For those of us who aren't on tor-relays:
Begin forwarded message:
From: Gumby info@gumbyzee.torzone.net Subject: [tor-relays] Proton now takes Tor Date: 20 January 2017 at 08:23:45 AEDT To: tor-relays@lists.torproject.org Reply-To: tor-relays@lists.torproject.org
Nice to finally see this...
"The encrypted email provider announced Thursday it will allow its users to access the site through the Tor anonymity service.
The aim is to allow its more than 2 million users access the provider by taking "active measures to defend against state-sponsored censorship," such as government-mandated blocks at the internet provider level.
Users of the Tor Browser can now access the site at https://protonirockerxow.onion. " _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
T
-- Tim Wilson-Brown (teor)
teor2345 at gmail dot com PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B ricochet:ekmygaiu4rzgsk6n xmpp: teor at torproject dot org ------------------------------------------------------------------------
"The encrypted email provider announced Thursday it will allow its users to access the site through the Tor anonymity service.
The aim is to allow its more than 2 million users access the provider by taking "active measures to defend against state-sponsored censorship," such as government-mandated blocks at the internet provider level.
Users of the Tor Browser can now access the site at https://protonirockerxow.onion. "
This makes them the 3rd site which has valid cert from digicert. Right? Or are there others that I've missed?
PS: Unfortunately, it seems that it only works on their login page and they've hardcoded clearnet URLs elsewhere. They also seem to have some redirection issues.
On 01/20/2017 12:40 AM, Nima Fatemi wrote:
Users of the Tor Browser can now access the site at https://protonirockerxow.onion. "
This makes them the 3rd site which has valid cert from digicert. Right? Or are there others that I've missed?
For those who might be wondering how to get one: https://blog.digicert.com/ordering-a-onion-certificate-from-digicert/
I've read somewhere that most users can get them for free on request.
On 19 January 2017 at 21:26, Moritz Bartl moritz@torservers.net wrote:
On 01/20/2017 12:40 AM, Nima Fatemi wrote:
Users of the Tor Browser can now access the site at https://protonirockerxow.onion. "
This makes them the 3rd site which has valid cert from digicert. Right? Or are there others that I've missed?
For those who might be wondering how to get one: https://blog.digicert.com/ordering-a-onion-certificate-from-digicert/
I've read somewhere that most users can get them for free on request.
I haven't inquired, but under EV requirements, I believe only corporations can obtain them, not individuals. (If you had an LLC or a non-profit those should work - but it has to be a registered legal entity.)
-tom
Nima Fatemi:
This makes them the 3rd site which has valid cert from digicert. Right? Or are there others that I've missed?
A nice side effect of these all being EV certs from DigiCert (per heightened verification requirements) is that they're required to be included in Certificate Transparency logs https://en.wikipedia.org/wiki/Certificate_Transparency. At least, I think?
https://crt.sh lets you do some queries against Comodo's log (maybe other sources?). Did a quick query for SubjectAltName dNSName "%.onion" https://crt.sh/?dNSName=%25.onion and filtered down to uniques.
(There might be some others where the %.onion is only located in the commonName field though? https://crt.sh/?a=1)
anyway; nothing about current validity of these certs or such (though you can probably check that first crt.sh link for the original search and click through to the actual cert info for each), but this should be a near-comprehensive list of all the .onion names that DigiCert has issued certs for:
*.cyphdbyhiddenbhs.onion cyphdbyhiddenbhs.onion protonirockerxow.onion 3g2upl4pq6kufc4m.onion www.3g2upl4pq6kufc4m.onion www.y6xjgkgwj47us5ca.onion y6xjgkgwj47us5ca.onion nytimes2tsqtnxek.onion *.facebookcorewwwi.onion facebookcorewwwi.onion *.fbcdn23dssr3jqnq.onion *.fbsbx2q4mvcl63pw.onion *.m.facebookcorewwwi.onion *.xx.fbcdn23dssr3jqnq.onion *.xy.fbcdn23dssr3jqnq.onion *.xz.fbcdn23dssr3jqnq.onion xx.fbcdn23dssr3jqnq.onion xz.fbcdn23dssr3jqnq.onion xy.fbcdn23dssr3jqnq.onion m.facebookcorewwwi.onion fbcdn23dssr3jqnq.onion fbsbx2q4mvcl63pw.onion blockchainbdgpzk.onion blockchatvqztbll.onion coinpaymtstgtibr.onion tess2mkorb55pl7i.onion www.tess2mkorb55pl7i.onion cyph.ws.cyphdbyhiddenbhs.onion osf22p3lmweopgho.onion *.privacyintyqcroe.onion privacyintyqcroe.onion btcforuml2pcfkyx.onion www.btcforuml2pcfkyx.onion *.ppasset42kropoy6.onion ppasset42kropoy6.onion *.propub3r6espa33w.onion propub3r6espa33w.onion *.pubapp7v22ykdou3.onion pubapp7v22ykdou3.onion pubdrop4dw6rk3aq.onion audio.cyphdbyhiddenbhs.onion im.cyphdbyhiddenbhs.onion video.cyphdbyhiddenbhs.onion k6jyto7zq7xxriux.onion www.k6jyto7zq7xxriux.onion fyxifz6xwx3d67a2.onion sarajarxpvoenum6.onion ajarouh33jee5tos.onion *.xczxxczkjivdfsop.onion
Mike Tigas News Applications Developer, ProPublica http://www.propublica.org/ @mtigas | https://mike.tig.as/ | 0x6E0E9923
tor-project@lists.torproject.org
-
Mike Tigas -
Moritz Bartl -
Nima Fatemi -
teor -
Tom Ritter