Tor at heart of embassy passwords leak; "ToR isn’t the problem, just use it for what it’s made for."
BlueStar88
BlueStar88 at Xenobite.eu
Tue Sep 11 12:13:58 UTC 2007
Think on the EFF ./. AT&T/NSA issue,
after google'ing i found a firm in cologne/germany who presents NARUS
products like cool-nice-to-have cars:
"...Diese Lösung analysiert große Datenmengen bei hohen
Übertragungsgeschwindigkeiten bis zu OC192 in Echtzeit und schafft so
mehr Transparenz..."
http://www.modcomp.de/index.php?option=com_content&task=view&id=52&Itemid=55
(Translation: "...This solution analyses large data/traffic amounts at
high speed rates up to OC192 in realtime and puts more transparency...")
Transparency...
I really do not know, if it can do MITM stuff and if my ISP has such a
box already...
And what is meant by "...Business Intelligence..." on that page?
Greets
Am Montag, den 10.09.2007, 11:26 -0700 schrieb coderman:
> On 9/10/07, Gabriel Rocha <gabe at seul.org> wrote:
> > ...
> > This argument is flawed insofar as when you are using Tor, it is in
> > effect one of your ISPs. The correct comparison here would be that, just
> > like your ISP can implement man in the middle attacks against you, so
> > too, can a Tor operator.
>
> fair enough; i'll suggest that the vast majority of ISP's don't have
> the equipment or skill to implement these kinds of MITM attacks. (can
> you imagine trying to play eve against arbitrary customer traffic on
> an OC12+ link? that cisco switch isn't going to cut it...)
>
> they are out to make a profit, and spending non-trivial amounts of
> money for something that can only negatively impact the customer
> experience is a total loss. (note that even CALEA had to sweeten the
> deal for carriers just for passive eavesdropping capability which is
> trivial compared to complex layer MITM attacks)
>
> i'd love to know more about any such ISP implemented MITM
> "investigative techniques" that may have been used; i've never heard
> of such, but perhaps they are simply uncommon and rarely publicized.
>
> best regards,
--
BlueStar88 <BlueStar88 at Xenobite.eu>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20070911/a894ba90/attachment.pgp>
More information about the tor-talk
mailing list