[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tor-talk] MITM attack on TLS



Hello,
I think I will use OBFS4.  When it comes to the cert, I will probably have the option not to install it.  By the way if you want more security and you’re really in trouble you should Tails.
https://tails.boum.org
Read the documentation!

> On Nov 20, 2015, at 4:53 PM, Ivan Markin <twim@riseup.net> wrote:
> 
> Justin:
>> Also, I have no option but to keep the cert because if I don’t the
>> filter may use DPI to block TLS for me.
> 
> Funny! I mean that you're already have no TLS, because actual TLS is
> terminated at your ITDep. You should remove these CAs - you have nothing
> to lose!
> When TLS is blocked (looks too problematically when it comes to the
> reasons of this censorship, but possible) try another Pluggable Transport.
> 
> -- 
> Ivan Markin
> 
> -- 
> tor-talk mailing list - tor-talk@lists.torproject.org
> To unsubscribe or change other settings go to
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk