Re: [tor-talk] A Course Project
El Mouatez Billah Karbab wrote: > Dears Tor team > > I am doing my Phd in Concordia university Montreal, and I have a course > about network security INSE 6120. The professor of this course wants us to > do a project in both the field of security research with some practical > application, and I have chosen TOR and its applications. > > I am looking for a problem to solve even in TOR tool or using TOR tool. > > I will be grateful if you give me any hints or ideas for my project. > Hi! It's great to hear you want to work on Tor. To make things as easy as possible for researchers and potential researchers, we've compiled a list of open research questions and potential projects on our volunteer page [0]. If any of those projects take your interest, try to get in touch with the person listed in the "Likely Mentors" section. The easiest way to do that would probably be on our development IRC channel [1]. Good luck! [0]: https://www.torproject.org/getinvolved/volunteer#Coding [1]: https://www.torproject.org/about/contact#irc -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Dropping Tor Browser support for Mac OSX 10.6?
Georg Koppen wrote: > > Keeping support for OS X 10.6 and keeping support for 32 bit is not > strictly the same. In fact, I'd assume there is only a fraction of OS X > 10.6 users that would not be capable of running a 64 bit Tor Browser. > So, what about switching to 64 bit but still supporting OS X 10.6? > Ok thanks for clarifying. The ratio of 10.6 32-bit users to 10.6 64-bit users, I have less information on. I could starting asking, but I can imagine it taking a while to get useful data. In the absence of more information, I'll abide by your judgment on the situation. -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Dropping Tor Browser support for Mac OSX 10.6?
Mike Perry wrote: > Are there any 10.6 32bit Mac users on this list? Is Tails a workable > option for you? > Hi Mike, Sorry for chiming in belatedly on this question. I still see emails from Mac 10.5 users maybe once every two or three months on average. I usually tell them they should either purchase an upgrade to their operating system or switch to an operating system that doesn't make them pay for security upgrades such as Debian, Ubuntu, or Tails. Sometimes I get asked why Tor Browser doesn't support Mac OS 10.5, and I can truthfully say that this was a Mozilla decision, not a Tor Project decision, and point them to https://support.mozilla.org/en-US /kb/firefox-no-longer-works-mac-os-x-10-5 or some similar page for the underlying cause. In more than one of these conversations, the user explained to me that their reason for not upgrading to a more recent version of Mac OS was financial. I also get that switching to Linux for the first time can be a jarring transition for non-technical users. I encounter Mac 10.6 users much more frequently than that. Probably once a week, on average, that I know of. Most Mac users I don't find out their OS version at all, just that they are Mac users. I imagine there are many more Mac OS 10.6 users that don't bother emailing support. I can think of at least one Mac 10.6 user I talked to last month who said he was a journalist. I'm not sure if he had a 32-bit system or not though. I think it's more likely that rather than take the initiative to get started with Tails, existing Mac OS 10.6 32-bit Tor Browser users would just not upgrade the Tor Browser they have that still "works" rather than switch their operating system (a task that requires some commitment). Recently I can remember assisting a Tor-Browser-2.3.25 user switch to the latest version of Tor Browser after he told me that version was "the last one that worked" for him. Another possibility, of course, is that one of the many web forums out there that describes sketchy Tor workarounds directs Mac users who see whatever-the-error-is-for-failing-to-run-64-bit-Tor-Browser-on-a-32- bit-machine that they should just download and use this link to an old archived Mac Tor Browser. "Awesome! Tor works now!" Sorry for asking you to do more work, but I'm requesting that we keep supporting Mac OS 10.6 with a deadline, maybe a year in the future. (The number of Mac 10.5 users has definitely decreased in the past year). If 32-bit Mac Tor Browsers are no longer distributed, I can imagine an increase in the help desk volume when confused, sometimes desperate, Mac users discover they can't run the Mac Tor Browser on their 32-bit Macbook. Matt Pagan -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] OTFC IRC issues - new Tor friendly IRC network?
