Tor, trust and the NSA

Tor is an anonymizing network that’s designed to protect you by “bouncing your communications around a distributed network of relays run by volunteers all around the world: it prevents somebody watching your Internet connection from learning what sites you visit, and it prevents the sites you visit from learning your physical location.”

That’s cool, but does Tor really guarantee you what you think or assume it does? I can’t say for sure, but when facing a state-sponsored entity with time and resources on its side, you cannot be too careful. At least if pays to know what other people think about Tor, especially when what they have to say runs counter to what you know, or what you think you know.

That’s why I chose to link to an article published by Bill Blunden at Counterpunch. The gist of the article is that Tor may not be as save as you think.

Here’s an excerpt:

Tor proponents often make a big deal of the fact that the NSA admits in its own internal documents that “Tor Stinks,” as it makes surveillance more work-intensive[ii]. What these proponents fail to acknowledge is that the spies at the NSA also worry that Internet users will abandon Tor: “[A] Critical mass of targets use Tor. Scaring them away from Tor might be counterproductive”

Go back and re-read that last sentence. Tor is a signal to spies, a big waving flag that gets their attention and literally draws them to your network traffic[iii]. Certain aspects of Tor might “stink” but ultimately the NSA wants people to keep using Tor. This highlights the fact that security services, like the FBI[iv], have developed sophisticated tools to remove the veil of anonymity that Tor aims to provide.

Tor logo

Interesting stuff. You may read the complete article here.

Related Posts

In very simple terms, here’s what ESB means I like very simple tutorials that even a novice will have fun reading and understanding, and I try to tailor the ones I write here along those line. ...
SSLMate: Buy and install DV SSL certificates from the command line Looking for a tool to facilitate buying and installing SSL certificates for your website? SSLMate to the rescue! SSLMate is the second and latest t...
Open Source GIS systems to be used by Spanish Wine makers Wine makers in Spain will soon be able to use the gvSIG open source geographic information services developed in a large part with the help of severa...
Set up, run a pentest lab on AWS or Google Cloud with Kali Linux, Metasploitable and WebGo... Editor: Kali Linux is a special Linux distribution designed just for penetration testing, or pentesting. It is based on Debian Testing, and is one of ...
rkt 0.10.0 released. Comes with new API service and improved image build tool rkt 0.10.0 has been released. rkt is a container runtime for Linux developed and sponsored by CoreOS, the company that's also behind CoreOS Linux,...
10 tips for a 10x performance boost for your website or Web app How fast does a website need to be? For each second a page takes to load, about 4% of users abandon it. Top e-commerce sites offer a time to first int...

We Recommend These Vendors and Free Offers

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


Leave a Comment

Your email address will not be published. Required fields are marked *

*