Our great sponsors
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Then you're using it wrong. GPG isn't adding anything to this that SHA256 wouldn't, and you're just relying on the SSL certificate.
Look at your list of CAs sometime. There's multiple national organizations there. Controlled by a government.
And any of those will be deemed as valid, so if you go to https://www.torproject.org/download/ and it's signed by a Chinese CA for some reason, to your browser that's perfectly fine.
> What are the chances the official site AND the archive were both compromised?
You're talking about a piece of software that's designed to hide stuff from state level actors. If you're in actual need of such a thing, that threat is pretty damn serious.
Related posts
- The first step on darknet
- Nvidia sued for stealing trade secrets: blunder showed rival company's code
- ✅ 2023 Top Darknet Markets Super List | Bohemia Market | Incognito Market | Abacus Market ✅
- IB QuestionBank — Now in all languages!
- Anonymous Project Disclosure: Leaking Information on UAPs/UFOs/NHI