Loading...
 
[Show/Hide Left Column]

TorLang (Tor implemented in Erlang)


Source code repository


https://github.com/dnet/TorLang(external link)

Motivation

Tor is currently implemented in C which makes it possible for an attacker to find vulnerabilities specific to unmanaged environment such as buffer overflows. Successfully compromised Tor nodes could lead to leakage of plaintext traffic and (since every node runs the same implementation) disclosure of a whole circuit. This way, even hidden services could be discovered and localized, which gives people running these a false sense of security/anonimity.

Why Erlang

  • managed -> security
  • scalablility
  • free as in both senses
  • available to a wide range of operating systems

Potential sources of code reuse

  • ErlTunnel(external link) (MIT license)
  • Surrogate(external link) forward/reverse proxy (Apache 2.0)
  • Tsung(external link) load testing tool with HTTP/HTTPS support (undeclared license -> copyright?)

Misc.


Contributors to this page: dnet922 points  and maxigas257 points  .
Page last modified on Tuesday 17 of May, 2011 17:17:18 CEST by dnet922 points .

Upcoming events

1)  Tue 28 of Apr., 2015 19:00 CEST
Plénum
2)  Thu 30 of Apr., 2015 19:00 CEST
Lockpick workshop: cilinderzárak
3)  Tue 05 of May, 2015 19:00 CEST
Plénum