i'm wonder if it makes any sense to allow users to access a public web server
access normal at same time as hidden service on same machine?
The idea not about hiding the location of the server but protect user so server
can't know where user comes from (yes, I can also disable logging)
the hidden service docs advise: make sure server isn't view-able on regular
internet, but isnt' there still some use?
also wondering if the use of hidden service like this will help fix problem of
man-in-middle attacks on SSL like here:
http://www.wired.com/threatlevel/2010/03/packet-forensics/
actually, does Tor's encryption fall victim to this? if not, is HTTPS over
hidden service redundant?
_______________________________________________
tor-talk mailing list
tor-talk@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
