[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor over SSH (torsocks) (?)

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor over SSH (torsocks) (?)
From: "l.m" <ter.one.leeboi@xxxxxxxx>
Date: Wed, 18 Feb 2015 16:04:44 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 18 Feb 2015 16:04:57 -0500
In-reply-to: <81f72c0f7a48368897291576d52bfc37@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <ff0969f9d2ea5c294f866c4660ebb309@xxxxxxxxxxxxxxx> <54E13B37.8070004@xxxxxxxxxx> <54E1567A.90709@xxxxxxxxxxxx> <c0e17374bc441f241698b7109078ec67@xxxxxxxxxxxxxxx> <54E275A2.1000504@xxxxxxxxxxxx> <81f72c0f7a48368897291576d52bfc37@xxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi,

It sounds like you need to do a little introspection on why you want
to torify your ssh. You've already confessed to having a lack of faith
in your own technical ability. You need to ask yourself the
question--what is my threat model? You want to connect to a VPS--how
did you pay for this VPS? If you didn't pay for it using anonymous
currency then you might consider that torifying your ssh access will
provide limited anonymity if a (digital) paper trail exists. Without
using a hidden service you need to consider that the port you use on
your VPS will influence the choice of exit relay. Even if you use a
hidden service you need to trust the HS guard. If you use a hidden
service and your guards come under attack you may end up being unable
to connect to your VPS. In any case you may experience dropped
connections or the limited ability to connect. Which means you'll need
fallback connection methods or a server setup to detect-correct
faults. 

tl;dr Based on Roger's response you could use torsocks just fine. That
won't change needing to secure access (ie key-based auth). So you'll
need to read the man pages irregardless. Focusing on access via tor
before knowing how to secure your VPS will come back to haunt you.
That's why I recommend netcat via proxycommand. Why use torsocks if
you don't have to. It's not like you won't be editing the config files
anyway.
--leeroy
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor over SSH (torsocks) (?)
  - From: blobby
- Re: [tor-talk] Tor over SSH (torsocks) (?)
  - From: Mirimir
- Re: [tor-talk] Tor over SSH (torsocks) (?)
  - From: Dave Warren
- Re: [tor-talk] Tor over SSH (torsocks) (?)
  - From: blobby
- Re: [tor-talk] Tor over SSH (torsocks) (?)
  - From: Dave Warren
- Re: [tor-talk] Tor over SSH (torsocks) (?)
  - From: blobby

Prev by Author: Re: [tor-talk] Tor over SSH (torsocks) (?)
Next by Author: Re: [tor-talk] tor --verify-config requires root?
Previous by thread: Re: [tor-talk] Tor over SSH (torsocks) (?)
Next by thread: Re: [tor-talk] Tor over SSH (torsocks) (?)
Index(es):
- Author
- Thread