BlueStar88: > 37lnq2veifl4kar7.onion:6697 is up and running fine. > > When connecting with `screen torsocks irssi -c 37lnq2veifl4kar7.onion -p 6697` I get the error message: [(status)] [Jul 01 22:33:27] WARNING torsocks[26459]: [connect] Connection to a local address are denied since it might be a TCP DNS query to a local DNS server So that irssi reports Irssi: Unable to connect server 37lnq2veifl4kar7.onion port 6697 [Operation not permitted] Is this a misconfiguration on my part, or a bug with torsocks? It seems that the old torsocks versions 1.1 and 1.2 had some similar issues[0][1][2][3], but I'm not sure how much of that code is reused or fixed in the 2.0 rewrite... [0]: https://code.google.com/p/torsocks/issues/detail?id=32 [1]: https://code.google.com/p/torsocks/issues/detail?id=34 [2]: https://code.google.com/p/torsocks/issues/detail?id=35 [3]: https://code.google.com/p/torsocks/issues/detail?id=36 -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] obfsproxy instructions for fedora
k...@mailtor.net: > yum install make automake gcc python-pip python-devel libyaml-devel Thanks! I made a website commit[0] with your instructions. It should be reflected on the obfsproxy-instructions page within a day or two. [0]: https://lists.torproject.org/pipermail/tor-commits/2014-May/075057.html -- Matt Pagan PGP: 0xE9284418E360583C -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Unimportant Error in FAQ
Q: > Hello everyone! > I'm not sure where to submit unimportant errors in the docs. > > Anyways, I noticed that there is an error in the FAQ. > https://www.torproject.org/docs/faq.html.en#DistributingTor > It says "Most people who ask us this question don't want to distribute > just the Tor software, though. They want to distribute the Tor Browser > <https://www.torproject.org/projects/torbrowser.html.en>. This includes > Mozilla Aurora <https://www.mozilla.org/en-US/firefox/all-aurora.html> > and Vidalia <https://www.torproject.org/projects/vidalia.html.en>." > Since version 3.x of TBB Vidalia has not been included. > Thanks for the heads up. I've updated this FAQ entry[0]. The website should reflect these changes within a day or so. [0]: https://lists.torproject.org/pipermail/tor-commits/2014-May/074290.html -- Matt Pagan PGP: 0xE9284418E360583C -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] fresh TBB is damaged and can't be opened on Mac OS X
lee colleton: > I've checked the signature on TBB and it's good. > > The security setting allows all binaries to be run but it's still a no-go. > > Any other ideas? > > --lee > > Yes, one more. First completely delete the Tor Browser you downloaded. >From System Preferences (in the Apple menu) go to Security and Privacy. Under the General tab, select "Allow downloaded applications from anywhere". Then download the Mac Tor Browser Bundle again, unpack it and run it. -- Matt Pagan m...@pagan.io PGP: 0xE9284418E360583C -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] fresh TBB is damaged and can't be opened on Mac OS X
Roger Dingledine: > On Sun, Mar 30, 2014 at 12:50:49PM -0700, lee colleton wrote: >> Trying to open TorBrowserBundle_en-US from >> TorBrowserBundle-3.5.3-osx32_en-US.zip produces an error: >> >> "TorBrowserBundle_en-US" is damaged and can't be opened. You should move it >>> to the Trash. >> >> >> What to do? > > First check the signature and see if you have a genuine accurate copy > of TBB. If you still get the same message after verifying the signature of your download [0], press the Control-key, then click on the Tor Browser Bundle icon. Choose 'Open' from the shortcut menu, then click 'Open'. The app is saved as an exception to your security settings, and you will be able to open it in the future by double-clicking it, just like any authorized app [1]. Apple's condition regarding signing applications are currently not friendly at all to the security needs of a project like Tor. We will hopefully resolve the issue at some point [2]. [0]: https://www.torproject.org/docs/verifying-signatures [1]: https://support.apple.com/kb/PH14370?viewlocale=en_US [2]: https://trac.torproject.org/projects/tor/ticket/6540 -- Matt Pagan m...@pagan.io PGP: 0xE9284418E360583C -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Weekly News — October 9th, 2013
