Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
Trac
Trac
  • Project overview
    • Project overview
    • Details
    • Activity
  • Issues 246
    • Issues 246
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Operations
    • Operations
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value Stream
  • Wiki
    • Wiki
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Create a new issue
  • Issue Boards

GitLab is used only for code review, issue tracking and project management. Canonical locations for source code are still https://gitweb.torproject.org/ https://git.torproject.org/ and git-rw.torproject.org.

  • Legacy
  • TracTrac
  • Issues
  • #29782

Closed (moved)
Open
Opened Mar 14, 2019 by cypherpunks@cypherpunks

Multiple SocksPort is broken, connects to entry node multiple times. Tor = NSA?

What the fuck is going on here? If I use multiple SocksPort, it connects to entry node multiple times, instead of one time. So CIA and NSA can analyze my traffic more easily. They also know how many applications I use with Tor. That's huge bug. There should be one connection to entry node, but then each socksport should use different middle and exit node. (or maybe use same middle node too?) You are just helping NSA. Do they own torproject? Here is how to get the bug:

  1. Configure Tor to use multiple SocksPort with IsolateDestAddr flag
  2. Start Tor
  3. Connect each application to each SocksPort and start doing network activity on all of them.
  4. You might get multiple TCP connections to entry node.
  5. Each separate TCP connection transmits data from separate SocksPort.

It doesn't happen 100% of time. Sometimes you need to wait or try again to get this bug. This bug is a design flaw maybe. It lowers privacy and gives zero benefits. NSA, CIA, can isolate each TCP connection and try to make analysis and correlation. If everything was transmitted on single TCP connection they would need to own entry node to do same thing. If everything was transmitted on single Entry and Middle node (but different Exit node) they would need to own entry and middle node to make this analysis.

To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: legacy/trac#29782