**Dr. Roy Schestowitz (罗伊)** @schestowitz@pleroma.site · Nov 14, 2020, 15:28

**Dr. Roy Schestowitz (罗伊)** @schestowitz@pleroma.site · Nov 14, 2020, 15:28

Dr. Roy Schestowitz (罗伊) @schestowitz@pleroma.site

Nov 14, 2020, 15:28

Dr. Roy Schestowitz (罗伊) @schestowitz@pleroma.site

● NEWS ● #TorProject #tor ☞ New Release: #TorBrowser 10.5a3 https://blog.torproject.org/new-release-tor-browser-105a3

**resist1984** @resist1984@social.privacytools.io · Jan 03, 2021, 16:13

**resist1984** @resist1984@social.privacytools.io · Jan 03, 2021, 16:13

Jan 03, 2021, 16:13

resist1984 @resist1984@social.privacytools.io

@schestowitz #TorBrowser still throws an unnecessary fit when an SSL cert on an #onion site is self-signed. Then after several clicks to reassure TB that it's not an issue, it still in the end falls over with "secure connection failed.. [try again]". WTF, #Tor devs should know SSL to an onion site is redundant.

**Ruffy** @rarepublic@mastodon.social · Jan 03, 2021, 16:39

**Ruffy** @rarepublic@mastodon.social · Jan 03, 2021, 16:39

Jan 03, 2021, 16:39

Ruffy @rarepublic@mastodon.social

@resist1984 @schestowitz Yes, for Onion-sites TLS/SSL is mostly redundant. However if you are connecting to a site on the web without HTTP over TOR (e.g. http://duckduckgo.com), you'd still have to trust the Exit-Node to not be malicious.

Tor devs probably preferred consistent behavior :)

**resist1984** @resist1984@social.privacytools.io · 2021-01-03T17:04:45Z

resist1984 @resist1984@social.privacytools.io

@rarepublic @schestowitz it doesn't make sense to give consistent treatment to inconsistent circumstances.

Jan 03, 2021, 17:04 · · · ·

Resources

Developers

What is Mastodon?

social.privacytools.io

More…