[tor-bugs] #8443 [Tor]: SSL handshake filtered when MAX_SSL_KEY_LIFETIME_ADVERTISED is 365 days
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Mar 10 20:49:24 UTC 2013
#8443: SSL handshake filtered when MAX_SSL_KEY_LIFETIME_ADVERTISED is 365 days
------------------------+---------------------------------------------------
Reporter: arma | Owner:
Type: defect | Status: needs_review
Priority: normal | Milestone: Tor: 0.2.4.x-final
Component: Tor | Version:
Keywords: tor-bridge | Parent: #3972
Points: | Actualpoints:
------------------------+---------------------------------------------------
Comment(by arma):
(It seems we're screwed either way here, if the new firewall strategy is
to look for a collection of properties. By sticking to the day boundary
we're blending in better but still reducing our entropy. By *not* sticking
to the day boundary we blend in worse, but at first glance we're harder to
fingerprint. The trouble is that the new fingerprint should be "X, Y, and
also doesn't use a day boundary". This is a good example of why playing
the "look like ssl" arms race is unwinnable.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8443#comment:16>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list