[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor and HTTPS

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor and HTTPS
From: Ringo Kamens <2600denver@xxxxxxxxx>
Date: Thu, 03 Jul 2008 15:37:26 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 03 Jul 2008 15:38:17 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :x-enigmail-version:content-type:content-transfer-encoding; bh=qzRMRxpdMPmp8yO2XHEy9qmYzjIoUktuenJ4uuNn76Y=; b=dOGb7zoJN5eUc382XLDxgEEus9vOEq+GPoWmggW8IxJQz6BWWnO5jpSDM0W7hotoQy aMHFngUGme3gMxGlnoiTBtUrahggvDlAkAGZSQzdXfaaLA4qHB588nwxPQGtIbKLlKTN DFEJ0gPosTkqSkFO2SMyWY3e1f/oC7SHpybhc=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:x-enigmail-version:content-type :content-transfer-encoding; b=QFI7YgYk1h6ydRzCJb4e3EAaQF/eqX+Zy7rNqH9Q0M/vyg5KriH0c07q/5V0NJwudU fJ/nXQ9oGpJkWvdzoyV18pOjj7BSiWbyCqoy1Gu5kmxdAYuNM/YIECqFhlhpYCgsKIhS vKvLoU693rp8WG+SpqFZzjTSx5GoLuwe/gn7E=
In-reply-to: <20080703193312.246BA158041@xxxxxxxxxxxxxxxxxxxxxxxx>
References: <20080703193312.246BA158041@xxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.14 (X11/20080502)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

While it's true that privoxy can't filter things when you're using
HTTPS, IMHO it's much better to use encrypted connections in general,
especially when you trust the host. If you have scripts disabled on your
browser then privoxy isn't really all that needed.
Comrade Ringo Kamens
nobledark@xxxxxxxxxxxx wrote:
> Hi,
> 
> Sorry if this sounds a bit stupid but looking for some 
> clarification. I've read that using HTTPS over Tor actually reduces 
> your security due to the bypass of your local proxy (Privoxy, etc) -
>  is this the case for all usage or does it justs affect hidden 
> services? For example, if I am accessing Hushmail via a Tor-enabled 
> Firefox browser, is that traffic not protected by the anonymized 
> circuit or otherwise less secure than a connection to a port 80 web 
> site?
> 
> Thanks -nD
> 
> --
> Enter for Your Chance to WIN*
> The TotalBeauty.com Summer Spa Sweepstakes!
> http://tagline.hushmail.com/fc/JKFkuIjyZ57MTi5YQUyDeIppWKiZDKrw7T6pNlG1D3Y0Lf6oWsgIbf/
> 
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIbSp1mBTzXUpNYqQRAsh4AKCnjKPlinfXQOHsEqIMog5zU/kKzwCeOWdu
jLusoAV9aBU79kXlMHg8dMo=
=7O43
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: Tor and HTTPS
  - From: Christopher Davis

References:
- Tor and HTTPS
  - From: nobledark

Prev by Author: Re: Traffic routed through Sweden
Next by Author: Re: Idle client bandwidth usage
Previous by thread: Tor and HTTPS
Next by thread: Re: Tor and HTTPS
Index(es):
- Author
- Thread