[tor-bugs] #6521 [Tor Sysadmin Team]: air gap the build machine
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Thu Aug 2 01:53:44 UTC 2012
#6521: air gap the build machine
-------------------------------+--------------------------------------------
Reporter: cypherpunks | Owner:
Type: enhancement | Status: new
Priority: critical | Milestone:
Component: Tor Sysadmin Team | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------------+--------------------------------------------
Here is the attack...
An attacker finds out your build machines IP, buys a zero day exploit,
gets access to the build machine, adds malicious code to the binary before
it gets hashed and signed. To keep a low profile and to profit for a long
time from the backdoor the exploit will only be used against selected high
profile targets.
Since you don't have deterministic builds for everything (Tor, TBB) no one
will find the backdoor. Don't expect people to thoroughly inspect each and
every disassembly.
A good defense for network attacks against the build machine is using air
gap.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6521>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list