Re: Block hidden services
Am 29.08.2008 um 07:15 schrieb F. Fox: xiando wrote: is it - in analogy to exit policies - possible to block certain (or all) hidden services of using my node as directory or introduction point and to disable rendezvous point functionality for my node? (I understand that I cannot block being a rendezvous point for specific hidden services.) If not, I vote for such a feature. I strongly disagree with your vote for such a feature. There may be anonymity issues involved. Your refusal to have involvement with hidden service introduction may ease the adversarys attempts to locale my hidden service and identify me as the operator. I cannot follow how this shall be possible, can you elaborate this? The exit policies allow me as a tor node operator not to offer connections to certain IPs. In the same way I should have the possibility not to offer services for certain hidden services as long as I can identify them (that is directory and introduction point services). I want to point out, that there are hidden services which are (at least) anonymity issues by their own. At the very least, such a new feature - if introduced - should be opt-in; by default, a node should have the ability to be an introduction or rendezvous point. I'm fine with that. But I think it's not fair to force Tor operators, that want to offer their resources for anonymous access, to automatically support hidden services as well. They are to different services and should be decoupled. So at least an option to switch off hidden service functionality is needed. But I prefer a flexible option like the one above. Regards, Sven -- http://sven.anderson.deBelieve those who are seeking the truth. tel:+49-551-9969285 Doubt those who find it. mobile: +49-179-4939223 (André Gide)
Re: Archive email addresses
On Mon, Sep 01, 2008 at 01:10:58PM +0100, Geoff Down wrote: On 29 Aug 2008, at 07:26, Roger Dingledine wrote: On Fri, Aug 29, 2008 at 06:17:22AM +, downie wrote: Hi, can the email addresses be concealed on the mail4liste.de forum please? I get enough spam already. I doubt anybody here runs mail4liste.de. It certainly isn't the official Tor list archives. (And we did prune email addresses from the archives.seul.org lists.) Perhaps you should contact somebody at mail4liste.de to get them to do so? If they refuse, I suppose I can unsubscribe the address. The webmaster has changed to forum to require registration to view. I'm not sure this addresses the problem really - I suppose it stops search engines. Or should. Do you use a regex to prune addresses from the official archive? I'd like to see or-talk removed there entirely. It makes no sense to publish this besides the official archives, into the bargain phpBB-based. I think it's no good idea to publish the entire mail-adresses there, even if there's a registration required. sigi.
Re: flash won't work with Tor enabled
Kasimir Gabert wrote: If you really need to access a flash script you could set up CGIProxy (http://www.jmarshall.com/tools/cgiproxy/) to route through Tor, and then connect to a local CGIProxy proxy with it's settings enabled for rewriting scripts. This will not, of course, guarantee your anonymity. I would combine it by putting the CGIProxy on another machine (or virtual machine), then set your firewall to block any/all requests that are not to that machine or localhost. This should help protect against failed rewrites by CGIProxy, and potentially retain the anonymity provided by Tor. Please correct me if I am wrong! Hm, I wonder if running your browser explicitly through torify would help? All network system-calls would be replaced by SOCKS-calls then. Can anyone comment on this? Not sure if that applies to plugins though. Kasimir Alex. signature.asc Description: OpenPGP digital signature
Re: flash won't work with Tor enabled
sean darcy wrote: I have firefox 3.0.1, tor button 1.2, tor-0.1.2.19-1.fc9.i386 , privoxy-3.0.8-2.fc9.i386 flash won't play with tor enabled. tor disabled it works fine. For instance, http://www.adobe.com/shockwave/welcome/ Do I need some new setting? Thanks for any help. sean Hello Sean, I use flash player over TOR, I don't install Torbutton, its a little slow, but I do download larger files at peak, if available. I use Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.8.1.12) Gecko/20080201 Firefox/2.0.0.12 browser. With Firefox, QuickJava, NoScript and FlashBlock addons to control the various java's manually and with flashblock you get a to choose what to see on flash. My Firefox network setting are (tools/options/advanced/network/settings), manual proxy config... http proxy: localhost at 8118 ssl proxy: localhost at 8118 socks host: localhost at 9050 socksv5 No proxy for: localhost, 127.0.0.1 My privoxy works on port 8118 Tor access port: 9050 At the same time my (soft hard) firewalls block all direct internet access for both my Firefox browser and any apps runninh in firefox. So Firefox and flash has no exit other than via TOR. I can see the flash traffic in Vidalia's bandwidth graph. For direct internet access I use another browser entirely. Hope that helps. -K-
Re: flash won't work with Tor enabled
On Mon, Sep 01, 2008 at 10:03:26PM +0200, [EMAIL PROTECTED] wrote 1.6K bytes in 44 lines about: : Hm, I wonder if running your browser explicitly through torify would : help? All network system-calls would be replaced by SOCKS-calls then. : : Can anyone comment on this? Not sure if that applies to plugins though. Flash and Java virtual machines don't have to honor the proxy settings, and depending upon your OS, they run as a different pid. When metasploit released their dns tricks with flash/java, I ran ff2 from torify in osx and found that flash/java were still bypassing the tor proxy. I didn't try windows nor linux. -- Andrew
