[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor Relay Smartphone App

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor Relay Smartphone App
From: Aymeric Vitte <vitteaymeric@xxxxxxxxx>
Date: Tue, 14 Oct 2014 12:37:39 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 14 Oct 2014 06:37:52 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=81DhVp7nasBb8xvqeTF8/YO4MiJd/S6vZnVj4angWN0=; b=DcWzWr8INRog9jfSQoyG7OZCpcF/z9O5S4cMmJMb0jzebiiRxejMRiHCRjQM5DChDJ mrdCQzuo11+2VqCR9KocPJmxory7O03xnoOsbh6SEQm+Q7ASdcaREReZ13mEYYHbOf43 akfdCeIipcnsw+CT+GtzxKz/CWDY2rKkx4ZhNLZFxvpFIGdN3OlV6FRfy5GO3emUL9DJ 9yhiVwlDuxqioIl7IjBoAJX4FI1JuAvnhFWer4W78k3wRfBTbt4pq/tiNSusUQO48R+V 3S7p/mgmxZV2tVhGyOQbSzMyGXgsFaihrhuJm/bXMla1PbujNFAEA/AYk8Vmc8NixYcy yAyQ==
In-reply-to: <20141014075527.GC21828@loar>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <44BDACD3189.00000851beatthebastards@xxxxxxxxx> <c89dfc787bb0b5459316f6baaf85022a@xxxxxxxxxxxxx> <9e34afb55dc79c67e72a35f9faa431d0@xxxxxxxxxxxxx> <CANLPe+M7utUa9Q=MzoC1E_tYkGg9WCK_ERGbAup20X8VbLkcpw@xxxxxxxxxxxxxx> <1c79d806d7a7d71f7ca3b00a10042591@xxxxxxxxxxxxx> <CANLPe+Nd+FonS8+x+DEKZB6BZmCVWBqYk01pG-_TCVu=o34j+A@xxxxxxxxxxxxxx> <CANLPe+NKhibmDDen_XUYgU_5pimjKggS0y3mTYBxWj9WRfiM5Q@xxxxxxxxxxxxxx> <c424b8605d82870689944f3378d50397@xxxxxxxxxxxxx> <CANLPe+NU2Lj+yLzGCpainEWUEQfNbWiSK=6mhrTvR5ufd5SbVQ@xxxxxxxxxxxxxx> <CAMxqorUvvphV6V0rZMAdzpf39XR4fSqdB6Fn8O2FA7o2vTG4bg@xxxxxxxxxxxxxx> <20141014075527.GC21828@loar>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 6.3; rv:24.0) Gecko/20100101 Thunderbird/24.6.0


Le 14/10/2014 09:55, Lunar a écrit :

Jeremy Olexa:

>You are abit late on the project idea:)
>https://www.kickstarter.com/projects/augustgermar/anonabox-a-tor-hardware-router

If this needs repeating on this list: this is a bad idea. It will give
people illusions instead of actual protection.


A bad idea that is doing good on Kickstarter...

I don't see very well the difference with the Onion Pi, except that it'sunclear what code they are using or I missed it (there is a link to a 41KB gz 'complete' code, this looks quite small so probably they are usingthe Tor project code) and there are no warnings about the insecureaspects of its use as you mentioned.

Anyway, I still think the universal solution is the javascript Torprotocol inside browsers, browsers would perform the Onion Proxy andconnect to the Tor relays using WebSockets, everything that is fetchedby a page is redirected to the WebSockets (like for example everythingis redirected to the Socks interface when you specify it, the messageswould be encrypted by the Onion Proxy and sent to the Tor circuits overWebSockets ), unfortunately while the rest exists and is working(node-Tor) this last point is completely undoable today.

This would work on any device, mobile or not, with the associated levelof security because this would not eliminate the need of the Tor browserfeatures and probably some confinement/security features would need tobe studied between the page and the ws OP, maybe similar tohttp://cowl.ws/, new methods to enforce privacy inside browsers withprinciples of code confinement and labels between origins, using whatexists today, postMessage with workers and iframes (clever use of it foronce...)

In addtion browsers will be able to perform the OR function too, so willbe Tor relays, as previously mentioned in this thread if the bandwidthof the device is bad the interest can be quasi null unless somemultipath possibilities are available, but given the number of browsersin the world it could be interesting to scale Tor.

So, it's probably worth studying the possibility with browser vendors(and standards), ie to solve this question: how to pass all the trafficto a given interface (here the ws OP)?


--
Peersm : http://www.peersm.com
torrent-live: https://github.com/Ayms/torrent-live
node-Tor : https://www.github.com/Ayms/node-Tor
GitHub : https://www.github.com/Ayms

--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] Tor Relay Smartphone App
  - From: I
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Griffin Boyce
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Griffin Boyce
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Casey Rodarmor
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Griffin Boyce
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Casey Rodarmor
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Casey Rodarmor
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Griffin Boyce
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Casey Rodarmor
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Jeremy Olexa
- Re: [tor-talk] Tor Relay Smartphone App
  - From: Lunar

Prev by Author: Re: [tor-talk] Hidden Services - how to implement something like Round, Robin DNS? (coderman)
Next by Author: Re: [tor-talk] Orbot/Tor talk at MIT tomorrow
Previous by thread: Re: [tor-talk] Tor Relay Smartphone App
Next by thread: Re: [tor-talk] Tor Relay Smartphone App
Index(es):
- Author
- Thread