December 20, 2016 By Larry Loeb 2 min read

Following the statutes on restricting virtual private networks (VPNs) enacted by the Turkish government in November, it seems that the Tor network has also been made much less useful. It appears that the government has limited the use of Tor with the cooperation of Turkish internet service providers (ISPs).

VPN Ban Affects the Tor Network

Bleeping Computer reported that Turkey Blocks, an organization that reports on internet freedom, is well-aware of the government ban on VPNs, which occurred at the same time as the Tor action. VPNs have been commonly used in Turkey to increase privacy when connecting to social media sites.

Turkey Blocks stated that the restrictions began around Dec. 12. As a result, “Tor’s direct mode is now entirely unusable via providers TTNet and UyduNet on the residential broadband connections we tested. Deep packet inspection (DPI) is likely used to disrupt the connection phase, which stalls around the 10 percent mark.”

This Year’s Blocks

The Turkish government already has a rocky relationship with social media. It banned Twitter when it was discovered that students were using it to organize protests, Bleeping Computer noted. Since that time, the government has banned or seized control of other major social media outlets.

For example, in 2014, Turkey blocked both Twitter and YouTube when the services hosted an audio file containing the then-prime minister directing his son to hide a large amount of cash before being investigated by the police.

Turkey also blocked access to Dropbox, Microsoft OneDrive and GitHub in October of this year, and went on in November to ban to Facebook, WhatsApp, Twitter, YouTube and Instagram again. Now it’s Tor’s turn in the barrel.

How Tor Gets Banned

The default Tor system uses the Tor Bridge Directory for the addresses of public relays. When a state actor cuts off access in a bid to disable Tor, it is possible to reconfigure the system to use a private relay instead via a bridge.

But this kind of operation requires a sophisticated and experienced user to perform it — a novice Tor user would not be able to complete it successfully. Because of this, the latest move by the ISPs will lower the availability of Tor to unsophisticated users, which may be just what the government wishes.

Default Tor configurations can be altered for some workarounds. One Tor network user suggested the use of meek-Amazon transport on Twitter. Other users have found that an already charged Tor browser continues to work on Turkish ISPs, at least for the moment.

More from

SoaPy: Stealthy enumeration of Active Directory environments through ADWS

10 min read - Introduction Over time, both targeted and large-scale enumeration of Active Directory (AD) environments have become increasingly detected due to modern defensive solutions. During our internship at X-Force Red this past summer, we noticed FalconForce’s SOAPHound was becoming popular for enumerating Active Directory environments. This tool brought a new perspective to Active Directory enumeration by performing collection via Active Directory Web Services (ADWS) instead of directly through Lightweight Directory Access Protocol (LDAP) as other AD enumeration tools had in the past.…

Smoltalk: RCE in open source agents

26 min read - Big shoutout to Hugging Face and the smolagents team for their cooperation and quick turnaround for a fix! Introduction Recently, I have been working on a side project to automate some pentest reconnaissance with AI agents. Just after I started this project, Hugging Face announced the release of smolagents, a lightweight framework for building AI agents that implements the methodology described in the ReAct paper, emphasizing reasoning through iterative decision-making. Interestingly, smolagents enables agents to reason and act by generating…

4 ways to bring cybersecurity into your community

4 min read - It’s easy to focus on technology when talking about cybersecurity. However, the best prevention measures rely on the education of those who use technology. Organizations training their employees is the first step. But the industry needs to expand the concept of a culture of cybersecurity and take it from where it currently stands as an organizational responsibility to a global perspective.When every person who uses technology — for work, personal use and school — views cybersecurity as their responsibility, it…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today