<html><head><style type="text/css"><!-- DIV {margin:0px} --></style></head><body><div style="font-family:arial, helvetica, sans-serif;font-size:10pt"><div><benfell@greybeard95a.com><span style="font-style: italic;"></span><span style="font-style: italic;"></span>Firstly, let me say that I'm by no means a tor expert. It would be better if Roger or Neil weighed in than relying on my opinions.
<br>
<br></benfell@greybeard95a.com><span style="font-style: italic;">I'm seeing this as a nightmare. If it isn't possible to disguise the
</span><span style="font-style: italic;">fact you're using or serving tor--and last time I did a tcpdump on my
</span><span style="font-style: italic;">outside interface, it stuck out like a sore thumb--doesn't that
</span><span style="font-style: italic;">undermine its usefulness? <br>
<br>
</span><benfell@greybeard95a.com>I'd be willing to bet that In some
countries the very act of disguising communication is as criminal as
transmitting illegal payloads. In a similar vein, in some U.S. states,
the penalty for refusing to take a DWI test administered by a police
officer is often as harsh as the penalty for DWI conviction itself.
<br>
</benfell@greybeard95a.com><br><benfell@greybeard95a.com> </benfell@greybeard95a.com><span style="font-style: italic;">(And I assume you mean SSL could be used to
</span><span style="font-style: italic;">encrypt content, not the destination of a tor server.)
</span><br><benfell@greybeard95a.com>
<br>
Right. <br><br></benfell@greybeard95a.com><span style="font-style: italic;">If connections could be posted in such public, mainstream, or embedded in innocuous ssl, that might prove well. Perhaps it could be retrieved from an anonymous proxy service. Quite simply, it seems that you have to launder the data and appear to be getting it from an innocent data source.</span><br><span style="font-style: italic;"></span><span style="font-style: italic;"></span><benfell@greybeard95a.com></benfell@greybeard95a.com><br>Two comments: (1) what's to prevent gov't agencies from detecting the IPs of the anonymous proxies by themselves using tor? (2) As I suggested above, I tend to think some countries illegalize the act of encrypting communication by its rank-and-file citizens. I don't know enough about SSL to know whether or not SSL traffic can be sensed by a third-party even if not decrypted. I would think so, however.<br><br>In any case, I can't imagine that none
of this hasn't already been discussed -- probably ad naseum -- by the tor community in the past. I'm sure if we search the mailing list, these topics will appear.<br><br></div></div></body></html>