Re: Using tor as proxy for the command line
Scott Bennett wrote: >>> I think using nmap in the context of tor is really barking up the >>> wrong tree. >> Perhaps, the goal was more general than Tor - it's specifically a set of >> patches for SOCKS5. > > Would you post your specifications for it, please? > Specifications? There's an nmap branch with some basic SOCKS proxy support here: svn co svn://svn.insecure.org/nmap-exp/ioerror/ All the best, Jacob signature.asc Description: OpenPGP digital signature
Re: Using tor as proxy for the command line
On Thu, 06 May 2010 15:56:25 +0200 Jacob Appelbaum wrote: >Scott Bennett wrote: >> On Thu, 06 May 2010 11:05:17 +0200 Jacob Appelbaum m.net> >> wrote: >>> Scott Bennett wrote: On Wed, 5 May 2010 20:22:55 +0200 Borja Luaces il=3D >>> =3D2Ecom> wrote: > I would like to know if it is possible to use tor as proxy for the c= >om=3D >>> mand > line under linux (Ubuntu). > > If it is possible, how can I do it? > > PS: I would like to proxymise all the comunications from the command= > l=3D >>> ine > (wget, nmap,...) > Note that wget(1) abides by the ftp_proxy and http_proxy environ= >me=3D >>> nt variables described in fetch(3). I suspect that torify(1) used with = >nm=3D >>> ap will not be particularly useful to you nor would you endear yourself = >to=3D exit operators by doing that. =3D20 >>> I wrote a little program to ease my use of wget with Tor/Polipo/Privox= >y: >>> >>> % cat tor-wget >>> #!/bin/bash -x >>> export http_proxy=3D3D127.0.0.1:8118 >>> export https_proxy=3D3D127.0.0.1:8118 >>> wget -U " " $@ >>> EOF >>=20 >> I would recommend using the full form in each of those above. The= >re >> are apparently a few cases where the abbreviated form you show here wil= >l >> not work. Also, you might define ftp_proxy; otherwise FTP requests wil= >l >> go directly, instead of being blocked by privoxy. Or if you have somet= >hing >> like 3proxy installed, you could set ftp_proxy to use that, but I don't= > see >> a very easy way to stop DNS query leakage if you do that. I've reread the man pages for 3proxy and its author's other proxies since posting that. It appears that none of them will translate ordinary proxy protocols into SOCKS stuff, so please ignore my earlier comments regarding 3proxy. Any FTP connections will, at some point, be in the clear from your system and cannot be diverted through tor by ordinary FTP proxies. > >I don't understand what you mean by this? What do you mean full form? As documented in the man page for fetch(3), it should look like a URL. For example, http_proxy=http://127.0.0.1:8118 https_proxy=https://127.0.0.1:8118 export http_proxy export https_proxy >How does this leak DNS...? No, I was referring there to the use of 3proxy as an FTP proxy, which I now see won't help here anyway, so just forget all that. > >I agree that ftp_proxy is probably a good idea. I've added that to the >helper script. > >>> I also started working on a patch to nmap with Fyodor to work with SOC= >KS >>> proxies; it's in my (ioerror) svn branch on the nmap subversion server= >=2E >>> It sorta works but it's not great for anonymity because of the many >>> kinds of packets that nmap wants to send. >>> >> I think using nmap in the context of tor is really barking up the >> wrong tree. > >Perhaps, the goal was more general than Tor - it's specifically a set of >patches for SOCKS5. Would you post your specifications for it, please? Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * ** *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Using tor as proxy for the command line
Scott Bennett wrote: On Thu, 06 May 2010 11:05:17 +0200 Jacob Appelbaum wrote: % cat tor-wget #!/bin/bash -x export http_proxy=3D127.0.0.1:8118 export https_proxy=3D127.0.0.1:8118 wget -U " " $@ EOF I would recommend using the full form in each of those above. There are apparently a few cases where the abbreviated form you show here will not work. Could you elaborate on what you mean by "full form" and "abbreviated form" please? Thanks. Jim *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Using tor as proxy for the command line
