[tor-talk] HTTPS to hidden service unecessary?
Juenca R
juenca at yahoo.com
Mon Jul 9 20:45:32 UTC 2012
----- Original Message -----
> From: SiNA Rabbani <sina at redteam.io>
> To: tor-talk at lists.torproject.org
> Cc: Juenca R <juenca at yahoo.com>
> Sent: Monday, July 9, 2012 1:27 PM
> Subject: Re: [tor-talk] HTTPS to hidden service unecessary?
>
>
> On 07/09/2012 01:10 PM, Juenca R wrote:
>> Tor encrypts all traffic, right?
> Tor will encrypt your data while it's being passed from one relay to the
> other, all the way to the Exit node. If you send HTTP, it will come out
> HTTP :)
>
>> By TLS? So if running a hidden service, is it redundant to serve it
>> using HTTPS/port 443??
>>
> Hidden Services are a special case, everything inside a hidden service
> is end to end encrypted. So as long as the hidden service and the Web
> Service are on the same machine I guess you can get away with not
> installing SSL on the web service.
>
> I used to setup my hidden services with SSL on the web port and when I
> realized this it was very pleasant :)
ok thank you. yes it's very convenient not have to worry about certificates and .onoin domains so my web site as hidden service can be HTTP but still fully encrypted! nice
More information about the tor-talk
mailing list