LWN.net Logo

Advertisement

VPS Hosting - $19.95/mo

Smart VPS: 192 MB RAM, 10 GB disc space, 50 GB data transfer and Virtuozzo OS virtualization solution.

Advertise here

Not logged in

Log in now

Create an account

Subscribe to LWN

Weekly Edition

Return to the Press page

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

Plugging into GCC

LWN.net Weekly Edition for October 2, 2008

Ubuntu debuts its Upstream Report

openSUSE and the distribution of proprietary software

LPC: What's happening with webcams

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

GNU/Linux free software tools to preserve your online privacy, anonymity and security (FSM)

[Posted July 8, 2008 by ris]

Free Software Magazine looks at some free software tools to protect freedom. "Whether you are online or offline, freedom matters. Like good health you never think about it or miss it until it is under threat or actually gone. If you love freedom, you probably love free software and it has given us some terrific tools with which to defend freedom. In this article I will give an overview of some of the available resources (Freenet, Wikileaks and Tor) to protect dissident opinion, facilitate whistle blowing and promote the safe and anonymous development of free software."
(Log in to post comments)

GNU/Linux free software tools to preserve your online privacy, anonymity and security (FSM)

Posted Jul 8, 2008 18:40 UTC (Tue) by salimma (subscriber, #34460) [Link]

The author seems worryingly unaware of the security risk inherent in using Tor -- one might think that in the presence of an untrusted Tor node, the system is not less secure than not using Tor at all, but it's worse, because a single compromised Tor node sees a much larger proportion of Tor traffic than a normal router sees, and the traffic the former sees are more likely to be of a confidential nature.

A better solution would be one like MIT's P2P Anonymization Layer, where the sender pre-selects the path in advance (and thus could blacklist known-to-be-compromised nodes) and encrypt the data packet with the private keys of each of the selected nodes. To compromise anonymity, the first node in the chain must be compromised; to compromise confidentiality, the last node must be compromised.

GNU/Linux free software tools to preserve your online privacy, anonymity and security (FSM)

Posted Jul 8, 2008 22:07 UTC (Tue) by martinfick (subscriber, #4455) [Link] 

I don't think that you understand properly how tor works.  A single compromised node will not
affect your anonymity.  If the entrance node is affected, at worst it may divulge you and your
middle node, still not your destination or exit node.  If your middle node is compromised, it
will not divulge you or your destination.  If your exit node is compromised it will only
divulge your middle node and destination, but not your entrance node or you.  It would
probably take at least 2 compromised nodes to make a guess at your identity and all three to
positively divulge it.

Nevertheless, the tor protocol is such that the tor client is selecting its own path.  This
way you could also eliminate any known compromised nodes from your path.

If you have your doubts about tor, perhaps you should join the tor mailing list and post your
questions/suspicions there; it might be very informative to you.  If your suspicions turn out
to be valid, I am sure that the tor project will appreciate your input.

GNU/Linux free software tools to preserve your online privacy, anonymity and security (FSM)

Posted Jul 9, 2008 0:08 UTC (Wed) by smithj (subscriber, #38034) [Link] 

I believe he was referring to the ability of the exit node to view the traffic being sent.
This is unavoidable, given the fact the the traffic must be sent to a destination outside the
tor network.

However, this isn't a "vulnerability" or "security risk" per se. Tor is intended to
*anonomize*, not to secure traffic on an insecure protocol. Tor should be used when you don't
want the target server to know which IP you're using, or if you don't want routers along the
way to know with whom you're communicating. It does *not* provide end-to-end encryption. If
you need that, use a secure protocol such as HTTPS, SSH, etc, or simply tunnel your protocol
over SSL/SSH/VPN/whatever.

If you need end-to-end message integrity, protection against eavesdropping, and anonymity (a
whistle-blower would fit this definition, for example), the use of a secure protocol over tor
works just fine.

GNU/Linux free software tools to preserve your online privacy, anonymity and security (FSM)

Posted Jul 9, 2008 1:22 UTC (Wed) by salimma (subscriber, #34460) [Link] 

Indeed; my problem with the article is in the way people misuse and misrepresent what Tor
does. There is this anonymity = security misconception among the general public, and the onus
is on the article to make a clear distinction between the two.

Given what we know people actually send over Tor (unencrypted!), the header-level anonymity
they get from Tor can be essentially useless if the payload contains enough identifying
information.

TOR IS THE NSA

Posted Jul 9, 2008 21:13 UTC (Wed) by dulles (guest, #45450) [Link] 

You people are so clueless you don't even know that Tor was created by the NSA. The spooks are
running more front companies than ever, and they spy on every telecommunications node in
existence. I just wonder how far they've gone in infiltrating Linux? The Linux "community" is
a model of stupidity and cluelessness, and your ignorance proves it.

TOR IS THE NSA

Posted Jul 10, 2008 11:41 UTC (Thu) by nix (subscriber, #2304) [Link] 

I have a private intercom system between the upstairs and downstairs rooms 
of my house (why? because I could!)

It's nice to know that my belief that this system, which I built with my 
own hands, is not tapped by the NSA (nor even by GCHQ), is stupid and 
clueless.

(I wonder how they tapped it? Breaking into my house? Mystic alien-sourced 
government nanotech? Every node in existence, you said: and this one is 
definitely in existence. It's interesting that you say they spy on the 
millions of telecommunications devices sold so that mothers can hear if 
their babies cry, too: spotting the potential subversives young!)

(btw, look at the email addresses of the SELinux contributors sometime. 
The NSA don't need to `infiltrate': we let them participate just like 
everyone else, without needing to bother with all that cloak-and-dagger 
stuff. And their work makes Linux more secure for everyone, them as well 
as us. Sheesh.)

(apologies for responding to the troll)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds