from:"Programmer In Training"

On 12/31/2009 6:47 AM, Freemor wrote:
snip
 Um... 9050 is TOR and SOCKS5. 8118 is Privoxy and HTTP.
 
 see:
 http://wiki.noreply.org/noreply/TheOnionRouter/TorifyHOWTO/InstantMessaging
 and/or
 http://www.privoxy.org/user-manual/quickstart.html
 
 His problem is more likely due to Yahoo changing their protocol and
 breaking Pidgin yet again. It happens quite regularly. One of the many
 reasons I stopped using Yahoo.
 
 Regards,
 Freemor
 
 

I'm using 127.0.0.1:9050 globally on Pidgin with Tor and have only
issues with AIM (tells me my IP has been connecting and disconnecting
too much and won't let me sign on). Not sure what problems the OP is
having as one of my 10 accounts is a Yahoo account. Sometimes it takes a
while to connect, but otherwise it's fine.



signature.asc
Description: OpenPGP digital signature

Re: Pidgin with TOR

On 12/31/2009 9:18 AM, emigrant wrote:
 On Thu, 2009-12-31 at 06:58 -0600, Programmer In Training wrote:
 On 12/31/2009 6:47 AM, Freemor wrote:
 
 I'm using 127.0.0.1:9050 globally on Pidgin with Tor and have only
 issues with AIM (tells me my IP has been connecting and disconnecting
 too much and won't let me sign on). Not sure what problems the OP is
 having as one of my 10 accounts is a Yahoo account. Sometimes it takes a
 while to connect, but otherwise it's fine.

 for some reason i cannot set the proxy setting globally,
 the button is greyed out (disable)
 i mean:
 toolspreferencenetwork and under proxy server and browser it says
 proxy configuration program was not found and proxy and browser
 preferences are configured in gnome prefernces. two buttons are there,
 configure proxy and configure browser,
 the configure proxy button is disabled.
 
 thank you.

You'll have to get help, then, from someone more knowledgeable about
GHOME but that sounds like a good reason to me to find a new WM.



signature.asc
Description: OpenPGP digital signature

Re: Location privacy preserving location based service with Tor

On 12/31/2009 10:33 AM, Xinwen Fu wrote:
 Dear All,
 
 We integrated Tor with a location based service to implement a
 location privacy preserving location based service. 1. Tor is used to
 hide the identity (IP) of a user, who sends her location to a
 location based service server for points of interest. Hiding IP is
 also necessary for hiding the user location since IP may imply the
 user's location. 2. Of course, the user's location coordinates are
 also perturbed to hide her exact location.
 
 Here is the link of the software: 
 http://www.seas.gwu.edu/~nzhang10/cap/cap/Welcome.html. The paper is 
 here:
 http://www.seas.gwu.edu/~nzhang10/cap/cap/Welcome_files/paper.pdf.
 
 Happy new year!
 
 Xinwen Fu

You might want to reconsider your use of the Google Maps API:
 
 Google CEO Eric Schmidt’s comments on privacy in a CNBC interview,
 where he said, “If you have something that you don’t want anyone to
 know, maybe you shouldn’t be doing it in the first place.” He went on
 to suggest that “it’s important” that “all . . . information could be
 made available to the authorities.”[1]

[1]: http://blogs.techrepublic.com.com/security/?p=2904



signature.asc
Description: OpenPGP digital signature

Re: Pidgin with TOR

On 12/31/2009 8:38 PM, emigrant wrote:
 On Thu, 2009-12-31 at 07:41 -0600, Programmer In Training wrote:
 You can use mine at
 http://blog.joseph-a-nagy-jr.us/2009/12/getting-serious-about-security/
 The image is licensed same as the post (e.g. CCD CopyWrite
 
 Hi,
 thanks for the link,
 i set proxy client wide. but yahoo keeps trying connecting. AIM doenst
 connect at all, and i left the idea trying with it.
 
 is there anyway to make yahoo work?
 
 thank you.


Until today I had no problems with Yahoo, and I think it's just because
of the exit node (not sure where it is, don't really care). Sometimes
I'd get kicked out during login but once logged in, it worked just fine.

