[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Update to default exit policy

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Update to default exit policy
From: 7v5w7go9ub0o <7v5w7go9ub0o@xxxxxxxxx>
Date: Wed, 20 Aug 2008 09:42:11 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 20 Aug 2008 09:42:50 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=TQb/zIjWk9YLJntGfSXJwarHC58jMrqelN3eAN73chc=; b=U30Q85ttLSnehmCilGmheib29VsNQTZ75HRo5H5R9lssfYij0Ashu3hG/HcEJMuXEX fUezLcFUKtFbJ0z4riABdNai47jV9kWPiVEV9bTE9B9Lu5nQr6n24XgufDEzGV1SHWfG e1mT9QIjBa7HcVqIbpOT2IUBQbNiv0wnRwo68=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=vRdLrdqSBBak10LtB22rXsJtMLzdzPW+V1MIEUarWfnZTt6Vb6iTFoN2sLsc9SLw0f uUo15GaBYCU9w5KeWovtwqVkahfGOemxraZ1pA1nDr/Av4qnTK7p69S3NL78cLIn4RCC pA1Jwvqo2gCGH4YC4zeaydKH85yHatDR+mNz0=
In-reply-to: <48ABFC60.70900@xxxxxxxxxxx>
References: <48A6DD45.1040509@xxxxxxxxxxxxxx> <48A8438A.3030307@xxxxxx> <48AA905B.6090604@xxxxxxxxxxxxxx> <20080819150332.GA21009@xxxxxxxxxxxxxxxxxxxxxx> <48AAEAEE.6010803@xxxxxxxxxxxxxx> <48ABFC60.70900@xxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.16 (X11/20080707)

anonym wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 19/08/08 17:46, Dawney Smith wrote:

I have a *lot* of experience with email administration on a very large
scale, I know what I'm talking about.


I'm sure you do. I'd love to have email work flawlessly and securly with
Tor, so opening ports 465 and 587 would be great (currently I do have
problems since there's few exit nodes which do that). But as I
understand it, email clients + Tor might be a very bad idea ATM. Email
clients leak tons of information, the most critical I know of being your
IP address and/or host in the EHLO/HELO in the beginning of the SMTP(S)
transaction.


Nope.

The encrypted connection occurs before the smtp handshake.

IP/host info is not compromised, this is not an issue.


Really, this isn't an argument countering your in any way, but rather a
plea that the issues of using email clients with Tor are researched and
resolved before that combination gets promoted (IMHO opening ports 465
and 587 is a step towards promoting it). It's very likely your average
user will screw up given the current state of things.


TOR guidelines are clear.

Don't use active content; Do use encrypted protocols.

(Now it will be the case that some users do NOT use email encryption -they are lost anyway!)

Follow-Ups:
- Re: Update to default exit policy
  - From: anonym

References:
- Update to default exit policy
  - From: Dawney Smith
- Re: Update to default exit policy
  - From: Dominik Schaefer
- Re: Update to default exit policy
  - From: Dawney Smith
- Re: Update to default exit policy
  - From: krishna e bera
- Re: Update to default exit policy
  - From: Dawney Smith
- Re: Update to default exit policy
  - From: anonym

Prev by Author: Re: Update to default exit policy
Next by Author: Re: Update to default exit policy
Previous by thread: Re: Update to default exit policy
Next by thread: Re: Update to default exit policy
Index(es):
- Author
- Thread