st su'd to root to get access to /var/lib/tor
"drwx--S--- 3 debian-tor debian-tor 4096 2009-12-29 12:09 /var/lib/tor/"
--
Erilenz
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
the exit node to sniff. The welcome banner, and the EHLO
request/response. If you can use SSL on connect on port 465, then nothing
is sent in plain text.
Other than DNS leaks, you need to make sure Thunderbird doesn't leak any
other
using OpenDNS comes up every so often.
--
Erilenz
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
nt more bandwidth available to
me. In order to get more bandwidth, I want those who *can* use a 2 hop
circuit to do so.
This is one of those ideal/practical arguments. Idealistically, Tor
would only have 3 hop circuits and those who want "simple circumvention"
wouldn't use it. That does
ked.
I prefer the concept of combining safe defaults with more choice. If people
are afraid for their life, they're not going to reduce the number of hops
from 3 to 2.
--
Erilenz
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
* on the Tue, Nov 17, 2009 at 09:03:42AM -0500, Andrew Lewman wrote:
> On 11/17/2009 08:57 AM, Erilenz wrote:
> > The following occured to me. Tor is designed to protect users from
> > traffic analysis by very technical adversaries. There are many use
> > cases where that leve
it is free, and because it has certain desirable attributes
that other things such as VPNs don't give you. Given that they're
going to use Tor, why not minimise the amount of bandwidth they're
using in the process of doing so.
--
Erilenz
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
rcuit it only has to transfer 75% of that:
x -(1)> Entry -(2)> Exit -(3)> y
--
Erilenz
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
you absolutely don't want to do
is use a Hidden Service for your VPN as that doubles the number of hops
in the circuit.
(*) I can't remember how though. Google it.
--
Erilenz
***
To unsubscribe, send an e-mail to majord...@torproject.org with
unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
\] Please upgrade' /var/log/tor/log`" != ""
]; then echo "Upgrade Tor"|mail -s "Upgrade Tor" root; fi
+ endscript
postrotate
/etc/init.d/tor reload > /dev/null
endscript
--
Erilenz
one of those, it'll be a lot faster too. You could even split the cost
if you know other people who would want access.
--
Erilenz
ks like this:
iptables -A OUTPUT -o lo -p tcp --dport 9051 -m owner ! --uid-owner root -j
REJECT
You should be able to modify that for your own purposes.
--
Erilenz
ble branch or older.
As well as logging, perhaps Tor should make an effort to send an
email to the local root account when it detects it is "too old".
Obviously, that wont work in many instances, eg Windows Tor servers,
but it would be an additional contact route...
--
Erilenz
\r\n
Host: www.google.com.example.exit\r\n
\r\n
The problem is that some web servers have multiple websites on the same IP
and they decide which website to serve by looking at the HTTP Host header.
So you need privoxy/polipo to strip the "example.exit" from the HTTP Host
header before forwarding on the actual HTTP request, so it sends this
instead:
GET / HTTP/1.1\r\n
Host: www.google.com\r\n
\r\n
--
Erilenz
er
> these???
So as long as Firefox doesn't invoke an external media player for any video
type it
supports, it's safe for Tor? Perhaps it's worth keeping an eye on it in case
they
introduce a new video type which uses an external player which bypasses the
proxy
settings?
--
Erilenz
Hi,
Firefox 3.5 was released today. Has anyone investigated the new video tag that
it supports with regards to whether or not it can cause leaks with Tor?
--
Erilenz
thing along the
lines of:
"You are about to post unencrypted data over the Tor network. Are you sure you
wish to proceed?"
--
Erilenz
Hello,
I just checked CPAN, and I can't find any modules related to Tor. Not
even a module for talking to the control port. Are there really no Perl
modules for manipulating Tor, or are they just hidden somewhere else
online?
--
Erilenz
ance of having your
traffic sniffed. It might even increase the chance of that occuring.
--
Erilenz
services through Tor are so much slower than normal services. Thanks.
--
Erilenz
tml does that give
me:
Web browser -> Tor client -> Entry Node -> Hidden Service
--
Erilenz
es
fine. You're the first other person I've come across that has either
confirmed it working or not working.
--
Erilenz
exit bandwdith is more scarce.
--
Erilenz
* on the Fri, Oct 24, 2008 at 08:32:23AM -0400, Alessandro Donnini wrote:
> For the past month or so, I have been unable to consistently run web searches
> via Google using a "Tor-enabled" browser".
Use https://ssl.scroogle.org/ instead. It's a wrapper around Google.
--
Erilenz
recently...
--
Erilenz
at it, wouldn't I end up putting all the traffic through a
smaller number of circuits and thus having a slower network?
--
Erilenz
ance and there seem to be at least a couple of hundred
nodes running an OR port on 443, so people must be taking note of the
documentation at http://www.torproject.org/docs/tor-doc-relay.html.en
--
Erilenz
re better
> locked down these days.
Thank you for this one. There already seems to be a lot more hosts exiting
on 465/587 spread across many more countries, compared to last time I
checked.
--
Erilenz
bothers a lot nowadays... and it's
> been answered frequently already - so often...
Some people are just too lazy to look into how to unsubscribe from a
mailing list properly. I'm sure a 30 second google would have been
sufficient, but they'd rather email everyone on a mailing list asking
that information instead as it involves engaging less brain cells.
--
Erilenz
no risk whatsoever. They'll almost certainly include an option to turn
it off altogether, but even if they don't you have to explicitly state that
the website is allowed to see your location.
--
Erilenz
have to use*. They ALSO give you the option to turn off those services
that some people find useful, and to just get a normal DNS service. I don't see
how anyone can say anything bad about the free service that they provide ...
--
Erilenz
Hi,
When using DNSPort or tor-resolve, you can look up A records and PTR
records, but not NS or MX records. Can this functionality be added?
--
Erilenz
32 matches
Mail list logo