[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] HTTPS to hidden service unecessary?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] HTTPS to hidden service unecessary?
From: proper <torbox@xxxxxxxxxx>
Date: Mon, 09 Jul 2012 23:41:19 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 09 Jul 2012 19:41:08 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

HS + SSL makes sense:

- stronger encryption
Not looking too long for a good source...
https://trac.torproject.org/projects/tor/wiki/doc/HiddenServiceNames

If you decide to run a hidden service Tor generates an  RSA-1024
keypair. The .onion name is computed as follows: first the  SHA1 hash [...]

Arguably, that are not the recent, most secure algorithms. I think they
have already a few tickets to enhance the strength of the keys.
https://trac.torproject.org/projects/tor/ticket/3972
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] HTTPS to hidden service unecessary?
  - From: Gregory Maxwell

Prev by Author: Re: [tor-talk] hidden service on same location as public service
Next by Author: [tor-talk] hidden services 2.0 brainstorming
Previous by thread: Re: [tor-talk] HTTPS to hidden service unecessary?
Next by thread: Re: [tor-talk] HTTPS to hidden service unecessary?
Index(es):
- Author
- Thread