[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] ORBot-like app for Mac/Windows

On 03/05/2011 20:02, Jerzy Åogiewa wrote:

> http://www.androidzoom.com/android_applications/communication/orbot-tor-on-android_jqte.html
> interface is great -- why not something like this for mac (and even windows too) ? it would be handy on a mac to selectively torify apps!

The reason it is possible on Android is because each app runs under it's
own user id.

netfilter/iptables has an "owner" module. Assuming you're using the Tor
TransPort directive on port 9040, you could torify uid 1234 under Linux
with this command (untested):

iptables -t nat -A OUTPUT -m owner --uid-owner 1234 -j REDIRECT
--to-ports 9040

Then the outgoing connections of any app running under uid 1234 are
forwarded to local port 9040 and "torrified."

This doesn't really translate to OSX or Windows or even normal Linux
desktop usage.

At least, this is how I'm assuming Orbot does it. I know this is how
DroidWall handles applying firewall rules for different apps...

Mike Cardwell https://grepular.com/  https://twitter.com/mickeyc
Professional  http://cardwellit.com/ http://linkedin.com/in/mikecardwell
PGP.mit.edu   0018461F/35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F

Attachment: signature.asc
Description: OpenPGP digital signature

tor-talk mailing list