[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Proposal: HTTP header distinguish TBB users

To: "tor-dev@xxxxxxxxxxxxxxxxxxxx" <tor-dev@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-dev] Proposal: HTTP header distinguish TBB users
From: Marcin Cieslak <saper@xxxxxxxxxx>
Date: Sat, 3 Oct 2015 12:42:16 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 03 Oct 2015 08:50:07 -0400
In-reply-to: <CADop2NE-hd0cq7PJA-YpvFJR7iugstD8Fmo=2hT93GBsNTm_9w@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CADop2NE-hd0cq7PJA-YpvFJR7iugstD8Fmo=2hT93GBsNTm_9w@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Sat, 3 Oct 2015, Virgil Griffith wrote:

> Now the trouble starts. If the TBB user gets to the tor2web backend I check
> if they're coming from an Exit relay and redirect them---all good.  But a
> CDN (Fastly.com) sits in front of my backends and right now it's unclear
> how to detect TBB at the CDN level.

I don't think this shoud be fixed by detecting TBB, which somehow counters
the very purpose of TBB. What about having a scriptlet/extension/whatever
in The Tor Browser that sends the request directly via the Tor network
instead of using the gateway? Client-side solution is the only way
to recover your Bitcoin to me.

~saper
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Proposal: HTTP header distinguish TBB users
  - From: Virgil Griffith

Prev by Author: Re: [tor-dev] Tor Messenger Beta: Chat over Tor, Easily
Next by Author: Re: [tor-dev] Concerns regarding a multilingual version of TBB,
Previous by thread: Re: [tor-dev] Proposal: HTTP header distinguish TBB users
Next by thread: Re: [tor-dev] Proposal: HTTP header distinguish TBB users
Index(es):
- Author
- Thread