aeris22’s avataraeris22’s Twitter Archive—№ 26,029

    1. …in reply to @DieRoteLisbeth
      @AliceDust HTTPS is usefull to « strongly » identify .onion found into the wild. If cert presents plain-net domain inside, legit.
      Permalink On twitter.com Twitter logo aeris22’s avatar Mood 0
  1. …in reply to @aeris22
    @AliceDust But if you already have trust in the .onion, it’s self-authenticated, no need of TLS for this.
    On twitter.com Twitter logo aeris22’s avatar Mood 0
    1. …in reply to @aeris22
      @AliceDust HTTPS can also be usefull from a tech point of view. You can host .onion for content not on the HS tor node (proxying).
      Permalink On twitter.com Twitter logo aeris22’s avatar Mood 0
      1. …in reply to @aeris22
        @AliceDust With HTTPS, even the HS tor node operator can’t have access directly to the real content.
        Permalink On twitter.com Twitter logo aeris22’s avatar Mood 0