• US government agencies may have DDoSed Silk Road 2/Doxbin/other .onion sites
    30 replies, posted
[url]http://arstechnica.com/security/2014/11/silk-road-other-tor-darknet-sites-may-have-been-decloaked-through-ddos/[/url] [quote=Ars Technica]Last week’s takedown of Silk Road 2.0 wasn’t the only law enforcement strike on "darknet" illicit websites being concealed by the Tor Project’s network of anonymizing routers. A total of 410 sites that sell everything from drugs to murder-for-hire assassins were shut down as part of Operation Onymous—a joint operation between 16 member nations of Europol, the FBI, and US Immigration and Customs Enforcement. While 17 arrests were made, some operators of sites taken down by the worldwide sweep remain at large. One of them—the co-operator of Doxbin, a site that traded in personal identifying information to use for intimidation, identity theft, extortion, or other malicious purposes—has shared details of his site’s takedown with Tor developers in hopes they’ll find ways to protect other users of the network. An apparent distributed denial of service (DDoS) attack against Doxbin may have been used to uncover its actual location, and the same approach may have been used to expose other darknet servers seized by law enforcement. Log files shared by the Doxbin proprietor, who calls himself nacash, suggest that sites may have been “decloaked” using Web requests intentionally crafted to break Tor’s Hidden Services Protocol. It’s also possible that his site was given up by bad PHP code. In a series of e-mails to the tor-dev list entitled “yes, hello, Internet supervillain here," nacash, said that his server—a virtual private server running the German hosting service Hetzner—was initially hit by what he believed was a denial of service attack in August.[/quote] Shit's going to hit the fan when the CFAA is mentioned by whoever is defending the site operators.
Oh fuck
[QUOTE=wickedplayer494;46449213] Shit's going to hit the fan when the CFAA is mentioned by whoever is defending the site operators.[/QUOTE] Oh come on, we all know the law doesn't apply to the government.
How can you get a servers location via DDoS? Genuinely interested. Is it a case of firing so many requests and looking for some kind of correlation?
[QUOTE=Occlusion;46449332]How can you get a servers location via DDoS? Genuinely interested. Is it a case of firing so many requests and looking for some kind of correlation?[/QUOTE] Keep reading the article at the source link. It includes what happened.
How childish.
Uhmm, you guys seem kinda annoyed at this, but I don't really care for people running these kinds of sites. [QUOTE]One of them—the co-operator of Doxbin, a site that traded in personal identifying information to use for intimidation, identity theft, extortion, or other malicious purposes—has shared details of his site’s takedown with Tor developers in hopes they’ll find ways to protect other users of the network.[/QUOTE]
[QUOTE=Occlusion;46449332]How can you get a servers location via DDoS? Genuinely interested. Is it a case of firing so many requests and looking for some kind of correlation?[/QUOTE] Basically, Tor works by having gateways into public web, and the idea is that the gateways scramble the traffic and it's hard to tell where within the tor network it originated from. However, if somebody gains control over high enough number of the gateways, they can uncover the traffic that passes through them. For it to be feasible tho, you need a big enough percentage of the functional gateways routing traffic to get your hands on relevant information. What internut poh-lice apparently did is that they got some of the gateways and then DDoSed the rest of the network, forcing a bigger share of the traffic through their own gateway, which let them uncover stuff. [editline]9th November 2014[/editline] [QUOTE=GoDong-DK;46449496]Uhmm, you guys seem kinda annoyed at this, but I don't really care for people running these kinds of sites.[/QUOTE] [quote]While no tears may be shed over criminally oriented sites like Silk Road 2.0 and Doxbin, the implications for other hidden services—and for users of the Tor network in general—are unnerving. If it’s possible for government actors to use denial-of-service attacks to force Tor traffic over connections that are owned and operated by them, it could present privacy problems for anonymized sites used by whistle-blowers, political activists and dissidents, journalists, and others trying to avoid the eyes of oppressive regimes.[/quote] I agree that I don't care about Doxbin or child porn sites going under, but the idea of Tor on it's own is legit and there are good causes it can serve.
[QUOTE=GoDong-DK;46449496]Uhmm, you guys seem kinda annoyed at this, but I don't really care for people running these kinds of sites.[/QUOTE] The annoyance is more to what it could lead to, once the illegal sites are gone, its to the ones standing up for rules/laws next.
[QUOTE=GoDong-DK;46449496]Uhmm, you guys seem kinda annoyed at this, but I don't really care for people running these kinds of sites.[/QUOTE] Regardless of who they're after, law enforcers ought not break the law. Would you be okay if they came down on an accused murderer or pedophile by burning down their house?
[QUOTE=Crazy Ivan;46449801]Regardless of who they're after, law enforcers ought not break the law. Would you be okay if they came down on an accused murderer or pedophile by burning down their house?[/QUOTE] in what situation is someone going to do that. And yes, I would be okay with that.
just leave evo alone
[QUOTE=Crazy Ivan;46449801]Regardless of who they're after, law enforcers ought not break the law. Would you be okay if they came down on an accused murderer or pedophile by burning down their house?[/QUOTE] DDOSing a website , committing arson. Seriously, think about it for a second.
[QUOTE=Crazy Ivan;46449801]Regardless of who they're after, law enforcers ought not break the law. Would you be okay if they came down on an accused murderer or pedophile by burning down their house?[/QUOTE] "arson" More like blocking a border which smuggling happens across incredibly frequently
Can the police crawl out of Tors ass for once
Some divisions of the FBI dont play by the rules when it comes to the internet. This is not surprising. My small stint learning about some of these people really opened my eyes. If you want to fuck with the US government, the US government will fuck with you back.
No one is safe and I've seen in the past few weeks that those who think they are extra safe on TOR are actually extra fucked. Nothing good happens in the "deep web" anyway.
[QUOTE=ImperialGuard;46449920]in what situation is someone going to do that. And yes, I would be okay with that.[/QUOTE] You'd be okay with setting fire to the house of someone who hasn't been proven guilty?
[QUOTE=NeverGoWest;46450446]Can the police crawl out of Tors ass for once[/QUOTE] yes lets let people feel free to do all the child porn sharing, drug trafficking, and weapons trafficking they want.
[QUOTE=Used Car Salesman;46449312]Oh come on, we all know the law doesn't apply to the government.[/QUOTE] The Government can do pretty much whatever it wants as long as it's discreet about it.
[QUOTE=geogzm;46449922]just leave evo alone[/QUOTE] Evo went down a few days ago man. Agora is the best dnm now anywho.
[QUOTE=InvaderNouga;46450581]yes lets let people feel free to do all the child porn sharing, drug trafficking, and weapons trafficking they want.[/QUOTE] Laws exist for a reason and if the general public isn't allowed excuses for breaking them then the government absolutely shouldn't be. Rule of law is important.
[QUOTE=Zeke129;46452343]Laws exist for a reason and if the general public isn't allowed excuses for breaking them then the government absolutely shouldn't be. Rule of law is important.[/QUOTE] The law has to be allowed to bend the rules a bit in order for the law to function, though that's why their rules have regulations. In a case like this, we have no regulations, while in something like say, a cop searching a car which requires a warrant or court order or notable cause of a law being broken, those regulations are in place. A normal civilian can't get a court order or warrant to search someone's house, but a cop can. What I'm basically saying is we need to regulate these rules so the government is allowed to do these things under strict circumstances.
[QUOTE=Gamerman12;46452362]The law has to be allowed to bend the rules a bit in order for the law to function, though that's why their rules have regulations. In a case like this, we have no regulations, while in something like say, a cop searching a car which requires a warrant or court order or notable cause of a law being broken, those regulations are in place. A normal civilian can't get a court order or warrant to search someone's house, but a cop can. What I'm basically saying is we need to regulate these rules so the government is allowed to do these things under strict circumstances.[/QUOTE] But we're not talking about a warrant here, we're talking about a DDoS. The law allows for the police to search your property if they have a warrant.
so in a nutshell the US goverment is only locating servers to shut them down and arrest their owners rather than try and gain as much information about the people who are actually using these services for malicious intentions such as extortion/stalking/etc.
[QUOTE=RichyZ;46452373]what legitimate non illegal/scummy things could you even do on .onion that any other public domain wouldn't let you do?[/QUOTE] Share information your local government doesn't want you to, mainly. Obviously not a concern for most people in the west, but it's important nonetheless.
[QUOTE=RichyZ;46452373]what legitimate non illegal/scummy things could you even do on .onion that any other public domain wouldn't let you do?[/QUOTE] saw somebody in another thread say they legitimately used it to buy candy or something, lol.
[QUOTE=InvaderNouga;46452461]saw somebody in another thread say they legitimately used it to buy candy or something, lol.[/QUOTE] SR1 had beef jerky. Like, you couldn't call SR1 a drugs marketplace because it sold beef jerky. Just straight Jack Link's Beef Jerky.
[QUOTE=Fatfatfatty;46450191]"arson" More like blocking a border which smuggling happens across incredibly frequently[/QUOTE] Better analogy would be dropping bombs along the road from the FBI headquarters to the border crossing. The road could be damaged at any point on the way and it would be harder (but not impossible) to get there. DDoS attacks don't just affect the target, they affect intermediary networks too.
Sorry, you need to Log In to post a reply to this thread.