[tor-talk] building tor-0.2.3.15-alpha on Ubuntu
People, Because I guess there's a better way to build Tor from source on my Ubuntu 12.04 box than I do, I ask for some help. I want to build Tor from source with my build-from-source openssl 1.0.1c. My OpenSSL install is in /usr/local/ssl/ , there are the libcrypto.a and libssl.a files. I try to start building Tor with ./configure --enable-static-openssl --with-openssl-dir=/usr/local/ssl/ but whatever I do at the end, ending with slash or without, it results in the error message configure: error: You must specify an explicit --with-openssl-dir=x option when using --enable-static-openssl The only way I found to build Tor with my own install of openssl, is when I comment out lines 7178 till 7182 in the configure script and add the line TOR_OPENSSL_LIBS=/usr/local/ssl/libssl.a /usr/local/ssl/libcrypto.a After this, I check with `ldd ./src/or/tor` if there's libssl/libcrypto linked, and there's not, so correct. I build Tor this way from tor-0.2.3.12 - tor-0.2.3.15. There has to be a better way to building Tor from source, without editing the configure script, is there? Thanks! -- BigTor ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Download manager
On Tue, April 10, 2012 6:42 pm, David H. Lipman wrote: From: Tor User toruser0...@gmail.com Thanks. And I still need the http proxy. I cant do 127.0.0.1:9050, right? That's the Tor control port not the Proxy port. Advise is to install privoxy and edit the config file something like listen-address 127.0.0.1:8118 forward-socks4a / 127.0.0.1:9050 . so privoxy forwards to Tor (on port 9050) and you tell wget to connect to localhost:8118. Also see http://www.privoxy.org/faq/misc.html#TOR -- BigTor ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] two tors?
On Sat, April 7, 2012 6:32 am, James Brown wrote: On 06.04.2012 20:31, Roger Dingledine wrote: Actually, you can do it with a single Tor and multiple SocksPort lines, if you're using Tor 0.2.3.x. See this piece of 0.2.3.3-alpha's changelog: o Major features (stream isolation): - You can now configure Tor so that streams from different applications are isolated on different circuits, to prevent an attacker who sees your streams as they leave an exit node from linking your sessions to one another. To do this, choose some way to distinguish the applications: have them connect to different SocksPorts, or have one of them use SOCKS4 while the other uses SOCKS5, or have them pass different authentication strings to the SOCKS proxy. Then, use the new SocksPort syntax to configure the degree of isolation you need. This implements Proposal 171. - There's a new syntax for specifying multiple client ports (such as SOCKSPort, TransPort, DNSPort, NATDPort): you can now just declare multiple *Port entries with full addr:port syntax on each. The old *ListenAddress format is still supported, but you can't mix it with the new *Port syntax. You can read more details in the SOCKSPort entry of the 0.2.3 Tor manual. Thanx Roger. @James, see https://www.torproject.org/docs/tor-manual-dev.html.en and look for SOCKSPort [address:]port|auto [isolation flags] . Can you provide the examle of such torrc-configuration? SocksPort 192.168.1.1:9050 SocksPort 192.168.1.1:19050 works (when removing SocksListenAddress if you had that). I configured two different browsers, one to use port 9050 and another to use port 19050. I visited http://check.torproject.org/ seven times (every time killing tor and starting it again) with the two browsers and two times got the same result (same IP of exit node) in both browsers. -- BigTor ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] two tors?
I have two internet apps that I want to run the same time, both using tor socks proxy. I do not want the data streams of the apps routing thorugh the same circuit. Is it safe two run two tor processes, with different proxy ports? If you configure and use it right, I think it's safe. Remember to change the SocksPort option in torrc and to let tor use different pidfiles. -- Bigtor ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Can't access Tor network: Question about Find Bridges Now
Andrew Lewman wrote: The 'find bridges now' button just hits https://bridges.torproject.org directly. If your country blocks that site, the button will not work. Would it makes sense to provide a .onion address for that and have find bridges now try both clear net and and hidden service? Sounds like 'chicken egg' problem; One's country blocks bridges.torproject.org to find bridges. There's a big chance that they'll block the rest of Tor also, so .onion addresses won't work. -- bigtor ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Question regarding forum software for use as a hidden service
On 03/15/2012 01:37 AM, Jude Young wrote: What he said. PHP is a huge risk. I've worked with it before, even just trying to force SSL its a hassle. If using Apache, try using SSLRequireSSL, see http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslrequiressl In PHP, SERVER_PORT can be handy: http://www.php.net/manual/en/reserved.variables.server.php -- BigTOR ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk