[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re[4]: Ultimate solution

To: JT <or-talk@xxxxxxxxxxxxx>
Subject: Re[4]: Ultimate solution
From: Arrakis <arrakistor@xxxxxxxxx>
Date: Thu, 29 Mar 2007 08:33:55 -0600
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Thu, 29 Mar 2007 09:34:28 -0400
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:date:from:x-mailer:reply-to:organization:x-priority:message-id:to:subject:in-reply-to:references:mime-version:content-type:content-transfer-encoding; b=BpQZ60dQu35c6wGKe5KzUhx3ijzMMv8uDHrzTRAggbVshfP2ST1fpiIa/ZhvGq3E6QEuNiuff1Uae0sBcQmwKWVysZ0t6m7xWYEisA/Uzab5KMWSiFoFxENd1l3g4yL84XjvFNuHmYcKU9+XDqg3Z4u07inOzJwMNhG0XlqoUmQ=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:x-mailer:reply-to:organization:x-priority:message-id:to:subject:in-reply-to:references:mime-version:content-type:content-transfer-encoding; b=mpE+nmwDvCbVWmCAZhpfGaXQb7dqqMQJktmimDA/dhXYUaVxyPsYkXZRzRwt7NZp9XTtkNvXuxodnGJDS7emldouElOwD+LYvB58dxIjqnQJukpl6FTd60p2iZmzFab5+O7VfIJNz4hDMOju+1zJT0p7thYtk8k0IhvckMeWvdE=
In-reply-to: <1175162610.20991.1181992837@webmail.messagingengine.com>
Organization: Torrify
References: <1174643070.5169.1180981693@webmail.messagingengine.com> <1174711815.6610.33.camel@localhost> <1174978426.27311.1181564743@webmail.messagingengine.com> <1175015351.8793.10.camel@localhost> <1bd71ad80703271822g6ce8de2ehd338613854d4e3fa@mail.gmail.com> <1175066798.14863.1181775945@webmail.messagingengine.com> <104626326.20070328091613@gmail.com> <1175162610.20991.1181992837@webmail.messagingengine.com>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

JT,

Security is NOT binary, it is a process, and it is a gradient. We only
desire the illusion of it being binary. There is compromise in every
design, take tor for example using 128bit crypto because it is pretty
secure and fast enough to encrypt on the fly. I'm sure there are
people that wish it was doing 512bit elliptic curve or some other
thing out there.

However,  it  is  possible we could come up with some secure-only mode
which   locks  out  most  features,  virtually  all  the  plugins  and
functionality, and puts the user in a rigid framework in order to give
a  little  more  security  and  a stronger impression of anonymity. Of
course,  this  makes  it a significantly unpleasant experience and one
might as well use lynx at that point.

Regards,
Arrakis

>> As I said it is possible, but when you treat the user like a child it
>> is going to be an issue to get them to keep using it.

> Why? Surfing anonymously is a binary. Either 1) everything is set
> perfectly to be secure and anonymous or 2) it is not.
> There are two types of Tor users. Tor literate and Tor illiterate users.
> The thing that both have in common is that they could accidentally
> enable scripting or forget to turn in off. Both types would be greatful
> for a mechanism that would force them to turn things off and not allow
> them to use Tor otherwise.

> After all they can choose to use Tor or not. Be anonymous or not be
> anonymous. There is nothing third "state". Nobody would feel "being
> treated as a child".
> -- 
>   JT
>   toruser@xxxxxxxxxxx

Follow-Ups:
- Re: Re[4]: Ultimate solution
  - From: JT
- Re: Re[4]: Ultimate solution
  - From: Kasimir Gabert

References:
- Ultimate solution
  - From: JT
- Re: Ultimate solution
  - From: Freemor
- Re: Ultimate solution
  - From: JT
- Re: Ultimate solution
  - From: Freemor
- Re: Ultimate solution
  - From: Michael_google gmail_Gersten
- Re: Ultimate solution
  - From: JT
- Re[2]: Ultimate solution
  - From: Arrakis
- Re: Re[2]: Ultimate solution
  - From: JT

Prev by Author: Re[2]: Ultimate solution
Next by Author: Re: Please add to "download" section of homepage
Previous by thread: Re: Re[2]: Ultimate solution
Next by thread: Re: Re[4]: Ultimate solution
Index(es):
- Author
- Thread