Configuring a Hidden Service
Jens Kubieziel
maillist at kubieziel.de
Mon Dec 6 12:26:57 UTC 2010
* zzzjethro666 at email2me.net schrieb am 2010-12-06 um 08:19 Uhr:
> "If your computer isn't online all the time, your hidden service won't
> be either. This leaks information to an observant adversary." Does it
> leak because it is online all the time or because it isn't online all
> the time? And how or what does it leak?
Assume you run a webserver on your local machine. You configured it as
hidden service. In the morning when you wake up. you turn on your
computer and the hidden service is available to the world. Before you
go to bed, you turn off your computer and the hidden service disappears.
An attacker can send requests to your hidden service to check if it is
online. He will learn that it is turned off for some hours and online
for some hours. With this information he knows (or can assume) in which
timezone your computer is located and maybe some more.
> Also, does one need to be connected (online), to the Tor network in
> order to "precheck" a Hidden Services site in order to make sure it is
> working properly? Can it open in Firefox browser offline and whatever
You need to be connected with the Tor Network, because your software
needs to connect to certain servers (introduction and rendezvous points,
i.e.).
regards,
--
Jens Kubieziel http://www.kubieziel.de
Wer viel Charakter hat, hat wenig Eigentum. John James Osborne
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20101206/2fadb301/attachment.pgp>
More information about the tor-talk
mailing list