Delivery-Date: Thu, 07 Aug 2014 07:30:37 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 611B01E0B51;
	Thu,  7 Aug 2014 07:30:35 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 43D532ED8A;
	Thu,  7 Aug 2014 11:30:31 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id B0C862E75C
 for <tor-talk@lists.torproject.org>; Thu,  7 Aug 2014 11:30:27 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 4Wcxc5bDsNa3 for <tor-talk@lists.torproject.org>;
 Thu,  7 Aug 2014 11:30:27 +0000 (UTC)
Received: from eva.sec.gd (cl-1330.chi-02.us.sixxs.net
 [IPv6:2001:4978:f:531::2])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id 866812C2D9
 for <tor-talk@lists.torproject.org>; Thu,  7 Aug 2014 11:30:27 +0000 (UTC)
Message-ID: <53E36340.5090106@sec.gd>
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=sec.gd; s=eva.sec.gd;
 t=1407411019; x=1407414619;
 bh=lnALXn5FtRFSyMOCspIbXIFHSxGQnJGukyN5cCxmsiM=;
 h=Date:From:To:Subject:References:In-Reply-To;
 b=nSkHC47ckIZITVDUPiltjvApjy8YQcbwaJ1mC9ufbIYh5yaT/i/GsLisIGSQ68xWe
 7IIs7TPeuMYJqgB8+tQ/3FeQD75ogAXvKlJgbmBSXdoLBr8qhpe0oOAb1ym52ry1Qn
 glL/fmtDXtsRAc6adp7zDfKTjPWmWX/n1V0wgEh4=
Date: Thu, 07 Aug 2014 07:30:08 -0400
From: mal <mal@sec.gd>
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <53E14A49.2090709@cpunk.us> <20140807081855.1b285380@meilong>
In-Reply-To: <20140807081855.1b285380@meilong>
Subject: Re: [tor-talk] Is there a benefit to using the .onion address over
 a clearnet one?
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

With .onion addresses, provided you know you have the correct address,
you can also be sure there's no TLS MITM going on, whereas https://.com
relies on the CA system.

In addition, .onion addresses are censorship-resistant -- require the
private key to mess with, instead of leaning on / social engineering /
hacking a registrar or DNS server.


On 08/07/2014 02:18 AM, =D6yvind Saether wrote:
>> I use a service that provides both a clearnet address and an onion
>> address. I only access this service through Tor and I usually do it
>> via the clearnet address. Are there any benefits to accessing such a
>> service via its onion address?
> =

> Tor location hidden services have end-to-end encryption. If the site
> you are abusing has a http:// clearnet address then you get more
> end-to-end security by using the .onion address instead. =

> =

> Also, the exit node you are using can see someone visiting the site in
> question. This is also avoided if you use the .onion variant.
> =

> =

> =

-- =

tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

