Tor 0.2.6.1-alpha is the first release in the Tor 0.2.6.x series. It includes numerous code cleanups and new tests, and fixes a large number of annoying bugs.
Tor 0.2.5.10 is the first stable release in the 0.2.5 series.
Hi! It's a new month, so that means there's a new attack on TLS.
This is part 2 of Nick Mathewson and Steven Murdoch's series on what has changed in Tor's design since the original design paper in 2004.
The main academic reference for Tor is "Tor: The Second-Generation Onion Router" by Dingledine, Mathewso
By this point, some people have started to ask me about the Rizzo and Duong's new CRIME attack on TLS.
Today, Juliano Rizzo and Thai Duong presented a new attack on TLS <= 1.0 at the Ekoparty security conference in Buenos Aires.
A while ago, I wrote up a description of what needs to be done to get Tor to be IPv6-compliant and sent it to the tor-dev mailinglist.
There's a new buffer overflow vulnerability in versions of OpenSSL from 0.9.8f through 0.9.8o, and 1.0.0 through 1.0.0a.
Hi! I recently wrote up a status report for the progress we're making on hacking Libevent, and I thought I'd post it here too.