[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Thu, 23 Apr 2015 00:28:56 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 23 Apr 2015 00:29:08 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=pOZ0QpJSanXyaRNgfeWdAjHqcjygtU0rY4j1PTFMsXc=; b=xWm9g0jOEZvdLiILQkE/h50vBwPw5G8AGdw5bFNfUJdEQUF+8dLR3Ur09n3wxLtbg+ KlKYuOO40MYYvCtZgMe1BPL2Ie730kURta90XXpS3V2ixSQ3BMWsCl/qIoI8zRbt/tPX uy11OxnSHkwhJ+h7OfQ4zEgunxkJfy0SyRPRRB/uVf3Aqk0Bbu8xoHYeKnEHmh5Pb5+7 9v/VCTIqlL9h4zTL+jKb7cB8tj2i9STME//sPfUFFHnO3M/tPcpbVxRv0z2lMbInoZwe eUULLJq2oN7R/X1BEHc3HkphJV3mXkaIxoItMjJWf5IgXhLodterI4lurxzcNLfzepbR qrOQ==
In-reply-to: <223eaa337204f5f94241636062f9a9e4.webmail@localhost>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <223eaa337204f5f94241636062f9a9e4.webmail@localhost>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, Apr 22, 2015 at 11:03 PM,  <support@xxxxxxxxxxx> wrote:
> I know we could SSL sigaint.org, but if it is a state-actor they could just
> use one of their CAs and mill a key.
> ...
> P.S. My PGP key is here: http://sigaintevyh2rzvw.onion/pubkey.txt

Whether or not using a CA's cert, you should TLS wrap all your
services and sign fingerprints of everything on your own so that
those who care can pin down your TLS certs in their apps.
You can also cross sign your signing key with your onion key.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: support

Prev by Author: Re: [tor-talk] Any free email service can work with Tor
Next by Author: Re: [tor-talk] current policy on: giving entire families the badexit flag
Previous by thread: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
Next by thread: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
Index(es):
- Author
- Thread