[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Blocked by Websense
- To: or-talk@xxxxxxxxxxxxx
- Subject: Blocked by Websense
- From: "John Kimble" <det.j.kimble@xxxxxxxxx>
- Date: Sun, 26 Nov 2006 17:10:22 +0800
- Delivered-to: firstname.lastname@example.org
- Delivered-to: email@example.com
- Delivered-to: firstname.lastname@example.org
- Delivery-date: Sun, 26 Nov 2006 04:11:07 -0500
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=sF7/JxGZA7O6H5GrbyNImcALpeCHAqnYqeGfF/mat0cRBw+XGTIP/Gskmc+qcSVVAZGvnemNwhMtep/Gz7rw3eMjuT9B4FXFcvZ1B15Z/mL9Il7lqrO37uHr1m+yHcoiHzb7sK4yTaaNx+nN760s93xE0DESiFfANGeQjXoZ0i4=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
A report from the field, plus questions:
Earlier today I was trying to use Tor from my local library's network,
which uses an HTTP proxy with Websense enabled. It seems Tor is
blocked by Websense with the reason: "proxy avoidance".
The blocking is done by redirecting all HTTP requests with
"/tor/server/" in the path to a local "blocked by Websense" page. I've
tested this by entering arbitrary URLs with "/tor/server/" in the
path, like these two below, which all lead to the "blocked" page:
The way Websense works, this "proxy avoidance" rule is likely to be
common across all organisations that choose to turn this rule on.
A couple of questions:
Is there a way I can somehow supply Tor with directory information
when Tor is unable to do a plaintext HTTP download (which is quite
easy to block based on fixed strings in the path) when it starts up?
Provided the first question is solved, once Tor has built its
circuits, can it be configured to download its directory updates
through the Tor circuits, so as to avoid leaving behind these telltale
footprints of periodical Tor directory downloads?