[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
From: "J. Bakshi" <bakshi12@xxxxxxxxx>
Date: Sun, 15 Jan 2012 10:42:38 +0530
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 15 Jan 2012 00:12:54 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=date:from:to:subject:message-id:in-reply-to:references:x-mailer :mime-version:content-type:content-transfer-encoding; bh=CuanCuejn0I5sMHNinyXOPn8m7kw29Tj57w/IAZj0Qc=; b=MKCy5UjyXYxKmumLMPXGz9TyyHNX4IUUGSVycVnAJSI+8D77vNQ3/M0sajP828S5vR aZ19wzzodEV+7NU3VDbXxpaKgbWKsrnAwfyd394PogEyLn6RcORwDms5enRl2/K0rA1B qCfEQQ3t5rHSwWfqHwhNC5kF/2Qkfx23h2wzY=
In-reply-to: <4F11E5E1.7050600@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <802693735016962@xxxxxxxxxxxx> <4F11E5E1.7050600@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Sat, 14 Jan 2012 21:30:25 +0100
Ondrej Mikle <ondrej.mikle@xxxxxxxxx> wrote:

> On 01/14/12 18:56, Tor Relays at brwyatt.net wrote:
> > For some reason, FireFox doesn't do DNS resolution over SOCKS proxies
> > (this is a known bug). Using an HTTP proxy (such as Polipo) will fix this
> > (you have to also set FireFox to use it). The following tutorial should
> > help, but the basic idea is to install Polipo, and have it connect to the
> > Tor SOCKS proxy. http://www.stormfront.org/forum/t807851/
> 
> Actually, Firefox does not use SOCKS for name resolution only in default setting 
> (unless you are talking about different bug). There's 
> "network.proxy.socks_remote_dns" in about:config, which needs to be set to true. 
> And even with this setting addons may cause FF to leak DNS queries (e.g. 
> "@mozilla.org/network/dns-service;1" component).
> 
> Another important detail I noticed is that TBB does not launch plugin-container 
> process *at all*, so no binary plugins or addons with binary components work 
> (not just java and flash). Even unchecking the "disable plugins" option in 
> TorButton settings won't make binary compoments work (I wonder how they managed 
> this).
> 
> > On Sat, 14 Jan 2012 20:27:45 +0530, "J. Bakshi"<bakshi12@xxxxxxxxx>
> > wrote:
> >> What Should I do here ? I have not found privoxy/socat/polipo in tor
> >> bundle package. So what step do I need to configure
> >> my locally installed tor to make it as secured as tor-bundle. Also
> >> interested to have Aurora browser as it has specially tweaked
> >> for tor. Is it safe to simply download the aurora from net ?
> 
> First, look at TBB's TorButton settings and modified entries in about:config. I 
> think this is the code repo used for building TBB: 
> https://gitweb.torproject.org/torbrowser.git
> 
> So you'd have to build TBB yourself anyway (or manually tweak Aurora and addons 
> with whatever settings are specified in the build scripts).

Thanks for all your responses. My target is to not using the git version but the already available
packages in debian. the reason to do so is getting the updated packages automatically when doing
a system upgrade. The TBB provided by tor is really doing its job well. And I am interested to know
its settings so that users can just make such system with available debian packages. Does the custom
TBB uses polipo/privoxy ? I just found the following ports after starting TBB

44036/tcp open  unknown
46712/tcp open  unknown
58536/tcp open  unknown

I can't remember correctly though, but I have read somewhere that current TBB doesn't use
privoxy/polipo anymore after getting firefox version 6. If it is correct, then we also don't
need them; So how does TBB solve the DNS leakage issue ? The correct info is required..

A deb repo for tor customized aurora is also nice. I know the down-loadable TBB is just great.
Still having the knowledge to make such system with available deb packages is always interesting.
I'll look into the links you have provided, mean time any more clues is very much welcome.

Thanks
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
  - From: andrew

References:
- Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
  - From: Tor Relays at brwyatt.net
- Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
  - From: Ondrej Mikle

Prev by Author: [tor-talk] tor ports
Next by Author: Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
Previous by thread: Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
Next by thread: Re: [tor-talk] How to install tor in Linux just as secure as tor-browser-bundle ?
Index(es):
- Author
- Thread