[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Vidalia Bundle and RSS in Thunderbird 3.0
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Vidalia Bundle and RSS in Thunderbird 3.0
- From: Erilenz <erilenz@xxxxxxxxx>
- Date: Tue, 29 Dec 2009 10:46:56 -0500
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Tue, 29 Dec 2009 10:47:03 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type:content-disposition; bh=PsRhwDfEmNu9Ahx4teEvKbquM3MTD3rdoTtdnUGYUAQ=; b=deI56Ziravmy/nxY6YCCgCP8/GjJ6w2pS8M8ReIOK0lGdu8srGBkt+kA/ciI+lBx8W MzBAM0kYwlZGh4nnAX4cK2iKD0+8QB0oLpjHyIk9J6Ru8Pyn/3FPBPoKL+xXoRKfU3cG b8g5UYedmryZi/G95VKrHDaVjY/F5ofUYIg8I=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type :content-disposition; b=cDIEiTWWJ09KNx+q5jg7z7lHw65b5CghXSXPrHXy0ND+wliZyo0Oz551I57IFJ86eE K9TwaXRGV6GU24Ft1ot2sfCuviwVmiM9M93AkSleNcdYqKnhpFCvbVvI3E0c6xdpz10F vh0fehJXWjb8N0fVSgYSbCkVbUsXJhjMSiYBk=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
* on the Mon, Dec 28, 2009 at 09:12:10PM -0600, Scott Bennett wrote:
>> Actually, no. The default exit policy blocks smtp ports. Sometimes,
>> you can find exit nodes that allow smtp. These are times are typically
>> few and far between.
>
> I thought that, pursuant to a discussion here last year or the year
> before, the default exit policy was changed to allow the smtps port. Did
> that change not get made after all?
It did. Port 25 is rejected in the default policy, but 587 and 465 are not
any longer:
root@esse:~# grep '\*:465' /var/lib/tor/cached-descriptors|wc -l
296
root@esse:~# grep '\*:587' /var/lib/tor/cached-descriptors|wc -l
297
root@esse:~# grep '\*:25' /var/lib/tor/cached-descriptors|wc -l
1127
root@esse:~#
If you're using TLS on port 587 then some information will be sent in plain
text for the exit node to sniff. The welcome banner, and the EHLO
request/response. If you can use SSL on connect on port 465, then nothing
is sent in plain text.
Other than DNS leaks, you need to make sure Thunderbird doesn't leak any
other information in the EHLO or the headers when sending mail.
--
Erilenz
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk in the body. http://archives.seul.org/or/talk/