I was reading this guide on how to run a snowflake proxy, and I’m considering doing it.

https://snowflake.torproject.org/

I’m currently renting a small VPS for my self-hosted services, and I have some spare capacity. So I was wondering, are there any downsides that I might be overlooking?

My self-hosted services are on a URL with my real name. Could there be any privacy or legal implications for me? (I don’t live under an authoritarian regime)

  • emhl@feddit.de
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 year ago

    Snowflakes are used as entry nodes, not as exit nodes. So if your Vps provider doesn’t forbid running tor services you should not face any downsides

    • mim@lemmy.sdf.orgOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      1 year ago

      Thanks! I’ll check with my vps provider.

      However, this proxy does not seem to be “within” the tor network itself, right? I’m just connecting someone to the first entry node on the system, correct?

      Would I be transmitting unencrypted data? In other words, would an outsider be able to tell that I’m transmitting something illegal to a person accessing tor?

      • TheLemming@feddit.de
        link
        fedilink
        English
        arrow-up
        0
        ·
        1 year ago

        would an outsider be able to tell that I’m transmitting something illegal to a person accessing tor?

        No, because if that was possible, law enforcement would set up quite some of those and catch some bad guys

      • emhl@feddit.de
        link
        fedilink
        English
        arrow-up
        0
        ·
        edit-2
        1 year ago
        • The entry node doesn’t know what data is being transmitted (or from where that data is) only who it’s being transmitted to.
        • The middle nodes know nothing about the data and just know the previous and next hop.
        • The exit node knows what data is being accessed (if it’s not being accessed via Https) but not who is accessing it

        So in other words: no, you’re not transmitting unencrypted data