[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] [Tails-dev] Please review Tails stream isolation plans

> Hi,
> Nick Mathewson wrote (30 Aug 2012 15:10:52 GMT) :
>> or using some kind of iptables trickery?
> I'm not sure how doable it is to use iptables to convert HTTP proxying
> to SOCKS, but I'd be happy to learn :)

Iptables can not translate from one protocol to another.

The closest thing you could do is using something like redsocks. [1]
With iptables you can redirect packages based on their destination IP,
destination port, linux user account, and or process/session id.
Redsocks accepts them and can forward them to another http or socks proxy.

But what's the point? It's a real hack.

A clean solution would be to add http proxy support to Tor [2] or to add
socks support to the applications. Torsocks can be used as a hack.

[1] http://darkk.net.ru/redsocks/
[2] https://trac.torproject.org/projects/tor/ticket/6060
tor-talk mailing list