[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Downloading Programs with TBB - dangerous???

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] Downloading Programs with TBB - dangerous???
From: Bobby Brewster <bobbybrewster203@xxxxxxxxx>
Date: Sat, 28 Jun 2014 11:38:24 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 28 Jun 2014 14:56:48 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1403980704; bh=nCShgluhqoy7lIiCO4QeYHRHQXHv4fQdpu0a/h3oWns=; h=References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=iOGLTk6AGahgAt3yMgLfeo3ozU9tCPUNd4MyACHJdWQt5um3YMAZtexEPq+kOviaNvg9ovDLHuLk3mI7XRdvmrD4kQIrzc66k+VOy2ZcsX8uLz9Cn8ydo7ZNwKj+BtbkNjXlfGRWkwtqhtExBOPLk68rpKY2z7KYCtPLmJXwS0o=
In-reply-to: <53AC76C6.2050508@xxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <1403807644.83828.YahooMailNeo@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <53AC76C6.2050508@xxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

The only thing I can add is that when I downloaded a large PDF and loaded Wireshark up, there was a steady stream of traffic until Firefox told me that the download had been completed. Also, the connections were between my IP and the IP of the Tor entry node (as confirmed in blutmagie). This suggests that the download itself did happen within the Tor network.



On Thursday, June 26, 2014 9:12 PM, Joe Btfsplk <joebtfsplk@xxxxxxx> wrote:
 


On 6/26/2014 1:34 PM, Bobby Brewster wrote:
> /Let's say I download a PDF with Tor. I get the warning that I might download it outside Tor./
That used to be the norm, but I believe the message was changed in later 
TB versions.  Which version are you using?
I'm not sure I've seen that warning lately, for just saving a PDF.
>
> /What is the liklihood of that actually happening?  Are there some dangerous file types that one should not download./
Pretty much the same precautions as regular surfing, as far as 
"dangerous" files - whether inside Tor / Torbrowser or not.
The advice is generally, don't open downloaded files while online. 
Certainly not in or using Torbrowser (like a PDF, using built PDF viewer).
But that viewer isn't AS big of an anonymity breaking threat as using 
3rd party software over the Tor network.  They don't always follow the 
Tor proxy rules.

For some (like Thunderbird) people have gone to great lengths to create 
software / plugins, etc., to make sure it stays inside the Tor network.  
Even those methods aren't 100% foolproof, 100% of the time.

>
> /Please note that I am talking about the downloading itself. I'm not talking about downloaded files containing an image which makes a request to the server so that the user's real IP is exposed./
>
>
Much depends on whether using 3rd party software for the downloading, or 
even Fx addons used in Torbrowser.  If just d/l a PDF or txt file, etc., 
saving it to disk / DVD - from the browser save window isn't a problem.
Of course, most any file could be malicious or its extension be 
intentionally mislabeled.

The addons may be OK, or they may leak data like real IPa, or something 
else.  One shouldn't assume because they're listed on Mozilla AMO, that 
they maintain anonymity over Tor.  They might - but they might not.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Downloading Programs with TBB - dangerous???
  - From: Bobby Brewster
- Re: [tor-talk] Downloading Programs with TBB - dangerous???
  - From: Joe Btfsplk

Prev by Author: Re: [tor-talk] How does DNS work with .onion addresses?
Next by Author: Re: [tor-talk] Bruce Schneier's Guardian Article about N_S_A and Tor.
Previous by thread: Re: [tor-talk] Downloading Programs with TBB - dangerous???
Next by thread: [tor-talk] How does DNS work with .onion addresses?
Index(es):
- Author
- Thread