Regarding my posting probably unluckily named “Germany: Crackdown on TOR-node operators” (i wrote “on TOR-node operators” on purpose, not “on TOR“) I’d like to clarify a couple of things. Before i start blurbing around I’d like to quote Shava Nerad, executive director of the TOR-project:
“Last week, a few Tor exit-node servers were seized by the German police in a massive sting against child pornography. From our friends on the ground in Germany, we hear that dozens and dozens of machines may have been seized. So far as we know only six of those were Tor servers. We have heard from the server operators. None of them has been charged.
This is not a “crackdown” on Tor, as has been widely reported. We expect and hope that the volunteer Tor server operators in Germany will get their equipment back after this has blown over, and there will be no action against Tor.”
I have nothing to add here and I’d like to point out that we all should calm down a bit and to repeat what I said in my initial posting:
“Those servers were most probably configured to be TOR Exit-Nodes, so their IP-addresses might have shown up in the server logfiles of the child-porn servers in question.
[...]
I guess that the attorney of state is just after logfiles, they knew that those servers were operating as TOR-nodes. If you IP-address pops up in a child-porn case surely your IP looks interesting to the police.”
Maybe my words weren’t clear enough, maybe I underestimated the momentum of this news, and I probably didn’t take into account that lot’s of people didn’t actually read my posting completely and just picked up the news which seemed to be relevant to them. Also some people definitively interpolated those crippled news to justify their prejudices against Germany (“Nazis“), the police (“they’re after us!“), and the TOR-project (“They’re supporting child-porn and probably terrorists!“).
And clearly i made the assumption on Boing Boing where i said “Apparently it’s about the proliferation of child pornography, although no charges have been pressed against TOR operators yet.” I shouldn’t have written that.
So let me put it in other words, restating what i posted as a comment earlier:
- The seized TOR-servers were most probably TOR exit-nodes.
- Their IP-addresses most probably showed up in the logfiles of the alleged child-porn server.
- The police found out about that IP-address and the police must take action and seize the server.
- The fact that the server was running TOR is of no actual value for the process of forensics itself.
- So there’s no actual evidence at the moment which proves that this is a direct attack on the TOR-network or it’s operators in Germany.
- We still don’t know if any charges are pressed against operators. Basically we’re all speculating, so please, let’s keep calm until we really know more. If i find out more, I’ll post updates here.
I learned from all the feedback I got in comments and trackbacks that there’re actually people in China and other countries in the world specifically asking not to shutdown our nodes. They said that TOR is one of their very little possibilities to get a decent internet connection at all. Considering that other websites like Wikipedia are banned in those countries we should make it our responsibility to give people from oppressive states the support they need – free communication.
Famous last words: My TOR-server is still running, pushing 40GB/day around. I’m not going to shut it down for whatever reason. I ask all other TOR-operators in Germany to do the same. There’s no sign that we’re going to be sued for whatever reason at the moment.
Let’s keep calm and not become hysteric.
September 12, 2006 at 5:27 pm |
[...] TOR roundup « IT, life and me Says: September 12th, 2006 at 5:20 pm [...]
September 12, 2006 at 6:18 pm |
This story is strange…
Maybe the police have seen the IP of an exit nodes in the logs of child pornography board…
So they should have seized one or maybe two nodes… I don’t think the bad guys were always using exit nodes located in Germany (and if they are Germans it would be even more stupid)
In my opinion the police is in fact looking for a hidden service (maybe a hidden bbs) and they know the bad guys are German… so they seized some nodes to see which server host the hidden service (great chance that : german guys -> german isp -> german computer).
BUT a hidden service isn’t necessary on an exit node… The chance they found these guys is really weak
September 12, 2006 at 6:30 pm |
@devloop: If you look at http://serifos.eecs.harvard.edu/cgi-bin/exit.pl you see that there are currently 187 tor-nodes active in Germany. A hidden service could run on any of these nodes – or anywhere else in the world. I don’t think that they’re really looking for a hidden service, and if they’re the computer-forensics department of the state-police is more stupid than I’ve ever could’ve imagine. They’re not that stupid.
