Subj : transparent proxy for .onion connections
To   : Alterego
From : Oli
Date : Fri Nov 22 2019 11:02 am

"Alterego -> Oli" <0@116.2.21> wrote:

 Ol>> It's just an experiment. If it doesn't work well, we can try
 Ol>> other options for transport encryption or go back to
 Ol>> unencrypted connections.

 A> Give ZT a try. I set it up months ago, and use it on another network
 A> with hubs, and it just works. I dont even check it anymore.

I'm running zerotier on my Pi, my PC and on a VPS for a while. I haven't used
it very much, but it seems to work okay. It eats a little bit too much CPU time
 for doing nothing and doesn't exit properly on shutdown. There is also no
package for Alpine Linux which I run on another VPS. I'm thinking about
switching to tinc or wireguard.

 A> For a focused use case such as this (transfering mail between specific
 A> endpoints), it does the job nicely.

I agree, but I'm more interested in solutions that enables all nodes and points
 to use encryption. With you zerotier you would have to setup many small VPNs
or create a global VPN for the FTN which would be another centralized
administrative structure.

I don't think there is anything wrong with using VPNs for FTNs, but it's not
the solution to the encryption, authentication or connectivity (no public IP)
problem. With solution I mean something that can be standardized by the FTSC
and included in every mailer (e.g. TLS, which is one of the low-hanging
fruits).

---
 * Origin:  (21:1/151)

.