Re: Tor exit nodes

To: [email protected]
Subject: Re: Tor exit nodes
From: Russell Coker <[email protected]>
Date: Mon, 09 Oct 2017 23:33:38 +1100
Authentication-results: mail1.trendhosting.net; dkim=pass reason="1024-bit key; unprotected key" header.d=coker.com.au [email protected] header.b=H8acswzl; dkim-adsp=pass; dkim-atps=neutral
Cc: PICCA Frederic-Emmanuel <[email protected]>
Delivered-to: [email protected]
Delivered-to: [email protected]
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=coker.com.au; s=2008; t=1507552456; bh=NFHh1KyYXat21xrbT5socC+2J8djvnfci5N+X4PEdUQ=; l=1177; h=From:To:Reply-To:Cc:Subject:Date:In-Reply-To:References:From; b=H8acswzlhJf69vACYwk2svzuQbQTGQ8hK2VZbWH7VhNdTV3gEJUl/Vggf7Ud8pvZF dGKNDwCFMMb1MCXrirsg5MBI65IRXNH5m2PCIT0nedq7GlraDFtHIlmwxwONqbQjDg xBwVaaSOw2RaKrMKQkyOcXL/1zRc8rE82dj2SCy4=
In-reply-to: <A2A20EC3B8560D408356CAC2FC148E53BB448C67@SUN-DAG3.synchrotron-soleil.fr>
List-archive: <file://master.debian.org:~debian/archive/debian-private/>
List-help: <mailto:[email protected]?subject=help>
List-id: <debian-private.lists.debian.org>
List-post: <mailto:[email protected]>
List-url: <https://lists.debian.org/debian-private/>
Old-return-path: <[email protected]>
References: <[email protected]> <[email protected]> <A2A20EC3B8560D408356CAC2FC148E53BB448C67@SUN-DAG3.synchrotron-soleil.fr>
Reply-to: [email protected]
Resent-date: Mon, 9 Oct 2017 12:34:01 +0000 (UTC)
Resent-from: [email protected]
Resent-message-id: <UbA3AHpEUZI.A.mtF.5y22ZB@bendel>
Resent-sender: [email protected]
User-agent: KMail/5.2.3 (Linux/4.12.0-1-amd64; KDE/5.37.0; x86_64; ; )

On Monday, 9 October 2017 10:01:57 AM AEDT PICCA Frederic-Emmanuel wrote:
> > This is completely true. But not only about Tor - Secret key material
> > should not be in a computer offering publicly accessible services. If
> > possible, it should not be in a permanently online computer. But the
> > first bit is IMO an important policy to push.
> 
> What about providing a gnupg key for all DD, in order to store their private
> keys.
> 
> PS: I am not interested myself, since I own a nitrokey, but it would be
> great if DD could setup something more secure like this easily.

I agree, it would be good for Debian if the vast majority of DDs had hardware 
crypto devices.  If we could get the per unit price to something reasonable 
(say $10+postage) then I think it would be a good use of Debian funds to buy 
them for everyone.

I think I suggested something like this some years ago but didn't get much of 
a positive response.  I hope that this time there will be more interest.

The idea is solid, let's keep pitching it periodically until we get enough 
support.  ;)

-- 
My Main Blog         http://etbe.coker.com.au/
My Documents Blog    http://doc.coker.com.au/

Follow-Ups:
- Re: Tor exit nodes
  - From: Andrey Rahmatullin <[email protected]>
- Re: Tor exit nodes
  - From: Roberto C. Sánchez <[email protected]>
- Re: Tor exit nodes
  - From: Holger Levsen <[email protected]>

References:
- Dmitry Bogatov arrested in Moscow
  - From: Dmitry Shachnev <[email protected]>
- Re: Tor exit nodes
  - From: Gunnar Wolf <[email protected]>
- RE:Tor exit nodes
  - From: PICCA Frederic-Emmanuel <[email protected]>

Prev by Date: RE:Tor exit nodes
Next by Date: Re: Tor exit nodes
Previous by thread: RE:Tor exit nodes
Next by thread: Re: Tor exit nodes
Index(es):
- Date
- Thread