Mirimir <miri...@riseup.net> writes: > Even so, that's a little fragile. Mistakes happen. And there's the issue > of web server error messages from the onion site going to clearnet. > That's one of the mistakes that got DPR pwned.
The best solution to prevent this accident is to have the onion site listening on a Unix socket, and set up the Onion service in Tor to direct to that. nginx supports HTTP over unix sockets (as does my favourite, Twisted Web if you're fine with Python -- which also can be used easily with Tor via my library txtorcon). -- meejah -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
