[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Hidden Services - Access control.

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Hidden Services - Access control.
From: coderman <coderman@xxxxxxxxx>
Date: Tue, 30 Sep 2014 15:22:47 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 30 Sep 2014 18:23:07 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=YGB7JBxYrbk+VekVDwzW+LczaT7tHckNL5FmAjl/FHg=; b=v3cB7WkbBcil37mcxYIPswXgrc4VsaNgfvcpLEJxYknUn9ge/cbBKkbKNYmmgcXqou 27i5cmcXrnJ8m1iTagTXFsV8LcAK4mkJUISGhu2kAHDIQj1rxhM7hInb+thSzA6qVD1O MxD3Xy8p+sU3LcNA+Jrfd69a398jh4mER0xPeWWI9NGXO6cN2fsH2NbkRaqviheqLQXU TzB84cGLeskoZzJiJSCZRU7Vb0ITerP2+dEuShz24e9ci/+4z0tlWr8QTK3hrgU/GsrY M0UJa2kbOX1m2V7Z27re2k3mbhb42kP8nhATGmhYV16FkTXqUucykXoMXC/S62T8K5/x uCIw==
In-reply-to: <542AE168.1010802@xxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <542AE168.1010802@xxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On 9/30/14, LluÃs <msl12@xxxxxxxxxxxxxxxx> wrote:
> ...
> I didn't find anything about access control,
> is there anyway of doing this ?
> Can I hide the *.onion address to anyone, but me ?

you cannot hide the existence of the *.onion, as these are "location
hidden" not "existence hidden".

you can use various methods to restrict access, my favorite being PKI
with client certificates - if you are not an authorized client your
socket is disconnected before reaching application service layers.

simple HTTP auth leaks too much for my taste.  and of course,
variations of single packet authentication to access...

best regards,
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Hidden Services - Access control.
  - From: Lluís

Prev by Author: Re: [tor-talk] Someone is crawling TorHS Directories: Honeypot
Next by Author: Re: [tor-talk] Hidden Services - how to implement something like Round Robin DNS?
Previous by thread: [tor-talk] Hidden Services - Access control.
Index(es):
- Author
- Thread