AOL doesn't like Tor, I think. I have constant problems with AIM and ICQ
no matter what proxy settings I use.



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

2009-12-30 Thread Programmer In Training

On 12/30/2009 11:44 AM, Jim wrote:
 
 
 Programmer In Training wrote:
 I've been testing some time out changes in FF to see if there is any
 difference. So far I haven't seen any but I've yet to fully put it to
 the test (I'm having problems with pages not fully loading, mainly on
 techrepublic.com.com)
 
 I've sometimes wondered if some websites were terminating connections
 themselves wen the connection took too long.  Of course, that would be
 the connection itself rather than setting up a circuit since the website
 wouldn't know about that.

That is actually quite possible, if so that's bad web server setup, in
my opinion. I'll email TR's webmaster(s) to see if they can shed any
light on that.



signature.asc
Description: OpenPGP digital signature

Re: TOR and ISP

On 12/29/2009 1:33 AM, grarpamp wrote:
 On the contrary, in the United States, all ISPs are *required* by 
 statute to record all URL requests that can be detected passing 
 from their customers through their equipment.
 
 False. ISP's in the US don't have to record any information of any 
 kind about their user or their data whatsoever. None, period. Nor are
 they required to give it to anyone except under legal process 
 [subpoena, court order].

Oh really?

http://www.wired.com/threatlevel/2007/08/debating-spy-la
 The companies being sued for helping with the government’s 
 warrantless wiretapping program, which include ATT, Bellsouth, and 
 Verizon, did indeed assist the program since the NSA obviously
 needed help to wiretap, McConnell said.


http://www.zeropaid.com/news/9623/us_telecom_amnesty_bill_passed__isps_let_off_the_hook/
 The US constitution, particularly in the eyes of digital rights
 activists, has been dealt with a major blow today. The FISA bill with
 amendments that would grant telecom immunity to ISPs that
 participated in a warrantless wiretapping program with the current
 administration has recently passed the senate and now awaits the
 presidents signature.

Who needs a warrent, now (not saying I agree with the laws, just saying
that ISPs can and probably do help the government spy on users)?



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/29/2009 9:46 AM, Erilenz wrote:
 * on the Mon, Dec 28, 2009 at 09:12:10PM -0600, Scott Bennett wrote:
 
 Actually, no.  The default exit policy blocks smtp ports.  Sometimes,
 you can find exit nodes that allow smtp.  These are times are typically
 few and far between.

  I thought that, pursuant to a discussion here last year or the year
 before, the default exit policy was changed to allow the smtps port.  Did
 that change not get made after all?
 
 It did. Port 25 is rejected in the default policy, but 587 and 465 are not
 any longer:

I use 465 on 98-99% of my outgoing mail as a matter of policy even
before I started getting security conscious, as it were.

 r...@esse:~# grep '\*:465' /var/lib/tor/cached-descriptors|wc -l
 296
snip

God I hope you're not using your root account as your normal user account.



signature.asc
Description: OpenPGP digital signature

New Article Up

I just posted a short article on the settings to use when setting up
Pidgin and FF to use Tor. I tried to keep it simple, used screen shots
of the settings that I've been suggested to use and have had great
success in using to browse and IM across the Internets.

As I say in the closing lines of the entry, comments or corrections are
welcome in the comments section of the blog. Just thought I'd point
everyone to it:

http://blog.joseph-a-nagy-jr.us/2009/12/getting-serious-about-security/

I'll be following this up with an article on using GPG for further email
security and do an update when I find Tor and TB3 settings that don't
keep me from my email.

I'll also, in a future article, be discussing the use of OTR
(Off-the-Record), a chat encryption plugin for Pidgin and several other
clients (although since I'm only familiar with Pidgin, I'll be limiting
myself to its use with Pidgin).

HTH,

PIT



signature.asc
Description: OpenPGP digital signature

Re: New Article Up

On 12/29/2009 3:38 PM, Andrew Lewman wrote:
On 12/29/2009 04:23 PM, Programmer In Training wrote:
I just posted a short article on the settings to use when setting up
Pidgin and FF to use Tor. I tried to keep it simple, used screen shots
of the settings that I've been suggested to use and have had great
success in using to browse and IM across the Internets.

