Re: [Tails-dev] Why OnionCat + Mumble - why not just Mumble?
Hi, ban...@openmailbox.org wrote (15 Aug 2014 15:22:30 GMT) : Unfortunately the Linphone version in Debian stable does not have zrtp support. Ah, right, I've now found https://bugs.debian.org/671815. Did anyone try to backport the Jessie package for Wheezy? But wouldn't Hidden Services and onioncat be providing the authentication layer? I think onioncat only provides authentication of the callee by the caller, not the opposite. Perhaps unidirectional mode (the default since r555, in Jessie, not available in Wheezy) fixes this. Want to check with the onioncat folks if this is correct? If unidirectional mode is needed, I can provide a backport of Jessie's onioncat for Wheezy. Cheers, -- intrigeri ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] [Freepto] Let's share username, /etc/hostname and /etc/host among all anonymity distributions
Hi, [dropping Patrick from Cc, as he obviously reads tails-dev@.] Patrick Schleizer wrote (15 Aug 2014 21:17:17 GMT) : Let's think again of examples where this might happen. And then determine with which strategy users would be better off in which case. I think it's a useful approach. - ssh uses username for login if not explicitly told otherwise - server knows you're a Tor user anyway - better off with shared value Note that the Tor user anonymity set is much larger currently than user of an anonymity-focussed distro, so your conclusion (about this example and others) is not *that* obvious to me. Cheers, -- intrigeri ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] Why OnionCat + Mumble - why not just Mumble?
On 2014-08-16 00:38, ban...@openmailbox.org wrote: On 2014-08-15 15:22, ban...@openmailbox.org wrote: On 2014-08-14 23:26, ban...@openmailbox.org wrote: Hi. I found out why onioncat wasn't working and configured it accordingly with help from Bernhard. It was a peculiarity that had to do with our specific two machine design. Now VOIP works. Linphone is what we'll be using. Thought I'd tell you so you guys can add that too. Details: https://www.whonix.org/forum/index.php/topic,407.msg3360.html#msg3360 Unfortunately the Linphone version in Debian stable does not have zrtp support. But wouldn't Hidden Services and onioncat be providing the authentication layer? Note that Linphone does have a text messaging mode but its completely plaintext. Again it shouldn't matter if what I'm saying about Hidden Services is correct. More interesting information on the functionality of VOIP clients. you might like to factor them into your blueprint https://www.whonix.org/forum/index.php/topic,407.msg3396.html#msg3396 You are right. Please make a backport and I will work on instructions for authentication. ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] Why OnionCat + Mumble - why not just Mumble?
ban...@openmailbox.org wrote (16 Aug 2014 14:00:49 GMT) : You are right. Please make a backport and I will work on instructions for authentication. I'm a bit lost. Maybe you didn't reply in the sub-thread you wanted to. Do you want a backport of OnionCat, or a Linphone one? Both have improvements in the authentication area in Jessie. Cheers, -- intrigeri ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.
Re: [Tails-dev] [Freepto] Let's share username, /etc/hostname and /etc/host among all anonymity distributions
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, I wonder if the idea of using a random username has a serious problem: It makes every [Tails / anonymity distribution] session uniquely identifiable if the username gets sent in any way. And we *do* assume that it gets sent, because that's basically the idea behind the question what username should be used. Maybe I completely misunderstand this, but using a random username for every session basically sounds like creating a random (and unique!) stamp for every session. Not for every connection, but for every session, so that multiple connections in one session will share one unique username. Patrick Schleizer mentioned IRC idents as an example; maybe that's a good way to explain the problem: - - John Doe starts Tails. His username for this session will be ombbjp8GTE. - - John Doe starts an IRC client. He says something that should absolutely remain anonymous. - - John Doe closes the IRC client and surfs a bit. - - John Doe starts an IRC client again, this time on another network where he happily chats with some friends next to his Iceweasel window. == Anyone who sees both the happy chatting on network 2 and the anonymous information on network 1 knows that it has been sent by the same user, and probably even who this user is. With one default nick for all users, this could not have happened. I'm unsure how severe this issue is, but it would make me suggest *not* using a random username. Best regards, Tobias Frei -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJT7+9qAAoJEOaAxTHjKzK7RO0P/iGAtpryltjmaL1p9+ELdaIb a94hHlnYEuWOmhI4yFNbGnJYa1vG1d72XE7nqESxIZj8kjg0Dg2X8rX9+BbJMV1m XG/5fMlMuwCSYncn01a0h1aOMw191RmNV93g5LRUXlaQqBQDUqMjddyjvI4K5J/7 BpLmO+uAzWDlS/OsjI8e3PxaODFUPAwOhwt8DMEei11r0PiSmLnZnUb28uafxbHs VJXCvzhadyvDsDffLy/WX8yamPMwFXiBHIVCoVTzuEm6OWkJ4bGbZ0IhT7Q/IGFA MPNFYDVA2jY2jcRXoUHm/CwDJmhhZqiw3txkGFhjyTRb7NdbRe2jc9hX5Hkod903 hX8ycs17Vluwq1cgHsSOOlnGlAGvtuvAQMQ9D3jwRcACF18Y097/7Tb1ctxmCwNY 25c/nrs/hcdYc2JHSQmtle2OJ2juVh635uHET+dLtCZbmlsHCuxBKz/L/VMXc7ns ZZx2qVvYMKc2QYzSQDkgrcPsrDMSfWxFCf4c3g/nP4lj/uuKAsOStBkyHlGlMVA3 HPtHmUbCBYYxfTrNST22ggWz/yWIPd0PPMxvGIXImL9T/Y5RHDF4W5R1FWuyTIBU 82niqLwHvCXhkhWak6tl8FA+XKmcQIE96QODEdAu497FMpZSDlK6QL1gMPiq8fn3 zA1wYC7riF3PxhvJEeGD =8GPs -END PGP SIGNATURE- ___ Tails-dev mailing list Tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to tails-dev-unsubscr...@boum.org.