|
Title: Has bitcoin tor been patched to stop attack ? Post by: somedude5 on March 20, 2016, 10:17:16 AM Hi,
There is/was a problem when using tor in the bitcoin client. The article is here : http://www.coindesk.com/bitcoin-tor-anonymity-can-busted-2500-month/ What basiclly happens is that an atacker sets up some tor nodes and then closes down some nodes you are using, so you start using the attackers nodes. He can then start to do some kind of man in the middle attack. Also it is easy to identify who a particular person is. I was wondering if this problem has been patched. Regards, Title: Re: Has bitcoin tor been patched to stop attack ? Post by: European Central Bank on March 20, 2016, 02:00:39 PM First I heard of it. There's probably a few exploits out there waiting to be uncovered. If it's really bad then we'll see an emergency scramble from everyone.
Title: Re: Has bitcoin tor been patched to stop attack ? Post by: unamis76 on March 20, 2016, 02:23:24 PM I don't think there's anything to fix here really, the issue is inherent to Tor usage, I think. It most likely can only be prevented, not fixed, but correct me if I'm wrong :)
Title: Re: Has bitcoin tor been patched to stop attack ? Post by: SanaButt on March 20, 2016, 02:38:07 PM Hi, There is/was a problem when using tor in the bitcoin client. The article is here : http://www.coindesk.com/bitcoin-tor-anonymity-can-busted-2500-month/ What basiclly happens is that an atacker sets up some tor nodes and then closes down some nodes you are using, so you start using the attackers nodes. He can then start to do some kind of man in the middle attack. Also it is easy to identify who a particular person is. I was wondering if this problem has been patched. Regards, I think this is related to hardware wallets and not online wallets ? and its uses denial of service attack (DoS) . Title: Re: Has bitcoin tor been patched to stop attack ? Post by: shorena on March 20, 2016, 03:53:12 PM -snip- I think this is related to hardware wallets and not online wallets ? and its uses denial of service attack (DoS) . No, this has nothing to do with hard wallets, its about network nodes like e.g. bitcoin core. The exploit is using the bitcoin internal DoS protection to ban all Tor exit nodes for the bitcoin node in question to force it on the clearnet or out of the network. This would only work though if you use Tor as proxy to connect to the clearnet and not if you are connected to other nodes that function as hidden service. The lattest version allows you to distinguish between the two types of connections and as such I would argue that this was indeed patched (in a sense). Title: Re: Has bitcoin tor been patched to stop attack ? Post by: somedude5 on March 20, 2016, 07:35:07 PM -snip- I think this is related to hardware wallets and not online wallets ? and its uses denial of service attack (DoS) . No, this has nothing to do with hard wallets, its about network nodes like e.g. bitcoin core. The exploit is using the bitcoin internal DoS protection to ban all Tor exit nodes for the bitcoin node in question to force it on the clearnet or out of the network. This would only work though if you use Tor as proxy to connect to the clearnet and not if you are connected to other nodes that function as hidden service. The lattest version allows you to distinguish between the two types of connections and as such I would argue that this was indeed patched (in a sense). Thank you very much for your understanding and serious reply of the subject. I am new to the whole bitcoin world. And i was wondering what exactly do you mean by "other nodes that function as hidden service"? If i would have the computer running bitcoin getting physical internet form another box that is routed completely through tor, does that qualifies as hidden service ? Or do i have to run a tor node myself and connect it through that node in order to be safe from attackers ? or and can i configure this using the following option described in the software help : --start code output of help bitcoin client -- -listenonion Automatically create Tor hidden service (default: 1) --end code output of help bitcoin client -- ( i would really like to know what exactly this option does, i do not understand it completely ) I am very great full for any help regarding this security issue ! Title: Re: Has bitcoin tor been patched to stop attack ? Post by: calkob on March 20, 2016, 08:10:53 PM What would be the reason for using the tor network for a bitcoin node? i am always abit weary when using tor anyway never mind in regards to my bitcoin
Title: Re: Has bitcoin tor been patched to stop attack ? Post by: shorena on March 20, 2016, 08:46:58 PM @somedude5
-snip- Thank you very much for your understanding and serious reply of the subject. I am new to the whole bitcoin world. And i was wondering what exactly do you mean by "other nodes that function as hidden service"? Well you can access a site through Tor (e.g. http://blockchain.info/ ) or use a hidden service (e.g. https://blockchainbdgpzk.onion/ ) to visit the same site within the Tor network. Same for bitcoin nodes. They can use Tor to reach other bitcoin nodes with a clear net IP (e.g. https://en.bitcoin.it/wiki/Fallback_Nodes#IPv4_Nodes ) or Tor nodes ( https://en.bitcoin.it/wiki/Fallback_Nodes#Tor_nodes ) If i would have the computer running bitcoin getting physical internet form another box that is routed completely through tor, does that qualifies as hidden service ? Maybe. The question is not whether you have set up Tor or not, but whether you have a target within Tor (aka hidden service) or outside of the Tor network (everything else). Or do i have to run a tor node myself and connect it through that node in order to be safe from attackers ? or and can i configure this using the following option described in the software help : --start code output of help bitcoin client -- -listenonion Automatically create Tor hidden service (default: 1) --end code output of help bitcoin client -- ( i would really like to know what exactly this option does, i do not understand it completely ) I am very great full for any help regarding this security issue ! You can configure bitcoin core to use Tor to connect to other nodes outside of Tor or you can set it up in a way to only allow connections to other nodes that are within the Tor network. On how to do it, I suggest this thread -> https://bitcointalk.org/index.php?topic=1374919.0 as I have yet to find the time to do it myself. @calkob What would be the reason for using the tor network for a bitcoin node? i am always abit weary when using tor anyway never mind in regards to my bitcoin Same reason for using Tor for anything else. Anonymity. Bitcoin addresses and transactions can not easily be linked to an IP address, but its possible. If you are running bitcoin core as a hidden service and only connect to other nodes within the Tor network there is no IP that could be matched. There are also mobile wallets like Mycelium that support Tor. Title: Re: Has bitcoin tor been patched to stop attack ? Post by: Bitcoinpro on March 20, 2016, 09:06:09 PM Bitcoin has never been annonymous,
this is similiar to random numbers, they just dont exist, infact for you to pick a random number in your own head is plain stupid it will always be a low number, your idea of random is a trick played by your own cerebal cortex |