Linux Download Man in the Middle Attack?

Discussion in 'privacy technology' started by lucygrl, Dec 5, 2013.

Thread Status:
Not open for further replies.
  1. lucygrl

    lucygrl Registered Member

    Joined:
    Nov 6, 2013
    Posts:
    202
    I was just wondering how common are Man in the Middle Attacks during Linux Downloads?
    Has anyone here experienced that when downloading Linux?
     
    lucygrl, Dec 5, 2013
    #1
  2. ComputerSaysNo

    ComputerSaysNo Guest

    It depends on what your downloading and what your threat model is.

    The NSA is known to MiTM the TOR browser download and serve up compramised TOR browser bundles. I've also noticed MiTM attacks on Ubuntu's update service, by whom I don't know , maybe a state actor maybe not.

    The truth is out there...
     
    ComputerSaysNo, Dec 6, 2013
    #2
  3. lucygrl

    lucygrl Registered Member

    Joined:
    Nov 6, 2013
    Posts:
    202
    Thankyou, so how can I check if my Tor has been compromised?
     
    lucygrl, Dec 6, 2013
    #3
  4. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    9,252
    At <https://www.torproject.org/projects/torbrowser.html.en>, see the section "How to verify the digital signatures on ...". In the list of downloads (Tor Browser Bundle Downloads) there's a "(sig)" (for signature) link next to each download link.
     
    mirimir, Dec 6, 2013
    #4
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...