system33- 10 months ago

Depends on the content of your traffic.

If “deanonymize” strictly means perform a timing attack using info you have from the beginning and end of the circuit, then by definition you’re correct.

But if you visit an identifying set of websites and/or ignore TLS errors or … they can still deanonymize you.

Reply View 3 replies
  • iluvcommunism 10 months ago

    What role do TLS errors play in de-anonymizing onion traffic?

    Reply View 2 replies
    • system33- 10 months ago

      My comment is strictly about exit nodes which are not used as part of connecting to onion services.

      Ignoring TLS errors might mean you’re ignoring the fact your exit relay is MitM attacking you.

      Reply View 1 reply
      • iluvcommunism 10 months ago

        Thanks, I just wanted to be sure I wasn’t missing something.

        Reply View 0 replies