[tor-relays] issues with a fresh new tor server
Toralf Förster
toralf.foerster at gmx.de
Sun Aug 21 15:44:01 UTC 2016
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 08/21/2016 03:23 PM, Tom van der Woerdt wrote:
> Did this work prior to adding encryption, or could that be a red
> herring?
It was the attempt to encrypt the Tor directory using the ext4 method
- - GRSecurity is fine (works since 2 years like a charm).
But I mistakenly encrypted it as user "root" - whereas user "tor" was
the right one.
I described my steps in [1] under "setup".
I'm pretty convinced that this is an easy method to ensure an attacker
even with physical access to a server (eg. while changing a defect
hard disk) can't achieve the secret key.
[1] https://www.zwiebeltoralf.de/torserver.html
- --
Toralf
PGP: C4EACDDE 0076E94E, OTR: 420E74C8 30246EE7
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iF4EAREIAAYFAle5zEEACgkQxOrN3gB26U6S6QD9FKxGzwe0TLW0asl94wPZcxt2
1nItLSqLRIvPkZq0Gh4A/iUH8iJxb9X3G39osFkkY/UdRCh+TvRwWj21gB5oKf/O
=7Ueo
-----END PGP SIGNATURE-----
More information about the tor-relays
mailing list