[brendoncarroll]

Yes. WebFS doesn't actually use any of the file/directory functionality provided by IPFS, or any encryption features. We only use the get/put block functionality. Everything is encrypted in WebFS before being posted to a Store.

The data encryption keys are generated using a secret and the hash of the data being encrypted. That key is stored in the reference to that data. This continues recursively to the superblock which is not encrypted.

[mirimir]

Can one use Tor onions as stores?

[sp332]

Tor is a network layer. It doesn't really store anything.

[mirimir]

True. But Tor onions are servers.

[sp332]

I've never heard of an onion service called just "an onion" before. I don't know enough to say if that's wrong, just that I was confused.

[mirimir]

Sorry to be confusing. It is commonly used, in some Tor communities. But yes, "onion service" is clearer.

[duskwuff]

Not in any sense that's relevant here. They don't host content.

[mirimir]

I have no clue where you're coming from.

What sort of content do you say Tor onions can't host?

"Tor onion" just means that a server is (ideally) only reachable as an onion URL, which is only accessible via the Tor network. There is the limitation that Tor only handles TCP. Otherwise, one can route anything over Tor. In my experience, that includes HTTP(S), FTP, Tahoe-LAFS, SSH, RDP, Mumble, OpenVPN and tinc. And others, if I spent more time remembering what I've played with.

[duskwuff]

Okay, I think I see the source of the confusion.

What you're describing is a Tor hidden service. Hidden services are separate from the Tor relay network itself, which is what I thought you were referring to as "Tor onions".

Hidden services are optimized for confidentiality over performance. Using them for bulk data storage would place a lot of load on the relay network, and it's not clear what security problem this arrangement would solve.