log☇︎
1184 entries in 0.869s
asciilifeform: mircea_popescu: there are quite a few serious problems with TOR, possibly including most of the nodes being NSA-owned. But last week's events had nothing to do with this.
Kleeck_: No, no, no... There is some redeemable value in using Mozilla over TOR... You have your analysis backwards...
mircea_popescu: tor however is not it.
Kleeck_: TOR has not been raped to hell. /sigh... So much misunderstanding...
optimator: Menoetius: i was suggesting the honey pot in two ways. 1) get neferious person to give you btc, then analyze the address it came from; and 2) tor attack via something like - www.mit.edu/~ecprice/papers/tor.pdf
asciilifeform: TOR is fairly secure against people who aren't its pwners.
Kleeck_: TOR is much more secure than that...
mircea_popescu: tor is about as useful for security as ripple is for cryptocurrency
Menoetius: "he 'honeypot-by-design' hypothesis is considerably stronger for TOR than for Bitcoin."
Kleeck_: I feel that if people understood crypto better we would understand the security that TOR brings, and the possible exploits and various points of entry.
asciilifeform: quite a few people need to go back and learn the basics of crypto before they try to understand a widget like TOR
Kleeck_: I haven't come across a technical artical outlining documented TOR vulns.
Kleeck_: lol. - You realize how TOR works right? End-to-end encryption from node-to-node all the way to the exit. Tracking output from the exit node does little to no good unless you are tracking a lot of other data.
dexX7: tor is the underlying protocol and freedom host was a service using/on tor - you can remove the host, but that doesn't change anything about tor itself
optimator: "someone has a honeypot theory for btc" - I have a tor exist node available for sniffing injecting - .5 btc - wanna pay?
Kleeck_: What is this "honey pot theory" for TOR?
Kleeck_: someone has a honeypot theory for TOR? I'd like to hear more.
asciilifeform: dexX7: the 'honeypot-by-design' hypothesis is considerably stronger for TOR than for Bitcoin.
dexX7: do people really think "tor is down"? lol
Kleeck_: People are confused about what "TOR IS DOWN!" means. There was a dude in Ireland and a couple other exit nodes, takesn down. This was done through a vulnerability in a mozilla firefox build from nov. 2012. TOR is not down. Just to be clear.
Menoetius: all tor nodes are sniffed
asciilifeform: has anybody considered how easy it is to run arbitrarily many doctored TOR exit nodes?
mircea_popescu: separate issues. on one hand java, on the other tor.
Kleeck_: But for real. You can have some goddamn secure OS run TOR and e-mail the shit out of some Govs.
Kleeck_: The issue wasn't TOR, it was Java.
Kleeck_: Get informed: http://www.itworld.com/software/367979/tor-project-stop-using-windows-disable-javascript
Kleeck_: Why is he NOT on TOR?
asciilifeform: see the now-famous 'TOR incident' as an obvious example. what does one need to have in place of a brain to rely on a winblows box for 'anonymous' naughties?
dub: also, tor hacked http://www.theverge.com/2013/8/3/4584980/inax-satis-bluetooth-toilet-android-app-vulnerability
naemsi: more freedomhost news than tor news as i parsed it
rulother-tab: You guys heard about the tor news
pankkake: I wonder why people were using a hoster on TOR, kinda defeats the purpose
mircea_popescu: still. i guess all the people that wondered why i'm rejecting tor for mpex back during the floods have more reasons to scratch their heads.
dexX7: http://www.twitlonger.com/show/n_1rlo0uu "many" (i have no relation) tor sites taken down, hoster arrested and js exploit installed, tormail included
[\]: Urushiol, I'm sure many people would offer to be a tor tunnel for them.
ThickAsThieves: Please load the Tor browser package and visit the designated .onion address for Silk Road.
