[Whonix-devel] Hidden Service as Time Source

[Thomas White]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Patrick,

Yes that's fine. Some of my hidden services are as follows:

http://atlas777hhh7mcs7.onion/
http://compass6vpxj32p3.onion/
http://globe223ezvh6bps.onion/
http://bbbbbb6qtmqg65g6.onion/
http://pppppptkftqqnfsq.onion/

Regards,
Tom

On 05/02/2015 19:19, Patrick Schleizer wrote:
> Hi Thomas!
> 
> As you know, I am a developer of an anonymity centric
> distribution. Similar to TAILS but optimized for virtual machines.
> The Whonix Project.
> 
> In the same way, we need to use a source to calibrate our system
> clock. That isn't NTP, for one because NTP uses UDP and the Tor
> network does not support UDP and a few other reasons. The way this
> is done at the moment is to fetch HTTP headers over SSL from
> trusted servers and use the timestamp data at the time.
> 
> We wanted to get rid of SSL and make use of the strong security 
> properties of Tor's end to end encryption for Hidden Services to 
> safeguard against clearnet SSL man in the middle attacks, that are 
> within reach of powerful adversaries at the moment.
> 
> We are asking permission to use your Hidden Service[s] instance[s] 
> as one of our time sources.
> 
> We are going to add multiple trustworthy hidden services to the
> list for redundancy and to distribute the load. Our estimated user
> base is 5000. The requests will only involve fetching a HTTP header
> from your server.
> 
> By replying to this e-mail, your answer will be posted on the 
> whonix-devel public mailing list. Please let us know if this use
> case is alright with your Hidden Service[s] instance[s].
> 
> Cheers, Patrick
> 
> 

- -- 
Activist, anarchist and a bit of a dreamer.
Keybase: https://keybase.io/thomaswhite

PGP Keys: key.thecthulhu.com
Current Fingerprint: E771 BE69 4696 F742 DB94 AA8C 5C2A 8C5A 0CCA 4983
Key-ID: 0CCA4983
Master Fingerprint: DDEF AB9B 1962 5D09 4264 2558 1F23 39B7 EF10 09F0
Key-ID: EF1009F0

Twitter: @CthulhuSec
XMPP: thecthulhu at jabber.ccc.de
XMPP-OTR: 4321B19F A9A3462C FE64BAC7 294C8A7E A53CC966
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=VkY6
-----END PGP SIGNATURE-----