[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #21863 [Applications/Tor Browser]: Ensure proxy safety on Android

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #21863 [Applications/Tor Browser]: Ensure proxy safety on Android
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 13 Jul 2018 02:23:43 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 12 Jul 2018 22:23:56 -0400
In-reply-to: <042.60e0868b950b9504af541e43cc670848@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <042.60e0868b950b9504af541e43cc670848@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#21863: Ensure proxy safety on Android
-------------------------------------------------+-------------------------
 Reporter:  gk                                   |          Owner:  sysrqb
     Type:  defect                               |         Status:
                                                 |  accepted
 Priority:  Very High                            |      Milestone:
Component:  Applications/Tor Browser             |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tbb-mobile, tbb-7.0-must, tbb-       |  Actual Points:
  proxy-bypass, TorBrowserTeam201807             |
Parent ID:  #26531                               |         Points:
 Reviewer:                                       |        Sponsor:
                                                 |  Sponsor4
-------------------------------------------------+-------------------------

Comment (by sysrqb):

 Replying to [comment:28 n8fr8]:
 > I thought @amoghbl had found and patched all of these cases. We
 definitely focused on checking for DNS leaks in the past, using a variety
 of web based DNS leak test tools.
 >
 > The goal has been to directly proxy everything using HTTP and SOCKs, and
 not rely on the Android OS proxy subsystems at all, since they are not
 reliable, especially on WAN networks.
 >
 > This is also all related to the fact that there are 3 different HTTP
 packages in use within Fennec, making standardized proxying hard.

 I agree. There were a lot of conflicts when I was applying the proxy-safe
 Orfox patches, so I did a lot of patching by hand. I wanted to be sure we
 didn't miss any new instances of proxy-bypass, so auditing the current
 code seemed like a good idea.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21863#comment:31>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #26842, #26841, #26840, #26839
Next by Author: Re: [tor-bugs] #26518 [Metrics/Relay Search]: The fourth most popular AS in the Tor network is "(distinct)"?
Previous by thread: Re: [tor-bugs] #21863 [Applications/Tor Browser]: Ensure proxy safety on Android
Next by thread: Re: [tor-bugs] #21863 [Applications/Tor Browser]: Ensure proxy safety on Android
Index(es):
- Author
- Thread