Mirror Status Signals — Verify Before You Trust
A practical list of signals to assess a claimed mirror. We never publish onion URLs here. Re-verify on every visit and treat inconsistencies as phishing risk.
| Signal | Why it matters |
|---|---|
| Recent PGP-signed announcement | Shows control over announcements; check signature and date. |
| Consistent fingerprint across sources | Fingerprint mismatch is a red flag; compare every character. |
| Uptime consistency (notes) | Frequent unexplained changes may indicate spoofed mirrors. |
| No seed phrase requests | Any seed request is phishing — leave immediately. |
| Layout changes explained | Unexpected visual changes require re-verification before login. |
| No forced downloads | Mirrors forcing downloads or add-ons are suspicious. |
Common red flags
- Fingerprint mismatch or missing signature
- Pop-ups urging quick deposits or seed phrase entry
- URL variations that are one-character off from known references
- Mirrors promoted by single, unverified sources
Routine re-checks
- Re-verify fingerprint and signatures for any claimed mirror.
- Cross-check mirror details across independent sources.
- Watch for unexplained layout or flow changes.
- Never enter credentials if verification fails.
Educational only. No onion URLs. Follow local laws and security best practices.