Tor and the Silk Road takedown

arma,
I share your frustration with dealing with "takers" whose only motivations are to complain and bemoan the work you have done. I pledge to get educated on the issues and start contributing more to the project and on behalf of privacy rights. Thank you for what you do in this critically important area.

What I do not understand is why SilkRoad Forums still online.

i am not the smartest person .. but i wouldnt use tor to access any site or do anything i am not suppose to do from my home internet... or any isp that i pay for with my credit card.. this has to lead to failure in any situation.. this is what prepaid internet wifi is for... go out buy a internet stick .. log in thru a vpn and dont login from anywhere u live.. simple if u are in a car traveling on vpn on prepaid on tor thats alot of investigating ... or just dont do anything you can get in trouble for

http://dcdirectactionnews.wordpress.com/how-to-post-without-being-trace…

The guy who reversed engineered CIPAV, was mentioned on Wire. They even mentioned his name. Good effort in obtaining the full program. I think the TOR lot should employ this person. It certainly pissed the Feds off due to his Tech savvy .

I have just came apon Tor and I must say great job. I'm not a super noligable person with how code and all the other jumbo you guys are talking about. And understand all the debate of is this a flaw, weak point, ext. But from the news lately on the Government that help build most of the Internet Security. You I would asume you are way ahead of Google, Firefox, IE, Ect. And would be a model of which to follow and improve off of. So you sir and "yor" TOR team fucking rock in my mind and thanks for your fore thought and prepping for these days to come after every one realized fuck the government dooped us and all of our users out there. And from what I understand the government employes majority of the minds that could rebuild or plug the wholes that the government had them put in! So thanks for the hard work you should get a public service award or the nobel prize!

Thought this might be of interest to some of the readers here:

http://www.theguardian.com/uk-news/2013/oct/08/silk-road-illegal-drugs-…

Torr Is GReat!!! FUck FBI!!!!!

How can I run an obfs3 bridge?

Hi arma, hi all.

There is actually a way to compromise the system, broke into and determine real IP address of the hidden services -- http://www.i2p2.de/how_threatmodel.html#intersection (Intersection attack). However, it is only feasible if an attacker has a lot of resources in its disposal. "Perfectly" achievable in the case of government or really huge corporation. Ordinary person simply don't have such amount of resources.

So, there is a legitimate reason to think that owners of both Silk Road and Freedom Hosting were captured by this attack. FBI lies that they made this through detective investigation. Very sad but true: there's no way to resist against this type of attack, neither Tor nor I2P couldn't resist.

You may also skip through the threat model description page to figure out more insightful things.

Cheers.

Guys all of you can calm down, the webhost ip address was found using the the following "bug" (the mistake of DPR in this case):

It is an information leak on the Silk Road server. It appears somebody located a debug or info screen on the Silk Road server that dumped configuration and environment variables. Some possibilities:

The output of Apache's mod_status (example)
Output of phpinfo() (example)
A custom debug page that is part of the Silk Road application

It could have been found by checking known locations of status and debug pages or checking common locations (eg. /phpinfo.php).

This means there is no way to exploit TOR. Also it confirms this blog post, TOR can't stop the FBI from finding the ip address that is being dumped because of the mistake of the site's owner.

More info at: http://security.stackexchange.com/questions/43266/in-the-silkroad-taked…

Well, this recent article sums up a lot:
http://www.theguardian.com/world/2013/oct/04/nsa-gchq-attack-tor-networ…

Up to date comment:
http://www.theguardian.com/world/2013/oct/04/nsa-gchq-attack-tor-networ…

Does anyone know WHICH VPN provider this guy was using? Many of them claim to not log/store IP addresses, but now I am beginning to wonder...

hey there is no100% security on line u all theres is safe safer and near imposible to hack but if its man made another man can hack u so here is my sujestion way the risksWhat ur desires are and do ur own computations as far as risk and the risk u wana take

WAS/is accessing SR/other hidden services thru orbot just as safe as thru the tor browser?

Yea I agree but until we get a faster pipelines to the Tier 1 Networks of which there are only 13 or so worldwide. Tor won't be any faster. Not to mention ISP have to get on board which most haven't yet. How many Gigabit service providers do you know which aren't in South Korea or maybe Japan lol. We don't have that kind of penetration yet here as they do in South Korea which is at close to 90% last I heard. Here I have a radical idea which might just work. Strangely enough this has been done in some third world countries which don't have much access to the web.

I remember reading something somewhere about some community in Africa. They set up their own private internet using Radio transmission antennas? The range isn't all that great but I have heard small community which have the system in place get pretty good speed. However if you connect from this system to the normal web then your identity is compromised. However some of you guys I am sure could work Tor into that. Mobile private networks are really the future outside of an ISP's control. Probably some time away yet though. Some of you guys probably know more about this then I do as I just remember reading it awhile back but not sure where. Well just an idea is all.

Did anybody else think it was fishy that Mozilla departed from their norm (and have now switched back) to distributing a Tor browser with Javascript defaulting ON. This fitted nicely with the Javascript hack that revealed the origin of hidden site connections.

Also, the LEO's did hack legal sites as well as illegal.

So Mozilla will sell out and LEO's will act illegally if they are anonymous.

http://motherboard.vice.com/blog/tor-is-less-anonymous-than-you-think

Some of the posts (smelling of paranoia) convince me that the kind of world they show we will be living in, in futuristic/sci-fi movies may actually become reality... :)

Before some of you come out with all your artillery and murder me with with your posts, I take off.

Relax and have fun in life!!

The Silk Road and Freedom Hosting busts were both a result of NSA spying. Why do you think Marques planned to flee the country after reading the Snowden leaks.

The NSA took him down because he was planning to flee. They were content to just sit there monitoring him until the Snowden leaks (because we all know they're more interested in power and couldn't care less about actual drugs or child porn).
The so-called police work that ended in the arrests and shutdowns of both Freedom Hosting and The Silk Road were nothing but a smokescreen.

I hope there is some sort of evidence to show what really happened. Or at least I hope to see some tech savvy reporters actually ask a few questions rather then giving American law enforcement the benefit of the doubt (which is just insanity at this point).

We make the mistake of believing it doesn't matter how someone is busted so long as we're all sure they're guilty. It matters greatly! In fact I'm MORE concerned with these "don't ask don't tell" cases that both sides of the debate can't be bothered arguing about because they're both equally disgusted by the victims. It shouldn't matter!

The most pathetic aspect of all of this is that I'm sure both busts were more to do with trying to attack Bitcoin then anything else. Ask Saddam Hussein what happens when you screw with the almighty USD! Oh wait.

I check TOR sites and the deep web every so often just to see how much has been taken down. I believe there is a lot of criminal activity that needs to be put to a stop from peds to drugs to weapons. I am very happy the government is working hard to bring an end to it. It's not that I don't believe in privacy, I just do not believe in allowing criminals to have a free reign on their evil plots. I hope Tor does not get brought down, just those who use it to break laws.