[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: I'm seeing someone else's localhost.localdomain
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: I'm seeing someone else's localhost.localdomain
- From: Robert Mischke <rtm_public@xxxxxxxx>
- Date: Wed, 6 Jul 2005 22:44:29 +0200 (CEST)
- Delivered-to: email@example.com
- Delivered-to: firstname.lastname@example.org
- Delivered-to: email@example.com
- Delivery-date: Wed, 06 Jul 2005 16:44:44 -0400
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.de; h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=3idAPshVq3SEyjUmE+yTun60QRQCXAwdXxQRnlgFV0plsr9tApIoUY5dMh31gnj5bqIdD3v0TMw2dEqIfHdHjSs1VWC0FjtX5FdlHRFJ1pdpNFKHP53RvBmPJdB+kAXQtdGl0fwNdJ8measPBkQxl+bbwN9W//Rew5N0hMC1We4= ;
- In-reply-to: <20050706200634.GA20509@beaudesign.com>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
> > > While firefox, using tor/privoxy, seems to not
> check/resolve with
> > > '/etc/hosts' before going to a net dns machine.
> I suppose that,
> > > possibly, this is a firefox issue while in
> 'proxy mode'.
> > Add localhost, 127.0.0.1 to "No proxy for"
> They're already in there. Iirc, they're there by
Do you have "pgsql.localhost.localdomain" in there,
too? Otherwise, Firefox has no way of knowing that
this host resolves to 127.0.0.1. and should therefore
not use the proxy in the first place.
By the way, I don't think either Firefox, Privoxy or
the client side of Tor should change their behaviour
here. Think about this: Usually, an application
doesn't parse a host configuration file by itself. It
is the OS's job to handle these configuration issues,
and replicating them on the application layer makes no
sense. Therefore, an application just sends a resolve
request to the underlying OS and lets the OS figure
out where to look. Unfortunately, if the host in
question is not found in the hosts file, this would
result in the OS leaking information by resolving this
host by regular, non-encrypted DNS. Not good.
I think excluding local host names from using the
proxy is the proper way to go.
Gesendet von Yahoo! Mail - Jetzt mit 1GB Speicher kostenlos - Hier anmelden: http://mail.yahoo.de