Delivery-Date: Sun, 09 Nov 2014 04:11:56 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.2 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID,URIBL_RHS_DOB autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 062F11E0699;
	Sun,  9 Nov 2014 04:11:55 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id F221A318FF;
	Sun,  9 Nov 2014 09:11:50 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 1C3D83163C
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 09:11:47 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 9QnSq6PDIXfQ for <tor-talk@lists.torproject.org>;
 Sun,  9 Nov 2014 09:11:47 +0000 (UTC)
Received: from s2.netcompartner.com
 (lbthomsen-3-pt.tunnel.tserv6.fra1.ipv6.he.net [IPv6:2001:470:1f0a:10f2::2])
 by eugeni.torproject.org (Postfix) with ESMTP id E51AE304BC
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 09:11:46 +0000 (UTC)
Received: from ncpws04.localnet (ncpws04.netcompartner.com
 [IPv6:2001:470:ec48:0:e2cb:4eff:fe3e:11c6])
 by s2.netcompartner.com (Postfix) with ESMTPSA id E70D0C0606
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 10:11:43 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple;
 d=reclaim-your-privacy.com; s=2014; t=1415524304;
 bh=CLj3B1yGbkTFbqV0fD36a3Ji+Y45QAjERTG4eIBDM1k=;
 h=From:To:Subject:Date:In-Reply-To:References:From;
 b=CJ+YwA8gAy0elt9nR7c1aTjUvkdiQezh4XPLL6A4S7Rr8zZFKwiaYWY+rrZvmhdvj
 ecFe0hbke8TNqSlttYfZobN4swOsO1k2qwrBPKHN3J1amqyhk5pF5h8kmHpUWiCpwz
 PazI5GcC2kCsyl6c16opEe2ms92OeJSTAXoqwphwJx4Y7OIE1Uxnf16xSQyPfLzgLe
 ro7LEFBD9JR0Da0Nw/4SCsefAjbAXRygA19yQTJUtovWbnYa+YYdA9fRB21L/KcVuT
 65ks5+rHOtroytUn2JKwhF1vGrY+EXPxwwIY6226gCtp5wpsoByRKMiqxMfUkd+3W6
 ov/ZkVvoNQ8uw==
From: Lars Boegild Thomsen <lth@reclaim-your-privacy.com>
To: tor-talk@lists.torproject.org
Date: Sun, 09 Nov 2014 17:11:35 +0800
Message-ID: <5489344.jCI9C761dx@ncpws04>
Organization: Reclaim Your Privacy
User-Agent: KMail/4.14.1 (Linux/3.16-3-amd64; KDE/4.14.2; x86_64; ; )
In-Reply-To: <5457297D.7050904@tengu.ch>
References: <7488606.2oxgLGVBPl@ncpws04> <2196549.fhDk341dRF@ncpws04>
 <5457297D.7050904@tengu.ch>
MIME-Version: 1.0
Subject: Re: [tor-talk] Cloak Tor Router
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============5670807457580245461=="
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>


--===============5670807457580245461==
Content-Type: multipart/signed; boundary="nextPart1611366.4iHhVhtKDP"; micalg="pgp-sha1"; protocol="application/pgp-signature"


--nextPart1611366.4iHhVhtKDP
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="utf-8"

On Monday 03 November 2014 08:06:37 CJ wrote:
> hmm, either certificate pinning, or signature check with some gpg key=
 =E2=80=94
> though this might be a bit hard for embedded stuff=E2=80=A6 ?
> Anyway, having "a way to validate" the update would be necessary.

I guess a certificate check is the best way to protect against a man-in=
=2Dthe-middle attack.  MD5 sum can verify the update package is downloade=
d successfully.

> Nice project, and I love seeing your interactions with this list. Tha=
t's
> the way to go in order to provide "something" good. Unlikely the
> anonyblow ;).

Well, problem is Anonabox seems quite good at selling his idea and we a=
re probably too nerdy to gain traction :)

=2D-=20
Lars Boegild Thomsen
https://reclaim-your-privacy.com
Jabber/XMPP: lth@reclaim-your-privacy.com
--nextPart1611366.4iHhVhtKDP
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part.
Content-Transfer-Encoding: 7Bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAABAgAGBQJUXy/MAAoJECTnqaDCoNb067UH/A84uJv1HpaM0qMI0yIuYsz9
MefYa1pk+lt5nuyvuN43uHDbbB4EUooY/nwANRzElxWaj2HQpGMFw3sgLtNkvATz
GeAX4hPsHK3bRnhcecRT8uDDCmojTve/3uQIUQreTu9jWpipzZ9QNqrysvCwCJUW
2kC/UDEtU0bHeE/G94DkPKcMR0eTqp+86gw6w7OYId2NQbpnTpVNoDriU5dTogyU
rnuoqS03wi2dc3lWem/Hroqgp4PMGYlc14Zs/A51EhQpF0ju9x6B2mpkrDF8O6AY
uR2HiSO7rpedw+6UsCZgD4hRH2hKGTsi3mCCkMQtlX1LwZO5GJdDXQFvRD7n/6o=
=wrLX
-----END PGP SIGNATURE-----

--nextPart1611366.4iHhVhtKDP--


--===============5670807457580245461==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

--===============5670807457580245461==--

