[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Fwd: [guardian-dev] Auditing Twitter with Orbot

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] Fwd: [guardian-dev] Auditing Twitter with Orbot
From: Nathan Freitas <nathan@xxxxxxxxxxx>
Date: Wed, 13 Jun 2012 20:41:48 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 13 Jun 2012 20:42:08 -0400
In-reply-to: <4FD9331A.80103@xxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4FD9331A.80103@xxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; Linux i686; rv:12.0) Gecko/20120430 Thunderbird/12.0.1

-------- Original Message --------
Subject: [guardian-dev] Auditing Twitter with Orbot
Date: Wed, 13 Jun 2012 20:40:58 -0400
From: Nathan of Guardian <nathan@xxxxxxxxxxxxxxxxxxxx>
Organization: The Guardian Project
To: guardian-dev <guardian-dev@xxxxxxxxxxxxxxxxxx>,
tor-dev@xxxxxxxxxxxxxxxxxxxx

Great post+effort by our new intern "Patch", and generally good outcome
in how Twitter implemented proxying support, save for one aspect - push
notifications!

"I decided to take on the challenge of auditing Twitter+Orbot to gain
more insight (and hopefully trust) into their new support for proxying.
I logged some traffic on my Nexus One using the proxied Twitter
application to see what was going on. To eliminate excess traffic I used
Droidwall to permit only traffic from Orbot and Twitter. This still
allows the Twitter application the option to leak data while blocking
other traffic we donÂt wish to see.  I began logging with Orbot off and
attempted to update my Twitter application. So far so good, it was not
able to retrieve any tweets. Once Orbot was running the application
worked great, I ran some searches and made a test tweet. "

Read on:
https://guardianproject.info/2012/06/13/auditing-twitter-with-orbot/

_______________________________________________
Guardian-dev mailing list

Post: Guardian-dev@xxxxxxxxxxxxxxxxxx
List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev

To Unsubscribe
        Send email to:  Guardian-dev-unsubscribe@xxxxxxxxxxxxxxxxxx
        Or visit:
https://lists.mayfirst.org/mailman/options/guardian-dev/nathan%40guardianproject.info

You are subscribed as: nathan@xxxxxxxxxxxxxxxxxxxx
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: Re: [tor-talk] Building Petnames with DNSSEC...?
Next by Author: [tor-talk] Fwd: [guardian-dev] Orbot v9 RC2 (with Tor 0.2.3.17-beta!) for testing
Previous by thread: Re: [tor-talk] How to force redirect each application through separate SocksPorts? (preventing identity correlation)
Next by thread: [tor-talk] Question about Circuit Building
Index(es):
- Author
- Thread