[tor-bugs] #24351 [Applications/Tor Browser]: Block Global Active Adversary Cloudflare
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Mar 15 22:25:11 UTC 2018
#24351: Block Global Active Adversary Cloudflare
-------------------------------------------------+-------------------------
Reporter: nullius | Owner: tbb-
| team
Type: enhancement | Status:
| reopened
Priority: High | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Major | Resolution:
Keywords: security, privacy, anonymity, mitm, | Actual Points:
cloudflare |
Parent ID: #18361 | Points: 1000
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by cypherpunks):
To comment:68
Wrong. In Cloudflare full SSL they still re-encrypt everything at their
end before passing on the data. Cloudflare is always able to decrypt. Even
in their "keyless" mode where don't have the private keys but are given
decryption capabilities. Also, traffic between CF and server is plaintext
in basic SSL.
basic SSL: Plaintext between CF and server
full SSL: Cloudflare can see all traffic but it is encrypted on the net
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24351#comment:70>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list