Changes between Initial Version and Version 1 of Ticket #3555, comment 27


Ignore:
Timestamp:
May 17, 2015, 8:14:24 AM (4 years ago)
Author:
vynX
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #3555, comment 27

    initial v1  
    1 Arma, we are talking about Tor Browser the way it gets shipped here, it should know its own onions and it doesn't take any extra certificate pinning implementation to know them – it is enough to have the right .onion names in all of the default URLs that are shipped with the browser. So the problem of users not being able to memorize onion addresses except for Facebook's and mine, with all due respect, doesn't exist in this constellation. Also I know of trusted Tor developers owning powerful multi-processor machines in their trusted homes capable of generating some really neat and memorizable torproject12core.onion address.
     1Arma, we are talking about Tor Browser the way it gets shipped here, it should know its own onions and it doesn't take any extra certificate pinning implementation to know them – it is enough to have the right .onion names in all of the default URLs that are shipped with the browser. So the problem of users not being able to memorize onion addresses except for Facebook's and mine, with all due respect, doesn't exist in this constellation. Also I know of trusted Tor developers owning powerful multi-processor machines in their trusted homes capable of generating some really neat and memorizable torproject12core.onion address, but that isn't even necessary to complete this feature request – or rather, security bugfix, since it isn't neither nice nor logical that even the Tor Browser is susceptible to MITM when accessing its own homebase.