Author: anonym Date: To: The Tails public development discussion list Subject: Re: [Tails-dev] OFTC configuration
03/28/2012 12:01 PM, intrigeri: > Hi,
>
> the hidden service (37lnq2veifl4kar7.onion) we've been configuring in
> Tails to connect to OFTC since Tails 0.10.1 looks quite unreliable,
> being sometimes down for days. On the other hand, connecting to OFTC
> over Tor using the "normal" way these days requires changing circuits
> a few times, but works for me. This, in itself, is a sufficient reason
> to revert commit 553c052 ("Use OFTC hidden service.") for 0.11.
>
> What do you think?
Sounds good.
> Also, someone wrote on our forum that there "is no evidence whatsoever
> that this hidden service is maintained by OFTC". I could not find any
> such evidence, and I agree this is problematic; I just emailed the
> OFTC staff about it.
I've already talked with them on #oftc, and they have no idea who runs
it, and suggested us to ask on #tor, which I did but no one spoke up.
For what it's worth, I've used that hidden service with SSL, which of
course results in a cert error every time due to host mismatch, but I
always manually checked the fingerprint of the certs, and they we're
good. Hence I think it's legit and doesn't MitM.