More Tor support available

Werner Koch wk at gnupg.org
Mon Oct 26 16:54:49 CET 2015


Hi!

I hacked more on Tor support in GnuPG.  All the DNS function have
meanwhile been replaced by wrapper code which will make it much easier
to resolve them via Tor.  The next step will be to add an ADNS based
backend for to the getaddrinfo wrapper so that a torified ADNS library
will take care of actually resolving via Tor.

In addition *.onion addresses are now directly supported so that it is
possible to retrieve keys anonymously.  Example configuration lines for
dirmngr.conf are

  # keys2.kfwebs.net
  keyserver hkp://dyh2j3qyrirn43iw.onion

or

  # zimmermann.mayfirst.org
  keyserver hkp://qdigse2yzvuglcix.onion

To make this work you need the latest GnuPG and Libassuan from Git.

Next steps are:

  - Figure out an algorithm for stream isolation (i.e. how often to
    change username/password).

  - Implement the mentioned ADNS backend for getaddrinfo.



Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 180 bytes
Desc: not available
URL: </pipermail/attachments/20151026/108b89d3/attachment-0001.sig>


More information about the Gnupg-devel mailing list