Using Gmail (with Tor) is a bad idea
Claude LaFrenière
climenole at gmail.com
Tue Sep 19 00:42:15 UTC 2006
Hi *Tim McCormack* :
> The problem is that Google puts the auth tokens in an http:// GET
> request -- you can see for yourself. And then it switches to https://.
> The exit node could grab your auth tokens, I guess. Since you're
> effectively at the same IP as the Tor exit node, gmail wouldn't know the
> difference.
OK. I understand now.
Thank you for the explanation Tim.
:)
--
Claude LaFrenière
More information about the tor-talk
mailing list