Basic auth is better than no auth, but it is absolutely not a recommended auth method these days
I listen to a security researchers podcast, and they mentioned Tor exit nodes being set up by governments to figure out where messages were coming from and track down individuals
There was also this article I found where the FBI exploited a vulnerability to expose the IP of a wanted individual
Tor has been used to track and arrest people before. It isn't 100% guaranteed like being offline is.
LuckyHedgehog
joined 1 year ago
Basic auth is a base64 of your login credentials, might as well be plain text. You should absolutely not be using basic auth if you have other options