Bitcoin Forum
November 18, 2024, 06:00:10 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 ... 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 [376] 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 ... 499 »
  Print  
Author Topic: [ANN][XST] Stealth-Coin.com | Tor | StealthText, World's first anonymous SMS Tx!  (Read 748616 times)
Bobsurplus
Legendary
*
Offline Offline

Activity: 1008
Merit: 1000


Making money since I was in the womb! @emc2whale


View Profile
October 02, 2014, 03:30:09 AM
 #7501

^This is part of the reason that I asked if XST would ever get i2p implemented.
However I think you are missing the point that Tor is a much much better alternative to NOTHING

Big time.. And you can still be safe on tor, you just need to know how to use it right and not be trying to buy nuclear weapons. Cant be having the NSA looking for you on there because they may find ya.. but to send a few coins.. fuck that.. NSA has better stuff to do then try to track my stealthcoin.







I agree, alot of it comes down to personal responsibility and usage. For joe schmo spending it, it works fine

Yep... That's why I see it as a winner. So many oppressed countries, so many people and everyone one of them has a need to hold, spend, send and receive money.



Stealthcoin for the win bud!
cryptocrap
Full Member
***
Offline Offline

Activity: 134
Merit: 100



View Profile
October 02, 2014, 03:31:57 AM
 #7502

^This is part of the reason that I asked if XST would ever get i2p implemented.
However I think you are missing the point that Tor is a much much better alternative to NOTHING


and your
Quote
Remember: Lulzsec hacker Sabu was discovered because while he normally logged onto chatrooms using Tor, he forgot once -- and once was enough.
is a fucking lie. He was a FED the whole time



Seeing how you missed that FACT about Sabu, I also have to question your "sources" for your claims.

TOR IS FUGAZI. NSA CONTROLS A LOT OF NODES OF NETWORK.
DiCE1904
Legendary
*
Offline Offline

Activity: 1118
Merit: 1002


View Profile WWW
October 02, 2014, 03:35:52 AM
 #7503

^This is part of the reason that I asked if XST would ever get i2p implemented.
However I think you are missing the point that Tor is a much much better alternative to NOTHING


and your
Quote
Remember: Lulzsec hacker Sabu was discovered because while he normally logged onto chatrooms using Tor, he forgot once -- and once was enough.
is a fucking lie. He was a FED the whole time



Seeing how you missed that FACT about Sabu, I also have to question your "sources" for your claims.

Im a kid and dont know my facts


Please continue and enlighten us with more bullshit you seem to know


BTCwriter
Legendary
*
Offline Offline

Activity: 1008
Merit: 1000



View Profile
October 02, 2014, 03:39:59 AM
 #7504

Back to tonight update, it's AWESOME!
Hondo/team releasing working POSA like it was nothing special  Grin
I feel bad for the Cloakcoin main dev but hey he did give Stealthcoin the first step
EmilioMann
Legendary
*
Offline Offline

Activity: 2184
Merit: 1028


#mitandopelomundo


View Profile
October 02, 2014, 03:41:04 AM
 #7505

^This is part of the reason that I asked if XST would ever get i2p implemented.
However I think you are missing the point that Tor is a much much better alternative to NOTHING


and your
Quote
Remember: Lulzsec hacker Sabu was discovered because while he normally logged onto chatrooms using Tor, he forgot once -- and once was enough.
is a fucking lie. He was a FED the whole time



Seeing how you missed that FACT about Sabu, I also have to question your "sources" for your claims.

TOR IS FUGAZI. NSA CONTROLS A LOT OF NODES OF NETWORK.

moron, tor is just a plus in stealthcoin.
XST has several layers of anon features, do you dont know to read, troll?
cryptocrap
Full Member
***
Offline Offline

Activity: 134
Merit: 100



View Profile
October 02, 2014, 03:42:48 AM
 #7506

^This is part of the reason that I asked if XST would ever get i2p implemented.
However I think you are missing the point that Tor is a much much better alternative to NOTHING


and your
Quote
Remember: Lulzsec hacker Sabu was discovered because while he normally logged onto chatrooms using Tor, he forgot once -- and once was enough.
is a fucking lie. He was a FED the whole time



Seeing how you missed that FACT about Sabu, I also have to question your "sources" for your claims.

