amelius 41 minutes ago

> Of course, we need to make sure that the data isn't modified on the way from the client.

Why is this necessary if every layer of the onion is a trustable encrypted link?

Reply View 1 reply
  • MzxgckZtNqX5i 26 minutes ago

    Relays can be malicious and try to tamper with the data. Think of Tor relay encryption like Signal's E2E encryption, where the relays are analogous to Signal's servers. You want to ensure they can neither see what you sent (confidentiality) nor modify it without detection (integrity).

    Reply View 0 replies
47282847 7 days ago

Cool! Congrats! Awesome work.

Small typo: “observing predicatable changes“

Reply View 4 replies
  • sevg 2 hours ago

    I think you’re getting downvoted because you’re reporting the typo in an odd and likely unproductive place.

    I’m not sure what you expect HN readers to do about the typo. There is a comment section on the blog itself :)

    Reply View 2 replies
    • gus_massa an hour ago

      It's not unusual that the author (or someone of the team) see the trafic peak an appears in HN to reply the questions.

      Reply View 1 reply
      • sevg 39 minutes ago

        Sure, that happens.

        But instead of just reporting it directly, we instead get this unsubstantive comment (“Cool! Great! Btw you spelled a word wrong.”). Essentially just noise, nothing that provokes curiosity or interesting discussion.

        Reply View 0 replies
  • [removed] an hour ago
    [deleted]
    Reply View 0 replies
m00dy 5 hours ago

hey guys, anyone believes Tor still can provide anonymity to users ? just trying to ask politely.

Reply View 8 replies
  • ongy 2 hours ago

    Low stakes (IP violations etc.): absolutely

    High stakes (military / nation state scale): no

    Reply View 0 replies
  • jstanley 2 hours ago

    This FUD comes up whenever Tor is mentioned on Hacker News. The answer is: let's say you think Tor isn't 100% flawless. What are you going to do? Not use Tor? It's better than any other option.

    Reply View 3 replies
    • impossiblefork 2 hours ago

      What you'd do is that you'd write a distributed remailer where fixed-size messages are sent on fixed timeslots, possibly with some noise in when it's transmitted, with a message always being sent on its timeslot, even if a dummy message must be sent.

      I've been writing a system like this in Erlang, intended to be short enough that you can take a picture of the source code and then type it in by hand in a reasonable amount of time, as a sort of protest against Chat Control. I'm not sure I'm going to release it-- after all, they haven't passed it yet, and there are all sorts of problems that this thing could needlessly accelerate, but I've started fiddling with it more intensively recently.

      Reply View 2 replies
      • zmgsabst 2 hours ago

        Don’t things like Freenet do similar?

        Except that every user is also a node, thereby mixing their personal traffic into a share of network traffic. Or so I understand it.

        Reply View 1 reply
        • impossiblefork an hour ago

          I'm not sure. Freenet actually stores information, this is pure communication system. I don't think it uses dummy messages.

          My target size is also <500 lines, and I think <200 is feasible, whereas Freenet is apparently 192,000 lines.

          Reply View 0 replies