glamrock
commented
9 years ago Thanks, Juha! Here's a signature example:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
879B DA5B F6B2 7B61 2745 0A25 03CF 4A0A B3C7 9A63
http://cupcakebridge.com
http://eynfqhbaq5yecx6s.onion
-----BEGIN PGP SIGNATURE-----
Version: OpenPGP.js v0.9.0
Comment: http://openpgpjs.org
wsBcBAEBCAAQBQJVAV79CRADz0oKs8eaYwAAFC0H/2kKTKOcMmHkSFOCHoGs
SWtKUQmkcH2ZETlB9VtRWMEGRqDZ/psSCxuB6SwBVVjltAO8PyBJVgi59XQ1
v6YB1PLYtKExaYIHPR9y9Cq+RtLL7mTkagAGpFPWVmJqDbhKGKzmD6W/LYX8
i5kDjjlO+fneZ6BSuYpGSA3jpV/QG6NxQfpO58IcuxEUyocXJQZMSTS6Pa+8
78MWSXpFqcR7dhQZ60HpcIwuR78Uxb9C/uwIu5meFbB/zeVgy05dyV6tWN6s
0gPxndpTN9NHyfvVW3iYJYmKDyEG3amS5ezrX77yCdm8gnII62ozARMA+jYO
AFXxqJO3M3xfqtOd3A8STHU=
=tz4+
-----END PGP SIGNATURE-----
Description Linked Data Proposal to WWW Servers Inside Tor This proposal is to all HTTP servers inside Tor network. The problem: We are wondering how we could get authenticated hidden service descriptions. That is, descriptions of hidden services that are provided by the hidden service operator themselves. We would like to show these official descriptions in ahmia.fi search. The solution proposal: Simple linked description datasheets provided by the hidden services. How to do this: Simply provide a linked description file in your hidden service web page. You can write your information to this form and use the generated JSON file. Please make sure that your JSON description is valid JSON. You could then provide JSON information of your hidden service in this way http://something.onion/description.json and anyone could find this file. Example JSON (DuckDuckGo):
{ "title": "DuckDuckGo", "description": "DuckDuckGo is a search engine that is based in Valley Forge, Pennsylvania and uses information from crowd-sourced sites (like Wikipedia) with the aim of augmenting traditional results and improving relevance. The search engine philosophy emphasizes privacy and does not record user information.", "domains": ["http://duckduckgo.com/", "http://3g2upl4pq6kufc4m.onion/"], "keywords": ["search engine", "privacy", "no tracking", "DuckDuckGo"], "type": "search engine", "language": "en", "contactInformation": "http://help.duckduckgo.com/customer/portal/emails/new", "keyFP": "879B DA5B F6B2 7B61 2745 0A25 03CF 4A0A B3C7 9A63", "gpg_signature": "BEGIN PGP SIGNATURE...", //// optional "gpg_asc": "http://duckduckgo.com/sig.asc, http://xxxxx.onion/sig.asc" }
You can download and study the example JSON file. Help us: Please tell us your opinion about this. We are considering this as a simple method for getting official description information from the hidden services. We will show these in our page. See here.
Signature example
https://gist.github.com/glamrock/ae79384f6a714f6dcf0a (the pad keeps breaking format)