Have you seen https://torproject.org/torbrowser? In particular, the
Building the Bundle bit,
https://www.torproject.org/torbrowser/details.html.en#contents where we
document what's changed and why in the various files? Someday I'll
write up a summary of all this for non-developers to read.

I've seen it and even have a copy of the self-extractor on my system.

As for the documentation, it's like the other docs in that I've found
them too convoluted for the beginner (like me) to understand and I wind
up asking more questions then I really need to. Also, everything is so
spread out (wiki here, documentation there, etc.) it can be hard to find
any particular piece of information. I'm just aiming to provide a simple
starter element that the average user can understand as they become
more security conscious (which is the whole point of my privacy series
that I started with The Privacy Mandate).

I want to provide explicitly beginner, non-developer instructions to the
n00bs, so to speak, in a language that they understand and I want them
to have to only go to one place to find them. Eventually I'm going to
collect all the posts into a series of static HTML files and post them
in a sub-folder, provide a zip- and rar-compressed text and html format
as well.

The prefs.js commit log may be helpful too,
https://svn.torproject.org/cgi-bin/viewvc.cgi/torbrowser/trunk/build-scripts/config/prefs.js?view=log

I'll definitely take a look at all that documentation and see what I can
glean from it to help me in my own goals. Thank you for the links. (:

Again, if there are any settings that could be tweaked to be better (or
are considered just absolutely wrong), feel free to let me know and I'll
update that particular post (or write an update linking to that one,
depending on how many intervening posts I have).

signature.asc
Description: OpenPGP digital signature

Re: Fix the middle router in Tor path ?

On 12/29/2009 9:07 PM, Roger Dingledine wrote:
 On Wed, Dec 30, 2009 at 10:47:27AM +0800, MySecurity wrote:
 Hi, everyone!
 Can I fix the middle router in a Tor path, just like the EntryNodes and 
 ExitNodes option in my Tor configuration file?
 ok, just for fun!
 
 Nope. Not in the Tor config file at least.
 
 You could control your whole path selection by using the Tor control
 protocol:
 https://git.torproject.org/checkout/tor/master/doc/spec/control-spec.txt
 
 But that's probably overkill for 'just for fun'.
 
 --Roger
 
 ***
 To unsubscribe, send an e-mail to majord...@torproject.org with
 unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
 

Doesn't controlling such things really defeat the purpose of an
anonymous relay?



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/29/2009 9:55 PM, and...@torproject.org wrote:
On Mon, Dec 28, 2009 at 09:12:10PM -0600, benn...@cs.niu.edu wrote 2.3K bytes
in 49 lines about:
: Does Thunderbird perchance have a way to set the timeout to a different
: value?

There appear to a few ways to set the timeout, unsure which one matters
for rss feed pulls over http over tor from TB3's perspective.

In the Config Editor, there is:

mailnews.tcptimeout set to 100
network.proxy.failover_timeout set to 1800

Changing these doesn't seem to matter too much. I set them to 9000 and
there were still some test feeds that didn't load (blog.torproject.org
oddly enough).

That's nice to know. ):

I've been testing some time out changes in FF to see if there is any
difference. So far I haven't seen any but I've yet to fully put it to
the test (I'm having problems with pages not fully loading, mainly on
techrepublic.com.com)

: Hrm. So tor automatically blocks smtp connections by default and there
: is local leakage of DNS by TB3. Guess it's time to find a new mail
: client. ):

There is a config option named:
network.proxy.socks_remote_dns which is set to false by default.
Setting it to True does appear to work as intended.

It's odd that it works in TB3 and not FF. Perhaps I should have
restarted the browser before trying to load the hidden wiki.

