Delivery-Date: Fri, 31 Oct 2014 11:49:50 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 1B1761E0291;
	Fri, 31 Oct 2014 11:49:49 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id A9F97318B4;
	Fri, 31 Oct 2014 15:49:45 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id F196C216C8
 for <tor-talk@lists.torproject.org>; Fri, 31 Oct 2014 15:49:41 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id yzMrkU4lyobf for <tor-talk@lists.torproject.org>;
 Fri, 31 Oct 2014 15:49:41 +0000 (UTC)
Received: from mail-wi0-x22d.google.com (mail-wi0-x22d.google.com
 [IPv6:2a00:1450:400c:c05::22d])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id A7BAD210C6
 for <tor-talk@lists.torproject.org>; Fri, 31 Oct 2014 15:49:38 +0000 (UTC)
Received: by mail-wi0-f173.google.com with SMTP id n3so1684871wiv.6
 for <tor-talk@lists.torproject.org>; Fri, 31 Oct 2014 08:49:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=afo-tm.org; s=afo-tm.org;
 h=sender:message-id:date:from:mime-version:to:subject:references
 :in-reply-to:content-type:content-transfer-encoding;
 bh=pAbdUkPyfn1+tI3JVBSUnxlh/+F0MAE0KYaNkESfjH8=;
 b=HuAbBM6tb3ZXG/A/mEZWvsfT4dKkBU1ROp2w6EF9D43aDQyizS1NR0drHY89jESokp
 NTOhp9Fwwmbt0dGW8hQEgzkLAOe4ph8fp6sg2J7nSTmRKDAWLCZAFUzv/2W8YX2Io4JY
 4RgxmSJahrw+PPZMb7BNjGQYJVMQpUO57iV2Y=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:sender:message-id:date:from:mime-version:to
 :subject:references:in-reply-to:content-type
 :content-transfer-encoding;
 bh=pAbdUkPyfn1+tI3JVBSUnxlh/+F0MAE0KYaNkESfjH8=;
 b=OEJujbeoM/E2th9EqXpNkqQF7985/PI31QdQcRVU9awLUjOSnm91ZhBojsXdPZc3OY
 S9iD1U108KyXknmiw1tl75x8kPR0SVF94jyO5rKRz83kXEnqXGjxFa3Shg5ZbC1AbJJw
 XKfXW6cGzUGS4R0/1taIRPMFeLDuBufdRCpQaLddPNRYTj9kzsRFBMqGxafz5S2lGuwE
 qiJonsOMYGuUwU00Wc0lT17wckrx7G9CGS/gxpus7z/hEr8jBDk9WYvI6T0OXmvDubsd
 DMhPXQA9JI+FdU6a53QzRa0X9SFPTfOmORH6HkBe55ibsL+1IAcPLnvhorH6VS9CyDOz
 dZ+w==
X-Gm-Message-State: ALoCoQlLpCVhsFlof4bYs9U1mvr7eYkprx+K9FNoqbY8JgE/JyGFamVsc+Jo32UvRMAGgv6v/Jqr
X-Received: by 10.180.85.6 with SMTP id d6mr4813050wiz.82.1414770575233;
 Fri, 31 Oct 2014 08:49:35 -0700 (PDT)
Received: from 127.0.0.1 ([212.7.194.71])
 by mx.google.com with ESMTPSA id fx2sm12488222wjb.37.2014.10.31.08.49.33
 for <tor-talk@lists.torproject.org>
 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Fri, 31 Oct 2014 08:49:34 -0700 (PDT)
Message-ID: <5453AF92.906@afo-tm.org>
Date: Fri, 31 Oct 2014 16:49:38 +0100
From: AFO-Admin <tor@afo-tm.org>
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <20141031122302.GA5554@glue.grepular.com>
 <D078CF97.816C%alecm@fb.com>
In-Reply-To: <D078CF97.816C%alecm@fb.com>
Subject: Re: [tor-talk] Facebook brute forcing hidden services
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi,
i really think that this is a good thing, because i think this hidden
service will get a lot attention in countries where Facebook is
blocked. So it will get one of their goals to improve hidden service
scalability and performance which is good for all of us. I hope they
share their experience with operating this hidden service with us.

Also it is nice because i can tell the next time police is knocking at
my door that now even facebook is on Tor. And they know what facebook
is and i hope they will start to accept that tor is not build for
support terror (which still some of that people that i had to talk
with think).

Thanks Facebook, keep this project alive.

Alec Muffett:
> Hi - My name=B9s Alec, I work for Facebook and am the team lead for
> Facebook over Tor.
> =

> Long story short: details will come out later, but we just did the
> same thing as everyone else: generated a bunch of keys with a fixed
> lead prefix ("facebook") and then went fishing looking for good
> ones.
> =

> I feel that we got tremendous lucky.
> =

> - alec
> =

> On 10/31/14, 5:23 AM, "Mike Cardwell" <tor@lists.grepular.com>
> wrote:
> =

>> https://www.facebook.com/notes/protect-the-graph/making-connections-to-f=
ac
>>
>> =

ebook-more-secure/1526085754298237
>> =

>> So Facebook have managed to brute force a hidden service key
>> for:
>> =

>> https://urldefense.proofpoint.com/v1/url?u=3Dhttp://facebookcorewwwi.oni=
on/&
>>
>> =

k=3DZVNjlDMF0FElm4dQtryO4A%3D%3D%0A&r=3DPKCvk5ihsZdnlobuFIuhTw%3D%3D%0A&m=
=3DCZ27
>> H74ab0d0fF2o5LtJoybnrPSp3tV2eaCxPdBkwxU%3D%0A&s=3Ddf412954e11b3460e9e27a=
d5ae
>>
>> =

8cb307233465ec461aa8ca461b66a94e457dfc
>> =

>> If they have the resources to do that, what's to stop them brute =

>> forcing a key for any other existing hidden service?
>> =

>> -- Mike Cardwell =

>> https://urldefense.proofpoint.com/v1/url?u=3Dhttps://grepular.com/&k=3DZ=
VNjlDM
>>
>> =

F0FElm4dQtryO4A%3D%3D%0A&r=3DPKCvk5ihsZdnlobuFIuhTw%3D%3D%0A&m=3DCZ27H74ab0=
d0f
>> F2o5LtJoybnrPSp3tV2eaCxPdBkwxU%3D%0A&s=3Dd9b3aa4ee032ade1291d78d5505c434=
b554
>>
>> =

faf83d500bf7760e23af875c29f57
>> https://urldefense.proofpoint.com/v1/url?u=3Dhttps://emailprivacytester.=
com/
>>
>> =

&k=3DZVNjlDMF0FElm4dQtryO4A%3D%3D%0A&r=3DPKCvk5ihsZdnlobuFIuhTw%3D%3D%0A&m=
=3DCZ2
>> 7H74ab0d0fF2o5LtJoybnrPSp3tV2eaCxPdBkwxU%3D%0A&s=3Dd21764a1dcedecaf88963=
5ab6
>>
>> =

ca8300b1867a5084b7e78922ecdf0a911d9dfc4
>> OpenPGP Key    35BC AF1D 3AA2 1F84 3DC3   B0CF 70A5 F512 0018
>> 461F XMPP OTR Key   8924 B06A 7917 AAF3 DBB1   BF1B 295C 3C78
>> 3EF1 46B4
> =

-----BEGIN PGP SIGNATURE-----
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=3Dov5o
-----END PGP SIGNATURE-----
-- =

tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