TOR IS FUGAZI. NSA CONTROLS A LOT OF NODES OF NETWORK.

moron, tor is just a plus in stealthcoin.
XST has several layers of anon features, do you dont know to read, troll?

Okay but I2P is better.
DiCE1904
Legendary
*
Offline Offline

Activity: 1118
Merit: 1002


View Profile WWW
October 02, 2014, 03:43:29 AM
 #7507

Yea it is better, but not as well known nor as easy to implement into a wallet.  Hondo said he would look into i2p.  Thats specifically why I asked the question in the first place.

https://twitter.com/_DiCE1904/status/517501293368455168

EmilioMann
Legendary
*
Offline Offline

Activity: 2184
Merit: 1028


#mitandopelomundo


View Profile
October 02, 2014, 04:09:13 AM
 #7508

LOL pookie is dumping
Bobsurplus
Legendary
*
Offline Offline

Activity: 1008
Merit: 1000


Making money since I was in the womb! @emc2whale


View Profile
October 02, 2014, 04:14:39 AM
 #7509

So where is the wallet update? its been a while already.
EmilioMann
Legendary
*
Offline Offline

Activity: 2184
Merit: 1028


#mitandopelomundo


View Profile
October 02, 2014, 04:20:36 AM
 #7510

So where is the wallet update? its been a while already.

in a half hour https://twitter.com/StealthCoin/status/517528910041317376
erok
Hero Member
*****
Offline Offline

Activity: 896
Merit: 1000


Avatars are overrated.


View Profile
October 02, 2014, 04:21:08 AM
 #7511

LOL pookie is dumping

"the destruction of privacy widens the existing power imbalance between the ruling factions and everyone else" -- Julian Assange
RadDragon
Full Member
***
Offline Offline

Activity: 188
Merit: 100

Sound science


View Profile WWW
October 02, 2014, 04:26:38 AM
 #7512


It's an impressive bit of work how much dumping has kept xst at 10k and under, you know?

BTC donations: 13aybLjCevCow87LaQQ3CtsFLMgBFchs3Y
EmilioMann
Legendary
*
Offline Offline

Activity: 2184
Merit: 1028


#mitandopelomundo


View Profile
October 02, 2014, 04:27:53 AM
 #7513


It's an impressive bit of work how much dumping has kept xst at 10k and under, you know?


LOL
he loses money to prove that his analysis is right LOL


crazytrain
Full Member
***
Offline Offline

Activity: 191
Merit: 100



View Profile
October 02, 2014, 04:46:10 AM
 #7514

The NSA runs lots of Tor nodes and also the American government, TOR will never be 100% safe. SAD but TRUE.


Anonymity Smackdown: NSA vs. Tor link:http://blog.erratasec.com/2013/08/anonymity-smackdown-nsa-vs-tor.html#.VCy9RGddVCg

By Robert Graham

In recent news, Tor was hacked -- kinda. A guy hosting hidden services was arrested (with help from FBI), and his servers changed to deliver malware to expose user IP addresses (with help from NSA). This makes us ask: given all the recent revelations about the NSA, how secure is Tor at protecting our privacy and anonymity?

The answer is "not very". Tor has many weaknesses, especially the "Tor Browser Bundle". Experts might be able to protect their privacy with Tor against the NSA, but the casual user probably can't. I'm going to describe some of the reasons here.

The NSA runs lots of Tor nodes

The NSA hosts many nodes, anonymously, at high speed, spread throughout the world. These include ingress, middle nodes, hidden services, and most especially, egress nodes. It's easy for them to create a front company, sign up for service, and host the node virtually anywhere.

On any random Tor connection, there is a good chance that one of your hops will be through an NSA node.
Update: This is a controversial claim. I have some sources I cannot name. Also: I don't have the exact details as to what "many" means: 1%? 10% 30%??
Tor uses only three hops

By default, Tor chooses three hops: the ingress point, the egress point, and only a single in-between node. If the NSA is able to control one or two of these nodes, you are still okay because the third node will protect you. But, if the NSA is able to control all three, then your connection is completely unmasked.

