[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Proper TOR DNS Configuration Testing Help
- To: or-talk@xxxxxxxxxxxxx
- Subject: Proper TOR DNS Configuration Testing Help
- From: "Mark Manning" <mark.manning@xxxxxxxxx>
- Date: Sat, 29 Dec 2007 15:59:11 -0500
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Sat, 29 Dec 2007 15:59:22 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=YFcMNp+PWT8wzfqbHSYCPiIh/ht4qMuHtf8RaDhn8Z8=; b=Xjj7m3O25xBrLQH24ePfPzzzUttt34kYa6vsQq1MhumAoewqCjmELG8sML0qjNRI5jmqi0SZpiOOYDrlppfdZMvtQbU33/GN8Zh+OhoPDQ/ujQi5zIbCKiDyOyKljjecMNnsN/aEgNnt7l4SU7NO5qmczmQHYAkjaMLMtkhKoSk=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type; b=VyTQAYfDuZ0wJusCMaVPR+POQuDWdXgc1x92PFQShYLWxaeJoGtfuOJiMkRfxV3ee4lt4PqssdR90FKOR+6a0wCYzbIHBmkJ7r0PGZKeCc932iZtDIDs49sBmLZa+paPAubmmOVqyuDVsY4LhGkeX2Lm2tdCeMAcB0k7VLXJQg4=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
Hello - I'm just starting to pay attention to this mailing list so forgive me if this subject has been brought up before.
I'm interested in setting up a [or using an existing] service that could test for a proper DNS configuration [among other things]. The goal being that a person could visit a web page to confirm that their DNS queries were being forwarded through the TOR network and not using a local DNS server.
HD Moore of the Metasploit project has had some interesting success with his Decloak research project [link] which as I understand it, uses a custom DNS server and a special web page to force a client to resolve a special domain name where the server can correlate the lookup name to the IP that is making the request and thereby determining whether or not their DNS queries are coming from a TOR exit node.
My question is has anyone had any experience with this subject they would like to share? Specifically with existing services out there or any ideas for implementing such a service.
The final goal for my humble project is to come up with an ubiquitous testing page that could report with relative certainty that a user's environment is configured properly for anonymity or not and do so without assuming any specific client-side capabilities [ie _javascript_, java, cookies, etc]. My hang up right now is finding the best way to test that DNS queries are going out over the TOR network.
Again, I apologize if this is a silly question but I appreciate any feedback.