[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] Hidden Services - Access control.
On 9/30/14, LluÃs <msl12@xxxxxxxxxxxxxxxx> wrote:
> ...
> I didn't find anything about access control,
> is there anyway of doing this ?
> Can I hide the *.onion address to anyone, but me ?
you cannot hide the existence of the *.onion, as these are "location
hidden" not "existence hidden".
you can use various methods to restrict access, my favorite being PKI
with client certificates - if you are not an authorized client your
socket is disconnected before reaching application service layers.
simple HTTP auth leaks too much for my taste. and of course,
variations of single packet authentication to access...
best regards,
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk