Comments on: Easy and secure anonymous internet usage http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/ blog Fri, 13 Jul 2012 16:58:54 +0000 http://wordpress.org/?v=abc hourly 1 By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-91265 ra Fri, 13 Jul 2012 16:58:54 +0000 http://ra.fnord.at/?p=247#comment-91265 there is no root password set. try "sudo su". anyways changing the keyboard layout doesnt work for me neither. any hint is welcome. there is no root password set. try “sudo su”. anyways changing the keyboard layout doesnt work for me neither. any hint is welcome.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-91264 ra Fri, 13 Jul 2012 02:59:03 +0000 http://ra.fnord.at/?p=247#comment-91264 Thanks for the feedback. An IRC client will be included in the next release. Thanks for the feedback. An IRC client will be included in the next release.

]]>
By: smgl http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-91258 smgl Wed, 11 Jul 2012 22:05:11 +0000 http://ra.fnord.at/?p=247#comment-91258 How can I change keyboard layout? Got kmaps via "ab" but "loadkmap < /usr/share/kmaps/qwertz/..." has no effect. su password necessary? How can I change keyboard layout? Got kmaps via “ab” but “loadkmap < /usr/share/kmaps/qwertz/…" has no effect. su password necessary?

]]>
By: smgl http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-91257 smgl Wed, 11 Jul 2012 13:48:25 +0000 http://ra.fnord.at/?p=247#comment-91257 well, irc client would be nice. well, irc client would be nice.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-91003 ra Wed, 23 May 2012 22:08:12 +0000 http://ra.fnord.at/?p=247#comment-91003 I experienced the same behaviour when "testing" TorBOX - actually I could test it neither because of this error. I experienced the same behaviour when “testing” TorBOX – actually I could test it neither because of this error.

]]>
By: Lauscher http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90912 Lauscher Tue, 15 May 2012 16:10:14 +0000 http://ra.fnord.at/?p=247#comment-90912 Hello! Nice to find a discussion about TorBOX. I tried to test it today in VirtualBox on Ubuntu 12.04, but I got a critcal error; TorBOX tried to enable PAE, but my laptop doesn't support PAE, so TorBOX crashed. I hope it is ok im writing it here, I didn't know how to contact the developers drictly. Greetings, Lauscher Hello!

Nice to find a discussion about TorBOX. I tried to test it today in VirtualBox on Ubuntu 12.04, but I got a critcal error; TorBOX tried to enable PAE, but my laptop doesn’t support PAE, so TorBOX crashed.

I hope it is ok im writing it here, I didn’t know how to contact the developers drictly.

Greetings, Lauscher

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90635 ra Wed, 28 Mar 2012 10:53:14 +0000 http://ra.fnord.at/?p=247#comment-90635 (: (:

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90634 ra Wed, 28 Mar 2012 10:52:25 +0000 http://ra.fnord.at/?p=247#comment-90634 The DNS servers are listed in /etc/resolv.conf and /etc/dhcpd.conf on the gateway. The DNS servers are listed in /etc/resolv.conf and /etc/dhcpd.conf on the gateway.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90633 ra Wed, 28 Mar 2012 09:35:11 +0000 http://ra.fnord.at/?p=247#comment-90633 I think the concept of the fast gateway is not clear enough - probably due to the lack of documentation. -) The first FAQ states that path lengths ==1 and >3 (or >4) should not be used. The path length of the fast gateway is currently fixed at 2. Maybe it will be configureable (to choose between a path length of 2 or 3) in the future. Of course there is a trade of between anonymity and latency. A path length of 2 IMHO is anonymous enough if one prefers low latency. If the entry and exit nodes you are using are evil and working together you are f*cked anyway - so the middle node makes not so much difference in terms of security. -) The entry/exit nodes are _not_ hardcoded/whitelisted. They are dynamically chosen. Thats why the EntryNodes and ExitNodes directives are not being used. I think the concept of the fast gateway is not clear enough – probably due to the lack of documentation.
-) The first FAQ states that path lengths ==1 and >3 (or >4) should not be used. The path length of the fast gateway is currently fixed at 2. Maybe it will be configureable (to choose between a path length of 2 or 3) in the future. Of course there is a trade of between anonymity and latency.
A path length of 2 IMHO is anonymous enough if one prefers low latency. If the entry and exit nodes you are using are evil and working together you are f*cked anyway – so the middle node makes not so much difference in terms of security.
-) The entry/exit nodes are _not_ hardcoded/whitelisted. They are dynamically chosen. Thats why the EntryNodes and ExitNodes directives are not being used.

]]>
By: x http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90622 x Mon, 26 Mar 2012 21:47:06 +0000 http://ra.fnord.at/?p=247#comment-90622 The "fast gateway" is dangerous! Of course you can whitelist which relays you want to use and go for the fast tor servers. This is how I suppose you make tor "faster". No one should do that! https://trac.torproject.org/projects/tor/wiki/doc/TorFAQ#Youshouldletpeoplechoosetheirpathlength ! https://www.torproject.org/docs/faq#ChooseEntryExit ! Did you even read all of the tor website before you made this thing? The “fast gateway” is dangerous!

