These two new entries are good to go but they are a drop in the bucket compared to the ones ripped out that are fully functional.
Also Qubes has new hosted services I heard so it is good to re-add them when you get the new address.
Please try to look at the clearnet addresses and see if they just changed the onion address before removing the nonfunctional ones.
Already been answered before:
You’re not even using them at all! Not just lessening their weighting. Please add at least one subdomain site from each organization. For Debian keep their full Onion services listing site.
Which part your are not getting?
Ok one more time maybe you are tired today:
I removed TPO and Debian and Qubes and Whonix and DuckDuckGo because they are:
We are already using Whonix, Qubes, Debian as sources of package upgrades , so no need for them to be in sdwate as well.
Tor/ Tor Project : is the anonymizer
Not using too many things from these organizations (not on top using them as time source provider) for better decentralization.
DuckDuckGo using TLS by default to their .onion and sdwdate doesnt support that yet. Later patrick done a test to their .onion list and found out its working but sadly it wasnt always the case because it didnt works out with protonmail .onion url. Thats why i suggested its better not to use TLS+Onion to avoid issues in the future and we use pure .onion.
Hope everything now clear to you 
Don’t patronize me.
@Patrick this reasoning doesn’t add up. The fact that we trust their code because it is open and hopefully reproducible one day, doesn’t negate that their infrastructure/servers are also a trustworthy source for time data.
I just had a look at the source pools. How is it compiled? It includes the recently FBI-seized site deepdotweb and others that look fishy.
Yes, time sync is an issue. We need to be careful not to expose users to other dangers. I don’t think it is users’ best interest to unknowingly be connected to sites considered illegal or just prime targets of authorities.
Edit: I read the discussion regarding “pal” / “foe” and “neutral” pools. In this case we have a “foe” site in “pal” pool. My point is, with sites considered targets, there is a high likelyhood of them actually being “foes” before it becomes public knowledge.
https://github.com/Whonix/Whonix/issues/310
This wasn’t added on my watch. We pick mainly journalistic sites running securedrop which are most likely hosted on their own local hardware for security reasons.
Public invitation for comments.
I will move comments on pool members (sdwdate source onions) to that thread.
Not much. Entries break without anyone noticing or reporting or otherwise looking at these Open Source available lists.
Except recent discussion in that thread, no.
No.
No.
We do have a unit test I think. For best results you would run the testing script once then a second time a week later to avoid false positives of servers being own for maintenance.
Then you would try to find an alternative onion for the one that was down.
I don’t see how most of the sites on the list above (from Apr 15) contribute anything here apart from not being part of a large organization.
Requirement was:
What web servers do you consider trustworthy, to take great care of their visitors’ privacy, that are stable and that get great amounts of traffic
I don’t see how they qualify.
Where are they hosted? any reason to assume it’s not on a large and cheap host that gives vps for $20 a month? where will you host a small onion site when you want 24 hours availability?
Any reason to trust them? operators completely anonymous, they can be anyone.
http://tor66sezptuu2nta.onion/ - this site has banners of drugs and fraud product on the homepage. Looks like a mini-deepdotweb story. I don’t think we should include any sites that are openly promoting that as formal “pals”. I don’t trust it, I don’t think anyone there cares about my privacy, and I don’t know if they receive much traffic.
And those come to replace the most trusted sources we have? Actually if I had to pick only 4 then I’d say Debian, Tor, Qubes, Whonix.
Yes.
Sorry, but I don’t see how any random anonymous developer or blogger onion site helps here either. Why should we trust them? assume they care about our privacy just because they are not part of a big organization?
I’d only pick sites with non-anonymous organizations behind them. The others might be nice, but not for this purpose. Impossible to evaluate when nothing is known about them. Some onion search engine. Good? no? Nobody knows.
Indeed ought not to be added, thanks for noticing!
Thank you for pointing that out, actually when i used it on that date it wasnt running any ads on its homepage thats why i add it.
