Hi Raph,
Whilst I agree that in an ideal world CAs would be irrelevant, we do not
live in an ideal world. My proposal is one of many ways that a certificate
could be issued to hidden services.
Issuing standard TLS certificates to .onion domains allows HTTPS without
modification to the browser. Th
Yes, signed is what I meant. I will update the document.
--
Any statements contained in this email are personal to the author and are
not necessarily the statements of the company unless specifically stated.
AS207960 Cyfyngedig, having a registered office at 13 Pen-y-la
On Tue, Apr 25, 2023 at 01:02:28PM +0100, Q Misell via tor-dev wrote:
> Security Considerations:
> The second layer descriptor is encrypted and MACed in a way that only a
> party
> with access to the secret key of the hidden service could manipulate what is
> published there. Therefore, Tor
Hi all,
I've spent some time working on ACME for Tor hidden services (you may have
seen discussion of this work on the onion-advisors mailing list). Full
details of the project are available at https://e.as207960.net/w4bdyj/AX8Ffqsd
Attached is my proposal for a change to the Tor Rendezvous Speci
