18 comments

[ 5.8 ms ] story [ 87.1 ms ] thread
Support Tor's first donation campaign.

Become a crowdfunder.

https://blog.torproject.org/blog/our-first-real-donations-ca...

Why does Tor need a director? If it is truly a decentralized network, why should the project require centralized project administrators? Because of funding and donation? Let's put the whole spread the initiative PR stuff away (of course that cost money), plus the hosting cost, what else do they use the donation for?
They use the funding to pay the developer who develop the Tor software/daemon and the engineering effort there is extraordinary.

Thousands of volunteers provide the network capacity that makes the daemon useful.

Thank you for the info. This is helpful to know.

[edit] Have you folks looked at https://gratipay.com/search as another source of crowdfunding for developers? I am not sure which one is more effective for general funding.

It's not decentralized. The directory authorities, which hold the current state of the network, are hard-coded into the client software and trusted by all. They are a central point of failure - if a denial of service attack brought them all down for a suitably long period of time, the Tor network would cease to function.
I can't believe they're using PayPal of all things...
Agree, lutz.

But EFF and Freedom of Press also use Paypal and they have a nice interface for monitoring recurring contributions.

I agree but I think the problem is the lack of an alternative in the space. PayPal works across countries.

You can even send in cash...

What are the alternatives that work well internationally? Only Bitcoin comes to my mind, but it's a mess to buy, conversation rates fluctuate wildly and is far from easy to use.
Useless web site. Can anybody please post the text of the article so that it is readable??
Yes, it's absolutely horrendous on mobile. On my laptop it's fine.
(comment deleted)
http://pastebin.com/6938UxS0

TL;DR (2014):

Feb: Understaffed Tor minimized security warning. "Activity in the past has looked suspicious at the time, but ultimately did stuff that helped advance our art."

May: CMU researchers announce breaking Tor, ignoring potential ethical violations. Blackhat talk cancelled; CMU & FBI begin 'not the droids you're looking for' responses.

Jul: Emergency fix to Tor to block CMU vulnerability. CMU researchers stop corresponding with Tor project.

Nov: FBI crackdown

So who is going to get the billing record for all those hosts they spun up? Hard proof should not be that hard to come by, so I'm just waiting to see that. I am more likely to believe Tor than CMU because of the way the research was pulled, and it would be nice to pin them to it.
TLDR: CIA funded people angry at FBI funded people for breaking their toys. CIA funded people react only after being deanonymized __personally__.
Do you have a source on Tor being funded by the CIA?

It's disingenuous to say that Tor reacted only after being deanonymized personally:

1. It was well known that Nick Mathewson worked for Tor long before this attack.

2. Tor added code that allowed them to detect the attack before they knew their IPs were deanonymized: that's the only way they found out their IPs were deanonymized.