Comment by sigmoid10

>spread democracy

i have to say that i love that phrase, it is peak propaganda that just works.

> Perhaps that, rather than a technical limitation, is the reason most high-profile arrests related to TOR involve criminals making some other mistake, rather than the security of the network itself being compromised.

I have no doubt that the government doesn't want to demonstrate how weak Tor is to the public, but it's also got to be dead simple to find those kinds of "other mistakes" they can use when they've identified the person they're looking for and can monitor whatever they do.

> The original purpose of TOR was to provide agents and handlers with a means of secure communication, allowing them to organize subversive or espionage activities. It was created by the Department of Defense to propagate their interests and spread democracy around the world using these secure capabilities.

Do you think the EFF was in on it, duped, or just thought multiple competing interests could be served?

After talking to my Democracy Officer I have to say I love managed democracy!

Ah yes, 'spread democracy around the world'

> It provides a channel for operatives to exfiltrate data out of non-NATO countries very easily.

I'm not convinced this is the case. For example China's gfw has been very effective at blocking TOR traffic, and any TOR connection in other countries is like announcing to the government that you are suspicious.

> The US benefits from the TOR being private.

Slight correction: The US benefits from TOR being private to _everyone but the US_

  > the US Navy

For Tor to be effective for hiding spies it has to be used by the public. Even if it's only nefarious actors (say spies + drug dealers + terrorists) it adds noise that the adversary needs to sort through.

What I fucking hate about many of these conspiracies is how silly it is once you ever work with or for any government entities. You can't get two police agencies in neighboring cities to communicate with one another. The bureaucrats are fucking slow as shit and egotistical as fuck.

It's important to remember that the government and even a single agency (like the NSA) is just as chaotic, disconnected, and full of competing entities as any big tech company has (if not worse). Yeah, most of the NSA is focused offense, but there's groups working on defense. Those groups are 100% at odds. This is true for the 18 intelligence agencies. They have different objectives and many times they are at odds with one another and you bet each one wants to be getting credit for anything.

The US involvement should warrant suspicion and with any technology like Tor you should always be paranoid. But it's not proof. Because guess what, the US wants people in other countries to use high levels of encryption to hide from their authoritarian governments while the US can promote democracy movements and help put a friendly leader into a position of power. AT THE SAME TIME they also want to spy on their own people (and there are plenty of people in the gov that don't want this). Inconsistency is the default because it's a bunch of different people with different objectives. So the US gov both wants Tor to be secure and broken at the same time.

You know what else was funded by the US government? Computers, the Internet and GPS. Also Signal (via OTF funded by Congress).

I dont see how TOR is better than just spinning up a server on the public cloud for each asset. Since each asset would have a different IP they couldnt use one assets knowledge to catch the others. Non-NATO countries tend to monitor internet traffic and so would know if you access TOR.

What? Tor is a honeypot? I don't think so. What do you instead expect me to use instead of tor?

You do know Hitler was the German Reichskanzler, not French?

But not all traffic goes to onion sites.

An autocratic regime of a large nation locks up its critics and other undesirables in camps.

100,000 activists who haven't been caught yet switch to Tor for anonymity.

For $60,000, the regime monitors Tor for a year, identifies 6,500 activists, and marches them off to the camps.

And by discrediting Tor the regime pushes the other 93,500 activists even farther underground, constraining their ability to recruit, limiting their ability to coordinate with each other, and reducing what they can publish about what's happening to their country.

Activists fighting an autocratic regime use a large social media site to recruit, coordinate and publish so they can reach the broadest number of people possible.

The billionaire owner of the site supports the strongman leader and provides IP addresses for those who post wrongthink on his platform.

Now the regime can link social media activity of anonymous activists to their real IP addresses, devices and locations.

You're ironically vastly overestimating the cops. It's not that they have good intel, it's that it's copaganda.

They'll just make something up for publicity if they don't get something useful.

> We're talking about a targeted attack

From OP: " I can't target a specific person, but eventually I can find someone who has all three bounces through tor nodes I control, no"

> Not necessarily. It might even be an overestimate if the attacker fails to supply enough nodes of the right kind.

Assuming they match the existing distribution of nodes, they will only have better results.

My point is that it doesn't require "vast resources". A VPS is $5 a month. A thousand of them would be in the disposable income budget of a single FAANG engineer never mind a nation state.

Pay people on Fiverr to set them up for you at different ISPs so that all the setup information is different. You can use crypto to pay if you want anonimity (this is actually the main reason I used to use bitcoin - I'd pay ISPs in Iceland to run TOR exit nodes for me without linking them to my identity).

This isn't a difficult problem. A single individual with a good job could do it.

And sure, each connection only has a very small chance of being found, but aggregate it over a year or two and you could catch half of the users of a site if they connected with a new circuit one time per day.

I honestly can't see why a nation state or two hasn't already done this.

But it doesn't seem unfeasible for a state actor that wants to track their population then?

But given the attack is just logging the cleartext at the ends how are you going to detect that the servers are malicious?

What detection? A malicious node is only different from a non-malicious node because all the traffic is being logged. If that's our definition of a malicious node in this case then there is no way to detect one.

[dead]

I can't think of anyone with vast resources and time that would want to deanonymize cybercriminals

The attack Germany is thought to have actually used was to flood the network with middle nodes and wait until the victim connects to their middle node. Then, it knows the guard node's IP. Then, it went to an ISP and got logs for everyone who connected to that IP.

Because your ISP is selling your traffic logs.

Because you want to avoid creepy targeted ads.

Because you live in a country that blocks many legitimate websites.

Because you are looking for information about abortion and live in countries like Iran or US

Those second and third points are pretty laughably paranoid-fantasy reasons to use Tor—even if one found oneself in either situation.

>If you’re sharing CSAM or planning terrorist attacks, it might be different.

They'll just employ parallel construction to avoid exposure.

The police used self-powered GPS devices[1] to track criminals. These devices are used in various situations, such as when someone violates parole. The police don’t need to report the violation immediately. Instead, they wait for the person to re-enter their jurisdiction, then catch and arrest them.

Parallel construction wasn't tested, but the means of them catching criminals this way was tested in court.

[0] - https://www.gps.gov/news/2012/01/supremecourt/

[1] - if the device got power from the vehicle, it would be considered "break and entering" and thus would require a warrant.

it's not been tested in court, but it's not some crazy Internet theory. https://arstechnica.com/tech-policy/2013/08/us-drug-agency-g...

There is a node that delivers your packet to the target server, is there not?

“Only half” is hilarious. Thanks for that.

And if you trust the NSA can’t overcome correlation in the presence of “padding defenses”, then sure: TOR is secure.

they’re using probability correctly. if you have a critique state it clearly