[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
On 30 August 2017 at 10:51, Jon Tullett <jon.tullett@xxxxxxxxx> wrote:
> Blog post refers:
> Leaving aside the accusations of bias in the first part, what is the
> view of the proposal to force hidden services to rotate addresses?
Simply, it's as short-sighted as any other perspective that sees Onion
networking as an anonymity tool, rather than as a better-than-mere-TCP+SSL
mechanism for providing communications privacy, integrity, availability and
In case those terms need spelling out:
- onions provide circuit-level privacy on-par with the likes of VPNs, but
without the setup hassle.
- ditto, providing integrity at the circuit level, thereby inhibiting the
likes of (say) "sslstrip"
- availability of a service; I'm finding it interesting to consider that
the TCP/IP Internet requires the existence of companies (mentioning no
names) to provide DDoS mitigation, but sites which set up with Onion
addresses are getting comparable levels of DDoS mitigation for free*. Tor
blockproofing and (importantly) Onion DDoS-protection is pretty good.
- assurance: if you can type in the (static) Onion address, you know
immediately with whom you are communicating.
Proposals to undermine these qualities in the name of $GOAL are on-par with
Law Enforcement demands for "golden keys" to undermine the integrity of
end-to-end encrypted conversations**.
Practical example: the point of the Facebook onion site is to provide the
above-listed four benefits - plus a better quality of service - to people
who choose to access Facebook over Tor; the point is to free the
communications path from mediation of any form. To see this as a threat, or
to argue that "well maybe $THIS_SITE is okay, but $THAT_SITE should not be
afforded such protection" - is to call for censorship.
*For a Twitter thread in this vein:
**For more on this thesis:
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to