[tor-talk] The project "tormail"
andrew at torproject.org
andrew at torproject.org
Thu Aug 18 23:38:31 UTC 2011
On Thu, Aug 18, 2011 at 10:52:54PM +0000, jbrownfirst at gmail.com wrote 1.0K bytes in 17 lines about:
: 1) Is it need to use ssl when connecting to hidden service? What can
: see the last tor-node in the traffic to a hidden service? I don't
: understand it well.
No, ssl is not required.
https://www.torproject.org/docs/hidden-services.html.en may help you
understand it.
: 2) It is very pitty but now many sites required using JS for its
: services. As I know the JS can "steel" only internal ip-address not the
: external. Or I am wrong?
There's no proof that javascript itself can leak your IP address, at
least none that we've seen. It can be used to leak lots of other
information about you, see https://panopticlick.eff.org/ for more
details.
--
Andrew
pgp key: 0x74ED336B
More information about the tor-talk
mailing list