Is there a point to using HTTPS/SSL/TLS with Tor?

[hdodov]

I've set up GlobaLeaks with HTTPS on my leaks.example.com domain. However, when I open the .onion link of GlobaLeaks in Brave with Tor, I can see the usual "not secure" message:

This made me think — should I add HTTPS over Tor as well? I think that this Stack Exchange answer makes a lot of sense:

When you are browsing TOR hidden services, the TOR system already provides end-to-end encryption, so another TLS layer is redundant. It is in fact counter-productive, because one of the goals of TLS is to de-anonymize the server. It makes no sense to go through the trouble to set up a hidden service and then get a certificate from a certificate authority which tells the whole world who you are.

Do you guys agree with this?

[evilaliv3]

Thank you for opening this discussion @hdodov

The main advantage of adding HTTPS on Tor is to bind the onion address to the public domain thus improving the authority of the server. This of course make sense., but actually there are very few vendors that emit a certificate for .onion domains nor free certificates.