[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[or-cvs] r11997: Just updated the TODO with some stuff about the macchanger h (incognito/trunk)
Author: anonym
Date: 2007-10-17 08:31:31 -0400 (Wed, 17 Oct 2007)
New Revision: 11997
Modified:
incognito/trunk/TODO
Log:
Just updated the TODO with some stuff about the macchanger hack and torbutton
Modified: incognito/trunk/TODO
===================================================================
--- incognito/trunk/TODO 2007-10-17 11:37:42 UTC (rev 11996)
+++ incognito/trunk/TODO 2007-10-17 12:31:31 UTC (rev 11997)
@@ -24,8 +24,9 @@
- Allow higher resolutions than 1024x768
Add a menu option to the boot menu to select a higher resolution, OR attempt to do monitor detection when configuring. The latest x.org server has much better auto-detection, perhaps allowing it to do more work would be better. Note that a kernel option "xres=1024x768" is available (plug in your own dimensions) and working. A boot menu option requires a custom syslinux menu which does not look too difficult.a
-- Add macchanger option to boot menu
-Add a menu option to randomize the MAC address. See above for custom syslinux boot menu.
+- A less hack-ish macchanger option to boot menu
+Currently there are two different cfg:s, one without (default) and one with macchanger enabled. At least there is a script which adds this hack, but it should nonetheless get a nicer solution eventually.
+A custom syslinux boot menu would do, but they are currently exremely ugly and probably confuses some users (seriously!). Hopefully a not so distant future release of syslinux will improve this.
- Use unionfs
Currently the writable portions of the filesystem need to be copied to RAM during the boot process. Using unionfs is an option in catalyst (via genkernel) which overlays a tmpfs on the CD filesystem so every file becomes writable and no copying is necessary during the boot process. It is faster and uses less memory. However, in the current genkernel it is badly broken. The newer unionfs versions are patches for the kernel and that doesn't fit into the latest genkernel unionfs support. Reports are that when the vanilla kernel includes unionfs, then this will be supported. At that time unionfs can be enabled.
@@ -41,6 +42,8 @@
- Consider using grsec ?
- Add torbutton, disabling tor enable/disable in toolbar and status bar
+torbutton is more user friendly and less annoying than NoScript+CookieCuller so if it provides a reasonable amount of protection for tor (which it should since that's its design goal) it should replace the other two extensions when it becomes more stable.
+Also, if we setup a new http(s) proxy that is excluded from the netfiler tor forwarding, torbutton could be used to have firefox access the network directly, which can be necessary when ISP require logins (see below).
- Update Incognito branded images
livecd-stage2.sh has some branding support so you can change the name. There are a few images that still have Incognito. ImageMagick scripting looks like a possible way to do this.
@@ -50,7 +53,12 @@
- Handle ISP login requirement
Public networks may require a login before allowing access to the outside. Generally this is done by a transparent proxy that redirects to the login screen whenever an http request is made. A solution to this may be to add the class C network to the iptables exclusion list so the redirect won't run through Tor. The user will need to access something on the local net first though since the redirect won't happen when running through Tor. Other suggestions are welcome.
+(see entry for torbutton for a possible solution)
+- Allow Tor to be bypassed
+Sometimes a direct connection to the Internet is desired. We need a way to bypass the iptables filter. Possibly another proxy process that does not go through Tor. There should be a clear indicator that we are not anonymous.
+(see entry for torbutton for a possible solution)
+
- Upgrade to livecd-tools 1.0.36 and remove unpack_firmware patch
- Move to kernel 2.6.22
@@ -60,9 +68,5 @@
The CD or USB may be run in a virtual PC for computers that won't boot from removable media. USB must be run read-only due to bugs in QEMU (writable vvfat). When QEMU fixes this, we should use it.
See http://www.h7.dion.ne.jp/~qemu-win/HowToFloppyCdrom-en.html
-- Allow Tor to be bypassed
-Sometimes a direct connection to the Internet is desired. We need a way to bypass the iptables filter. Possibly another proxy process that does not go through Tor. There should be a clear indicator that we are not anonymous.
-
- Upgrade to xorg-server 1.4 and remove xorg.conf
xorg-server is supposed to have good hardware detection. If we use this version we may be able to drop sys-apps/hwsetup altogether and possibly use the best resolution the card/monitor have to offer instead of fixing to 1024x768.
-