Page MenuHomePhabricator
Create Task
Maniphest T56

Bridge Sanity Check
Open, NormalPublic
Actions

Description

migrated from:
https://github.com/Whonix/Whonix/issues/316

There is an attack bridges can perform on first-time users. This involves feeding old consensus data (which can be up to a week old).

We could use anondate to parse Tor consensus from two sources:

  • downloaded by Tor
  • (multiple times) downloaded by python-stem

Treat the bridge's consensus as untrusted and not factor it in.

sdwdate / sdwdate-gui has already a good infrastructure.

  • To inform the user about the state of network time synchronization. A progress indicator, telling them to wait until it's done before using the internet. One more sanity check that adds up to the wait is negligible. Also this is very similar to the sanity check planned in T151.
  • sdwdate prerequisite would wait until this check could even be run - A standalone bridgesanitycheck cannot run before Tor starts serving anyhow.

Give it its own indicator. It shouldn't wait for sdwdate.

Rely on Tor stem in all cases.

Let's implement sdwdate Tor Consensus Time Sanity Check (T151) first, see how that goes and then get back to this one.

Details

Impact
Normal

Related Objects
Search...

StatusAssignedTask
 OpenNoneT56 Bridge Sanity Check
 ResolvedPatrickT151 sdwdate Tor Consensus Time Sanity Check

Event Timeline

JasonJAyalaP created this task.Jan 12 2015, 9:24 PM
JasonJAyalaP raised the priority of this task from to Normal.
JasonJAyalaP updated the task description. (Show Details)
JasonJAyalaP added projects: enhancement, security.
JasonJAyalaP added a subscriber: JasonJAyalaP.
Patrick added a project: sdwdate.Jan 12 2015, 9:45 PM
Patrick added a subscriber: HulaHoop.Jan 13 2015, 12:55 PM
JasonJAyalaP added a project: Whonix.Jan 13 2015, 8:48 PM
Patrick mentioned this in T151: sdwdate Tor Consensus Time Sanity Check.Feb 9 2015, 4:05 PM
Patrick added a subtask: T151: sdwdate Tor Consensus Time Sanity Check.
Patrick updated the task description. (Show Details)Feb 9 2015, 4:08 PM
Patrick updated the task description. (Show Details)Feb 24 2017, 7:28 AM
Patrick set Impact to Normal.
Herald added a subscriber: WhonixQubes. · View Herald TranscriptFeb 24 2017, 7:28 AM
Patrick closed subtask T151: sdwdate Tor Consensus Time Sanity Check as Resolved.Dec 2 2017, 9:20 PM
Patrick renamed this task from Bridge Sanity Check (sdwdate plugin) to Bridge Sanity Check.Mar 5 2018, 9:28 PM
Patrick updated the task description. (Show Details)
Patrick added a comment.Jul 9 2018, 6:10 AM

From sdwdate log. Clock was right but I got this using a bridge.

2018-07-09 05:54 - sdwdate - INFO - Prerequisite check: The clock is sane.
Within build timestamp Fri Aug  5 01:41:02 UTC 2016 and expiration timestamp Tue May 17 10:00:00 UTC 2033.
2018-07-09 05:54 - sdwdate - INFO - Prerequisite check: The clock is fast. Clock is faster than consensus/valid-until 2018-07-09 02:00:00.

So actually the clock wasn't fast but the Tor consensus was stale. Need to modify that sdwdate message. Good reason to implement this ticket.

Whonix OLD Issue Tracker · PLEASE DO NOT POST NEW TICKETS HERE · OLD Issue Tracker - Unread Notifications · OLD Issue Tracker - Feed · OLD Issue Tracker - Open Issues · NEW Issue Tracker · Homepage · Blog · Forum · Legal · Imprint · Privacy Policy · Terms of Use · Disclaimer