Comments on: TOR exit-node doing MITM attacks

By: Sniffing/MITM attacks on the Tor network | Chucks Blog

Sniffing/MITM attacks on the Tor network | Chucks Blog — Mon, 14 Sep 2009 00:38:52 +0000

[…] and does not make you more secure by using it. If you use tor with encrypted protocols and avoid fake SSL certificates then you should be fine. However, if you use a plain text protocol such as HTTP, you are pretty much […]

By: Disculpen las Molestias » 2. Cifrado

Disculpen las Molestias » 2. Cifrado — Wed, 14 Jan 2009 22:00:13 +0000

[…] Lo peligroso que puede resultar usarlas sin informarse antes, y es que si bien se garantiza el anonimato dentro de la red, es posible capturar la información desde los nodos de salida a Internet. […]

By: TOR Proxy network under heavy fire for MITM attacks

TOR Proxy network under heavy fire for MITM attacks — Sat, 22 Nov 2008 06:38:43 +0000

[…] password and other sensitive information is possibly being snared by a hacker. In the following posting the gatherer is from […]

By: OpenSSL für gesamten Domain-Namespace sinnvoll - sharkBLOG

OpenSSL für gesamten Domain-Namespace sinnvoll - sharkBLOG — Fri, 01 Aug 2008 21:35:59 +0000

[…] sich führen, da sonst man-in-the-middle möglich wäre (was z.B. bei Tor schon gang und gäbe ist: tor ssl man-in-the-middle). Hinzu kommt noch, dass ältere PCs ein bisschen länger brauchen (Schlüssel aushandeln, Daten […]

By: Wi-Fi security for road warriors: On-line banking | Network Administrator | TechRepublic.com

Fri, 02 May 2008 04:24:37 +0000

[…] option: I would use an IronKey device to setup a TOR-like SSL session with known (known is important) IronKey TOR servers. Then I would login to the bank’s web server using the log on web page. […]

By: Volker noch immer in Macao

Volker noch immer in Macao — Mon, 28 Jan 2008 07:22:20 +0000

Playing with TOR…

I’ve been playing with TOR again lately, and a but more carefully because the last time I tried michaelw got banned from IRC because of the exit server :-D

It seems the crooks are really running it themselves these days. This is a “conversa…

By: Anonymity with TOR and its limits | Perimeter Grid

Anonymity with TOR and its limits | Perimeter Grid — Mon, 10 Dec 2007 22:32:04 +0000

[…] a virus or Trojan.) This actually happens; Bruce Schneier linked to some logs of a TOR exit node trying to carry out a MitM on an SSL session. So while TOR protects your anonymity, it may actually risk your privacy — it’s very […]

By: foobla - das Weblog von Norbert Wigbels » Blog Archive » Wenn Kaspertruppen für Anonymität kämpfen…

Fri, 07 Dec 2007 08:23:05 +0000

[…] 2 und […]

By: links for 2007-12-07 : Bob Plankers, The Lone Sysadmin

links for 2007-12-07 : Bob Plankers, The Lone Sysadmin — Fri, 07 Dec 2007 06:17:42 +0000

[…] MW-Blog » Blog Archive » TOR exit-node doing MITM attacks Yeah, the TOR network is not safe at all. […]

By: [security,f-secure]-Testing TOR Nodes for Man-in-the-Middle Attacks « Malnews4’s Weblog

Tue, 27 Nov 2007 01:51:03 +0000

[…] More details on the investigative process can be found here and here. […]

By: SSL & Man-in-the-Middle �ber TOR-Schn�ffelei - Forum Fachinformatiker.de

SSL & Man-in-the-Middle �ber TOR-Schn�ffelei - Forum Fachinformatiker.de — Fri, 23 Nov 2007 15:45:15 +0000

[…] & Man-in-the-Middle �ber TOR-Schn�ffelei Hallo. Verstehe ich MW-Blog Blog Archive TOR exit-node doing MITM attacks richtig, dass es m�glich w�re, sogar Homebanking beliebiger Banken in Klartext umzuwandeln, um dann […]

By: Ancora TOR « Fare, disfare e rifare

Ancora TOR « Fare, disfare e rifare — Fri, 23 Nov 2007 09:31:16 +0000

[…] L’analisi dell’attacco, su MW-Blog, qui. […]