Here is another argument against «normal» certificates for onion domains. The issue is which they e with an OCSP responder address. Therefore, the internet browser is certainly going and contact that responder, possibly deanonymizing you. Exactly what myspace needs to have complete should bring OCSP responses stapled – without it, the problem is even bad than unencrypted http.
No, it will not on some
No, it won’t on some browsers. Perhaps this is exactly a web browser bug, but still, stapling the OCSP response would make the insect benign.
Tor Web Browser needs to have
Tor web browser will need to have impaired OCSP long ago, it’s bad than ineffective because it has to FAIL START since plenty responders are unreliable. noisebridge /OCSP
What about changing the Tor
What about altering the Tor Browser, to make sure that although all traffic in actuality is distributed through simple HTTP over Tor for .onion, the browser shows it , because of the padlock, to make certain that users think guaranteed truly encoded precisely. Possibly even approach it can be HTTPS regarding mixed material and referer and these types of, while still not indeed being it. (más…)