This means that the NSA occasionally gets lucky, when somebody's connection hits three NSA nodes, allowing them to unmask the user.
Update: If we assume the NSA controls 1% of Tor nodes, that comes out to one-in-a-million chance the NSA will unmask somebody on any random connection. If a million connections are created per day, that means the NSA unmasks one person per day.
Tor creates many new paths

Tor doesn't use a single static path through the network. Instead, it opens up a new path/tunnel every 15 minutes. Modern web-services create constant background connections. Thus, if you have your Outlook mail or Twitter open (and aren't using SSL), these will cause a new path to be created through the Tor network every 15 minutes, or 96 new paths every day, or 3000 new paths a month.

That means over the long run, there's a good chance that the NSA will be able to catch one of those path with a three-hop configuration, and completely unmask you.
Update: This is partly mitigated by the "guard" ingress node concept. You crease only a single connection to the guard node, then fan out paths from there. But, mitigated doesn't mean the same thing as "fixed".
Your egress traffic may be unencrypted

Tor encrypts your traffic on your end, but when it leaves the last node in the Tor network, it'll be whatever it would be originally. If you are accessing websites without SSL, then this last hop will be unencrypted. It's usually easy to verify within web-browsers whether they are using SSL, but most other apps have bugs that cause unencrypted sessions to be created.
Update: Also, some of your egress traffic is poorly encrypted, such as the 1024-bit keys without forward security that Facebook uses.
Update: @addelindh points out that things like SSLstrip often works because people aren't paying attention and websites don't support things like HSTS, and thus, even when you want SSL, it'll sometimes fail for you in the face of a hostile attacker. Somebody needs to setup an exit node, then SSLstrip it to figure out how often that works.
Tor uses 1024-bit RSA DH

Tor connections are only protected by 1024-bit RSA/DH keys. The NSA can crack those keys. We don't know how easily they can do it. I'm guessing the NSA spent several years and a billion dollars to build ASICs. That means, their internal accounting might  charge $1-million per 1024-bit RSA/DH key cracked. This means they won't try to crack keys for petty criminals, but they have the power to crack keys for serious targets.

The NSA doesn't need to control all three servers along your route through Tor. Instead, it can control two servers and crack the RSA/DH key of the remaining connection.
Update: We know the NSA can crack 1024-bit keys, because would cost only a few million dollars. What we don't know how many such keys it can crack per day. The number could be less than one such key per day.
Major Update: Because of Tor's "perfect forward secrecy", the NSA wouldn't be cracking the RSA key when eavesdropping. Instead, they would need to crack the "ephemeral" keys. A lot of older servers use 1024-bit DH ephemeral keys, which are about as easy to break as 1024-bit RSA keys. Newer servers use 256-bit ECDH keys which are a lot stronger, and likely not crackable by the NSA (estimates say NSA can crack up to 160-bit ECDH keys). Thus, for older servers, the ability of the NSA to passively eavesdrop and crack keys is a big threat, but for newer servers, it's likely not a threat. (I'm using http://www.keylength.com/ and round numbers here for key lengths). (I'm using http://torstatus.blutmagie.de/ and my own pcaps to confirm a lot of 1024-bit DH is still out in the Tor nodes).
Update: I did a rough survey of the 4200 active Tor servers. Roughly 10% use the newer uncrackable ECDH keys, whereas the other 90% use the older crackable 1024-bit DH keys.
The NSA can influence parts of the network

The NSA can flood the servers it doesn't control with traffic, thus encouraging users to move onto their own servers. Thus, they can get more connections onto their servers than chance would suggest.

Multiple apps share the same underlying Tor egress

Let's say that you use SSL for Twitter, but non-SSL for your email app. Both of these go out the same exit node. This allows the the NSA to associate the two together, the user named in the email connection associated with the otherwise anonymous Twitter connection. This association works well when the NSA is controlling the exit node, and less well if it's simply monitoring the exit node.

Outages out you

As everyone knows, if the NSA is monitoring you and the server you visit, they might be able to match up traffic patterns to associate the two. This is tricky for them, so a better way is to control the association by injecting faults. If the NSA is able to reset (spoof TCP RST) packets to your end of the connection, it'll cause the egress connection on the other end to drop. Some suspect the NSA is doing this in order to find hidden services.

