[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Design for onionsite certification and use with Let's Encrypt

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Design for onionsite certification and use with Let's Encrypt
From: Jacob Appelbaum <jacob@xxxxxxxxxxxxx>
Date: Wed, 26 Aug 2015 10:08:39 +0000
Cc: Seth David Schoen <schoen@xxxxxxx>, Peter Eckersley <pde@xxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 26 Aug 2015 06:08:53 -0400
In-reply-to: <CAG5KPzx8nBU5udBto=SRji_mS0pw+SaJdu_ctRY95G7RTSqxaA@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <20150824182515.GB6555@xxxxxxxxxxxxxxxxxxxxxx> <CAG5KPzx8nBU5udBto=SRji_mS0pw+SaJdu_ctRY95G7RTSqxaA@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On 8/26/15, Ben Laurie <ben@xxxxxxxxx> wrote:
> On Mon, 24 Aug 2015 at 19:25 Paul Syverson <paul.syverson@xxxxxxxxxxxx>
> wrote:
>
>> If another browser it could be a setup config option whether clients
>> can choose to be redirected via tor2web or simply always sent to a
>> route-insecure address. I will assume for simplicity that all requests
>> for route-insecure addresses by other browsers simply send to a
>> route-insecure HTTPS address in the ruleset (if available). I'm going
>> to also assume that requests for onion addresses for other browsers
>> simply fail, although if the tor2web option was available and chosen
>> at the time of setup, then there is another question how to offer this
>> to the client, perhaps as an HTTPS Everywhere setting.  Comments on
>> the feasibility, usefulness, design etc. of the tor2web option would
>> be bonus, but of course I'm most wanting to know about the viability
>> of the most basic version of things.
>>
>
> Reading this made me wonder if there's a local HTTP Tor proxy, but a quick
> search didn't find one. Is there one? If not, why not?
>

There isn't a local HTTP proxy - Tor provides a local SOCKS proxy.
When people need an HTTP proxy, we see that people configure an HTTP
proxy to connect through Tor's SOCKS or Transparent Proxy as an
upstream.

It would be easier to have a basic HTTP proxy inside of Tor or
launched by Tor but no one has belled that cat.

All the best,
Jacob
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Design for onionsite certification and use with Let's Encrypt
  - From: Paul Syverson
- Re: [tor-dev] Design for onionsite certification and use with Let's Encrypt
  - From: Ben Laurie

Prev by Author: Re: [tor-dev] Hash Visualizations to Protect Against Onion Phishing
Next by Author: Re: [tor-dev] Future Onion Addresses and Human Factors
Previous by thread: Re: [tor-dev] Design for onionsite certification and use with Let's Encrypt
Next by thread: [tor-dev] Updated aggregated data served by Metrics
Index(es):
- Author
- Thread