[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Mail through Tor

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Mail through Tor
From: "Martin Hubbard" <Martin.Hubbard@xxxxxx>
Date: Fri, 27 Jan 2012 07:56:35 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 27 Jan 2012 01:57:29 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

GMX does HTTPS. My current connection uses AES-256. It's authenticated by Thawte Consulting cc.
----- Original Message -----
From: unknown
Sent: 01/26/12 11:06 AM
To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Mail through Tor

 On Thu, 26 Jan 2012 14:41:06 +0100 <superplant@xxxxxx> wrote: > Hi, > > are there any issues in controlling email-boxes through the provider- > webfrontends (gmail, gmx, etc.) using tor? > I read for example about referers in between entering account information and > being redirected to mail-provider-http-sites for a short moment so that > session hijacking by the exit node operator is possible (intercepting auth- > cookies etc.). > Any behavior suggestions here? I didn't find much on the web. > > Thanks! > Tor-User Gmail works with SSL-webfrontends. In TBB by default "HTTPS-everywhere" plugin redirect your HTTP to HTTPS for Gmail profile. Intercepting SSL (HTTPS) is not so easy if you will be carefull with browser messages. Another mail and webservice providers may (or not) provide https-login and theyr https-profiles may (or not) be missing in https-everywhere. _______________________________________________ tor-talk mailing list tor-talk@xxxxxxxxxxxxxxxxxxxx https://list
 s.torproject.org/cgi-bin/mailman/listinfo/tor-talk
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: Re: [tor-talk] Tor plus VPN (was re: Hi all!)
Next by Author: Re: [tor-talk] Real basic questions for linux
Previous by thread: Re: [tor-talk] Mail through Tor
Next by thread: [tor-talk] tor_autocircuit script
Index(es):
- Author
- Thread