[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] newbie: tor browser bundle and privoxy

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] newbie: tor browser bundle and privoxy
From: Ivan Ivanov <grobokopatel@xxxxxxx>
Date: Fri, 30 Dec 2011 20:31:18 +0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 30 Dec 2011 11:38:34 -0500
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=mail.ru; s=mail; h=Content-Type:Subject:To:MIME-Version:From:Date:Message-ID; bh=GdaRh5SksSH0oyXtYX+etgOYJBljj49HzXijphGDYGc=; b=c5Y2KYBzGK+UYq10S1DPQWYzzNrtB0+KULew0VEupWmM1wxVhM+knSpHJVKHIN6MqFp9snh+kokTEgNdDXKLNrpgzUEUuVNw0U4Y/mVb0WQXgGLVvR5WR37o24lS/Mt5;
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.16) Gecko/20111110 Icedove/3.0.11

Hello, list. I am newbie in Tor. By reading an information about tor ifound article(http://www.hermann-uwe.de/blog/howto-anonymous-communication-with-tor-some-hints-and-some-pitfalls), that says:

"The biggest problem with many applications is that they /leak DNSrequests/. That is, although they use Tor to anonymize the traffic, theyfirst send a DNS request /untorified/ in order to get the IP address ofthe target system. /Then/ they communicate "anonymously" with thattarget. The problem: any eavesdropper with more than three brain cellscan conclude what website you visited, if they see that you send a DNSrequest for rsf.org <http://www.rsf.org>, followed by some "anonymous"Tor traffic. The solution: *use Tor together with Privoxy*, thatprevents DNS leaks."

Next, onhttps://www.torproject.org/projects/torbrowser-details.html.en#contentsi found, that *Tor Browser Bundle* consist of:


   * Vidalia 0.2.15
   * Tor 0.2.2.35 (with libevent-2.0.16-stable, zlib-1.2.5, openssl-1.0.0e)
   * Mozilla Aurora 9.0.1 and Torbutton 1.4.5.1)
   * Pidgin 2.7.5 and OTR 3.2 (only in Tor IM Browser Bundle)

So, Tor Browser Bundle does not contain Privoxy.

Now question: does this mean, that Tor Browser Bundle is less securethan separately installed Tor + Privoxy?

P.S. sorry for my rough english.



_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] newbie: tor browser bundle and privoxy
  - From: andrew
- Re: [tor-talk] newbie: tor browser bundle and privoxy
  - From: Julian Yon
- Re: [tor-talk] newbie: tor browser bundle and privoxy
  - From: Koh Choon Lin

Prev by Author: Re: [tor-talk] Did we decide about bad exits ? Where does bittorrent fall ?
Next by Author: Re: [tor-talk] Did we decide about bad exits ? Where does bittorrent fall ?
Previous by thread: Re: [tor-talk] Why can't I hide/minimize to tray anymore?
Next by thread: Re: [tor-talk] newbie: tor browser bundle and privoxy
Index(es):
- Author
- Thread