Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 
BDFL - Memuneh
62989 posts

Uber Geek
+1 received by user: 13564

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 454818 3-Apr-2011 15:25
Send private message

Rikkitic: especially as member gible appears to have been censored for nothing worse than being a smartass.


It says it all. But he wasn't censored. Someone called him an idiot, he replied telling the person to go screw himself. So I removed both posts since both involved personal attacks, which is already in our Forum Usage Guidelines as a big no-no. So it wasn't just "being a smartass" but name calling. Because he is not the one who initiated I have not issued a warning.

Being a smartass can be annoying but it's no reason for any action really. Repeating it would be a different story.

Why do we have to justify every action we take when managing the forums?    

Rikkitic: I don't quite get why Tor users can't even browse the site as anonymous guests (that 403 error). It just seems a little heavy-handed. It also seems a bit pointless as I quickly realised that it can be easily got around by funneling Tor through a web proxy. I still can't log on (which is fair and reasonable) but at least I can scan the forums again with my shields up. Question: So why do it this way at all?


Because blocking at web server level is quick to implement and doesn't impact in system resources or development time. Please read my previous reply. We might change it, but it's not a simple one day job.





27665 posts

Uber Geek
+1 received by user: 7146

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 454822 3-Apr-2011 15:47
Send private message

At the end of the day has to come down to whether you trust your traffic exiting the TOR network and onto the internet via a private proxy that could easily be sniffing all your traffic. Personally I'd trust any ISP over TOR because at least I know where my traffic is going.

TOR might offer anonymity on the internet, but that comes with IMHO a massively increased risk of your traffic being intercepted by a 3rd party. You have to decide what you're happy with.

It might also be worth reading this new paper detailing how IP's can be relealed.


 
 
 
 


BDFL - Memuneh
62989 posts

Uber Geek
+1 received by user: 13564

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 454832 3-Apr-2011 16:30
Send private message

Ok... After looking at possible solutions I have implemented an application level filter. You will be able to read but not write when accesing through a TOR exit.

This might be in effect in the next couple of hours after the update is replicated.





BDFL - Memuneh
62989 posts

Uber Geek
+1 received by user: 13564

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 454839 3-Apr-2011 16:54
Send private message

sbiddle: It might also be worth reading this new paper detailing how IP's can be relealed.



From the document:

"Using BitTorrent as the insecure application, we design two attacks tracing BitTorrent users on Tor. We run these attacks in the wild for 23 days and reveal 10,000 IP addresses of Tor users. Using these IP addresses, we then profile not only the BitTorrent downloads but also the websites visited per country of origin of Tor users. We show that BitTorrent users on Tor are over-represented in some countries as compared to BitTorrent users outside of Tor. By analyzing the type of content downloaded, we then explain the observed behaviors by the higher concentration of pornographic content downloaded at the scale of a country. Finally, we present results suggesting the existence of an underground BitTorrent ecosystem on Tor."





637 posts

Ultimate Geek
+1 received by user: 2

Trusted

  Reply # 454843 3-Apr-2011 17:07
Send private message

Rikkitic:
PenultimateHop: Except for all those tor exit node operators...


Nothing's perfect and there's always https.

sbiddle's reply captures it perfectly, and I agree with him.  In most scenarios I trust my ISP far, far more than tor.  The only exception would be when I am on public access networks (in particular, hotels in certain European countries, and any WiFi), but I IPSEC tunnel my traffic to a trusted endpoint when I am away from home - and go back to trusting my ISP.

As an ISP/telco guy, I can guarantee that we have far more interesting things to do than look at what subscribers are doing and where they're going.



Glurp
9707 posts

Uber Geek
+1 received by user: 4636

Subscriber

  Reply # 454943 3-Apr-2011 23:53
Send private message

Thanks again for the responses. I always learn a lot from these discussions. For the record, I don't use BitTorrent and that's not why I use Tor. I did read about tracing Tor users on BitTorrent, but I believe that had more to do with BitTorrent than Tor. In any case, the Tor website makes a point of emphasising that Tor isn't intended for file sharing, nor designed to be secure for that purpose.

