[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.

Subject: Re: [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 30 Aug 2015 22:04:48 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 30 Aug 2015 18:05:01 -0400
In-reply-to: <053.d86e01fce2839f7337ee608552e685df@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <053.d86e01fce2839f7337ee608552e685df@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16926: Multiple OS: Tor Browser leaks domains to system DNS management.
-------------------------------+------------------------------
     Reporter:  DrMikeTwiddle  |      Owner:  tbb-team
         Type:  defect         |     Status:  new
     Priority:  critical       |  Milestone:
    Component:  Tor Browser    |    Version:  Tor: unspecified
   Resolution:                 |   Keywords:
Actual Points:                 |  Parent ID:
       Points:                 |
-------------------------------+------------------------------

Comment (by DrMikeTwiddle):

 @cypherpunks:

 > Have you tried to visit the same "tor-only-visited-site.com" using the
 same browser
 > settings (addons, javascript settings, noscript settings, security
 slider settings,
 > etc)?

 Yes. I always surf with Security set to highest. It did make me wonder if
 the site in question had found some way round TB.

 I did a lot of testing today with tor-only-visited-site.com and others
 trying to provoke the result, and so far I can't repeat it but nonetheless
 that one entry is there in the system.log dump from mDNSResponder

 I need to make a clarification on the original report, that might help
 throw some light, the entry was actually a subdomain of tor-only-visited-
 site.com so it was:

 server2.tor-only-visited-site.com

 The site in question is a web based proxy site as I was trying to read
 something and tired of sites banning Tor exits, although I doubt that's
 significant.

 @someone_else:

 > Your network monitoring application may very well trigger DNS lookups

 Well I am running Little Snitch (application firewall), all Tor is
 allowed, but I block a lot of other software phoning home stuff with it.

 Little Snitch runs as a kernel extension I believe.

 Is it possible for LS to intercept queries from TB (presumably before they
 are encrypted and sent) and do a system DNS look up ??

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16926#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16913 [Tor]: tor-resolve: remove -F from usage
Next by Author: Re: [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.
Previous by thread: Re: [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.
Next by thread: Re: [tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.
Index(es):
- Author
- Thread