[tor-talk] Automatic vulnerability scanning of Tor Network?

Jacob Appelbaum jacob at appelbaum.net
Thu Dec 22 11:35:58 UTC 2011

On 12/22/2011 12:59 AM, Fabio Pietrosanti (naif) wrote:
> Let's joke, don't be too much serious :-)
> Roger rabbit said something like "If it's not fun, i cannot do it" :P

Hi naif,

While we sometimes disagree on things, I think we're in full agreement
here. I think it's important to support your intentions in this thread.

Tor is targeted by extremely talented people who would never lift a
finger to help anyone involved in the Tor Project. The Tor network is
probably undergoing a constant audit by multiple parties with extremely
negative intentions. Certainly I hope we all agree that lots of people
wish they could attack Tor users directly and if nothing else, that may
serve as a motivator for some people to attack the network however they

I think you're getting a lot of noise and it's pretty sad for almost all
of the reasons that you outlined. I really appreciate that you're trying
to make a positive impact. I also appreciate that rather than going
around spreading FUD, you're trying to find a way to improve things,
even if perfection is not attainable. You're making observations about
where we can and even should improve software, improve operational
security and even where we have to punt.

I really appreciate that you're not working for people who wish to do
the Tor network harm. Please do consider the concerns of people in this
thread and weight your actions against those people. They too are trying
to help the network, the project, and the users.

Hopefully we'll all meet at CCC for a mate to discuss this in person!


More information about the tor-talk mailing list