[tor-talk] MITM attack on TLS
Ivan Markin
twim at riseup.net
Sat Nov 21 10:14:59 UTC 2015
Justin:
> I won’t get into trouble because I’m not using regular Tor. I’m
> using pluggable transports, which hide the Tor traffic and make it
> unrecognizable to a DPI box. This should be good enough even if
> Meek’s TLS is broken.
Nope, not good enough. Actually it is _regular_ Tor connection. It is
just encapsulated into HTTP (without TLS in your case) and easily
detectable with tools like tcpflow.
Try to use PTs other than meek like obfs4/ScrambleSuit.
--
Ivan Markin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20151121/7afcd9e3/attachment.sig>
More information about the tor-talk
mailing list