And if you didn't catch it, the default Thunderbird Start Page (on
WinXP) is
http://live.mozillamessaging.com/thunderbird/start?locale=en-USversion=3.0os=WINNTbuildid=20091204171430

When the socks proxy is set, this does go over tor correctly.
snip

I will try it again this weekend. I am getting really busy this week and
don't want to have to worry about missing a timely email from a client
or coworker. I really can live with the feeds not polling correctly for now.

signature.asc
Description: OpenPGP digital signature

Re: New Article Up

On 12/29/2009 8:28 PM, Andrew Lewman wrote:
 On 12/29/2009 04:49 PM, Programmer In Training wrote:
 As for the documentation, it's like the other docs in that I've found
 them too convoluted for the beginner (like me) to understand and I wind
 up asking more questions then I really need to. Also, everything is so
 spread out (wiki here, documentation there, etc.) it can be hard to find
 any particular piece of information. I'm just aiming to provide a simple
 starter element that the average user can understand as they become
 more security conscious (which is the whole point of my privacy series
 that I started with The Privacy Mandate).
 
 Great.  I like that you want to write about technical bits for a general
 audience.  Most of Tor's documentation is in the code, in doxygen, or
 written for developers.  We don't have enough cycles to write for a
 general audience.

Completely understood, and thank you. (:

 Feel free to ask for clarifications on confusing points.
 

Will do. (:



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/28/2009 11:33 AM, Flamsmark wrote:
 2009/12/27 Programmer In Training p...@joseph-a-nagy-jr.us
 mailto:p...@joseph-a-nagy-jr.us
 
 On 12/27/2009 10:00 PM, Andrew Lewman wrote:
 
  Leave the http, https, ftp, ssl, gopher, whatever fields blank.  only
  configure the socks field as localhost:9050.  If thunderbird 3 has
  proper socks support, it will only use the socks proxy on localhost,
  port 9050 for access to the internet.
 
 That setting causes my connection to time out and I cannot send/retrieve
 anything.
 
 
 What happens if you set the http fields to 127.0.0.1:8118
 http://127.0.0.1:8118, and the SOCKS field to 127.0.0.1:9050

I get all kinds of weird problems. The RSS poller acts up, connections
time out or not randomly, etc. OTOH, I have little to no problems
(except subscribing to or clicking on anything contained within RSS feed
that is available on the web page in question) with multiple field
settings in FF 3.6b4. Those problems aren't critical to my use of Tor
with FF though.

 http://127.0.0.1:9050? What happens if you set the SOCKS field like
 this, but leave all other fields blank? Thunderbird may not know that
 `localhost' is shorthand for 127.0.0.1.

I never use the shorthand.

 Slightly off-topic, but broadly related:
 Isn't Thunderbird known to be a `leaky' client? Of course, with a new
 version, its behaviour may have changed; but I was under the impression
 that it occasionally included the system's true IP address, hostname, or
 other identifying details in outgoing messages, or in communication with
 a mailserver. Can anyone confirm or deny this? Also, are extensions'

Compare this message with some of my older ones to the list and compare.

 traffic piped through the main proxy settings, or are extension writers
 responsible for determining their own behaviour? I'd love to use
 Thunderbird with Tor, but not if its unsafe to do so. Given that
 Thunderbird and Firefox share extension architecture, is it possible to
 use TorButton with Thunderbird?

I already tried that and TorButton isn't compatible with TB (at least
not TB3).

 My apologies if this messages is out of date by the time it is received.
 It is send using a slow store-and-forward system. The emphasis is on the
 `store'.

no problem.



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/28/2009 12:18 PM, Andrew Lewman wrote:
 On 12/28/2009 12:38 PM, Programmer In Training wrote:
 What happens if you set the http fields to 127.0.0.1:8118
 http://127.0.0.1:8118, and the SOCKS field to 127.0.0.1:9050

 I get all kinds of weird problems. The RSS poller acts up, connections
 time out or not randomly, etc. OTOH, I have little to no problems
 (except subscribing to or clicking on anything contained within RSS feed
 that is available on the web page in question) with multiple field
 settings in FF 3.6b4. Those problems aren't critical to my use of Tor
 with FF though.
 
 I'm going to create a vm and load up tb3 to see what issues arise.  It
 may be that much like firefox, the tb socks support is lacking.

I can recreate the issues I'm having and then screen-cap the setting I
was using, if you think that would help.

 Isn't Thunderbird known to be a `leaky' client? Of course, with a new
 version, its behaviour may have changed; but I was under the impression
 that it occasionally included the system's true IP address, hostname, or
 other identifying details in outgoing messages, or in communication with
 a mailserver. Can anyone confirm or deny this? Also, are extensions'
snip
 easier to write a scrubbing smtp proxy that can cleanse your emails
 before being delivered to a mail server.

