[tor-bugs] #18361 [Tor Browser]: Issues with corporate censorship and mass surveillance

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Feb 25 21:06:16 UTC 2016


#18361: Issues with corporate censorship and mass surveillance
------------------------------------------+--------------------------
 Reporter:  ioerror                       |          Owner:  tbb-team
     Type:  enhancement                   |         Status:  new
 Priority:  High                          |      Milestone:
Component:  Tor Browser                   |        Version:
 Severity:  Critical                      |     Resolution:
 Keywords:  security, privacy, anonymity  |  Actual Points:
Parent ID:                                |         Points:
  Sponsor:                                |
------------------------------------------+--------------------------

Comment (by cypherpunks):

 Is CloudFlare trying to protect against anything besides these 4
 categories of unwanted traffic?

 1. Comment Spam
 2. DDOS
 3. Vulnerability scanning
 4. Crawling

 Of course different customers probably have different priorities, but it
 seems to me like captchas on GET requests are mostly useful for stopping
 crawling. (Comment spam is POST, DDOS over Tor would be stupid as botnets
 are cheap and more effective, and for vuln scanning it should be pretty
 easy to have high confidence that typical requests are legit using simple
 heuristics.)

 So whats up?

 Can any CloudFlare person explain if there are more than these 4
 categories of unwanted traffic?

 And what portion of CloudFlare customers are anti-web-crawling?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18361#comment:148>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list