From owner-freebsd-security@freebsd.org  Sun Dec 10 22:43:33 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 91443E9F654
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Sun, 10 Dec 2017 22:43:33 +0000 (UTC)
 (envelope-from michelle@sorbs.net)
Received: from hades.sorbs.net (hades.sorbs.net [72.12.213.40])
 by mx1.freebsd.org (Postfix) with ESMTP id 6F2C7664B6
 for <freebsd-security@freebsd.org>; Sun, 10 Dec 2017 22:43:32 +0000 (UTC)
 (envelope-from michelle@sorbs.net)
MIME-version: 1.0
Content-transfer-encoding: 7BIT
Content-type: text/plain; CHARSET=US-ASCII; format=flowed
Received: from typhoon.sorbs.net
 (203-206-128-220.perm.iinet.net.au [203.206.128.220])
 by hades.sorbs.net (Oracle Communications Messaging Server 7.0.5.29.0 64bit
 (built Jul  9 2013)) with ESMTPSA id <0P0R00BDLOUTB500@hades.sorbs.net> for
 freebsd-security@freebsd.org; Sun, 10 Dec 2017 14:52:07 -0800 (PST)
Subject: Re: http subversion URLs should be discontinued in favor of https URLs
To: Yuri <yuri@rawbw.com>, Igor Mozolevsky <mozolevsky@gmail.com>
Cc: freebsd security <freebsd-security@freebsd.org>,
 RW <rwmaillists@googlemail.com>
References: <97f76231-dace-10c4-cab2-08e5e0d792b5@rawbw.com>
 <5A2709F6.8030106@grosbein.net>
 <11532fe7-024d-ba14-0daf-b97282265ec6@rawbw.com>
 <8788fb0d-4ee9-968a-1e33-e3bd84ffb892@heuristicsystems.com.au>
 <20171205220849.GH9701@gmail.com> <20171205231845.5028d01d@gumby.homeunix.com>
 <CADWvR2gVn8H5h6LYB5ddwUHYwDtiLCuYndsXhJywi7Q9vNsYvw@mail.gmail.com>
 <20171210173222.GF5901@funkthat.com>
 <CADWvR2iGQOtcU=FnU-fNsso2eLCCQn=swnOLoqws+33V8VzX1Q@mail.gmail.com>
 <5c810101-9092-7665-d623-275c15d4612b@rawbw.com>
 <CADWvR2j_LLEPKnSynRRmP4LG3mypdkNitwg+7vSh=iuJ=JU09Q@mail.gmail.com>
 <fd888f6b-bf16-f029-06d3-9a9b754dc676@rawbw.com>
 <CADWvR2jnxVwXmTA9XpZhGYnCAhFVifqqx2MvYeSeHmYEybaNnA@mail.gmail.com>
 <19bd6d57-4fa6-24d4-6262-37e1487d7ed6@rawbw.com>
From: Michelle Sullivan <michelle@sorbs.net>
Message-id: <5A2DB80D.3020309@sorbs.net>
Date: Mon, 11 Dec 2017 09:41:17 +1100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:43.0)
 Gecko/20100101 Firefox/43.0 SeaMonkey/2.40
In-reply-to: <19bd6d57-4fa6-24d4-6262-37e1487d7ed6@rawbw.com>
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.25
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 10 Dec 2017 22:43:33 -0000

Yuri wrote:
> On 12/10/17 10:15, Igor Mozolevsky wrote:
>> They are not "hypothetical characters," they are invented characters 
>> that
>> are used in a threat model. But that's reframing the problem- a
>> hypothetical threat model is very different to a real threat model.
>
>
> This is a very real threat model. There are a lot of malicious Tor 
> exit node operators, and a lot of FreeBSD users update their system 
> over subversion. The only thing that the Tor node operator needs to do 
> is to detect relevant requests and serve malware.
>
> How is this not real?

Sounds to me the proper solution is stop using Tor.

If you can't trust the network (wire) no matter what you do you can't 
guarantee safety.

Seriously if there are "a lot of malicious Tor exit node operators" the 
simple answer is stop using Tor.

Michelle