2

Does accessing a personally owned Tor node (that only you ever visit) over the Tor network break anonymity?

I read from a long guide by Whonix on how to properly use Tor that I shouldn't ever access small personal clearnet websites over the Tor network (e.g. personal blog). For obvious reasons this is bad because you would be a be a likely visitor of your own blog and that information could be used by the exit node to deanonymize your entire Tor connection.

So, what I want to know is if the same thing applies to Tor nodes you operate. I run my SSH over Tor and was curious. (I use Qubes-Whonix if that's at all relevant)

Thank you! :D

dknet
  • 21
  • 1

2 Answers2

1

No!

This is exactly what Tor hidden services are designed to accomplish.

Nothing is absolutely safe and given enough worldwide oversight and resources, Tor is vulnerable in theory. In practice the vulnerability bar is very very very high.

If you are the only user of your hidden service, you may want to make it a "Stealth Hidden Service". This requires an additional key in your Tor client, so it doesn't scale well and may limit how you chose to use it, but it adds yet more anonymity by making it difficult to identify that it exists even in the master hidden service directories.

One seemingly counter intuitive aspect is: do NOT use HTTPS on your hidden server! The Tor connection is already multiple encrypted so you don't need it for security. Worse, it may result in your client calling outside Tor to check the certificate authenticity which only you use, that might compromise your anonymity.

user10216038
  • 7,552
  • 2
  • 16
  • 19
0

If you use this Tor node as an exit node, then yes. Unless you purchased the service anonymously in a way that cannot be traced back to you (note that most cryptocurrency is only pseudonymous, real anonymous payment is very hard to do correctly), using your own exit node is going to break anonymity.

For entry node, this is less of a concern. Although, you might want to increase the number of hop if you do this because you're essentially entering the anonymity network only from the second hop onwards.

Lie Ryan
  • 31,089
  • 6
  • 68
  • 93
  • There is no money involved. I run the SSH server on my computer which I connect to with the onion service I'm also hosting on my computer. From my Tor connected laptop (out in the WAN) to my onion service is already 6 hops. I fail to see how increasing the number of hops would change anything. Also, I'm pretty sure adding more hops than that (while possible) is advised against by Tor. – dknet Jan 15 '19 at 03:38