Hello,<div><br><div>I'm now researching an attack against Tor. </div><div><br></div><div><b>Resume of Attack</b>: We control exit node and entry node. Upon receiving a RELAY BEGIN cell,the exit node will forger a malicious webpage to client. The webpage contains some empty gif files. The entry node will be able to detect a distinctive pattern of the connection to that malicious webpage, basing on number of relay cells backward and forward. </div>
<div><br></div><div>For more details, the paper is here: <a href="http://bit.ly/mnwsDo">http://bit.ly/mnwsDo</a> ( from <a href="http://sciencedirect.com">sciencedirect.com</a>)</div><div><br></div><div>For implementation, it's needed to modify a piece of Tor source code at the exit node, to forger a malicious webpage to client. Notice that this is not modifying webpage response from the server, but forger attacker's webpage to the client. Could some one please give a hint about where I need to modify.</div>
<div><br></div><div>Thank you.<br><br></div><div>Regards.<br clear="all"><br>-- <br>Nguyen Quoc Viet<br><br>
</div></div>