[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
From: Rob van der Hoeven <robvanderhoeven@xxxxxxxx>
Date: Wed, 25 Oct 2017 23:47:20 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 25 Oct 2017 17:47:36 -0400
In-reply-to: <1508967155.2962918.1151079184.1CFD659A@webmail.messagingengine.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <1508964126.2622.4.camel@ziggo.nl> <CAB7TAMnfzXX6ohAHFuAX7sO8YFKL1MN4qLvoqcP=vgdkL+L7Yg@mail.gmail.com> <1508965319.2622.6.camel@ziggo.nl> <1508967155.2962918.1151079184.1CFD659A@webmail.messagingengine.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, 2017-10-25 at 22:32 +0100, Geoff Down wrote:
> 
> On Wed, Oct 25, 2017, at 10:01 PM, Rob van der Hoeven wrote:
> > On Wed, 2017-10-25 at 16:50 -0400, Allen wrote:
> > > and what happens if you use dig alone to talk directly to tor?
> > > something like "dig -p torport hostname +tcp" (see man dig)
> > > 
> > 
> > A good idea, but the Tor daemon expects that all traffic arriving
> > on
> > torport has been redirected by iptables. It asks IP tables for the
> > original destination, which is not there when you use dig directly
> > with
> > torport.
> > 
> > Rob,
> 
> Haven't you answered your own question right there? Dig picks a
> nameserver from your /etc/resolv.conf, tries to connect to it, your
> kernel magic redirects the request via Tor, so the exit node connects
> to
> the nameserver from /etc/resolv.conf
> ?
> GD

Well, I think it works differently. What probably happens is that the
nameserver address from resolv.conf never reaches the exit node.
Instead the Tor daemon just remembers the address to use later on in
the reply. So the client never knows that the query was answered by
Tor. Sleepy programmers are fooled by this too ;-)

Rob.
https://hoevenstein.nl

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
  - From: Rob van der Hoeven
- Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
  - From: Allen
- Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
  - From: Rob van der Hoeven
- Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
  - From: Geoff Down

Prev by Author: Re: [tor-talk] Need a stable .onion address hosted by the Tor project.
Next by Author: Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
Previous by thread: Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
Next by thread: Re: [tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
Index(es):
- Author
- Thread