Posted in Tor on Jan 22nd, 2009 166 Comments »
Security researcher Ilja van Sprundel discovered a remotely triggerable heap-corruption bug in Tor which is now fixed in the latest alpha release. The fix has also been backported to the stable branch as of v0.2.0.33. The bug could potentially be dangerous. Official story is that users “should” upgrade. The truth is probably closer to “should [...]
Posted in Tor on Jan 4th, 2008 287 Comments »
Tor allows people to run location hidden services. These are services who run on Tor-clients (running as a bridge or server is not required) who allow people to conenct to them through servers in the Tor-network.
The location of the services are location hidden in a way which makes it extremely hard to figure out where [...]
Posted in Tor, Traffic analysis, Video on Jan 4th, 2008 116 Comments »
A video of the not-so-secret (as A.Y. pointed out) presenation on the future of Tor and the Torproject at the 24c3 conference in Berlin are now available on the various mirrors where the videos from the presenations at that conference can be downloaded. Look for “24c3-2325-en-current_events_in_tor_development” on the mirrors listed at 24c3’s “Conference Recordings” page [...]
Posted in Tor on Dec 29th, 2007 133 Comments »
Nick Mathewson, one of Torproject’s leading developers has spent the holliday’s “beating the heck out of the buffer implementation”. Examples of this can be seen both in the code and on Firespray. This has lead to better RAM management and overall performance improvements in the trunk development version of the Tor software compared to the [...]
Posted in Tor on Nov 21st, 2007 214 Comments »
Official story is:
From: Roger Dingledine <arma@mit.edu>
To: or-talk at freehaven.net
Date: Today 02:00:48
Tor 0.2.0.10-alpha adds a third v3 directory authority run by Mike Perry,
adds most of Karsten Loesing’s new hidden service descriptor format, fixes
a bad crash bug and new bridge bugs introduced in 0.2.0.9-alpha, fixes
many bugs with the v3 directory implementation, fixes some minor memory
leaks in previous [...]
Posted in Tor on Oct 23rd, 2007 128 Comments »
From OR-Talk,
0.1.2.18 is getting close to ready; please test it
From: Roger Dingledine
To: or-talk
Date: 2007-10-16 06:32
Hi folks,
We’re getting close to having 0.1.2.18 ready. I’ve put snapshots at
https://tor.eff.org/dist/tor-0.1.2.17-de…
https://tor.eff.org/dist/tor-0.1.2.17-de…
https://tor.eff.org/dist/vidalia-bundles…
https://tor.eff.org/dist/vidalia-bundles…
https://tor.eff.org/dist/vidalia-bundles…
https://tor.eff.org/dist/vidalia-bundles…
https://tor.eff.org/dist/win32/tor-0.1.2…
https://tor.eff.org/dist/win32/tor-0.1.2…
https://tor.eff.org/dist/osx/Tor-0.1.2.1…
https://tor.eff.org/dist/osx/Tor-0.1.2.1…
Please grab it, try it out, and let us know whether we broke anything.
Thanks,
–Roger
Partial list of changes in version 0.1.2.18 – 2007-10-??
Major bugfixes (crashes):
– If a connection is shut [...]
Posted in Security, Tor on Sep 7th, 2007 308 Comments »
The developers of the network security tool Tor issued a warning telling all users to upgrade early August 2007. Tor-developer Roger Dingledine has now disclosed what was wrong with previous version of Tor in regard to basic security. It turns out that evil attacker running a Tor exit node or a website could simply POST [...]
Posted in Security, Tor on Aug 2nd, 2007 116 Comments »
The’re actually announceing it, they’ve already put it in place and you and your familly are now granted access to Tor version 0.1.2.16 by the Tor developers.
You must buy it now
Official Tor story regarding security of current versions of Tor and good reasons to upgrade is this:
Tor 0.1.2.16 fixes a critical security vulnerability that [...]
Posted in Surveillance, Tor on Aug 1st, 2007 119 Comments »
Tor v0.2.0.3-alpha has a new killer feature against blocking which may prove to be extremely cool. It allows you to run as a bridge which can be used by other people who want to connect to the Tor-network.
Those who configure their Tor-clients as Bridges pass traffic between end-users and the Tor-network.
People who can’t get to [...]
Posted in Tor on Jul 30th, 2007 112 Comments »
Roger Dingeldine just bumped Tor SVN revision 10982 (/tor/trunk) to 0.2.0.3-alpha and put it in place for immediate testing at http://freehaven.net/~arma/tor-0.2.0.3-alpha.tar.gz
The Changelog.
0.2.0.3-alpha changelog story is this:
Changes in version 0.2.0.3-alpha – 2007-07-29
o Major features:
- Create listener connections before we setuid to the configured
User and Group. Now you can choose port values under 1024, start
Tor as root, and [...]
