<p dir="ltr">According to Ark Technica (<a href="http://arstechnica.com/security/2016/08/linux-bug-leaves-usa-today-other-top-sites-vulnerable-to-serious-hijacking-attacks/">http://arstechnica.com/security/2016/08/linux-bug-leaves-usa-today-other-top-sites-vulnerable-to-serious-hijacking-attacks/</a>) encrypted communications can only be blocked, meaning that exit servers could still be targeted. </p>
<p dir="ltr">However, the bug only has to affect 1 side in order to work. So even if every exit node patched it, Tor users (and the regular Internet) would still be vulnerable until the Web servers patch it as well. Either way, it'll be a while before everyone is patched. </p>
<div class="gmail_extra"><br><div class="gmail_quote">On Aug 12, 2016 11:01 AM, "Zack Weinberg" <<a href="mailto:zackw@cmu.edu">zackw@cmu.edu</a>> wrote:<br type="attribution"><blockquote class="quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="quoted-text">On Fri, Aug 12, 2016 at 11:27 AM,  <<a href="mailto:starlight.2016q3@binnacle.cx">starlight.2016q3@binnacle.cx</a>> wrote:<br>
> RFC-5961<br>
> CVE-2016-5696<br>
> <a href="http://www.theregister.co.uk/2016/08/10/linux_tor_users_open_corrupted_communications/" rel="noreferrer" target="_blank">http://www.theregister.co.uk/<wbr>2016/08/10/linux_tor_users_<wbr>open_corrupted_communications/</a><br>
> FYI all<br>
<br>
</div>Tor's use of TLS _should_ mean that the worst an attacker can do here<br>
is denial-of-service.  The Register article suggests that they might<br>
also be able to force the use of specific exit relays (by disrupting<br>
connections that don't go through those relays) but weaponizing that<br>
against specific users (rather than everyone trying to use an exit the<br>
attacker doesn't like) strikes me as nontrivial.<br>
<br>
Also, if you read the paper, raising the global rate limit (as<br>
suggested by the reg. article) doesn't help; it only slows the<br>
attacker down a little.<br>
<br>
Right now I think one should not panic and should wait for the kernel<br>
people to do a proper fix.<br>
<font color="#888888"><br>
zw<br>
</font><div class="elided-text">______________________________<wbr>_________________<br>
tor-relays mailing list<br>
<a href="mailto:tor-relays@lists.torproject.org">tor-relays@lists.torproject.<wbr>org</a><br>
<a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays" rel="noreferrer" target="_blank">https://lists.torproject.org/<wbr>cgi-bin/mailman/listinfo/tor-<wbr>relays</a><br>
</div></blockquote></div><br></div>