On Thu, 06 May 2010 11:05:17 +0200 Jacob Appelbaum wrote: >Scott Bennett wrote: >> On Wed, 5 May 2010 20:22:55 +0200 Borja Luaces =2Ecom> >> wrote: >>> I would like to know if it is possible to use tor as proxy for the com= >mand >>> line under linux (Ubuntu). >>> >>> If it is possible, how can I do it? >>> >>> PS: I would like to proxymise all the comunications from the command l= >ine >>> (wget, nmap,...) >>> >> Note that wget(1) abides by the ftp_proxy and http_proxy environme= >nt >> variables described in fetch(3). I suspect that torify(1) used with nm= >ap >> will not be particularly useful to you nor would you endear yourself to= > >> exit operators by doing that. >>=20 > >I wrote a little program to ease my use of wget with Tor/Polipo/Privoxy: > >% cat tor-wget >#!/bin/bash -x >export http_proxy=3D127.0.0.1:8118 >export https_proxy=3D127.0.0.1:8118 >wget -U " " $@ >EOF I would recommend using the full form in each of those above. There are apparently a few cases where the abbreviated form you show here will not work. Also, you might define ftp_proxy; otherwise FTP requests will go directly, instead of being blocked by privoxy. Or if you have something like 3proxy installed, you could set ftp_proxy to use that, but I don't see a very easy way to stop DNS query leakage if you do that. > >I also started working on a patch to nmap with Fyodor to work with SOCKS >proxies; it's in my (ioerror) svn branch on the nmap subversion server. >It sorta works but it's not great for anonymity because of the many >kinds of packets that nmap wants to send. > I think using nmap in the context of tor is really barking up the wrong tree. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * ** *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Using tor as proxy for the command line
> exit operators by doing that. >=20 I wrote a little program to ease my use of wget with Tor/Polipo/Privoxy: % cat tor-wget #!/bin/bash -x export http_proxy=3D127.0.0.1:8118 export https_proxy=3D127.0.0.1:8118 wget -U " " $@ EOF I also started working on a patch to nmap with Fyodor to work with SOCKS proxies; it's in my (ioerror) svn branch on the nmap subversion server. It sorta works but it's not great for anonymity because of the many kinds of packets that nmap wants to send. All the best, Jacob signature.asc Description: OpenPGP digital signature
Re: Using tor as proxy for the command line
On Wed, 5 May 2010 20:22:55 +0200 Borja Luaces wrote: >I would like to know if it is possible to use tor as proxy for the command >line under linux (Ubuntu). > >If it is possible, how can I do it? > >PS: I would like to proxymise all the comunications from the command line >(wget, nmap,...) > Note that wget(1) abides by the ftp_proxy and http_proxy environment variables described in fetch(3). I suspect that torify(1) used with nmap will not be particularly useful to you nor would you endear yourself to exit operators by doing that. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * ** *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Using tor as proxy for the command line
Google "transparent proxy" On May 5, 2010, at 3:03 PM, downie - wrote: > From: t...@tomhek.nl > To: or-talk@freehaven.net > Subject: Re: Using tor as proxy for the command line > Date: Wed, 5 May 2010 18:32:04 + > > You can use the command torify, it works for a lot of programs. Put torify in front of the command you want to give and most of the times it proxies the connections perfectly through Tor. > > Tom > Hi, I'm interested in this as well. I found torify in the OSX PPC package, and made a symlink to it. However it looks for torsocks, which I can't find, although there is a tor-tsocks.conf . GD The New Busy is not the old busy. Search, chat and e-mail from your inbox. Get started.
RE: Using tor as proxy for the command line
> From: t...@tomhek.nl > To: or-talk@freehaven.net > Subject: Re: Using tor as proxy for the command line > Date: Wed, 5 May 2010 18:32:04 + > > You can use the command torify, it works for a lot of programs. Put torify in > front of the command you want to give and most of the times it proxies the > connections perfectly through Tor. > > Tom > Hi, I'm interested in this as well. I found torify in the OSX PPC package, and made a symlink to it. However it looks for torsocks, which I can't find, although there is a tor-tsocks.conf . GD _ The New Busy is not the old busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_3
Re: Using tor as proxy for the command line
You can use the command torify, it works for a lot of programs. Put torify in front of the command you want to give and most of the times it proxies the connections perfectly through Tor. Tom On 5 mei 2010, at 20:22, Borja Luaces wrote: > I would like to know if it is possible to use tor as proxy for the command > line under linux (Ubuntu). > > If it is possible, how can I do it? > > PS: I would like to proxymise all the comunications from the command line > (wget, nmap,...) > > Thanks > > -- > Borja Luaces Altares > Administrador/Analista de Sistemas Junior (MCSE Security,C|EH & CSSA) *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/