[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Request for feedback/victims: cfc-0.0.2

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Request for feedback/victims: cfc-0.0.2
From: bancfc@xxxxxxxxxxxxxxx
Date: Sat, 02 Apr 2016 17:00:10 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 02 Apr 2016 13:00:39 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=openmailbox.org; s=openmailbox; t=1459616421; bh=4gUQIOPffwIerC7bjqZ0RrMbkDj91I1sixvJBs205Ms=; h=Date:From:To:Cc:Subject:In-Reply-To:References:From; b=Wmnf4MxtreRJ7U1XBYIb/1OLRI9ZjFxbWKEFsfktoC0mzcyiuoKc63rk2c3PqBKjN XaWT3OlCPE7lRCzAmJ4sxKuZFYVM9Wd2c+EPDcJgLbstzGHp8Qa+CvF9WLj0GCQ2C5 2snm/zJhko+kBgH8BNKk9sZd09V11KgmUe9dCWvY=
In-reply-to: <20160401180618.27433acd@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <20160327061257.1407cefc@xxxxxxxxxxxxxxx> <1459527670.6113.618.camel@xxxxxxxxxx> <20160401180618.27433acd@xxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Roundcube Webmail/1.0.6

On 2016-04-01 18:06, Yawning Angel wrote:

On Fri, 01 Apr 2016 18:21:10 +0200
Jeff Burdges <burdges@xxxxxxxxxx> wrote:

Are there any more sites where CloudFalre appears on archive.is?

https://www.aei.org/publication/gen-michael-hayden-on-apple-the-fbi-and-data-encryption/
âhttps://archive.is/7u5P8

It's some particularly harsh CloudFlare configuration perhaps?


Without knowing how archive.is works, and how CloudFlare works, it's
hard to tell.

Since archive.is sets "X-Forwarded-For", it's not particularly hard to
figure out if a Tor user is the one requesting a snapshot.  I requested
a new snapshot and the captcha error page in the archive shows that
the IP of my exit, so part of the ClouldFlare infrastructure at least
peeks at the header.

I'll probably add support for other (user-configurable?) cached content
providers when I have time.  The archive.is person doesn't seem to want
to respond to e-mail, so asking them to optionally not set X-F-F, seems
like it'll go absolutely nowhere.

Regards,

webcitation.org is an archive.is alternative. Potentially it doesn'tforward request headers (?)

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Request for feedback/victims: cfc-0.0.2
  - From: Yawning Angel

References:
- Re: [tor-dev] Request for feedback/victims: cfc-0.0.2
  - From: Jeff Burdges
- Re: [tor-dev] Request for feedback/victims: cfc-0.0.2
  - From: Yawning Angel

Prev by Author: Re: [tor-dev] Questions about "Tor Messenger CONIKS integration"
Next by Author: [tor-dev] Research on Breaking reCAPTCHA
Previous by thread: Re: [tor-dev] Request for feedback/victims: cfc-0.0.2
Next by thread: Re: [tor-dev] Request for feedback/victims: cfc-0.0.2
Index(es):
- Author
- Thread