I'd use such a program in association with Vidalia, but I might have
some issues since I use GPG to sign all outgoing mail. Which reminds me,
I need to set up GPG to use Tor when looking up keys.



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/28/2009 2:35 PM, Andrew Lewman wrote:
 On 12/28/2009 01:18 PM, Andrew Lewman wrote:
 I'm going to create a vm and load up tb3 to see what issues arise.  It
 may be that much like firefox, the tb socks support is lacking.
 
 I set this up and tested it.  The TB3 correctly used SOCKS
 localhost:9050 as socks 5 just fine.  It leaked dns, but otherwise the
 requests went over Tor.  The RSS poller has some weird timeout when a
 feed can't be read via Tor.  However, TB3 just left the feed stale if it
 couldn't be updated when tor circuits took longer than 2-3 minutes to
 get the data.

That's pretty much what it does for me, leaves the feed stale (and
useless). I guess I'll have to get a third-party poller and use it in
the open.

 As for mail, I could get imaps, pop3s to work over tor just fine.  There
 were no exit nodes allowing smtp or s-smtp through their exit policies
 when I was testing, so sending mail via tor didn't work (as expected).
 Again, dns leaked locally.
 

Hrm. So tor automatically blocks smtp connections by default and there
is local leakage of DNS by TB3. Guess it's time to find a new mail
client. ):



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/28/2009 3:15 PM, Andrew Lewman wrote:
 On 12/28/2009 03:48 PM, Programmer In Training wrote:
snip
 That's pretty much what it does for me, leaves the feed stale (and
 useless). I guess I'll have to get a third-party poller and use it in
 the open.
 
 It depends if you want it updated every refresh.  Sometimes, tor doesn't
 build a circuit fast enough for TB3, so TB3 gives up and moves on.  I
 imagine overtime, you'll get your updates just fine.

I do, as most of my feeds are from a news paper (the Jerusalem Post, if
you're wondering, which seems to handle RSS weirdly anyway).

 Hrm. So tor automatically blocks smtp connections by default and there
 is local leakage of DNS by TB3. Guess it's time to find a new mail
 client. ):
 
 Actually, no.  The default exit policy blocks smtp ports.  Sometimes,
 you can find exit nodes that allow smtp.  These are times are typically
 few and far between.

I imagine it's because even s-smtp isn't as secure as it could be.

 I intend to dig through the tb3 source code a bit to see if there's an
 option for forcing dns resolution over the proxy.
 

I believe it's the same as listed in the Wiki for FF BUT in FF it
doesn't work (I cannot resolve the .onion example link for the Hidden
Wiki with it set to true) so I imagine in any version of TB it doesn't
work (reliably anyway).



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/28/2009 9:12 PM, Scott Bennett wrote:
snip
  Does Thunderbird perchance have a way to set the timeout to a different
 value?

Yes, hidden in the equivelant of about:config (options - advanced -
general tab - config editor - search for timeout). Timeouts seem big
enough (nothing under 100 seconds and that's for mailnews.tcptimout).

snip
  Does it have a way to choose SOCKS 4A instead of SOCKS 5?

Yes, but I hear that is sub-optimal.



signature.asc
Description: OpenPGP digital signature

Re: TOR and ISP

On 12/27/2009 12:59 AM, Seth David Schoen wrote:
 Scott Bennett writes:
 
  On the contrary, in the United States, all ISPs are *required* by
 statute to record all URL requests that can be detected passing from their
 customers through their equipment.
 
 What statute requires this?
 

USA PATRIOT Acts, amongst other invasive statutes. Are you not keeping
up with news? A court ruled that telcos couldn't be held liable for
helping the government spy on it's customers.

Also, on the 22nd we lost due process if you didn't notice. Any further
reply will be sent off list.



signature.asc
Description: OpenPGP digital signature

Re: Why Tor nodes based only on specific countries...

On 12/27/2009 7:28 AM, arshad wrote:
 hi all,
 why tor nodes most of the time based on us,germany and korea?
 why not other countries like india, spain, italy, brazil etc...
 
 thanks.
 
