[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #23843 [Internal Services]: Use https on all internal .onion services.

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #23843 [Internal Services]: Use https on all internal .onion services.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 13 Oct 2017 11:37:46 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 13 Oct 2017 07:37:55 -0400
In-reply-to: <051.edc6ad7e83f49f0eece1af2939ca09b3@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.edc6ad7e83f49f0eece1af2939ca09b3@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#23843: Use https on all internal .onion services.
-------------------------------+-------------------------
 Reporter:  cypherpunks        |          Owner:  (none)
     Type:  defect             |         Status:  closed
 Priority:  Medium             |      Milestone:
Component:  Internal Services  |        Version:
 Severity:  Normal             |     Resolution:  invalid
 Keywords:                     |  Actual Points:
Parent ID:                     |         Points:
 Reviewer:                     |        Sponsor:
-------------------------------+-------------------------
Changes (by cypherpunks):

 * status:  new => closed
 * resolution:   => invalid


Comment:

 > A crypto axiom says "Don't invent own cryptography".
 > You have violated it inventing HSs.

 That's not true, they know use SHA3/ed25519/curve25519 for v3 OSs which
 isn't their "own invented crypto" by any stretch of imagination.

 Also https for OSs only shows you that you're talking to the right OS and
 not that it gets another layer of encryption.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23843#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #23843 [Internal Services]: Use https on all internal .onion services.
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #23811 [Applications/Tor Browser]: Investigate MinGW commit for create_locale thing
Next by Author: Re: [tor-bugs] #23723 [Applications/Tor Browser]: Loading entities from NoScript .dtd files is blocked
Previous by thread: [tor-bugs] #23843 [Internal Services]: Use https on all internal .onion services.
Next by thread: [tor-bugs] #23844 [Metrics/ExoneraTor]: Fix NullPointerException thrown by providing invalid parameters
Index(es):
- Author
- Thread