HackerTrans
TopNewTrendsCommentsPastAskShowJobs

neutered_knot

no profile record

comments

neutered_knot
·vor 3 Monaten·discuss
It is also not proof of work because of asymmetries between attacker and defender. An attacker only needs to find one exploitable issue before the defender finds it and patches it, while the defender eventually needs to find all issues - and even then can't really be sure they remediated everything.

The defender also not only has to discover issues but get them deployed. Installing patches takes time, and once the patch is available, the attacker can use it to reverse engineer the exploit and use it attack unpatched systems. This is happening in a matter of hours these days, and AI can accelerate this.

It is also entirely possible that the defender will never create patches or users will never deploy patches to systems because it is not economically viable. Things like cheap IoT sensors can have vulnerabilities that don't get addressed because there is no profit in spending the tokens to find and fix flaws. Even if they were fixed, users might not know about patches or care to take the time to deploy them because they don't see it worth their time.

Yes, there are many major systems that do have the resources to do reviews and fix problems and deploy patches. But there is an enormous installed base of code that is going to be vulnerable for a long time.
neutered_knot
·vor 8 Monaten·discuss
I took my model Y in to the Tesla dealer yesterday for some minor repairs. It was taking longer than expected so they gave about 4 or 5 customers loaner cars so we could go do other stuff. Each of us got a Cybertruck.

It sort of speaks to the fact that it isn’t selling well that they are using them for loaners.

It’s a pretty unappealing car.
neutered_knot
·vor 10 Monaten·discuss
> So unless you’re hunting down someone selling enriched uranium, major abuse content producers/hosters, or something of that scale, putting in all that investment to gain a fuzzy data point that likely isn’t even useful in an enforcement context is just not worth the tradeoff.

But I don’t think we disagree. My view is that TOR is inadequate against a nation state attack because for some of these attacks it is easier to do mass de-anonymization and hope you get some particular user or set of users you are interested in. The resources to do this are small for something the scale of an intelligence agency, but excessively large for some local police department.

I’m not sure why you appear so hostile to citing attacks that are well-known and already part of the public threat model.
neutered_knot
·vor 10 Monaten·discuss
But you don't need all the hops. You can run a correlation attack (which has been long known):

https://github.com/Attacks-on-Tor/Attacks-on-Tor

and if you can get the guard and exit node for a clearnet connection and the guard, rendezvous point and exit for the onion service that can be enough.
neutered_knot
·vor 10 Monaten·discuss
I think that is referring to the node exit policy, which explicitly allows particular ports and IP addresses to be blocked.

https://support.torproject.org/relay-operators/exit-policies...

The documents you referred to just say you need to honor your own exit policy.
neutered_knot
·vor 10 Monaten·discuss
The site linked takes a shot at enumerating how unlikely it is. Do you claim it is wrong? If so, what is your calculated chance?

To me, TOR is not adequate to protect users targeted by a nation state who are the ones that TOR claims to be created for.
neutered_knot
·vor 10 Monaten·discuss
That’s not at all what I proposed. Not even close.

Edit: on second look I can see how you could think it was. I’m just proposing that if you run a node you be allowed to not become a rendezvous point for onion sites.
neutered_knot
·vor 10 Monaten·discuss
It is absolutely a design decision. I don’t understand though how allowing exit nodes to filter (by port and IP) doesn’t permit censorship but allowing internal nodes to not complete connections to onion sites does. I do understand that early nodes on the path are unaware of what the traffic but it seems pretty straightforward to allow nodes to not become rendezvous points for onion sites.
neutered_knot
·vor 10 Monaten·discuss
Your question made me curious so I tried to see what information about onion sites is available. It’s hard to measure onions sites by design, but

https://99firms.com/research/tor-stats

Says there seem to be about 65k onion sites.

This site:

https://protectchildren.ca/en/press-and-media/blog/2025/tor-...

Has some varying numbers depending on the observation time, but in final month listed saw 30k sites that had they identified as having CSAM.

I’m not sure how accurate either number is or if they are directly comparable but that would be a 50% of all onion sites ballpark.

Not sure how to measure general sites vs dedicated abuse sites.
neutered_knot
·vor 10 Monaten·discuss
I think the point is that exit node operators can filter traffic they don’t want to support. Guard and middle nodes are not given the same choice; they apparently must support all traffic or get booted. Why can’t other nodes have freedom to decide how they want to participate?
neutered_knot
·vor 10 Monaten·discuss
It’s a drop in the bucket for state actors who might want to find TORs target user base of dissidents, whistleblowers, and journalists.