Thanks Freitasm for implementing the filter. I look forward to scanning the forums without having to go through convolutions to access the site.




I reject your reality and substitute my own. - Adam Savage
 


2079 posts

Uber Geek
+1 received by user: 884

Trusted

  Reply # 455129 4-Apr-2011 14:56
Send private message

I hire a man to browse the web for me. I ring him from a prepaid phone and he browses to the sites I tell him. I watch the screen from 10km away with a high powered telescope.

It's the only way to be sure.




It looks like I'm using an adblocker. I should consider whitelisting Geekzone in my adblocker or a subscription. The Quick Reply box will appear for me when Geekzone is whitelisted. Hooray for me! If I want to reply to this topic I should click on Compose Reply.


4513 posts

Uber Geek
+1 received by user: 875

Trusted
Lifetime subscriber

  Reply # 455916 6-Apr-2011 13:55
Send private message

muppet: I hire a man to browse the web for me. I ring him from a prepaid phone and he browses to the sites I tell him. I watch the screen from 10km away with a high powered telescope.

It's the only way to be sure.


how do you pay him? credit card or cash? if cash how do you deliver the money? did you register the prepaid phone? do you use your 'normal' voice? if you are watching the screen from 10km away, will you need to be on top of the high rise building (in order to get clear view)? have you checked his background prior to hiring him?  Tongue out


if you are that paranoid, do yourself a favor, check in to ward 27 at Wellington hospital.





2079 posts

Uber Geek
+1 received by user: 884

Trusted

  Reply # 455917 6-Apr-2011 13:56
Send private message

nakedmolerat: 
how do you pay him? credit card or cash? if cash how do you deliver the money? did you register the prepaid phone? do you use your 'normal' voice? if you are watching the screen from 10km away, will you need to be on top of the high rise building (in order to get clear view)? have you checked his background prior to hiring him?  Tongue out

if you are that paranoid, do yourself a favor, check in to ward 27 at Wellington hospital.


Nice try, secret police. 




It looks like I'm using an adblocker. I should consider whitelisting Geekzone in my adblocker or a subscription. The Quick Reply box will appear for me when Geekzone is whitelisted. Hooray for me! If I want to reply to this topic I should click on Compose Reply.


1 | 2 | 3 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Orcon announces new always-on internet service for Small Business
Posted 18-Apr-2019 10:19


Spark Sport prices for Rugby World Cup 2019 announced
Posted 16-Apr-2019 07:58


2degrees launches new unlimited mobile plan
Posted 15-Apr-2019 09:35


Redgate brings together major industry speakers for SQL in the City Summits
Posted 13-Apr-2019 12:35


Exported honey authenticated on Blockchain
Posted 10-Apr-2019 21:19


HPE and Nutanix partner to deliver hybrid cloud as a service
Posted 10-Apr-2019 21:12


Southern Cross and ASN sign contract for Southern Cross NEXT
Posted 10-Apr-2019 21:09


Data security top New Zealand consumer priority when choosing a bank
Posted 10-Apr-2019 21:07


Samsung announces first 8K screens to hit New Zealand
Posted 10-Apr-2019 21:03


New cyber-protection and insurance product for businesses launched in APAC
Posted 10-Apr-2019 20:59


Kiwis ensure streaming is never interrupted by opting for uncapped broadband plans
Posted 7-Apr-2019 09:05


DHL Express introduces new MyDHL+ online portal to make shipping easier
Posted 7-Apr-2019 08:51


RackWare hybrid cloud platform removes barriers to enterprise cloud adoption
Posted 7-Apr-2019 08:50


Top partner named at MYOB High Achievers Awards
Posted 7-Apr-2019 08:48


Great ideas start in Gisborne with hackathon event back for another round
Posted 7-Apr-2019 08:42



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.