quiet icon indicating copy to clipboard operation
quiet copied to clipboard
verified publisher icon TryQuiet

Let users choose to check for updates over Tor

Open holmesworcester opened this issue 1 year ago • 3 comments

A colleague in the space was concerned when he saw that Quiet connected to S3, and wanted the option to disable this.

Checking for updates exclusively over Tor seemed like the best option in this case, because we still want to check for updates and doing so over Tor would prevent us (or Amazon) from tracking the user's IP address (location) as it changes over time.

If checking for updates and downloading updates over Tor works well we could make that the default behavior.

holmesworcester avatar Jul 19 '24 14:07 holmesworcester

Yeah this breaks the threat model. Specifically the "NON-MEMBER cannot" section, given that Amazon and its employees are non-members. If there are privileged non-members then the threat model document needs to be updated.

Juul avatar Aug 06 '24 02:08 Juul

That is correct. I'll update it now.

holmesworcester avatar Aug 07 '24 15:08 holmesworcester

Updated: https://github.com/TryQuiet/quiet/wiki/Threat-Model

I tried to be as expansive as possible in describing who was an UPDATE PROVIDER and what they could do, but we can narrow this in the future and get more specific.

holmesworcester avatar Aug 07 '24 15:08 holmesworcester