[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Hidden vs Clearnet Services

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Hidden vs Clearnet Services
From: Raynardine <raynardine@xxxxxxxxxxx>
Date: Tue, 29 Jan 2013 16:53:53 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 29 Jan 2013 17:56:06 -0500
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tormail.org; s=tm; h=Message-Id:X-TorMail-User:Content-Type:In-Reply-To:References:Subject:To:MIME-Version:Reply-To:From:Date; bh=zzocFbLhmEHeqD1pg8UWT9IgiAJ2elK+DECR1eTTiec=; b=sjTcdYatemMGS1MSmtBHSgBFvW0nRt+6qwd9hA1ujV1h4ZjnvFUGwrukXyf34DwYAmRGsM1SrEwQn449E+xSM5o9hf9p0cQfqn5CSpTkbMBLO6CZqVUM4Hhq6EbalptOMMcMfToI54xckBcH96iJVVPFgx4pCW/AUCtg1Qc+j/0=;
In-reply-to: <5107F7A9.6070704@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Organization: Raynard Group
References: <51046E91.4090507@xxxxxxxxxxxxxx> <1TzJCk-000PE5-KV@xxxxxxxxxxxxxxxxxxxx> <510552ED.4020003@xxxxxxxxxxxxxx> <1TzXNb-000A40-D3@xxxxxxxxxxxxxxxxxxxx> <20130129223924.607cce89@xxxxxxxxxxxxxxxxxxxxx> <5107F7A9.6070704@xxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

Thank you.

To elaborate on those points:

  1) Encrypted end-to-end (or "Tor" to "Tor")

The end to end encryption (AKA "E2E") is one of the most important
design aspects that could possibly exist.

  2) Therefore not dependent on SSL

SSL/TLS would be fine it they did not rely on Certificate Authorities or
DANE (DNS-based certificate authorities).

TLS would be fine if self-signed certificates were not treated
differently, and a more decentralized method of certificate verification
was used instead.

However, because TLS relies on CAs, it's complete crap and the entire
concept should be discarded and replaced.

Yes, I know Tor uses TLS for circuits. Tor does not use CAs, or at least
I bloody well hope not.

  3) Hidden services are automatically stream isolated?

I have not seen this in practice. There are TorRC options that will
instruct Tor to isolate ports and addresses (including hidden services)
for Tor circuits, but these options are, well, optional.

  4) Saves exit node bandwidth

Exit nodes are vitally important, since they shoulder a lot of legal risk.

It is important to offload that role as much as possible.

  5) Political statement about privacy

There is that, too.

  6) Server makes a Statement

This is pretty important.

On 1/29/2013 10:24 AM, adrelanos wrote:
> From point of view of hosting a hidden service, which is not hosted by
> anonymous people and which may alternatively also provide a clearnet domain.
>
> Positive aspects for hidden services over clearnet:
>
> 1) encrypted end-to-end (or "Tor" to "Tor")
>
> 2) therefore not dependent on SSL
>
> 3) hidden services are automatically stream isolated?
>
> extra thread:
> [tor-talk] Are connections to two different hidden services stream isolated?
>
> https://lists.torproject.org/pipermail/tor-talk/2013-January/027116.html
>
> 4) safes exit node bandwidth
>
> 5) political statement to prefer internet version 2.0 with privacy?
>
> 6) server makes statement: we are Tor friendly and never going to ban
> Tor users from accessing this site.
> _______________________________________________
> tor-talk mailing list
> tor-talk@xxxxxxxxxxxxxxxxxxxx
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Attracting more community input on Tor issues
  - From: Moritz Bartl
- Re: [tor-talk] Attracting more community input on Tor issues
  - From: Raynardine
- Re: [tor-talk] Attracting more community input on Tor issues
  - From: Moritz Bartl
- Re: [tor-talk] Attracting more community input on Tor issues
  - From: Raynardine
- [tor-talk] Hidden vs Clearnet Services (was: Attracting more community input on Tor issues)
  - From: Katya Titov
- Re: [tor-talk] Hidden vs Clearnet Services
  - From: adrelanos

Prev by Author: Re: [tor-talk] Hidden vs Clearnet Services
Next by Author: Re: [tor-talk] Tor Browser Bundle .deb packaging solution
Previous by thread: Re: [tor-talk] Hidden vs Clearnet Services
Next by thread: Re: [tor-talk] Hidden vs Clearnet Services
Index(es):
- Author
- Thread