[tor-talk] Sybil Attack

Thomas White thomaswhite at riseup.net
Fri Dec 26 20:41:23 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

There has been some worry about a possible Sybil attack on the Tor
network and a threat of deploying a 0 day once a Sybil has been
confirmed. The concerned relays right now are using then nickname
LizardNSA followed by random characters

As none of the Tor developers have yet responded to the matter, to
which my recommendation is assigned BadExit flags to all the new ones
with that naming scheme, I recommend just avoiding the US relays all
together at this point as that is where all their exits so far (to my
knowledge). To do that just put the following in your torrc

ExcludeNodes US
StrictNodes 1

There are other things you could do like manually specifying your
guard nodes but I don't want to start making such a recommendation
until somebody more knowledgable than I do comments with such a
recommendation.

Regards,
T



- -- 
Activist, anarchist and a bit of a dreamer.

PGP Keys: key.thecthulhu.com
Current Fingerprint: E771 BE69 4696 F742 DB94 AA8C 5C2A 8C5A 0CCA 4983
Key-ID: 0CCA4983
Master Fingerprint: DDEF AB9B 1962 5D09 4264 2558 1F23 39B7 EF10 09F0
Key-ID: EF1009F0

Twitter: @CthulhuSec
XMPP: thecthulhu at jabber.ccc.de
XMPP-OTR: 4321B19F A9A3462C FE64BAC7 294C8A7E A53CC966
-----BEGIN PGP SIGNATURE-----
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=ZaWF
-----END PGP SIGNATURE-----


More information about the tor-talk mailing list