Ukyo: on an all tor exchange
dexX7: i'd add a tor layer so to say but with the same endpoint instead of a seperate new trading plattform - if that makes sense
mircea_popescu: tor can't really cope with exchange load.
random_cat: i've been thinking about a tor exchange. i am just concerned about the problem from a trade bot's point of view
ThickAsThieves: a tor exchange could do well
Ukyo: for tor only users
Ukyo: and setup a tor hidden service
Ukyo: block tor
Ukyo: and while i really do resepect ppls privacy. tor is just making it hard to do so
Ukyo: i almost did block tor the other day
Ukyo: tor changes constantly
dexX7: how is tor used to hurt bf?
Ukyo: on tor logins
Ukyo: then you should hear my rant about tor
random_cat: yes on tor
Ukyo: you tor'ing ?
jcpham: as fine as things can be when surfing the youtube with tor
jcpham: then i switched to my tor proxy
jcpham: i used tor
cads: seeing one implemented as a TOR hidden service
ThickAsThieves: tiberius just figured out he could use webchat/tor to get around his banning
deadweasel: tor-sasl is always an option, no?
davout: it would listen to messages on a distributed queue, accessing it through Tor
davout: and even if you have a hot wallet it should sit tight behind tor getting its orders only from a consensus of auditors
davout: and since you can run the auditors behind tor a distributed message queue or whatever it becomes very very hard to compromise
asciilifeform: given the way bitbet works, how would a hypothetical IP ban matter? Isn't everyone using TOR/proxies/etc. anyway?
bitcoin935: by doing what using stupid tor?
mircea_popescu: I have extensive knowledge of Bitcoin, TOR and data encryption.
jcpham: Tor botnet, the Silk Road hidden service, and the DuckDuckGo hidden service. We tracked these for several days
jurov: http://habrahabr.ru/post/182150/ Diablo-D3, do I read right FSB wants to outlaw Tor in Russia?
deadweasel: he probably ran a tor relay once so they are saying he funded his busiess via cp
asciilifeform: as if a fellow who can afford world-class hashing power would forgo TOR.
Namworld: Well I'd need to know how many US SD players use proxy/Tor to play and how many just plainly access.
Framedragger: speculation again (tor-dev etc): they're trying to discourage off-country services
mircea_popescu: that tor can't take it.
mircea_popescu: and tor is not actually strong enough to withstand the sort of ddos we;'ve been seeing
ThickAsThieves: and tor cant protect it without a change
truff1es: got tor
mjr___: http://www.theregister.co.uk/2013/04/22/tor_japan_police_ban/ This is not good
truff1es: do u have to download tor browser?
truff1es: i will have to try tor..
mjr___: couldn't you just use tor?
Chaang-Noi: i was just looking to see what btc operations were on tor
Chaang-Noi: long time ago and it was on tor
mod6: i seriously do... i've had to navigate through all of these scams since the old days. i only got scammed, so far, by tor-wallet which was idiot to use anyway. Lost like 5 BTC on them.
error4733: Japan try to ban TOR : http://mainichi.jp/english/english/newsselect/news/20130418p2a00m0na013000c.html
ThickAsThieves: now the tor IPs are banned
ThickAsThieves: i had to use tor a few times to access the site
mircea_popescu: not unless the guy's name actually is Tor.
MJR__: and tor broker holds your position for you
mircea_popescu: well ya. so random noob showing up on forum and proposing to "advise your wealth" or to "pls halp me r spanish mother of two" or to "supersikrit tor broker of irl securities"
MJR__: I believe that's the point of tor...
MJR__: mircea_popescu: anonymous on tor network with BTC
MJR__: anyway, tor broker is completely different
Chaang-Noi: tor? :)
jurov: not hassle with tor
deadweasel: benkay: i don't get it either, no tor, he's kind of a twat
benkay: wtf hacker and not tor
pigeons: satoshi or guest? satoshi used tor
midnightmagic: mircea_popescu: Yep, it didn't like Tor.
mircea_popescu: ZedsterX try tor.
mircea_popescu: ppl on tor post all the time
midnightmagic: Maybe it doesn't like Tor.
MJR_: and tor browser