Silk Road forums

Discussion => Security => Topic started by: 1100101 on October 12, 2012, 06:22 pm

Title: "Potentially Dangerous Connection" question ...
Post by: 1100101 on October 12, 2012, 06:22 pm
Hey all ...

So, when I was browsing the forums yesterday I saw this message pop up in Vidalia's message log --

Potentially Dangerous Connection! - One of your applications established a connection through Tor to "*************" using a protocol that may leak information about your destination. Please ensure you configure your applications to use only SOCKS4a or SOCKS5 with remote hostname resolution.

I know exactly what app caused this.  I work from home and like to browse the forums while I am working.  I make it a habit to NEVER open SR unless I am doing so from my bootable USB ... But thanks to being stoned out of my mind I forgot and I read something on the forums that made me want to check something on SR.  So, I had 1 tab opened in SR and was logged in (buyer account, not vendor) and several opened on the forums. 

So anyway, my question is this ... do I scrub the account that I had opened during the time frame that the above message popped up?  My gut is telling me that is the safe thing to do, but wanted some other opinions as well.  I'd hate to lose my perfect buyer stats, but not as much as I'd hate to have the storm troopers break down my door.
Title: Re: "Potentially Dangerous Connection" question ...
Post by: kmfkewm on October 12, 2012, 06:37 pm
It means that you could have had a DNS leak
Title: Re: "Potentially Dangerous Connection" question ...
Post by: 1100101 on October 12, 2012, 06:49 pm
It means that you could have had a DNS leak

I feared as much ... account is going to be scrubbed.

Thanks for the input
Title: Re: "Potentially Dangerous Connection" question ...
Post by: kmfkewm on October 12, 2012, 07:48 pm
If you were loading a hidden service and it actually loaded that is a pretty good sign that you didn't actually have a DNS leak.
Title: Re: "Potentially Dangerous Connection" question ...
Post by: 1100101 on October 12, 2012, 08:25 pm
Thanks again, I appreciate the help and the info.  It did load.

Still, I think I am going to do away with the account.  I remember enough details that I can let a vendor know about the other account and have them look up the stats if they need to.  I know exactly how many bitcoins I've spent, number of purchases, etc.

Nothing like a simple 'scare' such as this to heighten security awareness.