[Show/Hide Left Column]

TorLang (Tor implemented in Erlang)

Source code repository

https://github.com/dnet/TorLang(external link)


Tor is currently implemented in C which makes it possible for an attacker to find vulnerabilities specific to unmanaged environment such as buffer overflows. Successfully compromised Tor nodes could lead to leakage of plaintext traffic and (since every node runs the same implementation) disclosure of a whole circuit. This way, even hidden services could be discovered and localized, which gives people running these a false sense of security/anonimity.

Why Erlang

  • managed -> security
  • scalablility
  • free as in both senses
  • available to a wide range of operating systems

Potential sources of code reuse

  • ErlTunnel(external link) (MIT license)
  • Surrogate(external link) forward/reverse proxy (Apache 2.0)
  • Tsung(external link) load testing tool with HTTP/HTTPS support (undeclared license -> copyright?)


Contributors to this page: dnet922 points  and maxigas257 points  .
Page last modified on Tuesday 17 of May, 2011 17:17:18 CEST by dnet922 points .

Upcoming events

1)  Tue 06 of Oct., 2015 19:00 CEST
2)  Fri 09 of Oct., 2015
Hacktivity 2015
3)  Tue 13 of Oct., 2015 19:00 CEST