Let’s wait until we know more. Seizing a computer “only” because of it’s IP-address showed up in logfiles is a common reason – and pretty much normal.
Thanks for reading,
Alexander.
September 12, 2006 at 8:21 pm |
I too hope that there are no charges brought against Tor and its operators. But if there are no charges against Tor, does this send a message to kiddie porn wackos that Tor is the safest service to use in order to continue their sick hobby and not get caught?
September 12, 2006 at 8:28 pm |
@John Smythe: The police always follows one important principle: Follow the money-trail. That one is probably easier to follow than getting the logfile from an open proxy-server in Taiwan, so TOR is not the one and only solution to their sick hobby.
Just my 2c though…
September 12, 2006 at 9:23 pm |
[...] Finally some good news so that we can all forget about the TOR-craze for a moment. Supercomputing Online reports that IBM announced today the availability of the IBM BladeCenter QS20, a Cell Broadband Engine based addition to existing IBM infrastructure: “The IBM BladeCenter QS20 is a Cell BE-based blade system designed for businesses that can benefit from high performance computing power and the unique capabilities of the Cell BE processor to run graphic-intensive applications and is especially suitable for computationally intense, high performance workloads across a number of industries including digital media, medical imaging, aerospace, defense and communications. [...]
September 17, 2006 at 8:17 am |
Ah I don’t know about all this,Me and a few people i know went onto one of thouse boards that people post that chunk on,we posted fat chicks and gross stuff that i think is about as much as you can do aginst this stuff on a hidden service.
as for the police trying to shut them down?is that even possiable?hidden services are encrypted end to end and there is no logs so it would make more sense that this is just use of exit nodes,like what happend in france.
Bad thing is if they are going after people just visiting thouse hidden services then 99% of the people they would arrest would be innocent
November 10, 2006 at 2:17 am |
The Tor is “freedom for all”. I like the freedom!
December 4, 2006 at 2:23 pm |
Mmm… Nice try mister officer.
December 5, 2006 at 1:25 am |
You can run a hidden service without being a server.
They simply don’t understand how Tor works and perhaps think only exit nodes they see can run them.
By default, Tor servers don’t keep any logs, so what they most probably got were clean PCs with no sign of anything usable.
They could probably install some spy stuff on the servers and return them to their users, hoping for some info, but even so, they probably wouldnt get much from an exit node…as there are other nodes in-between anyway.
December 7, 2006 at 4:30 pm |
The issue.. A question to ask. What are the facts and what relation are they to the issues of freedom, persecution and bigotry? Are the folks facing years in prison for the possession of pictures because of their sexual orientation deserving of protection ? It is only in recent times that “age of consent” concepts have even existed.. In ancient Rome or Greece the average at marriage for a girl at was about 12. In many contemporary 3rd world countries it is not much older except that those societies are rapidly being devoured and destroyed by the industrialized “correct concept” societies who are being economically exploited and and whose values are being forced on them. That is not about the protection of children, a cause I completely support. For these differences many, many good and bright people are being systematically destroyed by the powers that be. On the one hand we are being told that it is perfectly fine to witness on national television actual footage of people being killed; hung upside down and burned, bullets being shot in their heads, and prison for people who possess pictures of nudity depending on age?? OK, just think about it.
TC
January 4, 2007 at 1:25 am |
[...] reason why you want to stay anonymous on the interweb. Lately there was quite a hassle about seized TOR-servers in Germany and I was waiting for my server to be seized too. Didn’t happen until now. Something quite [...]
January 7, 2007 at 11:34 am |
More TOR servers seized? did I get that right, is that true?
Please post details
January 7, 2007 at 1:17 pm |
Jed: Nope, I’m not aware of more servers being seized apart from what’s written on the or-talk mailinglist. I just got a letter from the federal police, asking for relevant logfiles. See http://itnomad.wordpress.com/2007/01/04/tor-the-feds-and-me/ for details.
Cheers, Alex.
September 21, 2008 at 11:27 pm |
[...] Response To Crack Down [...]