[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tor-talk] Giving Hidden Services some love



Being a CA for .onion seems a reasonable thing to be.  Should someone
already part of the Tor community like torservers.net become that CA?

-V

On Thu, Jan 1, 2015 at 6:52 PM, Thomas White <thomaswhite@riseup.net> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> To individuals - no. However that being said, I am currently working
> with two CA's on getting them to set out a standard to adopt with the
> other CAs since they cannot just issue a certificate without following
> the guidance that the CA Forum sets out. Right now their main problem
> is that there is no policy on it and so standardising the procedure is
> required for any certificates with an expiry beyond November 2015.
>
> I'll update this list when we have new information on the matter but I
> don't expect an update until their next official policy meeting around
> May I believe.
>
> T
>
> Xiaolan.Me:
>> does any CA can issue SSL-CERT to an .onion address?
>>
>> 2015-01-02 9:17 GMT+08:00 Virgil Griffith <i@virgil.gr>:
>>
>>> If an existing website simply wants to improve performance for
>>> Tor users, my understanding is that it's more efficient simply to
>>> run an Exit Enclave instead of a hidden service.  Is that true?
>>>
>>> https://trac.torproject.org/projects/tor/wiki/doc/ExitEnclave
>>>
>>> -V
>>>
>>> On Thu, Jan 1, 2015 at 5:06 PM, Colin Mahns
>>> <colinmahns@riseup.net> wrote:
>>>> Awesome! Love the document title by the way :)
>>>>
>>>> If I think of anything more to add, I'll be sure to edit it
>>>> in.
>>>>
>>>> Colin
>>>>
>>>> On January 1, 2015 7:46:22 PM EST, Katya Titov
>>>> <kattitov@yandex.com>
>>> wrote:
>>>>> Colin Mahns:
>>>>>> I've written up an example email here:
>>>>>>
>>>>>
>>> http://zerobinqmdqd236y.onion/?31934b9e07f96171#GM3e5ekrDUakoz612PNB8tCBmme/QRrj6zMgd1amZpU=
>>>>>>
>>>
> Feel free to improve on it, I based it off of emails I've sent in the
>>>>>> past. I'm not sure if we should list security concerns in
>>>>>> the general sense, or if we should point to a real life
>>>>>> example of where a hidden service was utilized for security
>>>>>> reasons.
>>>>>
>>>>> Thanks Colin. I've made some changes and created a new wiki
>>>>> page:
>>>>>
>>>>>
>>> https://trac.torproject.org/projects/tor/wiki/doc/HiddenServiceEvangelism
>>>>>
>>>>>
>>>
> I've mentioned you directly as the initial author, let me know if you
>>>>> want that attribution removed. (Or just remove it yourself!)
>>>>> -- kat -- tor-talk mailing list -
>>>>> tor-talk@lists.torproject.org To unsubscribe or change other
>>>>> settings go to
>>>>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
>>>>
>>>>>
> - --
>>>> tor-talk mailing list - tor-talk@lists.torproject.org To
>>>> unsubscribe or change other settings go to
>>>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
>>> -- tor-talk mailing list - tor-talk@lists.torproject.org To
>>> unsubscribe or change other settings go to
>>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
>>>
>
> - --
> Activist, anarchist and a bit of a dreamer.
>
> PGP Keys: key.thecthulhu.com
> Current Fingerprint: E771 BE69 4696 F742 DB94 AA8C 5C2A 8C5A 0CCA 4983
> Key-ID: 0CCA4983
> Master Fingerprint: DDEF AB9B 1962 5D09 4264 2558 1F23 39B7 EF10 09F0
> Key-ID: EF1009F0
>
> Twitter: @CthulhuSec
> XMPP: thecthulhu at jabber.ccc.de
> XMPP-OTR: 4321B19F A9A3462C FE64BAC7 294C8A7E A53CC966
> -----BEGIN PGP SIGNATURE-----
>
> iQIcBAEBCgAGBQJUpgfJAAoJEFwqjFoMykmDE8EQAKxRwreKslo94J41KVeFmyky
> DV1FxTOe+QnNUQ0+ii93pVtHPnXQj+JpUs+1O7PCR/B9dNh/iI4QeNrJU+E6TQny
> c5mGf8V4TgmesGlUOrM/rq4fy4knyWyh1TSgU1UTdmi57tezr5egsCgTll60dYA8
> ESE/L2tgdl8KPy6+Brc5T97weMtPgjipuy/n3uiZmvBGR/lMvcdsr7JseumAgMIP
> 0Q3h2sIgVssx8xgL8KmvBnY5h9zDPulhT9QUGoaAx7YtEF8P4TWKzD8J3KCHspqX
> c++JE19ekZXNTjnrX3d42U6qBlVq8ApczLWJR3KV4BQy+ryrgxoJZpUCl8D/2Jqe
> jBv1rMnkhIEJJW7dTBHDqnfGorpir+6L8dGxXU6rjQtBj5WUulyrxeeqW/pOVb80
> Mxp3+SRbA+rhTVVHKUjrG72C5BYmjFdCL+IiilS1Squ8B0PpU4egPb5tvJP17cjQ
> +/O0UEeAxQlxbyQXfWN3kfa3moYjeWbzMSLIkpa+2Ycfs/CZ2UpLKZsOrZ88K7hj
> yWgC1q1HFwLNplujc8J8YjDiKXImnJ2F0fD77T4JjTkz+PzetR3uwhVoX3lo0JJf
> aJC5+w3/OtD4P/OBowGnEv0mXcDb21F1BvJvbjMowDd2b/agLF0M9QOOtbGZD1k7
> ldGmG6f6xkLhZC6KmJg7
> =m5EP
> -----END PGP SIGNATURE-----
> --
> tor-talk mailing list - tor-talk@lists.torproject.org
> To unsubscribe or change other settings go to
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk