[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Privoxy config: Use Tor for https:, and normal for http:
- To: or-talk@xxxxxxxxxxxxx
- Subject: Privoxy config: Use Tor for https:, and normal for http:
- From: "Michael_google gmail_Gersten" <keybounce@xxxxxxxxx>
- Date: Sun, 16 Sep 2007 12:47:24 -0700
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Sun, 16 Sep 2007 15:47:33 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=iDu26PcPkHIz4Ti1MlFmGod1xuDqHfX4BIrnb3VmSHU=; b=JA30vr/yXib+eNveUvXKfYImC77GPvG8bllwmC4tQr8EBOut4V6y3PnUbI/4lr9JynNhfGTd4lfOcBTqhBkQRhw7pR4IUwewg5HZCeEI39NeyXN5cScqORF4zXJKCK/5pKtQgGzEPBRIaYfAQdEnub5S1bW+wPRphL/ziduJl8s=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=eWLF0JdOuCZcVLVC6BaIbEUZBUnU5Ic1CTryoHlrOc0uS21Vllr0EkYr3tWLndyYpFGoAPGZ7tIfi/IHEaSNbJKAg6g9TUhMB1KOgSBFdr7dNnjxlx1P3ybkphd5mGLfXyx1HEkX5SYRtiFXXthbswITrrk0qfQqaWd5s/rwnvU=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
So one big thing that has been discussed on the list of late is that
anything sent over http: may transmit authentication cookies in the
clear.
I'd like to configure privoxy to assume that instead of sending all
traffic over tor, or instead of forwarding based on node name, to use
protocol.
What I'm looking at is something like this:
1. Anything specifying https: may be safely sent over tor.
2. Anything specifying http: should not
I'm now starting to track which sites I'm "logged in" on, by seeing
which send me personal greetings, that do not support https:, and
adding in "do not forward these sites over tor" to my privoxy config.
I think of this as a "start". Even with this in place, is there
anything that I might be overlooking?