On Fri, 11 Oct 2013 19:41:25 +0100 mick wrote: > On Fri, 11 Oct 2013 15:51:24 + > Matt Pagan allegedly wrote: > > > This past week on the Tor Help Desk someone requested assistance > > setting up Tor to circumvent the internet censorship done by the > > UK government. I wrote this blurb because I wanted the Tor community > > to be alerted to this new use case. I pointed to your post so that > > Tor Weekly News readers would have a frame of reference for what was > > happening in the United Kingdom without revealing the contents of > > the actual conversation I had. > > > > Hi Matt > > No problem. However, whilst we do have the beginnings of very > intrusive network censorship in the UK (some ISPs are more pliable > than others when leaned on) we do not /yet/ have what you could call > a a pan UK firewall on the lines of that seen in more (ahem) > repressive regimes. > > It is interesting that UK users should be approaching the Tor help > desk for advice, and "use Tor" is certainly good advice. But you could > equally say "change your ISP to one with some balls". UK users should > stay away from the majors (BT, Virgin, talk-talk, O2, Sky, EE etc) and > use one of the multiple independents. BT in particular has a very bad > track record (see "phorm") whilst the likes of AAISP are truly > excellent. > > If enough UK users vote with their wallets, ISPs may be more inclined > to grow a pair. Unfortunately, the general UK reaction to the Snowden > revelations seem only to prove how apathetic UK users really are. > > Best > > Mick > - > > Mick Morgan > gpg fingerprint: FC23 3338 F664 5E66 876B 72C0 0A1F E60B 5BAD D312 > http://baldric.net > > ----- > Thanks for shedding more light on the situation in the UK. I'll take that into consideration. Peace, Matt Pagan -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Weekly News — October 9th, 2013
On Wed, 9 Oct 2013 20:40:19 +0100 mick wrote: > On Wed, 9 Oct 2013 17:27:02 +0200 > Lunar allegedly wrote: > > > > > Tor Weekly NewsOctober 9th, > > 2013 > > > > > > Welcome to the fifteenth issue of Tor Weekly News, the weekly > > newsletter that covers what's happening in the world of Tor — “king > > of high-secure, low-latency anonymity” [1]. > > > [ snip ] > > > > The United Kingdom is now one of the countries where citizens > > request assistance circumventing a national firewall [36]. > > [ snip ] > > > [36] https://lists.torproject.org/pipermail/tor-talk/2013-July/029054.html > > > > Not quite what I said, but hey. :-) > > Best > > Mick > Hi Mick, This past week on the Tor Help Desk someone requested assistance setting up Tor to circumvent the internet censorship done by the UK government. I wrote this blurb because I wanted the Tor community to be alerted to this new use case. I pointed to your post so that Tor Weekly News readers would have a frame of reference for what was happening in the United Kingdom without revealing the contents of the actual conversation I had. Peace, Matt Pagan -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Contents of PirateBrowser 0.6b
