[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] OnionWall - A firewall for Tor based on OpenWrt

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: [tor-talk] OnionWall - A firewall for Tor based on OpenWrt
From: Oscar Mira <valldrac@xxxxxxxxxxxxx>
Date: Wed, 30 Jan 2019 00:11:00 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 29 Jan 2019 19:11:18 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.ch; s=default; t=1548807067; bh=44h753x45xnARPMaN++4vet14zuP2aLCebM2cKKKoKs=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=QY3nJzOkvg6NEY9mt/HYzu56uslN3X9vOhiyIoYMLvkpxXl1bhEhP6994UApTuycT 8bwNYdu+YEJ01wjfaIAaDRCEpVOWAyuiHVT4YoDZPoMPJOXMvCxMZypMdmIf+zigir SeKCQnq2GeGuvIfN3oEU/kS+qZHZYlkYWx48clpQ=
Feedback-id: ZSGCkiItJZKMXxYhSU2F_-7ehGBUa-GM8hvXXiBJQuyZ5MUL1Ecl7PwdQnLwMxUeGiuCBI2M1jVntD8Tr5wiJg==:Ext:ProtonMail
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Hello everyone!

I would like to share a project I have been working on.

https://gitlab.com/valldrac/onionwall

OnionWall is essentially a hardware device that sits between Tor Browser and the outside world and blocks non-Tor traffic. It is not a transparent proxy but a firewall. All traffic should be explicitly proxied to the TorPort. Otherwise it will be blocked.

It is inspired by https://github.com/grugq/portal but built from scratch on top of OpenWrt and more easier to maintain.

A key difference compared to previous works is that the TorPort is on Ethernet not Wifi. So it helps to use a disposable PC without any radio for browsing. This way you can reduce the risk of leaking your real location in case someone breaks into your PC while you are browsing anonymously with Tor Browser.

If you want to try it out, download and flash the pre-built firmware. You can also customize your own using the build system (Vagrantfile).

For now, it supports one portable wireless router. But I plan to add more devices if people find it useful.

Cheers,
Oscar
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: [tor-talk] Tor 0.4.0.1-alpha is released!
Next by Author: Re: [tor-talk] [Cryptography] Implementing full Internet IPv6 end-to-end encryption based on Cryptographically Generated Address
Previous by thread: [tor-talk] New report: Blocking of Wikipedia & Social Media in Venezuela
Index(es):
- Author
- Thread