Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Go for it.


Thanks! Also I will add that I don't want to burn too much CPU on eschalot [1] if it's pointless :)

[1] https://github.com/ReclaimYourPrivacy/eschalot


I don't think eschalot is a good idea, because it encourages users to look at the human readable part of the name and ignore the rest, which means they could more easily get social engineered to move to a different onion service. You should treat .onion names more like IP addresses.


Very good point. I've actually considered trying to get an EV .onion TLS cert, but this is probably overkill, and then forces me to rely on the CA system, and is of course probably a PITA.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: