著者: jvoisin 日付: To: tails-dev 題目: Re: [Tails-dev] Setting curl's user-agent to the same as Tor
Browser?
On 06/22/2014 12:14 PM, intrigeri wrote: > Hi,
>
> jvoisin wrote (22 Jun 2014 10:02:50 GMT) :
>> So, the only case where this could be useful is clear-text http, which
>> you shouldn't use over Tor anyway.
>
> That's a very strong statement, that I won't discuss in the general
> case (cleartext HTTP vs. CA cartel, blah). You can have https without a certificate signed by a cartel CA ;) >
> This is Tails. Everything goes through Tor by default, so what you're
> telling here is basically "don't use Tails for cleartext HTTP". So I'm
> curious: do you really think we should limit the supported Tails
> usecases that far? I think that people that are techy enough to use curl in Tails are
knowing what they're doing when they use cleartext HTTP, and are
(hopefully) trying to avoid using it.
I don't think it worth reducing the (small) anonymity set for this usage. >
> Cheers,
>