Re: Tor exit nodes

To: [email protected]
Subject: Re: Tor exit nodes
From: Andrey Rahmatullin <[email protected]>
Date: Mon, 9 Oct 2017 22:16:38 +0500
Authentication-results: mail1.trendhosting.net; dkim=fail reason="verification failed; unprotected key" header.d=wrar.name [email protected] header.b=bNZP2Mtk; dkim-adsp=none (unprotected policy); dkim-atps=neutral
Delivered-to: [email protected]
Delivered-to: [email protected]
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=wrar.name; s=20160710; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID: Subject:To:From:Date:Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=TluzvmyJc2kdSYqDPbUQjUhGtPdk0Is6rnOeu3IeaVE=; b=bNZP2Mtk0Kyd1vtzW2tZ1l0iOA weOZT0FPtvVwnU0QjTmAYL14D3PA4y1AZCXUZ9gbX8R/1mTk2LNmyy674wIiZquX4I0ignZZNIvjs vb7KMfFWLOdv5yfz5I9bS/uR8i3bYEMYlgzP7O/pgY5xGJVKnPCzjmhoJtSkzat/FyyU=;
In-reply-to: <[email protected]>
List-archive: <file://master.debian.org:~debian/archive/debian-private/>
List-help: <mailto:[email protected]?subject=help>
List-id: <debian-private.lists.debian.org>
List-post: <mailto:[email protected]>
List-url: <https://lists.debian.org/debian-private/>
Old-return-path: <[email protected]>
References: <[email protected]> <[email protected]> <A2A20EC3B8560D408356CAC2FC148E53BB448C67@SUN-DAG3.synchrotron-soleil.fr> <10860438.zDTZX8SP8J@xev> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>
Resent-date: Mon, 9 Oct 2017 17:16:56 +0000 (UTC)
Resent-from: [email protected]
Resent-message-id: <LVmKdOD4DdO.A.SAE.I862ZB@bendel>
Resent-sender: [email protected]
User-agent: NeoMutt/20170609 (1.8.3)

On Mon, Oct 09, 2017 at 06:59:34PM +0200, Adam Borowski wrote:
> > > Let's discuss the threat model.  If I would be a three letter agency, I'd
> > > order Yubico (there's so many ways to force a company to do something) to
> > > introduce a backdoor: when a secret handshake (cryptographically signed :p)
> > > is entered, the keycard spills its storage.  This can be programmed into the
> > > kit low-paid goons on the border have, and instruct them to apply to all
> > > storage devices they search on a person.  Such an instruction is already a
> > > part of their orders, thus no knowledge or skills on the side of the goons
> > > are required.  Your secret key will then stay on file, without you being
> > > aware of this.
> > Is it really specific to the non-free hardware?
> 
> A free piece of hardware+software will have no such backdoor.  
Only if actually audited, I guess (and even then not guaranteed).

> Good policies would also recommend reflashing the firmware with a
> version compiled from sources or shipped by Debian (thus reproducibly
> built) before use;
Doesn't help if the sources are evil.

-- 
WBR, wRAR

Attachment: signature.asc
Description: PGP signature

Follow-Ups:
- Re: Tor exit nodes
  - From: Philipp Kern <[email protected]>

References:
- Dmitry Bogatov arrested in Moscow
  - From: Dmitry Shachnev <[email protected]>
- Re: Tor exit nodes
  - From: Gunnar Wolf <[email protected]>
- RE:Tor exit nodes
  - From: PICCA Frederic-Emmanuel <[email protected]>
- Re: Tor exit nodes
  - From: Russell Coker <[email protected]>
- Re: Tor exit nodes
  - From: Holger Levsen <[email protected]>
- Re: Tor exit nodes
  - From: Lars Wirzenius <[email protected]>
- Re: Tor exit nodes
  - From: Adam Borowski <[email protected]>
- Re: Tor exit nodes
  - From: Andrey Rahmatullin <[email protected]>
- Re: Tor exit nodes
  - From: Adam Borowski <[email protected]>

Prev by Date: Re: Tor exit nodes
Next by Date: Re: Tor exit nodes
Previous by thread: Re: Tor exit nodes
Next by thread: Re: Tor exit nodes
Index(es):
- Date
- Thread