Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Well, I read your comment as saying that TOR should be seen as compromised. Your comments about other market owners only seem make sense if that was what you were saying. I just pointed out that the previous attack you mentioned was a bit of a one off, and any repeat would need its own unique set of vulnerabilities. Hence so far as we know, no virus on SR.


Fair enough. Basically the attack is:

  1) Compromise a web server on Tor
  2) Buy a zero day browser exploit, create payload to expose
     data about endpoints and exits.
  3) Profit!
(Sorry the punchline is always Profit! but in this case it's probably "Seize!")


chuck, don't know whether you'll read this but in the light of subsequent tor nsa stories your comments were scarily prescient. congrats.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: