Silk Road forums

there are government run labs in countries like NL that will test drugs anonymously mailed to them for free and post the results. The problem is getting samples to them in an anonymous way that prevents vendors from manipulating the system. Perhaps a fund could be established , and random people selected to make purchases from vendors in a random fashion, and in return for them sending samples in for testing, they get to keep the rest of the (small) order. Then when the lab results are back they can post them here for everybody. It would also be nice if people here reagent test their orders and post the results here, but more sensitive testing is required for the best safety.

Not to mention that with connections to clearnet the client will not select the same node as entry and exit, but with connections to hidden services the client could very easily share an entry guard with the hidden service. Active timing attacks linking clients to clearnet websites require a minimum of two nodes, but the same attack can be done with a single compromised node against hidden services. And if the hidden services entry guard is owned by an attacker it is trivial for them to determine which hidden service they are the entry guard of, and thus obtain the hidden services real IP address.

Quote from: thaganjaman on April 03, 2013, 05:13 pm

Quote from: astor on April 03, 2013, 05:09 pm

Quote from: kmfkewm on April 03, 2013, 04:42 pm

Although you also need to take into consideration that the attacker probably just passively watches destinations of interest, so in practice they don't likely need to own your exit node, only your entry guard. If there are 900 entry guards and the attacker owns 100 of them, they own 1/9 entry guards. You select three entry guards every month to two months, and every time you do the chances the attacker owns one of them is 1/3.

True, true. Although you will only be accessing the destination web site 1/3 of the time through that one entry guard, if the purpose of the attack is to identity person X on the destination web site, you only need to go through the bad guard once.

Sounds like it is actually quite easy for LE to identify a TOR user? How many TOR users in % do you think has been identified by LE?

Well, that attack isn't trivial. It would be incredibly difficult to spin up 100 relays without getting noticed. If LEA are running relays, it's most likely fewer than 10. Also, watching certain sites, like Google and Facebook, would be really hard, because they use distributed content delivery networks. A user in Seattle accesses a different server than a user in New York when they go to the same site. It might be useful for specific smaller sites, but if the attacker runs 10 relays, then the chances of picking 1 of them as 1 of your 3 entry guards is 1/30, or only 3%. And if you don't pick any of them, the attacker would have to wait 1-2 months for you to new pick news, with again only a 3% chance of pwning you. It's not an effective attack for identifying a specific person. More like, "among all the users of this site, I can find a few of them every few months".

Also, none of this applies to hidden services, since the attacker can't watch the other end, although there are different potential attacks there.

The attacker cannot watch connections to the hidden service until they realize that they can trivially trace it to three entry guards with the brute force circuit construction attack, and then it is as anonymous as someone using *three* different non-stacked one hop proxies. Also attacker may only need to run the introduction nodes of the hidden service. For popular hidden services like SR the introduction nodes change rapidly because the clients DDOS them.

Quote from: thaganjaman on April 03, 2013, 04:19 pm

. The attacker hacks you and gets your IP address without breaking Tor
- I guess for this to happen the attacker would have to find and hack you outside of TOR, and therefor are not hacking you due to your SR activities, correct?

An attacker could hack you through a browser exploit. Even with transparent proxying of all connections, if he can get root privileges, he can disable Tor and your firewall. The best defense against this is an anonymizing middle box, a separate physical device from your main computer that runs Tor and transparently proxies all connections over the Tor network.

Yeah using a dedicated box is definitely the best way to do it. You can also virtualize the same thing with VM's , however it does come at a trade off of decreased security of the guest OS versus running it on baremetal. 

Run many malicious relays. The probability of sending your circuits through the attacker's nodes is roughly

Centry / Nentry * Cexit / Nexit

where

Centry = number of entry nodes run by attacker
Nentry = total number of entry nodes
Cexit = number of exit nodes run by attacker
Nexit = total number of exit nodes

Let's say the attacker spins up 100 entry nodes and 100 exit nodes. For the sake of simplicity, let's say no entry nodes are exits and vice versa. Currently there are about 900 total entry nodes and 900 exit nodes. Then the probability of getting pwned by the attacker is 100/1000 * 100/1000 = 1/100, or 1%.

That doesn't sound so bad, but consider that your Tor client builds new circuits every 10 minutes. If it chose from all entry and exit nodes, there would be a 50% probability of getting pwned after 8.3 hours of Tor use. That threat is mitigated by using entry guards. Instead of changing entry nodes every 10 minutes, your client changes them about every 2 months. So it takes 8600 times longer to accomplish this attack.

Although you also need to take into consideration that the attacker probably just passively watches destinations of interest, so in practice they don't likely need to own your exit node, only your entry guard. If there are 900 entry guards and the attacker owns 100 of them, they own 1/9 entry guards. You select three entry guards every month to two months, and every time you do the chances the attacker owns one of them is 1/3.

