Privoxy config: Use Tor for https:, and normal for http:

Michael_google gmail_Gersten keybounce at gmail.com
Sun Sep 16 19:47:24 UTC 2007


So one big thing that has been discussed on the list of late is that
anything sent over http: may transmit authentication cookies in the
clear.

I'd like to configure privoxy to assume that instead of sending all
traffic over tor, or instead of forwarding based on node name, to use
protocol.

What I'm looking at is something like this:
1. Anything specifying https: may be safely sent over tor.
2. Anything specifying http: should not

I'm now starting to track which sites I'm "logged in" on, by seeing
which send me personal greetings, that do not support https:, and
adding in "do not forward these sites over tor" to my privoxy config.

I think of this as a "start". Even with this in place, is there
anything that I might be overlooking?



More information about the tor-talk mailing list