[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Help me understand tor with SSL?



--- Roger Dingledine <arma@xxxxxxx> wrote:
> On Sat, Dec 01, 2007 at 07:42:34PM -0800, Martin
> Fick wrote:
> > So, why even bother suggesting privoxy use at all 
> > if it can easily be bypassed?  Is this not just
> > giving people a false sense of security?
> 
> Privoxy doesn't do that much to protect you. 

Hmm, on this page:
http://www.torproject.org/docs/tor-doc-unix.html.en
in the docs it says:

  Using privoxy is necessary because 
  browsers leak your DNS requests when 
  they use a SOCKS proxy directly, 
  which is bad for your anonymity. 
  Privoxy also removes certain 
  dangerous headers from your web 
  requests, and blocks obnoxious ad 
  sites like Doubleclick.

Is that no longer true?  If it is still 
true, is there any way to get privoxy to 
use stunnel for its SSL connections so 
that the SSL connection is only from 
privoxy to the server?

-Martin



      ____________________________________________________________________________________
Be a better sports nut!  Let your teams follow you 
with Yahoo Mobile. Try it now.  http://mobile.yahoo.com/sports;_ylt=At9_qDKvtAbMuh1G1SQtBI7ntAcJ