Delivery-Date: Wed, 10 Sep 2014 08:12:11 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 570DF1E0BA9;
	Wed, 10 Sep 2014 08:12:10 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 076B6307B3;
	Wed, 10 Sep 2014 12:12:07 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 2408624327
 for <tor-talk@lists.torproject.org>; Wed, 10 Sep 2014 12:12:03 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id auEZFn5QyLp5 for <tor-talk@lists.torproject.org>;
 Wed, 10 Sep 2014 12:12:03 +0000 (UTC)
Received: from mail-ie0-x22a.google.com (mail-ie0-x22a.google.com
 [IPv6:2607:f8b0:4001:c03::22a])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id A1A03307B3
 for <tor-talk@lists.torproject.org>; Wed, 10 Sep 2014 12:12:02 +0000 (UTC)
Received: by mail-ie0-f170.google.com with SMTP id tp5so7664421ieb.15
 for <tor-talk@lists.torproject.org>; Wed, 10 Sep 2014 05:12:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=cyblings.on.ca; s=google;
 h=message-id:date:from:user-agent:mime-version:to:subject:references
 :in-reply-to:content-type:content-transfer-encoding;
 bh=YzFeJ69TuFgKgjr6Rs4+kI7KxfRXrKvkugJdDUqrZHU=;
 b=e6Dpetk5HGSVwLCQvirmZPMLsRP5OCU8cDDwDiBYMbtZRqMqtoxZoM5WmL2eHr+fLU
 AWrh1rschyuuinN8vlF8rmxaWcAOnXYCowytcOYrgAkqea6F1/8ICUdChW4EpwgTctNq
 PeZAYJ96DuVjs0sQAEKCP+soNI4glKZ9K87k8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to
 :subject:references:in-reply-to:content-type
 :content-transfer-encoding;
 bh=YzFeJ69TuFgKgjr6Rs4+kI7KxfRXrKvkugJdDUqrZHU=;
 b=DCOTaSUI1snnn0NEWR/pigd84d66F+d2EpW8qMzfuaLmaifx8/YkJXFU6mcrsWIOUe
 +BW9MK5nnvH0M0YcYsI0bd1QrBysELHtvb/eeiaLwBNuOLeUUeQ1JFrIgClg7+E3Eq8t
 Le/pkaf1ClF7uHH5AT2rMU6lP0H50FgL6N+/IyhK1kK6InUwzMCoW4nrC5hkhQjqzvj/
 uPfvwTx/lFfJ/auJQb2rj6AXtUwPpIS1SnR2aNm2rygVfceAXiw1HOdGabjcJznTgWK8
 SN7+ZKtGxbKuU4YP+zMDnXa9Az/Be7hpVJJCr1W33RLbkh9gAT5iNfm65ucDv2FOgTTM
 kzGw==
X-Gm-Message-State: ALoCoQnss3XywuPYVWVU9mpTEzcL/CZvaQ1RmuWpbCFL4jkryOBvOx1eyxQVtjxztaJpqfeDoMNc
X-Received: by 10.50.138.233 with SMTP id qt9mr8862197igb.30.1410351120309;
 Wed, 10 Sep 2014 05:12:00 -0700 (PDT)
Received: from [192.168.1.2] (69-196-152-198.dsl.teksavvy.com.
 [69.196.152.198])
 by mx.google.com with ESMTPSA id l9sm1872488igu.17.2014.09.10.05.11.58
 for <tor-talk@lists.torproject.org>
 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Wed, 10 Sep 2014 05:11:59 -0700 (PDT)
Message-ID: <54104007.9070407@cyblings.on.ca>
Date: Wed, 10 Sep 2014 08:11:51 -0400
From: krishna e bera <keb@cyblings.on.ca>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
 rv:31.0) Gecko/20100101 Thunderbird/31.0
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <4dbf80e1a3ae8b182a15ea2af6fa10dc@openmailbox.org>
 <20140814001854.GO8819@moria.seul.org>
 <cd0f0f8d006df59c665f6e8cba21e16f@openmailbox.org>
 <540D5911.1060506@riseup.net>
 <7f4a7e28fce1849455b0d162fddf059f@cryptolab.net>
 <540D685A.9080600@riseup.net>
 <c31b4308564c424f53838ac19d02a2cc@cryptolab.net>
 <540FBDB9.30509@technoskald.me>
 <d99a66e76527ecf9696bd35286fa4cc0@cryptolab.net>
In-Reply-To: <d99a66e76527ecf9696bd35286fa4cc0@cryptolab.net>
Subject: Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 14-09-10 12:26 AM, Griffin Boyce wrote:
> Things that are important to note for hidden service operators:
>   - Firewall rules are really useful for keeping out unwarranted scrutiny.

Would it be better to have a separate firewall appliance to ensure the
hidden service box cannot be as easily DDoS'd or exploited?

>   - Don't hardcode your IP address in any links (though this is one of
> the least-likely theories).
>   - Having a pseudonym isn't a replacement for excellent security
> practices.
>   - Don't run a hidden service host.

I dont understand this one.  What is a hidden service operator if not
someone who runs a hidden service host?

>   - For best security, run your own services rather than relying on
> someone else's security.  I feel like this is often overlooked in the
> name of "easiness" but it's really important IMO. [1]
> 
> best,
> Griffin
> 
> [1] Incidentally, the hidden service documentation rewrite has been
> underway for a while now.
> [2] As Salvador Dali once said "I don't do drugs, I *am* drugs." #fact

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

