Changes between Version 1 and Version 2 of Ticket #21952, comment 17


Ignore:
Timestamp:
Apr 19, 2017, 8:06:55 PM (2 years ago)
Author:
arma
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #21952, comment 17

    v1 v2  
    44I've been recommending to websites that they *not* do this.
    55
    6 First, it breaks your website for people in the case of false positives (e.g. where an apartment building has one IP address and one exit relay).
     6First, it breaks your website for people in the case of false positives (e.g. where an apartment building has one IP address and one exit relay, or where somebody briefly setup an exit relay in the coffeeshop).
    77
    88But more importantly, it should be up to the users what sort of security properties they get while connecting to your website, and you're taking away their choice. Privacy is about control and choice -- putting up a little dynamic section of the page that says "Hey, did you know we have an onion address?" is great, but sending them somewhere else based on their IP address seems like a slippery slope.