[OPSEC] Tor talk discussion, are we safe?

Hi all, I have been reading somewhat into the tor confirmation attack that took place between february and June of this year. It would seem that some of us could have been de-anonymized.

Now for the low-hanging fruit, this is less of an issue as you would be less likely to be a targeted in a sweep.

But what about our vendors? Some use vpn's, but i guarantee not all do.

Although, I have not read of any arrests that suggest a danger to them.


Comments


[6 Points] None:

If the feds come after me I'm goin out guns blazin


[2 Points] PlugBubble:

The Tor Project has officially recommended that all hidden services should relocate themselves.

To quote the Tor Blog, "Hidden service operators should consider changing the location of their hidden service."

https://blog.torproject.org/blog/tor-security-advisory-relay-early-traffic-confirmation-attack

If I was a hidden service operator I would have already shut down my hidden service.

The markets which remain online have some balls or just don't understand the attack.

I wouldn't worry as a Tor client. Tor clients were affected brutally as well but the attack was mostly aimed at hidden services.

As far as we know the attack looked for people who asked for hidden service descriptors and people who published hidden service descriptors.

For example, the attackers would know a client asked for XXXXX.onion but they can't see the traffic or even the fact that they actually visited the hidden service. They do now know that your IP address attempted to access that hidden service though, which is way too much information.

The real problem is that it was able to target people who published hidden service descriptors, matching up XXXXX.onion with the exact IP address and deanonymizing the hidden service completely.

The traffic to and from the hidden service is still to be considered not compromised until the onion key is compromised. This could have and probably did already happen though because if an adversary has direct evidence that a hidden service is at a certain location, they're not going to sit on it.

We should consider all hidden services to be compromised, especially the more popular ones.


[2 Points] t3hk4hn:

....


[1 Points] Clean-House:

It would seem that some of us could have been de-anonymized.

CLEAN HOUSE.


[1 Points] joustingthesky:

Move to Mexico. NOWWWWW!!!!!