On Fri, 30 Aug 2013 16:29:18 + Matt Pagan wrote: > The Pirate Browser is based off Firefox 23.0 > > Extensions: > FoxyProxy Standard 4.2.2 > > Plugins: > Google Update 1.3.21.153 > Microsoft(R) DRM 9.0.0.4503 > Microsoft(R) DRM 9.0.0.4503 > Windows Media Player Plug-in Dynamic Link Library > Note here the exclusion of HTTPS-Everywhere, NoScript, Torbutton, etc. -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Contents of PirateBrowser 0.6b
Since the Priate Browser has only been released for Windows so far, some people who don't use Windows have been wondering what's in it. I put a copy of Windows XP on a virtual machine to examine the contents of the Pirate Browser package. I used the microsoft utility FCIV to compare the md5 and sha1 sums of the contents of the App folder for the Pirate Browser 0.6b and the Tor Browser Bundle 2.3.25-12(en-US). Here are my results: Tor Browser\App\libeay32.dll PirateBrowser 0.6b\App\libeay32.dll match Tor Browser\App\libgcc_s_dw2-1.dll PirateBrowser 0.6b\App\libgcc_s_dw2-1.dll match Tor Browser\App\libssp-0.dll PirateBrowser 0.6b\App\libssp-0.dll match Tor Browser\App\mingwm10.dll PirateBrowser 0.6b\App\mingwm10.dll match Tor Browser\App\QtCore4.dll PirateBrowser 0.6b\App\QtCore4.dll match Tor Browser\App\QtGui4.dll PirateBrowser 0.6b\App\QtGUi4.dll match Tor Browser\App\QtNetwork4.dll PirateBrowser 0.6b\App\QtNetwork4.dll match Tor Browser\App\QtXml4.dll PirateBrowser 0.6b\App\QtXml4.dll match Tor Browser\App\ssleay32.dll PirateBrowser 0.6b\App\ssleay32.dll match Tor Browser\App\tor.exe PirateBrowser 0.6b\App\tor.exe match Tor Browser\App\vidalia.exe PirateBrowser 0.6b\App\vidalia.exe match >From this I conclude that the Pirate Browser includes unmodified versions of Tor 0.2.3.25 and Vidalia 0.2.20 I also compared the md5 and sha1 sums of 'Start Tor Browser.exe' and 'Start PirateBrowser.exe'. They do not match. The Pirate Browser does not include the Docs folder that Tor Browser Bundle has. The torrc file looks like this: """Begin torrc file""" # If non-zero, try to write to disk less frequently than we would otherwise. AvoidDiskWrites 1 # Store working data, state, keys, and caches here. DataDirectory .\Data\Tor GeoIPFile .\Data\Tor\geoip # Where to send logging mesages. Format is minSeverity[-maxSeverity] # (stderr|stdout|syslog|file FILENAME). Log notice stdout # Bind to this address to listen to connections from SOCKS-speaking # applications. SocksListenAddress 127.0.0.1 SocksPort 9150 ControlPort 9151 # Configured for speed ExcludeSingleHopRelays 0 EnforceDistinctSubnets 0 AllowSingleHopCircuits 1 # Exclude countries that might have blocks ExcludeExitNodes {dk},{ie},{gb},{nl},{be},{it},{cn},{ir},{fi},{no} """End of torrc file""" The Pirate Browser is based off Firefox 23.0 Extensions: FoxyProxy Standard 4.2.2 Plugins: Google Update 1.3.21.153 Microsoft(R) DRM 9.0.0.4503 Microsoft(R) DRM 9.0.0.4503 Windows Media Player Plug-in Dynamic Link Library For FoxyProxy, the mode is set to: "Use proxies based on their pre-defined patterns and priorities" The URL for the pattern used is: http://piratebrowser.com/piratebrowser_patterns.json According to this file, Tor is enabled for URLs that match the following patterns: *thepiratebay* *eztv.it* *kickass.to* *torrentz.eu* *movie4k.to* *fenopy.se* *1337x.org* *bitsnoop.com* *h33t.com* *isohunt.com* *monova.org* *torrentcrazy.com* *.onion The PirateBrowser also has these sites automatically bookmarked in its browser bar: http://thepiratebay.sx/ http://uj3wazyk5u4hnvtk.onion/ https://proxy-ez.tx/ http://omcwtrnyrzlwzv22.onion/ http://1337x.org/ http://fenopy.se/ http://h33t.com/ http://isohunt.com/ http://kickass.to/ http://bitsnoop.com/ http://torrentcrazy.com/ http://movie4k.to/ http://monova.org/ http://torrentz.eu/ -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Browser Bundle 3.0alpha1 test builds
