[tor-bugs] #29622 [Core Tor/Tor]: Multiple SocksPort is broken, connects to entry node multiple times. Tor = NSA?

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri Mar 1 06:26:51 UTC 2019 

#29622: Multiple SocksPort is broken, connects to entry node multiple times. Tor =
NSA?
-----------------------------------------------+---------------------------
 Reporter:  nazi_hitler_holohoax               |          Owner:  (none)
     Type:  defect                             |         Status:  new
 Priority:  Immediate                          |      Component:  Core
                                               |  Tor/Tor
  Version:                                     |       Severity:  Blocker
 Keywords:  NSA, FBI, SocksPort, traffic, CIA  |  Actual Points:  42
Parent ID:                                     |         Points:  42
 Reviewer:  teor                               |        Sponsor:
                                               |  Sponsor4-must
-----------------------------------------------+---------------------------
 What the fuck is going on?
 If I use multiple SocksPort, it connects to entry node multiple times,
 instead of one time.
 So CIA and NSA can analyze my traffic more easily. They also know how many
 applications I use with Tor.
 That's huge bug. There should be one connection to entry node, but then
 each socksport should use different middle and exit node. (or maybe use
 same middle node too?)
 You are just helping NSA. Do they own torproject?

 Here is how to get the bug:
 1. Configure Tor to use multiple SocksPort with IsolateDestAddr flag
 2. Start Tor
 3. Connect each application to each SocksPort and start doing network
 activity on all of them.
 4. You might get multiple TCP connections to entry node.
 5. Each separate TCP connection transmits data from separate SocksPort.
 It doesn't happen 100% of time. Sometimes you need to wait or try again to
 get this bug.

 This bug is a design flaw maybe. It lowers privacy and gives zero
 benefits.
 NSA, CIA, can isolate each TCP connection and try to make analysis and
 correlation. If everything was transmitted on single TCP connection they
 would need to own entry node to do same thing. If everything was
 transmitted on single Entry and Middle node (but different Exit node) they
 would need to own entry and middle node to make this analysis.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29622>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list