 ***
 To unsubscribe, send an e-mail to majord...@torproject.org with
 unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
 

1) You don't bump email messages. I don't know how your mail client
works but this isn't a message board.

2) The location of the nodes depends on the location of the people
allowing their computers to be used as nodes. It's all in the
documentation. I'm not responding to any more of your queries until you
read all the docs.



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/27/2009 8:59 PM, and...@torproject.org wrote:
 On Wed, Dec 23, 2009 at 11:19:35PM -0600, p...@joseph-a-nagy-jr.us wrote 2.1K 
 bytes in 48 lines about:
 : feeds are polled (the new topics are displayed but not readable). I get
 : an error saying that Tor is not an HTTP transport proxy or some such (I
 
 Right, Tor is a socks proxy, not an http proxy.  You may have
 mis-configured the proxy settings in thunderbird 3 to use localhost:9050
 for the http and https protocols.  

I did, but even when I use 8118 (the control panel gives the port of
9051), I still have problems with both email and RSS retrieval.

 : Is this normal behavior? If so, why? This isn't covered in your online docs.
 
 It is.  What may not be covered is Thunderbird 3 specifically, since
 it's new and we rely upon volunteers to tell others how to configure
 various programs.   And as you've discovered, tor tells you it isn't an
 http proxy.
 

In Pidgin, my IM client of choice, I have only a few problems (AIM and
ICQ says its been getting too many connect requests from me) setting it
to HTTP proxy with port 8118 (if this is an incorrect setting, I can
change it to socks5).

I'll try once again to set it as a socks5 proxy in Thunderbird 3. I was
just copying the settings that TorButton uses in Firefox 3.6b4.



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/27/2009 8:59 PM, and...@torproject.org wrote:
 On Wed, Dec 23, 2009 at 11:19:35PM -0600, p...@joseph-a-nagy-jr.us wrote 2.1K 
 bytes in 48 lines about:
 : feeds are polled (the new topics are displayed but not readable). I get
 : an error saying that Tor is not an HTTP transport proxy or some such (I
 
 Right, Tor is a socks proxy, not an http proxy.  You may have
 mis-configured the proxy settings in thunderbird 3 to use localhost:9050
 for the http and https protocols.  
snip

OK, now I'm confused. You say don't use :9050, but all your
documentation for FF, TB, and even Pidgin says use :9050

Has this changed and the wiki just not updated to reflect this?



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/27/2009 10:00 PM, Andrew Lewman wrote:
 On 12/27/2009 10:39 PM, Programmer In Training wrote:
   OK, now I'm confused. You say don't use :9050, but all your
 documentation for FF, TB, and even Pidgin says use :9050

 Has this changed and the wiki just not updated to reflect this?
 
 Yes, you are confused.  Let me try to clarify.
 
 Leave the http, https, ftp, ssl, gopher, whatever fields blank.  only
 configure the socks field as localhost:9050.  If thunderbird 3 has
 proper socks support, it will only use the socks proxy on localhost,
 port 9050 for access to the internet.

OK, that totally contradicts the wiki. Going to configure that now and
send myself a test email.

 I haven't used thunderbird 3, so I may be completely off base.
 

*shrugs* First time I'm using proxy software, so I wouldn't know.



signature.asc
Description: OpenPGP digital signature

Re: Vidalia Bundle and RSS in Thunderbird 3.0

On 12/27/2009 10:00 PM, Andrew Lewman wrote:
 On 12/27/2009 10:39 PM, Programmer In Training wrote:
   OK, now I'm confused. You say don't use :9050, but all your
 documentation for FF, TB, and even Pidgin says use :9050

 Has this changed and the wiki just not updated to reflect this?
 
 Yes, you are confused.  Let me try to clarify.
 
 Leave the http, https, ftp, ssl, gopher, whatever fields blank.  only
 configure the socks field as localhost:9050.  If thunderbird 3 has
 proper socks support, it will only use the socks proxy on localhost,
 port 9050 for access to the internet.
 
 I haven't used thunderbird 3, so I may be completely off base.
 

