Re: Why ubuntuforum.org is not using SSL connection?
It looks like you don't really understand the difference between anonymity and privacy, or you are misinformed. Tor should be used for anonymity reasons not privacy reasons. Lets look into how Tor actually works:
a) User that is using Tor network enters the network with encrypted data.
b) Encrypted data are passed to first random Tor server
c) Encrypted data are passed to the second random Tor server.
d) Encrypted data are passed to the third random Tor server.
Note: All this passing is done on servers with different country or even continent. So far all the traces from where original post comes from are removed. So anonymity is now taken into a place.
e) The last (third) Tor server (officially named exit relay) passes the data (also password) to the target web server in UNENCRYPTED way. So if target web server is not using SSL/TLS (like https) then password can be easily seen between any Tor's exit relay and the bypassed servers to web server. You see Tor does not ensures PRIVACY. To make Tor to work anonymity plus privacy the target web server MUST use SSL connection.
Haha now that's how you get things straight.
System specs: CPU - AMD Phenom II X4 830 @ 3.2GHz | GPU - AMD Radeon HD 7850 | MB - MSI 760GM-P23 | RAM - 4GB DDR3 1366 MHz | OS - Arch, Windows 7
Bookmarks