Tor Tunnel Detection

Low Nessus Network Monitor Plugin ID 2543

Synopsis

The remote host is running software that should be authorized with respect to corporate policy.

Description

The remote client is routing network traffic over the Tor Tunnel network. The Tor tunnel allows users to run applications such as peer-to-peer clients, instant messaging, web browsers over a single encrypted HTTP tunnel. Tor also tunnels and encrypts the DNS requests associated with such applications. By sending traffic over the Tor network, users can bypass corporate policies, firewalls, and guidelines.

Solution

Ensure that the usage of the Tor network is in alignment with corporate polices and guidelines.

See Also

http://tor.eff.org/overview.html

http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29

Plugin Details

Severity: Low

ID: 2543

Family: Policy

Published: 2005/01/19

Modified: 2016/01/15

Risk Information

Risk Factor: Low