Comment Re:Thank you for finding the flaw (Score 1) 142
Security software cannot fix stupidity.
In this case, one of the scripts on a Tor service pulled data from and thus advertised it's globally-addressable IP address.
Sure, they can improve their processes and pull that script and replace it with a Tor-compatible version - but Tor can't detect this kind of stupidity and fix it for you. If you're stupid enough to put your home address on a Tor service, there's nothing Tor can do about that either.
The most interesting thing about this story is that all the "Tor was somehow broken by a omnipotent government agency" nonsense actually boiled down to "Idiots were giving out their own IP over a Tor service providing illegal content" (which is more often than not the case - I'm not at all convinced that most countries actually have the talent and resources to do what people claim they can, let alone that they routinely do them).
This either proves, when used properly, how effective Tor is, or ineffective the relevant agency is against Tor.
Honestly, I don't care too much about the detail. I don't support the illegal activity that this service was built upon. But I find it worrying that they were that stupid, and that it was that easy to "find" them, and also that the relevant agencies don't seem to have made much progress at all since the days of GCHQ.
All I see in the modern day is unbreakable maths stopping (or severely hindering) anyone but the most stupid people from being caught. I see that as both a good thing (encryption, etc. doing what it was designed to do, and implemented strongly) and a bad thing (our governments are still unable to stop such services because they don't have the talent to infiltrate them).