[liberationtech] New Yorker debut's Aaron Swartz's 'Strongbox.'
Fabio Pietrosanti (naif)
lists at infosecurity.ch
Sat May 18 00:50:42 PDT 2013
On 5/18/13 6:12 AM, Griffin Boyce wrote:
> Kevin Poulsen <klp at hacknet.com <mailto:klp at hacknet.com>> wrote:
>
> That's awesome! But you write that the dot-onion can only be reached
> from mobile Android devices. What about this?
>
> https://itunes.apple.com/us/app/onion-browser/id519296448?mt=8
>
>
> An Apple app is not the best option. You could set up your own
> customized tor2web service and serve the onion that way. It seems
> more practical long-term, since it can't be blocked by Apple or abused
> by a developer.
We recently introduced the feature of "TRANSLATION MODE" to setup your
own private Tor2web node, to expose with your own "private" Tor2web
server only a single, specific onion host:
https://github.com/globaleaks/Tor2web-3.0/wiki/Configuring-Tor2web#translation-mode
However that's to be used for specific context where one or more than
one actors (public, receiver, whistleblower, admin) of GlobaLeaks (or
other WB platform) need to access without strong- anonymity (The tor2web
access policy can be configured in a granular way, depending on the uses
https://github.com/globaleaks/GlobaLeaks/wiki/Advanced-configuration#tor2web-access-policy)
.
However the use of Tor2web within a Whistleblowing platform must be used
with extreme care, by understanding exactly how it change the threat
model within the respect to the anonymity matrix
https://docs.google.com/document/d/1niYFyEar1FUmStC03OidYAIfVJf18ErUFwSWCmWBhcA/pub#h.fpje7tqvacyf
.
--
Fabio Pietrosanti (naif)
HERMES - Center for Transparency and Digital Human Rights
http://logioshermes.org - https://globaleaks.org - http://tor2web.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20130518/454f68d4/attachment.html>
More information about the liberationtech
mailing list