New hidden service to replace that one:
Daniel - Danwin1210 (Email , XMPP , Host … provider)
http://danielas3rtn54uwmofdo3x2bsdifr47huasnmbgqzfrec5ubupvtpid.onion
@Patrick these needs to be changed/removed:
"secrdrop5wyphb5x.onion#https://securedrop.org https://web.archive.org/web/20170403043247/https://securedrop.org"
"qn4qfeeslglmwxgb.onion#Lucy Parsons Labs https://lucyparsonslabs.com/securedrop https://web.archive.org/web/20170322113502/https://lucyparsonslabs.com/securedrop/"
"usatodayw7vu5egc.onion#USA Today https://newstips.usatoday.com/securedrop.html https://web.archive.org/web/20170419183541/https://newstips.usatoday.com/securedrop.html"
"propub3r6espa33w.onion#https://www.propublica.org/nerds/item/a-more-secure-and-anonymous-propublica-using-tor-hidden-services https://web.archive.org/web/20170420120434/https://www.propublica.org/nerds/item/a-more-secure-and-anonymous-propublica-using-tor-hidden-services"
"rkphrici4u5ffhhm.onion#https://espenandersen.no/contact https://web.archive.org/web/20161231003357/https://espenandersen.no/contact/"
"ltcpool5brio2gaj.onion#https://www.litecoinpool.org/help https://web.archive.org/web/20161114095946/https://www.litecoinpool.org/help"
"wlchatc3pjwpli5r.onion#https://wikileaks.org/talk/ https://twitter.com/wikileaks/status/590907709387624450 https://web.archive.org/web/20150423160622/https:/twitter.com/wikileaks/status/590907709387624450"
"cyphdbyhiddenbhs.onion#Cyph - Encrypted Messenger https://www.cyph.com https://web.archive.org/web/20160827040234/https://www.cyph.com/"
"ai3dvhjytrgice5h.onion#https://sks.daylightpirates.org https://sks-keyservers.net/status/info/sks.daylightpirates.org"
"47hbff4rtpwfpwlr.onion#http://keyserver.siccegge.de https://sks-keyservers.net/status/info/keyserver.siccegge.de"
"deepdot35wvmeyd5.onion#https://www.deepdotweb.com https://web.archive.org/web/20170421232739/https://www.deepdotweb.com"
"privacyintyqcroe.onion#https://www.privacyinternational.org https://twitter.com/privacyint/status/762656779272593408 https://web.archive.org/web/20170421233214/https:/twitter.com/privacyint/status/762656779272593408"
"jlve2y45zacpbz6s.onion#https://torstatus.rueckgr.at https://web.archive.org/web/20170421233243/https://torstatus.rueckgr.at"
"yuxv6qujajqvmypv.onion#https://anonguide.cyberguerrilla.org https://web.archive.org/web/20170421233304/https://anonguide.cyberguerrilla.org"
"xpgylzydxykgdqyg.onion#lists.riseup.net: xpgylzydxykgdqyg.onion (port 80)"
@Patrick how easy is it to change sdwdate to be compatible with TLS over onions? This is a growing trend that will only get bigger with time IMHO.
sdwdate internally uses url_to_unixtime. All the TLS ones which are reported offline do work for me with url_to_unixtime.
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 secrdrop5wyphb5x.onion 80 false
1572807202
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 usatodayw7vu5egc.onion 80 false
1572807229
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 p53lf57qovyuvwsc6xnrppyply3vtqm7l6pcobkmyqsiofyeznfu5uqd.onion 80 false
1572807274
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 ltcpool5brio2gaj.onion 80 false
1572807331
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 cyphdbyhiddenbhs.onion 80 false
1572807360
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 privacyintyqcroe.onion 80 false
1572807380
user@host:~$ /usr/lib/sdwdate/url_to_unixtime 127.0.0.1 9050 jlve2y45zacpbz6s.onion 80 false
1572807395
Not sure.
Also not sure it is needed as per above. url_to_unixtime can get the time even if TLS. The reason is that url_to_unixtime is really simple. HSTS is a client feature. url_to_unixtime does not use HSTS. And these web servers don’t reject non-TLS connections. They reply with a non-TLS redirect request to the TLS version.
url_to_unixtime is similar to curl. But it does not use curl internally. curl is good to show what it does.
curl --head jlve2y45zacpbz6s.onion
(bold added by me)
HTTP/1.1 302 Found
Date: Sun, 03 Nov 2019 19:03:04 GMT
Server: Apache
Location: https://jlve2y45zacpbz6s.onion/
Content-Type: text/html; charset=iso-8859-1
Anyone could look if this can be implemented into url_to_unixtime.
https://github.com/Whonix/sdwdate/blob/master/usr/lib/sdwdate/url_to_unixtime
Could be non-certificate verifying TLS implementation. Accept the TLS connection no matter the certificate validity. In other words, ignore the certificate. Onions (at least v3) should be secure and authenticated enough even without TLS. This is if such an implementation is easier than certificate validating.
