Comment by belorn

Comment by belorn a day ago

Now to add additional problems. 1000 tor nodes on a single platform would be very noticeable and geographically limited. Platforms also have different weight attached to them in the consensus, which adds further time requirements before a node is promoted. The developers do not want a single platform provider to be able to observe a large portion of all the traffic, so there are counter measures.

The attacker could try to create a handful of accounts on hundreds of platforms in as many countries as possible, assuming one verify that the platforms accepts tor and do not share underlying providers and data centers. The cost would then be the average price of said providers, which is going to be a fair bit more than the cheapest providers out there. Managing and spreading them out is also going to cost a lot of man hours. Also the secops need to be fairly on the point and need to be maintained quite strictly across all the providers.

qb1 16 hours ago

Pagers and the next day handheld radios exploded on their users! This can be done.

Reply View 3 replies

aesh2Xa1 16 hours ago

I think the news about that particular counter example is too recent to be easily understood.
https://www.schneier.com/blog/archives/2024/09/remotely-expl...
Still, I think your point is excellent. The sort of group interested in tracking someone(s) over Tor certainly might have the capability to do so despite the difficulty.

Reply View | 1 reply
- maicro 15 hours ago
  
  Yeah, too recent to understand (though I've also been out of the loop a bit) - so thank you, that's...a good one.
  
  Reply View | 0 replies
hiatus 14 hours ago

> Let's say I as a private individual fund 1000 tor nodes
Was the operation against Hezbollah funded by a private individual? Otherwise I'm not sure the relevance of your statement to the comment that started this thread.

Reply View | 0 replies

ranger_danger 15 hours ago

Considering multiple world governments have already shown in leaked documents that this is exactly what they do, I personally wouldn't trust my secrets with tor.

Reply View 2 replies

halJordan 9 hours ago

But and God forbid you read TFA, those leaked techniques were all done before the latest mitigations that the Tor Project is writing the blog about.

Reply View | 1 reply
- ranger_danger 3 hours ago
  
  There's not much technique involved in running tons of nodes.
  
  Reply View | 0 replies

[removed] 12 hours ago

[deleted]

Reply View 0 replies