[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Reducing java leakage in windows

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Reducing java leakage in windows
From: Jacob Appelbaum <jacob@xxxxxxxxxxxxx>
Date: Sun, 02 Dec 2007 23:35:49 -0800
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Mon, 03 Dec 2007 02:36:00 -0500
In-reply-to: <47537F7F.9070800@xxxxxxxxx>
References: <4753014C.7000408@xxxxxxxxx> <47537F7F.9070800@xxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Icedove 1.5.0.14pre (X11/20071018)

James Muir wrote:
> Arrakis wrote:
>> It appears that Java attacks for causing external IP data to be leaked
>> can be mitigated to some good degree. The upshot is that you can now run
>> Java applets that even when attempting to phone home directly (revealing
>> your IP), they are routed through the socks port and thus Tor or any
>> other socks speaking application. What we are doing is changing the
>> proxy settings of the Java Control Panel in windows.
> 
> Some time ago, I conducted several tests that demonstrated that Java
> Applets have the ability to disregard proxy settings in the Java Control
> and open direct non-proxied connections.  I do not think what you have
> described will work.
> 

I remember these tests. I can't seem to find a copy of the applets you
used. Are you willing to publish them? Or point me in the right
direction should I want to try implementing them?

Regards,
Jacob

Follow-Ups:
- Re: Reducing java leakage in windows
  - From: phobos

References:
- Reducing java leakage in windows
  - From: Arrakis
- Re: Reducing java leakage in windows
  - From: James Muir

Prev by Author: Re: Reducing java leakage in windows
Next by Author: Re: Reducing java leakage in windows
Previous by thread: Re: Reducing java leakage in windows
Next by thread: Re: Reducing java leakage in windows
Index(es):
- Author
- Thread