Slashdot Mirror

← Back to Stories (view on slashdot.org)

There's Now a Dark Web Version of Wikipedia (vice.com)

Posted by msmash on from the better-than-nothing dept.

An anonymous reader shares a report: In many parts of the world, like North America, using Wikipedia is taken for granted; hell, there are even Twitter accounts to track government employees editing the internet's free encyclopedia while on the clock. But in other places, like Turkey or Syria, using Wikipedia can be difficult, and even dangerous. To make using Wikipedia safer for at-risk users, former Facebook security engineer Alec Muffett has started an experimental dark net Wikipedia service that gives visitors some strong privacy protections. The project is unofficial; for now, Wikipedia isn't involved. So it's a bit janky. The service uses self-signed certificates that may trigger a security warning in Tor, so you have to manually white-list the addresses, which takes a couple minutes.

20 comments

  1. doesn't make sense by Anonymous Coward · · Score: 0

    "The service uses self-signed certificates "... but why? The site's identity is ensured by its domain, which is a fingerprint of its private key... using https over tor is just stupid.

    1. Re:doesn't make sense by Anonymous Coward · · Score: 0

      Without HTTPs the exit node can monitor the content of requests to WP.

  2. But will it keep out reverters by Anonymous Coward · · Score: 0

    What we need is a Wikipedia that can’t be reverted.

    1. Re:But will it keep out reverters by tepples · · Score: 2

      What we need is a Wikipedia that can’t be reverted.

      Such a site would quickly fill with spam. What measure would you recommend to prevent that?

    2. Re: But will it keep out reverters by Anonymous Coward · · Score: 0

      Revert only the things the moderators feel is spam or questionable changes!

    3. Re: But will it keep out reverters by Anonymous Coward · · Score: 0

      Just make it a static backup.

    4. Re: But will it keep out reverters by slashrio · · Score: 1

      Here we go again:
      What the heck is a 'questionable change'?

      --
      "Trump!!", the new Godwin.
  3. Secure Contexts by tepples · · Score: 5, Informative

    using https over tor is just stupid.

    I can see two main reason why a site operator might try using HTTPS to connect to a web server over an otherwise secure channel, such as a hidden service on Tor or I2P.*

    One reason is that not all parts of all browsers are aware that hidden services are secure channels. The W3C has published a spec titled Secure Contexts, which recommends that web browsers block use of sensitive JavaScript APIs by non-secure sites. Even script-free sites cause the browser to show a warning about an insecure context if a document contains a form, such as a login form or an editing form. Until user agents start treating hidden services (*.i2p and *.onion) as potentially trustworthy origins, sites using these APIs must use HTTPS to build a secure context.

    Another reason relates to typosquatting. If a user mistypes a hidden service's hostname, such as facebookcorewwwi.onion, the user might end up connecting to a server controlled by an entity other than Facebook. To fight this, some certificate authorities have begun to offer Extended Validation certificates that apply to hidden services, assuring the user of the real-world identity of a hidden service's operator.

    * The I2P community refers to hidden services as "eepsites".

  4. Re:N1gger web by Anonymous Coward · · Score: 0

    Aren't you late for a GNAA meeting on NìggerNet?

  5. Highly informative Daily Mash article on Darknet by Hal_Porter · · Score: 1, Informative

    http://www.thedailymash.co.uk/...

    --
    echo -e 'global _start\n _start:\n mov eax, 2\n int 80h\n jmp _start' > a.asm; nasm a.asm -f elf; ld a.o -o a;
  6. In two minds by Anonymous Coward · · Score: 0

    Using Wikipedia can be difficult, and even dangerous.

    Their visual editor could really use some improvement but I'm not sure it's actually dangerous. Then again, stress kills so maybe it is.

  7. I’m surprised by 93+Escort+Wagon · · Score: 4, Interesting

    The best option would be for Wikipedia itself to offer a connection directly via an .onion address - I’m a bit surprised Wikipedia doesn’t already do this, really.

    On a side note... I still find it hilariously ironic that Facebook offers an .onion address.

    --
    #DeleteChrome
  8. Mmmm by easyTree · · Score: 1

    Does it have an article on 'standard web', perhaps entitled 'Corporate-Shill-/Sammer-/Fed Web ?'

    --
    Requiem for the American Dream
  9. Dark Web? by Anonymous Coward · · Score: 0

    This isn't the "dark web", it's called "the web". Enough of this hyperbole.

  10. It's old by Parker+Lewis · · Score: 1

    You mean... Unciclopedia http://en.uncyclopedia.co/wiki... ?

    1. Re:It's old by Anonymous Coward · · Score: 0

      A wiki in the dark web? It's probably called Pedowikia...

  11. Syria? by Anonymous Coward · · Score: 0

    Would imagine doing most things in Syria dangerous. Does querying Wikipedia prompt attacks ? Hey there is someone using internet letâ(TM)s blow them up.

  12. The danger is a censored-pedia by aberglas · · Score: 1

    Places like China do not like many of Wikipedia's articles, like Tianamin square. But they do like most other articles, especially technical ones. So the solution is to clone Wikipedia, and so maintain "public order". Then ban all access to the original.

    They could even helpfully push edits from the cloned pedia back to the main one for non-controversial subjects.

  13. alternatives by N473 · · Score: 1

    One can use
    $>lynx gopher://gopherpedia.com/1/
    or
    $>torify lynx https://wikipedia.org/

    PS - gopher via tor is indeed a thing...