Exploits (0day or not) can leak your IP address

In the recent incident, the FBI put a Firefox exploit on the servers that was designed to leak a person's IP address. There are lots of other things that can do this, ranging from hidden stuff within video files to PDF files. I doubt that it is possible, in the normal sense (i.e. without putting the Tor proxy and apps on separate machines), to prevent your IP address from being discovered.

DNS leakages can get you

This is partially fixed, with the latest build of Firefox in the Tor Browser Bundle. But it's potentially broken in other apps. The basic problem is that Tor is TCP-based, but DNS requests go over UDP. Also, DNS requests go over separate APIs in the operating system that bypass the proxying of Tor. Consequently, when apps open a proxied TCP connection, they'll still leak your IP address when resolving a name via DNS. (h/t @inthecloud247)

Mistakes inevitably happened

Remember: Lulzsec hacker Sabu was discovered because while he normally logged onto chatrooms using Tor, he forgot once -- and once was enough.


The NSA passes info to the FBI !!!

Normally, the NSA wouldn't go after petty criminals, like kids buying drugs on SilkRoad. That's because doing so would reveal the existence of the program, which the NSA wants to keep secret.

But now we've heard stories about how the NSA can give such information to FBI without revealing the program. Unmasking connections is opportunistic: the NSA is just running a huge dragnet and testing connections when they get lucky. With the above program, they can just pass it along to the FBI. That means even the pettiest of petty criminals might getting caught with the NSA's Tor monitoring.

Conclusion

Experts can probably use Tor safely, hiding from the NSA -- assuming they control a smaller number of nodes, and that their 1024-bit key factoring ability is small. It would require a lot of opsec, putting apps on a different [virtual] machine than the proxy, and practicing good opsec to make sure egress connections are encrypted.

However, the average person using the Tor Browser Bundle is unlikely to have the skills needed to protect themselves. And this might be good thing: it means dissidents throughout the world can probably hide from their own government, while our NSA cleans the network of all the drug dealers and child pornographers.


Stop bullshitting TOR is not safe.

OMG  Cry Cry Cry
BTCwriter
Legendary
*
Offline Offline

Activity: 1008
Merit: 1000



View Profile
October 02, 2014, 04:47:54 AM
 #7515


Quoting himself, sound of desperation.
I believed this new account is one user.
erok
Hero Member
*****
Offline Offline

Activity: 896
Merit: 1000


Avatars are overrated.


View Profile
October 02, 2014, 04:48:53 AM
 #7516

again. tor is just one of the many obfuscation layers.

"the destruction of privacy widens the existing power imbalance between the ruling factions and everyone else" -- Julian Assange
tljenson
Full Member
***
Offline Offline

Activity: 182
Merit: 100


View Profile
October 02, 2014, 04:52:15 AM
 #7517

Crypto Asian wasn't lying when he said Hondo is a genious...Layers of Anon and stealth addresses, hellz yeah


I have a question. So XST already has stealth address like SSD, and later with have the  Chandran Signatures? I'm I getting that right?
EmilioMann
Legendary
*
Offline Offline

Activity: 2184
Merit: 1028


#mitandopelomundo


View Profile
October 02, 2014, 04:52:26 AM
 #7518

I think that pookie will kill your self if not able to get down stealthcoin to 10k
BTCwriter
Legendary
*
Offline Offline

Activity: 1008
Merit: 1000



View Profile
October 02, 2014, 04:58:09 AM
 #7519

People forgot about Mintpal already, they are more into flipping
EmilioMann
Legendary
*
Offline Offline

Activity: 2184
Merit: 1028


#mitandopelomundo


View Profile
October 02, 2014, 04:59:05 AM
 #7520

Crypto Asian wasn't lying when he said Hondo is a genious...Layers of Anon and stealth addresses, hellz yeah


I have a question. So XST already has stealth address like SSD, and later with have the Chardrin Signatures? I'm I getting that right?

yep
*chandran signatures
Pages: « 1 ... 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 [376] 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 ... 499 »
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!