Flutterby™! : Tor and the NSA

Next unread comment / Catchup all unread comments User Account Info | Logout | XML/Pilot/etc versions | Long version (with comments) | Weblog archives | Site Map | | Browse Topics

Tor and the NSA

2013-08-05 19:51:18.381516+02 by Dan Lyke 3 comments

That Tor exploit (which occurs when you browse Tor with JavaScript turned on and then use that same browser for non-Tor browsing) that's been making the rounds? Here's a claim that it's got a hardcoded IP address that points to the NSA.

comments in ascending chronological order (reverse):

#Comment Re: made: 2013-08-05 20:38:16.972531+02 by: Dan Lyke

The official Tor project security advisory.

#Comment Re: made: 2013-08-06 16:11:55.608966+02 by: Dan Lyke

ZDNet has a good rundown on how it worked and what that means.

#Comment Re: made: 2013-08-06 16:34:25.073555+02 by: Dan Lyke

And The Tor Project reiterates that JavaScript and Windows are both likely to continue to be exploit vectors.