Mike Perry: > Matt Pagan: >> On 6/16/13, Andreas Krey wrote: >>> On Sat, 15 Jun 2013 19:09:28 +, Mike Perry wrote: >>> ... >>>> For everyone who is experiencing these crashes: Do you have a system tor >>>> installed? If so, if you uninstall it and reboot, does TBB still crash? >>> >>> Not sure what 'system tor' is. I have older TBBs on the system, but >>> they shouldn't do anything permanent to the system? Anyway, it crashes >>> the same way after a reboot without having run the old TBB before. >>> >> >> My system Tor is long gone. > > Ok, we have a new hypothesis. > > One of the crash scenarios seems to be if you install to non-Desktop > (such as C:\Program Files (x86)\) as Administratror, and then try to run > it as non-Administrator. > > Are any of you who experience crashes installing to the Desktop (the > default)? > > I confirmed that I am able to run TBB from the default Desktop location > as both Admin and non-Admin Win7 users. > I have the Tor Browser Bundle installed on my Desktop. Running 'Start Tor Browser' as Administrator and User has the same effect. The mouse will indicate it is working in the background for a moment, and then no window opens. It also does not matter if I unpack the file as Administrator or User. Microsoft Security Essentials has not indicated that it blocked anything. I wish I had the Windows 7 CD so I could create a Windows 7 Virtual Machine, but I do not. When I open 'Start Tor Browser' I notice a new process begins WerFault.exe (Windows Problem Reporting) and then closes, but I don't receive any error notification or message. I haven't had this problem with any previous browser bundle. ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Browser Bundle 3.0alpha1 test builds
On 6/16/13, Andreas Krey wrote: > On Sat, 15 Jun 2013 19:09:28 +, Mike Perry wrote: > ... >> For everyone who is experiencing these crashes: Do you have a system tor >> installed? If so, if you uninstall it and reboot, does TBB still crash? > > Not sure what 'system tor' is. I have older TBBs on the system, but > they shouldn't do anything permanent to the system? Anyway, it crashes > the same way after a reboot without having run the old TBB before. > My system Tor is long gone. ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Browser Bundle 3.0alpha1 test builds
On 6/15/13, Georg Koppen wrote: > On 15.06.2013 09:15, Andreas Krey wrote: >> On Fri, 14 Jun 2013 19:39:31 +, Mike Perry wrote: >> ... >>> Please try these out, test them, and give us feedback! The plan is to >>> post them on the blog by Monday, unless something goes horribly wrong. >>> >>> https://people.torproject.org/~mikeperry/tbb-3.0alpha1-builds/official/ >> >> Erm, I used torbrowser-install-3.0-alpha-1_en-US, >> and it immediately (at double-clicking the 'Start >> Tor Browser') crashes on this Windows 7 box. > > Works for me. It would be interesting to know whether that only happens > with the official builds or with ln5's or gk's builds as well (I could > not access mike's due to permission issues)... > > Georg > > I'm downloaded the package at official/torbrowser-install-3.0-alpha-1_en-US.exe on a Windows 7 64-bit laptop. I did not see any error messages on the install but when I opened 'Start Tor Browser' nothing happened. -- Matt Pagan matthew.a.pa...@gmail.com PGP key ID: 0xA521D36F ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] CloudFlare
> They're based in San Francisco, along with Craigslist (which > is another misguided arbitrary blocker of Tor exits). > Any other SF based companies that could benefit from > a visit or hackerspace talk about why they should not > be blocking Tor? Yelp is based in San Francisco. So is Pinterest. Getting the Wikimedia Foundation (also based in San Francisco) to come over would be a huge victory, IMO. -- Matt Pagan matthew.a.pa...@gmail.com PGP key ID: 0xA521D36F ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk