Curl's .onion Blocking: A Security vs. Usability Tug-of-War

Popular：

Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Curl's .onion Blocking: A Security vs. Usability Tug-of-War

2025-05-16

To prevent DNS leaks of .onion domains by Tor users, curl implemented RFC 7686 two years ago, blocking resolution of .onion domains. However, this breaks the new Tor tool oniux, preventing it from using curl to access .onion sites. This highlights a security vs. usability conflict: strict RFC adherence impacts user experience, while relaxing restrictions increases security risks. The curl team is now working to find a solution that balances security and user needs.

(daniel.haxx.se)

Tech DNS leak

China Launches World's First Dedicated Orbital Computing Constellation

Logitloom: Visualizing LLM Generation with Token Trajectory Trees