I am not sure I can implement that in python.
/usr/share/sdwdate/onion_tester
user@host:~$ cat sdwdate_remotes_check-1572807610
pool 1 url secrdrop5wyphb5x.onion: Time: 1572807660 Difference: -41
pool 1 url gmg7jl25ony5g7ws.onion: Time: 1572807655 Difference: -36
pool 1 url 33y6fjyhs3phzfjj.onion: Time: 1572807657 Difference: -38
pool 1 url intrcept32ncblef.onion: Time: 1572807667 Difference: -38
pool 1 url qn4qfeeslglmwxgb.onion: Time: 1572807670 Difference: -41
pool 1 url usatodayw7vu5egc.onion: Time: 1572807664 Difference: -35
pool 1 url mprt35sjunnxfa76.onion: Time: 1572807676 Difference: -40
pool 1 url propub3r6espa33w.onion: Time: 1572807676 Difference: -40
pool 1 url nrkvarslekidu2uz.onion: Time: 1572807678 Difference: -42
pool 1 url rkphrici4u5ffhhm.onion: Timeout (Curl --head also Not OK)
pool 2 url ms5qd5es5qltiqsf.onion: Time: 1572807854 Difference: -41
pool 2 url bqs3dobnazs7h4u4.onion: Time: 1572807853 Difference: -40
pool 2 url ak2uqfavwgmjrvtu.onion: Time: 1572807853 Difference: -40
pool 2 url zvldz46bbxqlw4od.onion: Time: 1572807859 Difference: -37
pool 2 url bvhfrslkkdbncdhv.onion: Time: 1572807861 Difference: -39
pool 2 url eljwdzi4pgrrlwwq.onion: Time: 1572807863 Difference: -41
pool 2 url nxhhwbbxc4khvvlw.onion: Time: 1572808015 Difference: -185
pool 2 url o2jdk5mdsijm2b7l.onion: Time: 1572807867 Difference: -37
pool 2 url ic6au7wa3f6naxjq.onion: Time: 1572807868 Difference: -38
pool 2 url gnjtzu5c2lv4zasv.onion: Time: 1572807880 Difference: -41
pool 2 url qdigse2yzvuglcix.onion: Time: 1572807878 Difference: -39
pool 2 url clgs64523yi2bkhz.onion: Time: 1572807877 Difference: -38
pool 2 url bitlox2twvzwbzpk.onion: Time: 1572807888 Difference: -41
pool 2 url ltcpool5brio2gaj.onion: Time: 1572807885 Difference: -38
pool 2 url xmrto2bturnore26.onion: Time: 1572807888 Difference: -41
pool 2 url wlchatc3pjwpli5r.onion: Time: 1572807895 Difference: -40
pool 2 url cyphdbyhiddenbhs.onion: Time: 1572807893 Difference: -38
pool 2 url wooprzddebtxfhnq.onion: Time: 1572807895 Difference: -40
pool 2 url xogxzfyhwmgfvmlr.onion: Time: 1572807900 Difference: 5
pool 2 url ai3dvhjytrgice5h.onion: Timeout (Curl --head also Not OK)
pool 2 url 47hbff4rtpwfpwlr.onion: Time: 1572807902 Difference: 124
pool 2 url pgpkeysximvxiazm.onion: Time: 1572808072 Difference: -41
pool 3 url earthqfvaeuv5bla.onion: Time: 1572808077 Difference: -42
pool 3 url cheettyiapsyciew.onion: Time: 1572808076 Difference: -41
pool 3 url 7tm2lzezyjwtpn2s.onion: Time: 1572808678 Difference: -643
pool 3 url deepdot35wvmeyd5.onion: Time: 1572808085 Difference: -41
pool 3 url 3kyl4i7bfdgwelmf.onion: Time: 1572808081 Difference: -37
pool 3 url privacyintyqcroe.onion: Time: 1572808082 Difference: -38
pool 3 url grrmailb3fxpjbwm.onion: Time: 1572808091 Difference: 3
pool 3 url jlve2y45zacpbz6s.onion: Time: 1572808090 Difference: 4
pool 3 url yuxv6qujajqvmypv.onion: Timeout (Curl --head also Not OK)
