P
pumpingiron22
Senior Member
- Mar 2, 2014
- 221
- 39
The social network has come out with a .onion address that works with SSL and lets users access Facebook without disclosing their true location.
photo:*Thinkstock/Michelle Piacquadio
Facebook has made it easier to access the social network through multiple layers of encryption and without disclosing your true location, by allowing direct access as a hidden service through Tor’s anonymity-focused browser.
Tor sometimes comes up against the security mechanisms of sites —*such as Facebook*and banking sites — that its users are trying to visit. Because it bounces browsing traffic between a number of nodes, so as to obscure the user’s actual location, it can sometimes display the same characteristics as techniques hackers use to hide their identity.
Working with Tor Project advocate Runa Sandvik and Steven Murdoch – the developer who originated the Tor Browser –*Facebook*solved the problem by creating a*.onion address*for the social network. These addresses can only be accessed through Tor’s network, and are often used for anonymous, hidden “deep web” services.
As Facebook software engineer Alec Muffett said in a*Friday post:
The idea is that the Facebook onion address connects you to Facebook’s Core WWW Infrastructure […] and it reflects one benefit of accessing Facebook this way: that it provides end-to-end communication, from your browser directly into a Facebook datacentre.
Muffett also explained that Facebook now provides an SSL security certificate that cites its .onion address: “Issuing an SSL certificate for a Tor implementation is — in the Tor world — a novel solution to attribute ownership of an onion address; other solutions for attribution are ripe for consideration, but we believe that this one provides an appropriate starting point for such discussion.” The .onion address doesn’t provide access to Facebook’s mobile-optimized site, by the way.
https://gigaom.com/2014/10/31/facebook-becomes-directly-available-through-tors-anonymity-network/
photo:*Thinkstock/Michelle Piacquadio
Facebook has made it easier to access the social network through multiple layers of encryption and without disclosing your true location, by allowing direct access as a hidden service through Tor’s anonymity-focused browser.
Tor sometimes comes up against the security mechanisms of sites —*such as Facebook*and banking sites — that its users are trying to visit. Because it bounces browsing traffic between a number of nodes, so as to obscure the user’s actual location, it can sometimes display the same characteristics as techniques hackers use to hide their identity.
Working with Tor Project advocate Runa Sandvik and Steven Murdoch – the developer who originated the Tor Browser –*Facebook*solved the problem by creating a*.onion address*for the social network. These addresses can only be accessed through Tor’s network, and are often used for anonymous, hidden “deep web” services.
As Facebook software engineer Alec Muffett said in a*Friday post:
The idea is that the Facebook onion address connects you to Facebook’s Core WWW Infrastructure […] and it reflects one benefit of accessing Facebook this way: that it provides end-to-end communication, from your browser directly into a Facebook datacentre.
Muffett also explained that Facebook now provides an SSL security certificate that cites its .onion address: “Issuing an SSL certificate for a Tor implementation is — in the Tor world — a novel solution to attribute ownership of an onion address; other solutions for attribution are ripe for consideration, but we believe that this one provides an appropriate starting point for such discussion.” The .onion address doesn’t provide access to Facebook’s mobile-optimized site, by the way.
https://gigaom.com/2014/10/31/facebook-becomes-directly-available-through-tors-anonymity-network/