Quote from: jerryskid on April 03, 2013, 03:41 pm

i will also say the unspoken around here, the software was written by the guberment for goodness sakes, please tell me who does all the updates and revisions for the program? Another question for members, if they can put a provision in Tor to identify perverts that do cp, why can they not put something in place for other reasons? Just asking, i haven't seen this asked, or addressed in nearly 2 years in these parts. i only post this cause things are getting a bit strange ,

I was aware that the government created TOR back in the days, but are you really saying that they are still controlling the software? Who does control the browser bundle? and who checks that it is not bugged with advanced spyware? And can you really trust anybody?

Is it a fact that LE is able to identify cp perverts hiding behind TOR? As you are pointing out, if this is actually possible, of course they will do the same with drug dealers....

The main Tor software is still largely controlled by Roger and Nick, not sure if Paul has a big role in it anymore or not. Of course there are also dozens of other prominent developers who work on it to various extents, Jacob Appelbaum being one of the most famous (he definitely has no ties to the US government, other than being perpetually harassed by them). His claim that LE can use some backdoor in Tor to identify people involved with CP is entirely baseless.

There are two main ways in which Tor for clients can fail.

A. The attacker hacks you and gets your IP address without breaking Tor

This is probably the most likely way that people would be deanonymized. LE have done attacks like this to get around VPNs and Botnets although I have not heard of any instance where they used this technique to get around Tor to deanonymize clients (they have to deanonymize hidden services though). For example, read about CIPAV. In all cases I am aware of LE have used known vulnerabilities that their targets did not patch. Of course it is possible they can use zero days as well, but it seems they do this quite rarely if at all. There is always the worry that they can buy zero days from groups that assist the police for a fee, and unfortunately this business model seems to be growing substantially. Anyway, protecting from this sort of attack requires hardening your system separately of Tor, for example I am a big fan of using virtual machines to isolate network facing applications from Tor and your external IP address. Doing this by itself significantly helps to protect you from this sort of attack, and indeed the targeted hidden services that used this technique were not deanonymized by LE hackers, even though they were penetrated. Additionally, make sure to keep your system up to date and patched, use Tor browser bundle only, I suggest disabling javascript to additionally harden the browser. There are other advanced techniques as well, using profiles with mandatory access control systems like security enhanced Linux or Apparmor, firewall rules, etc. It is also quite helpful to use a security oriented operating system that has features like automatic full ASLR (OpenBSD has this, for example. Others have as well to various extents, in some cases the programs need to be compiled with it but I think OpenBSD always has it for everything.). 

B. The attacker is able to see your traffic enter Tor and arrive at its final destination

In this case they are able to link you to your final destination with a timing attack. Tor is low latency, it doesn't significantly reorder or delay packets and there are statistical formulas that can say if two packets observed at different locations on the Tor network are part of the same stream. Tor banks on the attacker not being able to see the traffic at two different locations (most importantly entry and exit), failing this assumption the attacker trivially defeats Tor. Tor tries to make it hard for an attacker to watch traffic at entry and exit, but it doesn't protect at all from an attacker who watches traffic at entry and exit. This attack is just as applicable to traffic going to clearnet as it is to traffic going to hidden services, even though strictly speaking traffic arriving at a hidden service is not really exiting the Tor network. It may be slightly harder for an attacker to carry out this attack against clients connecting to hidden services than it is for them to carry it out against clients connecting to clearnet websites, but this is only because they first need to locate the hidden service and passively or actively put it under surveillance.

the two previously mentioned scenarios / attack methods are by far the most likely way that Tor will fail (or be circumvented), but there are a handful of other exotic / theoretical attacks as well. And of course there are other attacks that completely avoid technical aspects all together, for example Tor will not keep you anonymous if you give out information over it that identifies you. Traditional police work tends to focus on this sort of datamining attack rather than highly technical attacks, it is their true specialty and they are still struggling to utilize sophisticated technical investigatory methods. There are also some attacks on Tor that are very specific to our threat model, membership concealment is much more important when you leak your rough geographic location by shipping packages. Normally the Tor threat model sort of assumes that the users do not leak their rough geographic location, so a user could be in USA or Canada or Japan for all anyone watching their exit traffic knows. In the case of SR vendors this is not the case, not only do they reveal their country but they often reveal their city as well. This can majorly reduce the anonymity set size they have to hide in, an attacker who can observe large amounts of traffic from arbitrary cities in a country can now say that the vendor is one of the Tor users in this city, rather than a Tor user somewhere in the world. If there are not many Tor users in your rough geographic area, this could reduce your anonymity set size by enough to get you under surveillance. Even if there are a lot of Tor users in your area, using a combination of datamining (hm, which of these Tor users has prior drug charges) and membership detection could narrow in on the likely suspect set significantly. The best protection from this sort of attack is to hide the fact that you use Tor, for example by using bridges (although this in itself creates its own intelligence weaknesses, how many people in a country that doesn't censor the internet are likely to use bridges? Not many. So if you use an attacker controlled bridge while you are in the USA, they may have a good idea why. On the other hand, if you use an attacker controlled entry guard in any case you are probably close to fucked, so it is certainly a better option than not using a bridge imo). Laws restricting police agencies from doing dragnet surveillance may help some as well, even if they can detect your IP address is one of the only ones using Tor in your city , they might have legal trouble using that as probable cause to get your customer registration data from the ISP. That said I wouldn't count on the law to protect you much.

lolwut