pool 3 url expressobutiolem.onion: Time: 1572808263 Difference: -41
pool 3 url tinhat233xymse34.onion: Time: 1572808262 Difference: -40
pool 3 url rvy6qmlqfstv6rlz.onion: Time: 1572808262 Difference: -40
pool 3 url 6zwctlqtpilbkl47.onion: Time: 1572808271 Difference: -41
pool 3 url devuanzuwu3xoqwp.onion: Time: 1572808314 Difference: -84
pool 3 url devuanfwojg73k6r.onion: Time: 1572808694 Difference: -464
pool 3 url fz474h2o46o2u7xj.onion: Time: 1572808278 Difference: -40
pool 3 url crypty22ijtotell.onion: Time: 1572808277 Difference: -39
pool 3 url h2qkxasmmqdmyiov.onion: Time: 1572808280 Difference: -42
pool 3 url j7652k4sod2azfu6.onion: Time: 1572808287 Difference: -40
pool 3 url 2h3xkc7wmxthijqb.onion: Time: 1572808283 Difference: -36
pool 3 url qcdbc7vspedojrr7.onion: Time: 1572808286 Difference: -39
pool 3 url nzh3fv6jc6jskki3.onion: Time: 1572808296 Difference: -39
pool 3 url xpgylzydxykgdqyg.onion: Time: 1572808298 Difference: -41
pool 3 url zsolxunfmbfuq7wf.onion: Time: 1572808296 Difference: -39
pool 3 url 5jp7xtmox6jyoqd5.onion: Time: 1572808308 Difference: -42
pool 3 url 6zc6sejeho3fwrd4.onion: Time: 1572808304 Difference: -38
pool 3 url j6uhdvbhz74oefxf.onion: Time: 1572808306 Difference: -40
pool 3 url 7lvd7fa5yfbdqaii.onion: Time: 1572808314 Difference: -40
pool 3 url vivmyccb3jdb7yij.onion: Time: 1572808315 Difference: -41
pool 1 url secrdrop5wyphb5x.onion: Time: 1572844657 Difference: -3
pool 1 url gmg7jl25ony5g7ws.onion: Time: 1572844657 Difference: -3
pool 1 url 33y6fjyhs3phzfjj.onion: Time: 1572844659 Difference: -5
pool 1 url intrcept32ncblef.onion: Time: 1572844663 Difference: 7
pool 1 url qn4qfeeslglmwxgb.onion: Time: 1572844675 Difference: -5
pool 1 url usatodayw7vu5egc.onion: Time: 1572844662 Difference: 8
pool 1 url mprt35sjunnxfa76.onion: Time: 1572844689 Difference: -4
pool 1 url propub3r6espa33w.onion: Time: 1572844679 Difference: 6
pool 1 url nrkvarslekidu2uz.onion: Time: 1572844689 Difference: -4
pool 1 url rkphrici4u5ffhhm.onion: Timeout (Curl --head also Not OK)
pool 2 url ms5qd5es5qltiqsf.onion: Time: 1572844862 Difference: -3
pool 2 url bqs3dobnazs7h4u4.onion: Time: 1572844862 Difference: -3
pool 2 url ak2uqfavwgmjrvtu.onion: Time: 1572844864 Difference: -5
pool 2 url zvldz46bbxqlw4od.onion: Time: 1572844868 Difference: -1
pool 2 url bvhfrslkkdbncdhv.onion: Time: 1572844868 Difference: -1
pool 2 url eljwdzi4pgrrlwwq.onion: Time: 1572844871 Difference: -4
pool 2 url nxhhwbbxc4khvvlw.onion: Time: 1572845025 Difference: -149
pool 2 url o2jdk5mdsijm2b7l.onion: Time: 1572844876 Difference: 0
pool 2 url ic6au7wa3f6naxjq.onion: Time: 1572844877 Difference: -1
pool 2 url gnjtzu5c2lv4zasv.onion: Time: 1572844887 Difference: -5
pool 2 url qdigse2yzvuglcix.onion: Time: 1572844885 Difference: -3
pool 2 url clgs64523yi2bkhz.onion: Time: 1572844885 Difference: -3
pool 2 url bitlox2twvzwbzpk.onion: Time: 1572844895 Difference: -3
pool 2 url ltcpool5brio2gaj.onion: Time: 1572844897 Difference: -5
