HomeLogin

Tor users must IMMEDIATELY upgrade to v0.1.2.16

Thursday, August 2nd, 2007 at 6:12 pm.

The’re actually announceing it, they’ve already put it in place and you and your familly are now granted access to Tor version 0.1.2.16 by the Tor developers.

You must buy it now

Official Tor story regarding security of current versions of Tor and good reasons to upgrade is this:

Tor 0.1.2.16 fixes a critical security vulnerability that allows a
remote attacker in certain situations to rewrite the user’s torrc
configuration file. This can completely compromise anonymity of users
in most configurations, including those running the Vidalia bundles,
TorK, etc. Or worse.

Users who do not have ControlPort enabled are secure; if you are not
sure, you should upgrade and you should probably overwrite your torrc
file with the default when you upgrade. More details will be posted over
the next few days.

https://tor.eff.org/download.html

We have Vidalia bundles for OS X Tiger on the website now. The recommended
workaround for Windows users is either to wait until we have a Vidalia
bundle ready, or do separate installs of the Win32 “expert” package from

https://tor.eff.org/download-windows

and the Windows Vidalia-only package from

http://vidalia-project.net/download.php

Changes in version 0.1.2.16 – 2007-08-01
o Major security fixes:
- Close immediately after missing authentication on control port;
do not allow multiple authentication attempts.

Immediate danger indicated

Unofficial developer on IRC story regarding the new version is this:

02:06 < xiando> I read the annoucement. It says immediate danger for all tor users. very bad. news at 11.
02:07 < nickm> yup. all users who don’t upgrade. quite bad. upgrade upgrade upgrade.

You upgrade your Tor immediately by downloading from https://tor.eff.org/download.html (or svn update)

Leave a Reply

Your email address will not be published. Fields marked * are required.

Attach image(s) (jpg/png/gif):



*
To prove you're a person (not a spam script), type the security text shown in the picture. Click here to regenerate some new text.
Anti-spam image

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>


  • Scammers Gonna Scam (doh!)
    Quite a few upset people are currently using various comment sections on this blog to complain that they did not get what they paid for when they were trying to buy stolen credit cards from anonymous people. People who sell stolen credit cards
    Read whole story...
  • Tails Linux version 1.0 released
    Tails Linux version 1.0 released: a Debian-based distribution known for its strong privacy features and pre-configured for anonymous web browsing After nearly five years of development, Tails, a Debian-based distribution known for its strong privacy features and pre-configured for anonymous web browsing, has
    Read whole story...
  • New Darknet Market with MultiSignature: Hydra
    A new darknet marketplace called Hydra has appeared and it is offering users the Bitcoin multisignature technology. In short this technology requires that two of three parties must agree on a transaction for it to complete. Multi-signature transactions will supposedly lower the risk
    Read whole story...
livelyblog.com | Random blog | Login | Get your own blog | ^^^
anonymous.livelyblog.com/Login