4/10/2023 0 Comments Bittorrent sync security![]() ![]() “Compromising the public infrastructure cannot impact the security of Sync,” even if Sync relies on public infrastructure due to its client-side implementation.īitTorrent Sync`s cryptographic practices have also been reviewed by a third party security firm. Most importantly, BitTorrent Sync is one of the. Now the ‘leaking’ hashes appear to go to the peer discovery server which enables “peers to find each other” and is separate from the folder exchange system. BitTorrent Sync isnt quite as easy to use as something like Dropbox for everyday file backups, but its still a solid option for file syncing. After that, you’d get the following dialogue window. Then, select the folder that you’d like to sync. On your local computer, click the ‘Add Folder’ button. Lissounov BitTorrent Sync General Manager.īitTorrent said the folder hashes are not the folder key, which is secret and can’t be used for obtaining access to a folder, as their purpose is to “discover other peers with the same folder.” Also, hashes (160 bit number) “cannot be guessed” as it is “cryptographically impossible to guess the hash of a specific folder.” To do this, you need to download and install BitTorrent Sync on your local computer. Thanks to SynoCommunity for originally packaging Sync for Synology. “We`ve gone through the claims made on Hackito and after reviewing it in full, we do not feel there is any cause for concern,” said K. BitTorrent Sync gives you access to all of your synced folders when youre on the go. “Wording of `Probable leak of all hashes to and access for BitTorrent Inc to all shared data.` is very close to `I almost hacked microsoft today`,” a BitTorrent employee going by the moniker ‘kos13’ concluded.Ī more detailed answer was posted on the BitTorrent Forum a few hours later. “Probable” multiple vulnerabilities were also found during the tests.īitTorrent replied to the allegations through one of its employees, saying that, besides a few crashes, nothing bad was found during the Hackito tests. “This may be the result of NSL (National Security Letters, from US Government to businesses to pressure them in giving out the keys or introducing vulnerabilities to compromise previously secure systems) that could have been received by BitTorrent Inc and/or developers,” Hackito said.Ī key finding was a “probable leak of all hashes to and access for BitTorrent Inc to all shared data” and a “leak about the private network addresses of clients that gives indication about where and what to attack.” The researchers at Hackito alleged that the apps’ backdoor was put in after the first release at NSA’s request. Popular sharing app BitTorrent Sync has been allegedly found to contain a backdoor that was leaking hashes, according to an analysis by Hackito Ergo Sum hackers.īitTorrent Sync, which has been downloaded some 10 million times, is said to be 16 times faster than its competitors. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |