Re: Using tor as proxy for the command line

2010-05-07 Thread Jacob Appelbaum
Scott Bennett wrote:
>>>  I think using nmap in the context of tor is really barking up the
>>> wrong tree.
>> Perhaps, the goal was more general than Tor - it's specifically a set of
>> patches for SOCKS5.
> 
>  Would you post your specifications for it, please?
> 

Specifications?

There's an nmap branch with some basic SOCKS proxy support here:

svn co svn://svn.insecure.org/nmap-exp/ioerror/

All the best,
Jacob



signature.asc
Description: OpenPGP digital signature


Re: Using tor as proxy for the command line

2010-05-06 Thread Scott Bennett
 On Thu, 06 May 2010 15:56:25 +0200 Jacob Appelbaum 
wrote:
>Scott Bennett wrote:
>>  On Thu, 06 May 2010 11:05:17 +0200 Jacob Appelbaum m.net>
>> wrote:
>>> Scott Bennett wrote:
  On Wed, 5 May 2010 20:22:55 +0200 Borja Luaces il=3D
>>> =3D2Ecom>
 wrote:
> I would like to know if it is possible to use tor as proxy for the c=
>om=3D
>>> mand
> line under linux (Ubuntu).
>
> If it is possible, how can I do it?
>
> PS: I would like to proxymise all the comunications from the command=
> l=3D
>>> ine
> (wget, nmap,...)
>
  Note that wget(1) abides by the ftp_proxy and http_proxy environ=
>me=3D
>>> nt
 variables described in fetch(3).  I suspect that torify(1) used with =
>nm=3D
>>> ap
 will not be particularly useful to you nor would you endear yourself =
>to=3D
 exit operators by doing that.
 =3D20
>>> I wrote a little program to ease my use of wget with Tor/Polipo/Privox=
>y:
>>>
>>> % cat tor-wget
>>> #!/bin/bash -x
>>> export http_proxy=3D3D127.0.0.1:8118
>>> export https_proxy=3D3D127.0.0.1:8118
>>> wget -U " " $@
>>> EOF
>>=20
>>  I would recommend using the full form in each of those above.  The=
>re
>> are apparently a few cases where the abbreviated form you show here wil=
>l
>> not work.  Also, you might define ftp_proxy; otherwise FTP requests wil=
>l
>> go directly, instead of being blocked by privoxy.  Or if you have somet=
>hing
>> like 3proxy installed, you could set ftp_proxy to use that, but I don't=
> see
>> a very easy way to stop DNS query leakage if you do that.

 I've reread the man pages for 3proxy and its author's other proxies
since posting that.  It appears that none of them will translate ordinary
proxy protocols into SOCKS stuff, so please ignore my earlier comments
regarding 3proxy.  Any FTP connections will, at some point, be in the clear
from your system and cannot be diverted through tor by ordinary FTP proxies.
>
>I don't understand what you mean by this? What do you mean full form?

 As documented in the man page for fetch(3), it should look like a URL.
For example,

http_proxy=http://127.0.0.1:8118
https_proxy=https://127.0.0.1:8118
export http_proxy
export https_proxy

>How does this leak DNS...?

No, I was referring there to the use of 3proxy as an FTP proxy, which
I now see won't help here anyway, so just forget all that.
>
>I agree that ftp_proxy is probably a good idea. I've added that to the
>helper script.
>
>>> I also started working on a patch to nmap with Fyodor to work with SOC=
>KS
>>> proxies; it's in my (ioerror) svn branch on the nmap subversion server=
>=2E
>>> It sorta works but it's not great for anonymity because of the many
>>> kinds of packets that nmap wants to send.
>>>
>>  I think using nmap in the context of tor is really barking up the
>> wrong tree.
>
>Perhaps, the goal was more general than Tor - it's specifically a set of
>patches for SOCKS5.

 Would you post your specifications for it, please?


  Scott Bennett, Comm. ASMELG, CFIAG
**
* Internet:   bennett at cs.niu.edu  *
**
* "A well regulated and disciplined militia, is at all times a good  *
* objection to the introduction of that bane of all free governments *
* -- a standing army."   *
*-- Gov. John Hancock, New York Journal, 28 January 1790 *
**
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/


Re: Using tor as proxy for the command line

2010-05-06 Thread Jim


Scott Bennett wrote:

 On Thu, 06 May 2010 11:05:17 +0200 Jacob Appelbaum 
wrote:



% cat tor-wget
#!/bin/bash -x
export http_proxy=3D127.0.0.1:8118
export https_proxy=3D127.0.0.1:8118
wget -U " " $@
EOF


 I would recommend using the full form in each of those above.  There
are apparently a few cases where the abbreviated form you show here will
not work.


Could you elaborate on what you mean by "full form" and "abbreviated 
form" please?


Thanks.

