[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Problems with `dig` and `host` under transparently torified user

On Sun, 12 Sep 2010 08:32:20 +0000
James Brown <jbrownfirst@xxxxxxxxx> wrote:

> I have a transparently torified user setting up as described there
> https://trac.torproject.org/projects/tor/wiki/TheOnionRouter/TransparentProxy
> When I run command `dig somedomainname mx` or `dig somedomainname ns` or
>   `host -t mx somedomainname` , `host -t ns somedomainname` under that
> user I have the result that that "somedomainname' have no records in mx
> or ns. But it really have.
> I can receive only correct record "A" not records "ns" or "mx".
> Why?

Tor's DNSPort does not provide support for the full DNS standard.

You can try âdig +tcp @ YOUR-QUERY-HEREâ to retrieve the other
records.  (I think the @SERVER option belongs before the query, but it
may belong at the end of the command line; run âdig --helpâ for

Are you really running Tor as root?  It seems to me that those
instructions should be changed to have Tor run with DNSPort 9053 in a
Tor-only user account, and have iptables redirect DNS requests to port

Robert Ransom

Attachment: signature.asc
Description: PGP signature