On 12/04/2018 08:41 AM, Aaron Johnson wrote: > If you want to keep your onion address hidden, you should run a v3 onion > service. An improvement of v3 over v2 is that Hidden Service Directories can > no longer identify the onion address of the onion-service descriptors they > store. As a result, there is no point in any Tor protocol at which a v3 onion > address is leaked to any relay. As long as you keep the address to yourself, > noone will be able to find it. For more information about v3 onion services, > see <https://trac.torproject.org/projects/tor/wiki/doc/HiddenServiceNames > <https://trac.torproject.org/projects/tor/wiki/doc/HiddenServiceNames>>. > > Aaron
That is very cool. But the problem for me is that v3 breaks OnionCat. There was that sweet matchup between v2 onions and an IPv6 /48. So is there an efficient way to specify a v2-sized subset of v4 onions? >> On Dec 3, 2018, at 10:28 PM, Mirimir <miri...@riseup.net> wrote: >> >> On 12/03/2018 10:42 PM, Nathaniel Suchy wrote: >> >> <SNIP> >> >>> You mentioned "HiddenServiceAuthorizeClient", a feature I did not know >>> about. I'm going to figure out if this is possible to implement on the SSH >>> System as that would solve some concerns about a leaked onion address. >>> Could you elaborate a bit more on this functionality? >> >> <SNIP> >> >> I've just used basic authentication. >> >> In the .onion server torrc: >> >> $ sudo nano /etc/tor/torrc >> ... >> HiddenServiceDir /var/lib/tor/foo >> HiddenServiceAuthorizeClient basic [16-chracter-string] >> HiddenServicePort 22 127.0.0.1:22 >> ... >> >> $ sudo cat /var/lib/tor/foo/hostname >> [v2-hostname].onion [22-character-string] # client: [16-chracter-string] >> >> The client ID must be 16 alphanumeric characters. Then you use the 22 >> character string in the client torrc. >> >> In the client: >> >> $ sudo nano /etc/tor/torrc >> ... >> HidServAuth [v2-hostname].onion [22-character-string] >> ... >> -- >> tor-talk mailing list - tor-talk@lists.torproject.org >> To unsubscribe or change other settings go to >> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk >> > -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
