#24351: Block Global Active Adversary Cloudflare -------------------------------------------------+------------------------- Reporter: nullius | Owner: tbb- | team Type: enhancement | Status: | reopened Priority: High | Milestone: Component: Applications/Tor Browser | Version: Severity: Major | Resolution: Keywords: security, privacy, anonymity, mitm, | Actual Points: cloudflare | Parent ID: #18361 | Points: 1000 Reviewer: | Sponsor: -------------------------------------------------+-------------------------
Comment (by cypherpunks): To comment:68 Wrong. In Cloudflare full SSL they still re-encrypt everything at their end before passing on the data. Cloudflare is always able to decrypt. Even in their "keyless" mode where don't have the private keys but are given decryption capabilities. Also, traffic between CF and server is plaintext in basic SSL. basic SSL: Plaintext between CF and server full SSL: Cloudflare can see all traffic but it is encrypted on the net -- Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24351#comment:70> Tor Bug Tracker & Wiki <https://trac.torproject.org/> The Tor Project: anonymity online
_______________________________________________ tor-bugs mailing list tor-bugs@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs