I've read that Tor is very good at keeping you anonymous but that its weakness is at its exit node where your data can be read. However my understanding is that if HTTPS is used on the website your are accessing with Tor browser, your data coming out the Tor exit node is secured, so if I were signing into a website using both Tor browser and HTTPS my username and password data would be secure, and my original IP could not be tracked. Meaning Tor + HTTPS = Anonymity AND Privacy. Is this correct? Also is there anyway Tor + HTTPS might not be completely anonymous and private? I heard a site running Java script (and a few other things?) could cause the destination website to see your real IP address?? Could anyone clarify this please? .