Jim

***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/


Re: Using tor as proxy for the command line

2010-05-06 Thread Scott Bennett
 On Thu, 06 May 2010 11:05:17 +0200 Jacob Appelbaum 
wrote:
>Scott Bennett wrote:
>>  On Wed, 5 May 2010 20:22:55 +0200 Borja Luaces =2Ecom>
>> wrote:
>>> I would like to know if it is possible to use tor as proxy for the com=
>mand
>>> line under linux (Ubuntu).
>>>
>>> If it is possible, how can I do it?
>>>
>>> PS: I would like to proxymise all the comunications from the command l=
>ine
>>> (wget, nmap,...)
>>>
>>  Note that wget(1) abides by the ftp_proxy and http_proxy environme=
>nt
>> variables described in fetch(3).  I suspect that torify(1) used with nm=
>ap
>> will not be particularly useful to you nor would you endear yourself to=
>
>> exit operators by doing that.
>>=20
>
>I wrote a little program to ease my use of wget with Tor/Polipo/Privoxy:
>
>% cat tor-wget
>#!/bin/bash -x
>export http_proxy=3D127.0.0.1:8118
>export https_proxy=3D127.0.0.1:8118
>wget -U " " $@
>EOF

 I would recommend using the full form in each of those above.  There
are apparently a few cases where the abbreviated form you show here will
not work.  Also, you might define ftp_proxy; otherwise FTP requests will
go directly, instead of being blocked by privoxy.  Or if you have something
like 3proxy installed, you could set ftp_proxy to use that, but I don't see
a very easy way to stop DNS query leakage if you do that.
>
>I also started working on a patch to nmap with Fyodor to work with SOCKS
>proxies; it's in my (ioerror) svn branch on the nmap subversion server.
>It sorta works but it's not great for anonymity because of the many
>kinds of packets that nmap wants to send.
>
 I think using nmap in the context of tor is really barking up the
wrong tree.


  Scott Bennett, Comm. ASMELG, CFIAG
**
* Internet:   bennett at cs.niu.edu  *
**
* "A well regulated and disciplined militia, is at all times a good  *
* objection to the introduction of that bane of all free governments *
* -- a standing army."   *
*-- Gov. John Hancock, New York Journal, 28 January 1790 *
**
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/


Re: Using tor as proxy for the command line

2010-05-06 Thread Jacob Appelbaum
> exit operators by doing that.
>=20

I wrote a little program to ease my use of wget with Tor/Polipo/Privoxy:

% cat tor-wget
#!/bin/bash -x
export http_proxy=3D127.0.0.1:8118
export https_proxy=3D127.0.0.1:8118
wget -U " " $@
EOF

I also started working on a patch to nmap with Fyodor to work with SOCKS
proxies; it's in my (ioerror) svn branch on the nmap subversion server.
It sorta works but it's not great for anonymity because of the many
kinds of packets that nmap wants to send.

All the best,
Jacob



signature.asc
Description: OpenPGP digital signature


Re: Using tor as proxy for the command line

2010-05-05 Thread Scott Bennett
 On Wed, 5 May 2010 20:22:55 +0200 Borja Luaces 
wrote:
>I would like to know if it is possible to use tor as proxy for the command
>line under linux (Ubuntu).
>
>If it is possible, how can I do it?
>
>PS: I would like to proxymise all the comunications from the command line
>(wget, nmap,...)
>
 Note that wget(1) abides by the ftp_proxy and http_proxy environment
variables described in fetch(3).  I suspect that torify(1) used with nmap
will not be particularly useful to you nor would you endear yourself to
exit operators by doing that.


  Scott Bennett, Comm. ASMELG, CFIAG
**
* Internet:   bennett at cs.niu.edu  *
**
* "A well regulated and disciplined militia, is at all times a good  *
* objection to the introduction of that bane of all free governments *
* -- a standing army."   *
*-- Gov. John Hancock, New York Journal, 28 January 1790 *
**
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/


Re: Using tor as proxy for the command line

2010-05-05 Thread TomM

Google "transparent proxy"


On May 5, 2010, at 3:03 PM, downie - wrote:




> From: t...@tomhek.nl
> To: or-talk@freehaven.net
> Subject: Re: Using tor as proxy for the command line
> Date: Wed, 5 May 2010 18:32:04 +
>
> You can use the command torify, it works for a lot of programs.  
Put torify in front of the command you want to give and most of the  
times it proxies the connections perfectly through Tor.

>
> Tom
>
Hi,
I'm interested in this as well. I found torify in the OSX PPC  
package, and made a symlink to it. However it looks for torsocks,  
which I can't find, although there is a tor-tsocks.conf

.
GD

The New Busy is not the old busy. Search, chat and e-mail from your  
inbox. Get started.




RE: Using tor as proxy for the command line

2010-05-05 Thread downie -



> From: t...@tomhek.nl
> To: or-talk@freehaven.net
> Subject: Re: Using tor as proxy for the command line
> Date: Wed, 5 May 2010 18:32:04 +
> 
> You can use the command torify, it works for a lot of programs. Put torify in 
> front of the command you want to give and most of the times it proxies the 
> connections perfectly through Tor.
> 
> Tom
> 
Hi,
I'm interested in this as well. I found torify in the OSX PPC package, and made 
a symlink to it. However it looks for torsocks, which I can't find, although 
there is a tor-tsocks.conf
.
GD
  
_
The New Busy is not the old busy. Search, chat and e-mail from your inbox.
http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_3

Re: Using tor as proxy for the command line

2010-05-05 Thread Tom Hek
You can use the command torify, it works for a lot of programs. Put torify in 
front of the command you want to give and most of the times it proxies the 
connections perfectly through Tor.

Tom

On 5 mei 2010, at 20:22, Borja Luaces wrote:

> I would like to know if it is possible to use tor as proxy for the command 
> line under linux (Ubuntu).
> 
> If it is possible, how can I do it?
> 
> PS: I would like to proxymise all the comunications from the command line 
> (wget, nmap,...)
> 
> Thanks
> 
> -- 
> Borja Luaces Altares
> Administrador/Analista de Sistemas Junior (MCSE Security,C|EH & CSSA)

***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/