[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Update to default exit policy

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Update to default exit policy
From: anonym <anonym@xxxxxxxxxxx>
Date: Wed, 20 Aug 2008 13:13:36 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 20 Aug 2008 07:13:43 -0400
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=lavabit; d=lavabit.com; b=pvYBzU/9+epG4p7uUIN4oA3z/X04iXfcwGgNdsq+6530au+kqNpCy0jVl/uX81dI6dVCq4i2RR/Qp8BtRqEau9EV/+cCh0Q95Ofx/rgANxprncbVwImYVGlhUXRE+T48Eq/OStuiNp8opYD4v/eVbo0JGJzscrm9fY7GaKaR1Zo=; h=Message-ID:Date:From:User-Agent:MIME-Version:To:Subject:References:In-Reply-To:X-Enigmail-Version:OpenPGP:Content-Type:Content-Transfer-Encoding;
In-reply-to: <48AAEAEE.6010803@xxxxxxxxxxxxxx>
Openpgp: id=D0E64958; url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD0E64958
References: <48A6DD45.1040509@xxxxxxxxxxxxxx> <48A8438A.3030307@xxxxxx> <48AA905B.6090604@xxxxxxxxxxxxxx> <20080819150332.GA21009@xxxxxxxxxxxxxxxxxxxxxx> <48AAEAEE.6010803@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.16 (X11/20080806)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 19/08/08 17:46, Dawney Smith wrote:
> I have a *lot* of experience with email administration on a very large
> scale, I know what I'm talking about.

I'm sure you do. I'd love to have email work flawlessly and securly with
Tor, so opening ports 465 and 587 would be great (currently I do have
problems since there's few exit nodes which do that). But as I
understand it, email clients + Tor might be a very bad idea ATM. Email
clients leak tons of information, the most critical I know of being your
IP address and/or host in the EHLO/HELO in the beginning of the SMTP(S)
transaction.

Really, this isn't an argument countering your in any way, but rather a
plea that the issues of using email clients with Tor are researched and
resolved before that combination gets promoted (IMHO opening ports 465
and 587 is a step towards promoting it). It's very likely your average
user will screw up given the current state of things.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iEYEARECAAYFAkir/F8ACgkQp8EswdDmSVhXFACeOa208cVQzxS5uzWLyK4zOMTG
JosAn1j8g02lmNX9EunThkG4yEzzmBCP
=8ku6
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: Update to default exit policy
  - From: 7v5w7go9ub0o
- Re: Update to default exit policy
  - From: Dawney Smith

References:
- Update to default exit policy
  - From: Dawney Smith
- Re: Update to default exit policy
  - From: Dominik Schaefer
- Re: Update to default exit policy
  - From: Dawney Smith
- Re: Update to default exit policy
  - From: krishna e bera
- Re: Update to default exit policy
  - From: Dawney Smith

Prev by Author: Re: Confusion about TorButton, Noscript, etc.
Next by Author: Re: Update to default exit policy
Previous by thread: Re: Update to default exit policy
Next by thread: Re: Update to default exit policy
Index(es):
- Author
- Thread