[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Is there a benefit to using the .onion address over a clearnet one?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Is there a benefit to using the .onion address over a clearnet one?
From: mal <mal@xxxxxx>
Date: Thu, 07 Aug 2014 07:30:08 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 07 Aug 2014 07:30:37 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=sec.gd; s=eva.sec.gd; t=1407411019; x=1407414619; bh=lnALXn5FtRFSyMOCspIbXIFHSxGQnJGukyN5cCxmsiM=; h=Date:From:To:Subject:References:In-Reply-To; b=nSkHC47ckIZITVDUPiltjvApjy8YQcbwaJ1mC9ufbIYh5yaT/i/GsLisIGSQ68xWe 7IIs7TPeuMYJqgB8+tQ/3FeQD75ogAXvKlJgbmBSXdoLBr8qhpe0oOAb1ym52ry1Qn glL/fmtDXtsRAc6adp7zDfKTjPWmWX/n1V0wgEh4=
In-reply-to: <20140807081855.1b285380@meilong>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <53E14A49.2090709@xxxxxxxx> <20140807081855.1b285380@meilong>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

With .onion addresses, provided you know you have the correct address,
you can also be sure there's no TLS MITM going on, whereas https://.com
relies on the CA system.

In addition, .onion addresses are censorship-resistant -- require the
private key to mess with, instead of leaning on / social engineering /
hacking a registrar or DNS server.


On 08/07/2014 02:18 AM, Öyvind Saether wrote:
>> I use a service that provides both a clearnet address and an onion
>> address. I only access this service through Tor and I usually do it
>> via the clearnet address. Are there any benefits to accessing such a
>> service via its onion address?
> 
> Tor location hidden services have end-to-end encryption. If the site
> you are abusing has a http:// clearnet address then you get more
> end-to-end security by using the .onion address instead. 
> 
> Also, the exit node you are using can see someone visiting the site in
> question. This is also avoided if you use the .onion variant.
> 
> 
> 
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Is there a benefit to using the .onion address over a clearnet one?
  - From: Cypher
- Re: [tor-talk] Is there a benefit to using the .onion address over a clearnet one?
  - From: Öyvind Saether

Prev by Author: Re: [tor-talk] BBC: NSA and GCHQ agents 'leak Tor bugs', alleges developer
Next by Author: [tor-talk] Help test a new RBG
Previous by thread: Re: [tor-talk] Is there a benefit to using the .onion address over a clearnet one?
Next by thread: [tor-talk] Tor Weekly News â August 6th, 2014
Index(es):
- Author
- Thread