[QUESTION] If I access a NON-ONION clearnet remote node using Tor, can a person running a malicious Tor exit node steal my Monero between the Tor exit node and the clearnet remote node?
Isn't that the whole reason we can't access mymonero.com using Tor?
I ask this question after having researched the following:
In this thread https://www.reddit.com/r/Monero/comments/40t1g2/mymonerocom_giving_server_error_on_account/, fluffyponyza says: "I'm surprised anyone with even a passing interest in online privacy doesn't realise how risky it is to do anything sensitive on clearnet over Tor. It's literally an opt-in MITM, with known malicious consequences."
And from the Reddit Monero Newcomer's guide link https://www.reddit.com/r/Monero/comments/4z3ced/guide_to_using_monero_with_tor_correctly/: "Finally, when running over Tor and receiving transactions, you must be careful to ensure that your view of the Monero network is not poisoned by exit node spoofing."
And from blocked.mymonero.com, "you may also see this message when trying to access MyMonero on Tor, as impersonator sites try and use Tor to reverse-proxy to MyMonero."