Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-07 Thread intrigeri
Hi, Maxim Kammerer wrote (04 Apr 2012 22:39:09 GMT) : > The user is expected to keep private information on the system > (remember that Liberté had persistence from the beginning, but this > is often true even without persistence). If the system is exploited, > finding out the computer's MAC / IP

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-06 Thread J.C. Denton
awesome thank you for the heads up! From: "pro...@secure-mail.biz" To: tor-talk@lists.torproject.org Sent: Friday, April 6, 2012 7:31 PM Subject: Re: [tor-talk] Designing a secure "Tor box" for safe web browsing? > Wow, TorBOX? Do

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-06 Thread proper
> Wow, TorBOX? Does that exist yet? Yes. https://trac.torproject.org/projects/tor/wiki/doc/TorBOX > What is the fastest > VM?  VMware is fastest. From my experience... (> means faster than) VMware (fastest) > VirtualBox > Qemu > Bochs (slowest) Untested: KVM, Xen We choose VirtualBox, for rea

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-06 Thread J.C. Denton
Wow, TorBOX? Does that exist yet? That would be genius. What is the fastest VM?  From: "pro...@secure-mail.biz" To: tor-talk@lists.torproject.org Sent: Thursday, April 5, 2012 4:21 AM Subject: Re: [tor-talk] Designing a secure "Tor box" f

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-05 Thread proper
> I should also mention here that I never got an answer > on this list > about whether Tor is actually designed to withstand active attacks > > from within the client. It could be that running everything inside a > VM doesn't > even help against discovering the externally exposed IP of > an exploit

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-05 Thread proper
Can TorBOX be of any help for your plans? > Because, > while people can run Tails in a VM by themselves already, > doing this certainly > does not give them the same benefits as an > integrated, pre-configured "Live > amnesic host OS + Tor routing VM + > desktop VM" Tails would: Alternative you c

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-04 Thread Maxim Kammerer
On Wed, Apr 4, 2012 at 23:46, intrigeri wrote: > Maybe your conclusions on VM speed are simply too tightly bound > to QEMU? That's probably the case — QEMU is much slower than VMware and VirtualBox even when virtualization extensions are available. The reason I only tested QEMU is because it seem

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-04-04 Thread intrigeri
Hi, Preamble: I'm still not convinced the benefits of the "Live amnesic host OS + Tor routing VM + desktop VM" approach are worth the energy we would need to move Tails to this model, but I do find it interesting to go on a bit with the thought experiment, and to explore the limits of this idea.

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-03-26 Thread Maxim Kammerer
On Mon, Mar 26, 2012 at 00:52, intrigeri wrote: > I'm curious about what resources proved to be limiting during your > experiments, and what "too demanding" means in your usecases. Well, Intel VT / AMD-V virtualization extensions are rarely available on laptops, and without these extensions (acce

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-03-26 Thread proper
> I'm curious about what resources > proved to be limiting during your > experiments, and what "too demanding" > means in your usecases. > Knowing these figures would make this report useful, > to a degree, to > draw conclusions for other usecases. Quoted from http://dee.su/liberte "Moreover, some

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-03-26 Thread intrigeri
Hi, Maxim Kammerer wrote (22 Mar 2012 14:07:25 GMT) : > I implemented that approach once for the purpose of running unsafe > browser (https://github.com/mkdesu/liberte/commit/0f0646e), > executing an already-running image inside a nested QEMU. It's a nice > exercise, but too demanding on resources

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-03-22 Thread Maxim Kammerer
On Thu, Mar 22, 2012 at 12:02, ra wrote: >> Although not that strongly related, this discussion makes me think of >> an idea that's been sleeping for a while in Tails' wishlist: >> https://tails.boum.org/todo/Two-layered_virtualized_system/ > This is to some degree what I am implementing. I imple

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2012-03-22 Thread ra
On Sunday 14 August 2011 18:25:37 intrigeri wrote: > Gozu-san wrote (07 Aug 2011 19:53:36 GMT) : > > As the router for a VirtualBox internal network, ra's Tor gateway VM > > does basically what you describe. > > Interesting. I was not able to find the source code / documentat

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2011-08-14 Thread intrigeri
Hi, Gozu-san wrote (07 Aug 2011 19:53:36 GMT) : > As the router for a VirtualBox internal network, ra's Tor gateway VM > does basically what you describe. Interesting. I was not able to find the source code / documentation to build one's own VM image, which is frustrating.

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2011-08-11 Thread andrew
On Sun, Aug 07, 2011 at 02:47:24PM +0200, mli...@robin-kipp.net wrote 3.8K bytes in 11 lines about: : so, I've been browsing the web using Tor for some time now, and I have to say that, at least with the cir quid I am currently using, I'm quite impressed with the performance, especially since I'

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2011-08-07 Thread Håken Hveem
On Sun, 7 Aug 2011 23:29:21 +0200 Robin Kipp wrote: > Hi Gozu-san, > thanks for the links! They seem like good starting points for such a > project. Such a box would be, when designed and fully configured, a > good and stable way for people wanting to give their machines secure > www access. Othe

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2011-08-07 Thread Robin Kipp
Hi Gozu-san, thanks for the links! They seem like good starting points for such a project. Such a box would be, when designed and fully configured, a good and stable way for people wanting to give their machines secure www access. Other than the software config, I could also imagine certain hard

Re: [tor-talk] Designing a secure "Tor box" for safe web browsing?

2011-08-07 Thread Gozu-san
As the router for a VirtualBox internal network, ra's Tor gateway VM does basically what you describe. You could route that to a physical NIC on the host. Or you could replicate the setup in a Soekris etc box. JanusVM might also work for you. Basicall

[tor-talk] Designing a secure "Tor box" for safe web browsing?

2011-08-07 Thread Robin Kipp
Hi all, so, I've been browsing the web using Tor for some time now, and I have to say that, at least with the cir quid I am currently using, I'm quite impressed with the performance, especially since I'm only connected through a 3g ap at the moment! So, I've had a look around the Torproject site