Flutterby™! : Tor and the NSA

Next unread comment / Catchup all unread comments User Account Info | Logout | XML/Pilot/etc versions | Long version (with comments) | Weblog archives | Site Map | | Browse Topics

Tor and the NSA

2013-08-05 17:51:18.381516+00 by Dan Lyke 3 comments

That Tor exploit (which occurs when you browse Tor with JavaScript turned on and then use that same browser for non-Tor browsing) that's been making the rounds? Here's a claim that it's got a hardcoded IP address that points to the NSA.

comments in ascending chronological order (reverse):

#Comment Re: made: 2013-08-05 18:38:16.972531+00 by: Dan Lyke

The official Tor project security advisory.

#Comment Re: made: 2013-08-06 14:11:55.608966+00 by: Dan Lyke

ZDNet has a good rundown on how it worked and what that means.

#Comment Re: made: 2013-08-06 14:34:25.073555+00 by: Dan Lyke

And The Tor Project reiterates that JavaScript and Windows are both likely to continue to be exploit vectors.