That setting causes my connection to time out and I cannot send/retrieve
anything.



signature.asc
Description: OpenPGP digital signature

Re: TOR and ISP

On 12/26/2009 4:07 PM, Arshad wrote:
 hi all, does the ISP know which sites the user visits through TOR and
 privoxy or polipo? thank you very much.
 

No. From all the documentation I read on how TOR works, they would only
know the part of the relay closest to you. After that you pretty much
disappear.

HTH

PIT



signature.asc
Description: OpenPGP digital signature

Re: TOR and ISP

On 12/26/2009 4:53 PM, Arshad wrote:
 thank you very much. then if the user uses tor for his all browsing
 purposes, from the isp end how does they see this? shouldnt they know
 which sites the user visits? if dad request the bill include all the
 sites the son visits what would the give? is the user shown as a peron
 who doesnt use internet or what will be there recorded for where the
 dns request came from etc?
snip

Check out the Neat Links section near the bottom of the documentation
part of the Tor Project website[1].

HTH,

PIT

[1]: http://www.torproject.org/documentation.html.en



signature.asc
Description: OpenPGP digital signature

Re: TOR and ISP

On 12/26/2009 5:13 PM, Seth David Schoen wrote:
 Arshad writes:
 
 thank you very much. then if the user uses tor for his all browsing
 purposes, from the isp end how does they see this? shouldnt they know
 which sites the user visits? if dad request the bill include all the
 sites the son visits what would the give? is the user shown as a peron
 who doesnt use internet or what will be there recorded for where the
 dns request came from etc?
 
 The ISP would see the user visiting a number of Tor nodes.  If the user
 isn't using bridges, then the ISP will know that the user is using Tor,
 but not what the user is doing with Tor.  For example, the ISP won't
 know what sites or services the user is using through Tor.
 

May I ask what bridges is in regards to Tor?

Thanks,

PIT



signature.asc
Description: OpenPGP digital signature

Re: TOR and ISP

On 12/26/2009 8:37 PM, Ted Smith wrote:
 On Sat, 2009-12-26 at 17:23 -0600, Programmer In Training wrote:
snip
 May I ask what bridges is in regards to Tor?
 
 I'm responding off-list because this is a question easily answered on
 the Tor websites ;-)

Doh!

 A bridge is a Tor entry node that isn't in the official list of Tor
 nodes. The person operating the bridge sets it up, and distributes its
 descriptor to the people who they want to use the bridge. In most cases
 bridge operators share the descriptors with the Tor Project, and then
 they distribute the descriptors to end-users.

Thanks for the info, I should have looked there first. lol



signature.asc
Description: OpenPGP digital signature

Cannot Load The Onion

504 Connect to www.theonion.com:80 failed: SOCKS error: connection refused

The following error occurred while trying to access
http://www.theonion.com/:

504 Connect to www.theonion.com:80 failed: SOCKS error: connection refused
Generated Fri, 25 Dec 2009 10:26:58 Central Standard Time by Polipo on
localhost:8118.



signature.asc
Description: OpenPGP digital signature

Re: Cannot Load The Onion

On 12/25/2009 10:28 AM, Programmer In Training wrote:
 504 Connect to www.theonion.com:80 failed: SOCKS error: connection refused
 
 The following error occurred while trying to access
 http://www.theonion.com/:
 
 504 Connect to www.theonion.com:80 failed: SOCKS error: connection refused
 Generated Fri, 25 Dec 2009 10:26:58 Central Standard Time by Polipo on
 localhost:8118.
 

I guess I should give my setup:

HTTP and SSL Proxy:
127.0.0.1:8118

SOCKS5 Proxy:
127.0.0.1:9050



signature.asc
Description: OpenPGP digital signature

Re: Cannot Load The Onion

On 12/25/2009 12:17 PM, Seth David Schoen wrote:
 Programmer In Training writes:
 
 504 Connect to www.theonion.com:80 failed: SOCKS error: connection refused
 
 Perhaps The Onion has something against the onion router.
 

I hope not. For one, the irony would be too much and could possibly
destroy the world as we know it. Secondly, I already had to take my IM
and Mail programs off the network and use Safari for Grooveshark (and
the occasional FB app). I'm trying to use Tor more, not less.



signature.asc
Description: OpenPGP digital signature

Re: Cannot Load The Onion