[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor Leaking

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor Leaking
From: maillist <maillist@xxxxxxxxxxxx>
Date: Wed, 14 Jun 2006 15:32:34 +0300
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Wed, 14 Jun 2006 08:32:55 -0400
In-reply-to: <3922422b0606140442t7ab9a5e9gc63ca35f3d60b492@mail.gmail.com>
Openpgp: id=82A5A58A
References: <20060614113919.44717.qmail@web38502.mail.mud.yahoo.com> <3922422b0606140442t7ab9a5e9gc63ca35f3d60b492@mail.gmail.com>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 1.5 (X11/20060317)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This leaking can also be stopped by configuring a Linux router which
runs Tor, transparently route outgoing tcp-traffic to Tor and drop
_everything_ else.

I think there should be more documentation about setting up transparent
Tor router with Squid. When I did that I found out that those documents
are missing some very important points that brokes transparent routing etc.

M

Ringo Kamens wrote:
> As long as you use the default configuration and set your browser to use a
> HTTP proxy, then DNS leaks shouldn't be a problem. The problem occurs when
> you tell programs to use tor as a socks proxy and they decide to resolve
> their own DNS names. If you block DNS resolving with your firewall the
> program might try to resolve the DNS name through tor. If you route a
> program through freecap it shouldn't be a problem. DNS leaking was more
> of a
> problem in the past and if tor is passed an IP address (which is a sign
> of a
> DNS leak) it will warn you.
> Ringo
> 
> 
> On 6/14/06, Simon Callow <simoncallow68@xxxxxxxxx> wrote:
>>
>> I came across a privacy blog that says even when you
>> set up Tor correctly it still leaks sometimes. It says
>>
>>
>> And you Thought you were Safe!—You've installed that
>> proxy chain. You've shooed away the two Jays—those
>> attractive, brightly coloured birds that prove just
>> that little bit too inquisitive for comfort. You've
>> done everything correctly—by the book. So you call up
>> your favourite search engine, enter your favourite
>> topic, and soon you're clicking away on one link after
>> another, sure in the knowledge that Big Brother
>> doesn't know what sites you're visiting. Right? …
>> Wrong! Some of those clicks will be putting a smile on
>> Big Brother's face. And no need to feel so smug, all
>> you Tor users—yes, we mean you too!
>>
>> It's at www.nearlyperfectprivacy.blogspot.com. They
>> are not against Tor as they're running a campaign
>> supporting it and they seem to know a lot about
>> privacy.  I had a look through the archives and the
>> Wiki and I can't find anything that would cause Tor to
>> just leak sometimes.  If you've done it by the book
>> then that would be with Privoxy so I thought there
>> would be no DNS leakage.  If you have turned off Java
>> and Javascript as they say they I thought you'd be
>> okay apart from the sort of attack where someone looks
>> at both ends of the line.  They seem to be saying that
>> DNS leaks sometimes but not always.  But if Tor wasn't
>> set up properly then it would leak all the time.  Am I
>> missing something.
>>
>>
>> __________________________________________________
>> Do You Yahoo!?
>> Tired of spam?  Yahoo! Mail has the best spam protection around
>> http://mail.yahoo.com
>>
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org

iD8DBQFEkAHh6fSN8IKlpYoRAuMcAJ9Ic9Y5oOz2btYp7SINf0hTJtZDcACgn7Fg
WJ8q8P6PfIq4+i2j7L1yjME=
=98Qp
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: Tor Leaking
  - From: coderman

References:
- Tor Leaking
  - From: Simon Callow
- Re: Tor Leaking
  - From: Ringo Kamens

Prev by Author: Web Servers
Next by Author: Re: Tor 0.1.1.20 servers no longer handle dynamic IPs?
Previous by thread: Re: Tor Leaking
Next by thread: Re: Tor Leaking
Index(es):
- Author
- Thread