Tor and DNS attacks
Sven Anderson
sven at anderson.de
Thu Nov 13 19:37:58 UTC 2008
Hi,
I just wondered if Tor might be vulnerable to DNS attacks during the
bootstrapping phase? Is there a public key of a directory server
included in all the Tor download packages to secure the initial
contact to the directory servers?
I also want to emphasize again that everybody, but especially Tor node
operators, should check that he/she is not vulnerable to DNS cache
poisoning, for example by visiting this website:
http://member.dnsstuff.com/tools/vu800113.php
or by querying the TXT record of the domain porttest.dns-oarc.net with
a command like 'host -t TXT porttest.dns-oarc.net'.
Sven
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2415 bytes
Desc: not available
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20081113/ac2ec7d4/attachment.bin>
More information about the tor-talk
mailing list