9/6m0Xz9zP4cFw6BudvtyS5j60lj6dPL32i+h0d9/uOYVEdwSSM
 yZFdARZP51k=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=
 messagingengine.com; h=message-id:from:to:mime-version
 :content-transfer-encoding:content-type:in-reply-to:references
 :subject:date; s=smtpout; bh=Y4dONBvru0fRSZJtH9Vj492At7c=; b=pjW
 6p96bJpBMLHaCd5Jxpl7VhQRn52tZS583wLJEhpR9IbtgfXqufZXMucB/BxuKjTP
 u0h+9sy4rAY7uQUxd/Vztec4NQ7e+96CBbu07DKadYBnDJSxO7xWWGZMOkKqeM/r
 t4lmHVs/XvQ9Qtgc2L1C0SLMhcpFhIDJ6NbBsVq0=
Received: by web6.nyi.mail.srv.osa (Postfix, from userid 99)
 id 61AEB2A7167; Mon, 30 Jun 2014 18:33:15 -0400 (EDT)
Message-Id: <1404167595.11621.136296125.460A0113@webmail.messagingengine.com>
X-Sasl-Enc: Ab38PNAy87qIkCQIrWOPlu80Wrqa4qWfJkb7f5eRQagN 1404167595
From: Geoff Down <geoffdown@fastmail.net>
To: tor-talk@lists.torproject.org
MIME-Version: 1.0
X-Mailer: MessagingEngine.com Webmail Interface - html
In-Reply-To: <1404162914.91055.YahooMailBasic@web122401.mail.ne1.yahoo.com>
References: <1404162914.91055.YahooMailBasic@web122401.mail.ne1.yahoo.com>
Date: Mon, 30 Jun 2014 23:33:15 +0100
Subject: Re: [tor-talk] Bruce Schneier's Guardian Article about N_S_A and
	Tor.
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>



On Mon, Jun 30, 2014, at 10:15 PM, Bobby Brewster wrote:

> 
> But how can the person's computer be identified since all that is seen is
> the connection between the exit node and the destination
> target_website.com
> 
> The point, surely, is that real time code injection should not be
> possible since no-one can trace the connection from the exit node back to
> the user.
> 

 If the code is injected between the target_website.com and the exit
 node, the exit node will relay it faithfully back through the Tor
 network to the client.
It's all just bytes to Tor.

> I am not saying that the user cannot be traced e.g. if he logs into his
> own webmail account via Tor; I am saying that the trace should not occur
> due to the Tor network. 

The trace doesn't take place through the Tor network: the malware placed
on the target person's computer can call home over the clearnet (this is
where Tails/Whonix/VMs come in as a second line of defense); or the
cookies injected can end up being sent to another site that the target
visits which helps link them to an identity or pseudonym (good cookie
hygiene is some small help).
GD

-- 
http://www.fastmail.fm - Accessible with your email software
                          or over the web

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

