> There's no point in adding a layer of SSL over hidden services; the > connection is already encrypted end to end. > I thought it was more like proxy-to-proxy leaving a small in-the-clear gaps on the ends.