pool 2 url xmrto2bturnore26.onion: Time: 1572844893 Difference: -1
pool 2 url wlchatc3pjwpli5r.onion: Time: 1572844907 Difference: -5
pool 2 url cyphdbyhiddenbhs.onion: Time: 1572844900 Difference: 2
pool 2 url wooprzddebtxfhnq.onion: Time: 1572844901 Difference: 1
pool 2 url xogxzfyhwmgfvmlr.onion: Time: 1572844911 Difference: 41
pool 2 url ai3dvhjytrgice5h.onion: Timeout (Curl --head also Not OK)
pool 2 url 47hbff4rtpwfpwlr.onion: Time: 1572844912 Difference: 161
pool 2 url pgpkeysximvxiazm.onion: Time: 1572845082 Difference: -5
pool 3 url earthqfvaeuv5bla.onion: Time: 1572845084 Difference: 4
pool 3 url cheettyiapsyciew.onion: Time: 1572845086 Difference: 2
pool 3 url 7tm2lzezyjwtpn2s.onion: Time: 1572845694 Difference: -606
pool 3 url deepdot35wvmeyd5.onion: Time: 1572845099 Difference: 4
pool 3 url 3kyl4i7bfdgwelmf.onion: Time: 1572845098 Difference: 5
pool 3 url privacyintyqcroe.onion: Time: 1572845108 Difference: -5
pool 3 url grrmailb3fxpjbwm.onion: Time: 1572845119 Difference: 34
pool 3 url jlve2y45zacpbz6s.onion: Time: 1572845112 Difference: 41
pool 3 url yuxv6qujajqvmypv.onion: Timeout (Curl --head also Not OK)
pool 3 url expressobutiolem.onion: Time: 1572845282 Difference: -4
pool 3 url tinhat233xymse34.onion: connect error: Socket error: 0x05: Connection refused (Curl --head also Not OK)
pool 3 url rvy6qmlqfstv6rlz.onion: Time: 1572845282 Difference: -1
pool 3 url 6zwctlqtpilbkl47.onion: Time: 1572845293 Difference: -3
pool 3 url devuanzuwu3xoqwp.onion: Time: 1572845334 Difference: -44
pool 3 url devuanfwojg73k6r.onion: Time: 1572845718 Difference: -428
pool 3 url fz474h2o46o2u7xj.onion: Time: 1572845299 Difference: 3
pool 3 url crypty22ijtotell.onion: Time: 1572845307 Difference: -5
pool 3 url h2qkxasmmqdmyiov.onion: Time: 1572845300 Difference: 2
pool 3 url j7652k4sod2azfu6.onion: Time: 1572845310 Difference: 3
pool 3 url 2h3xkc7wmxthijqb.onion: Time: 1572845318 Difference: -5
pool 3 url qcdbc7vspedojrr7.onion: Time: 1572845314 Difference: -1
pool 3 url nzh3fv6jc6jskki3.onion: Time: 1572845322 Difference: -4
pool 3 url xpgylzydxykgdqyg.onion: Time: 1572845323 Difference: -5
pool 3 url zsolxunfmbfuq7wf.onion: Time: 1572845322 Difference: -4
pool 3 url 5jp7xtmox6jyoqd5.onion: Time: 1572845329 Difference: 3
pool 3 url 6zc6sejeho3fwrd4.onion: Time: 1572845328 Difference: 4
pool 3 url j6uhdvbhz74oefxf.onion: Time: 1572845337 Difference: -5
pool 3 url 7lvd7fa5yfbdqaii.onion: Time: 1572845349 Difference: -5
pool 3 url vivmyccb3jdb7yij.onion: Time: 1572845343 Difference: 1
It may be advisable to remove links to onions from sdwdate pools that have failed, been compromised or confiscated.
One of these onion sides is: deepdot35wvmeyd5.onion
I didn’t check the others.
i can definitely confirm that the anonguide entry is dead.
“yuxv6qujajqvmypv.onion#https://anonguide.cyberguerrilla.org https://web.archive.org/web/20170421233304/https://anonguide.cyberguerrilla.org”