So one big thing that has been discussed on the list of late is that anything sent over http: may transmit authentication cookies in the clear.
I'd like to configure privoxy to assume that instead of sending all traffic over tor, or instead of forwarding based on node name, to use protocol. What I'm looking at is something like this: 1. Anything specifying https: may be safely sent over tor. 2. Anything specifying http: should not I'm now starting to track which sites I'm "logged in" on, by seeing which send me personal greetings, that do not support https:, and adding in "do not forward these sites over tor" to my privoxy config. I think of this as a "start". Even with this in place, is there anything that I might be overlooking?