Of course you can whitelist which relays you want to use and go for the fast tor servers. This is how I suppose you make tor “faster”. No one should do that!

https://trac.torproject.org/projects/tor/wiki/doc/TorFAQ#Youshouldletpeoplechoosetheirpathlength !

https://www.torproject.org/docs/faq#ChooseEntryExit !

Did you even read all of the tor website before you made this thing?

]]>
By: Nomen Nescio http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90617 Nomen Nescio Mon, 26 Mar 2012 16:02:35 +0000 http://ra.fnord.at/?p=247#comment-90617 In the Virtual Box Host Only Network, there are no DNS server specified. What are they supposed to be? Thanks In the Virtual Box Host Only Network, there are no DNS server specified. What are they supposed to be?

Thanks

]]>
By: Anonymous http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90590 Anonymous Fri, 23 Mar 2012 18:08:57 +0000 http://ra.fnord.at/?p=247#comment-90590 @Eli >your project is much lighter than the bloated and malfunctioning TorBOX If something isn't working as expected please let us know at the wiki (no need to register, log in as cypherpunks, password: writecode) About the size see: https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/Dev/ClientVM#WhyisClientVM.ovasobig Future Gateway.ova will be smaller. @Eli

>your project is much lighter than the bloated and malfunctioning TorBOX

If something isn’t working as expected please let us know at the wiki (no need to register, log in as cypherpunks, password: writecode)

About the size see: https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/Dev/ClientVM#WhyisClientVM.ovasobig

Future Gateway.ova will be smaller.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90583 Da Fri, 23 Mar 2012 05:12:10 +0000 http://ra.fnord.at/?p=247#comment-90583 WOW WOW WOW for the last few replies I read on all the thoughts, goodies and todo ideas... Again all I can say is WOW, can't wait to see this stuff in the near future... But at least maybe TitaniumTor LOL... ;) Cheers Ra! :) WOW WOW WOW for the last few replies I read on all the thoughts, goodies and todo ideas…

Again all I can say is WOW, can’t wait to see this stuff in the near future…

But at least maybe TitaniumTor LOL… ;)

Cheers Ra! :)

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90571 ra Wed, 21 Mar 2012 21:41:27 +0000 http://ra.fnord.at/?p=247#comment-90571 Thanks, these are good suggestions - I added them to the wiki https://github.com/ra--/Tor-gateway/wiki/Todo Thanks, these are good suggestions – I added them to the wiki https://github.com/ra–/Tor-gateway/wiki/Todo

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90570 ra Wed, 21 Mar 2012 21:39:48 +0000 http://ra.fnord.at/?p=247#comment-90570 Using the gateway with multiple VMs concurrently is what it is designed for. I did not check yet if this works around the circuit sharing problem though. Using the gateway with multiple VMs concurrently is what it is designed for. I did not check yet if this works around the circuit sharing problem though.

]]>
By: Eli http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90556 Eli Tue, 20 Mar 2012 15:01:25 +0000 http://ra.fnord.at/?p=247#comment-90556 Thanks for the reply. For the message directly above this one, every time I post the link, the message doesn't register so I've shortened it: http://bit.ly/GACRgo As for a project name I've got a few suggestions and the philosophy behind them. For the gateway: OnionGate - Embodies the Tor mascot in it's name. ShadowGate - Because its virtual and transparent to the user AnonymaTor - Implies that its a Tor based mechanism for anonymity. Titanium - Describes it best, because it's light,fast and powerful For the workstation simply call it one of these: WorkBench, TinyBench, TinyStation, MicroStation; or simplyincluding one of the prefixes suggested above before the words bench/ station. Thanks for the reply.

For the message directly above this one, every time I post the link, the message doesn’t register so I’ve shortened it: http://bit.ly/GACRgo

As for a project name I’ve got a few suggestions and the philosophy behind them.

For the gateway:
OnionGate – Embodies the Tor mascot in it’s name.
ShadowGate – Because its virtual and transparent to the user
AnonymaTor – Implies that its a Tor based mechanism for anonymity.
Titanium – Describes it best, because it’s light,fast and powerful

For the workstation simply call it one of these: WorkBench, TinyBench, TinyStation, MicroStation; or simplyincluding one of the prefixes suggested above before the words bench/ station.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90555 ra Tue, 20 Mar 2012 10:11:27 +0000 http://ra.fnord.at/?p=247#comment-90555 Thanks for your valuable feedback! ad 1) OpenWRT does not provide any explicit hardening features AFAIK. It would be a nice-to-have feature but there are hardly any Linux distributions that fulfill the requirements - which reminds me that I should write them down explicitly (https://github.com/ra--/Tor-gateway/wiki/Todo) ad 2) The default root password is empty and IMHO there is no need to define one, because one gets a root-shell on the console in VirtualBox only and there is no network service like ssh or telnet running. I can't see a way where one of the two daemons (dhcpd and tor) could elevate their privileges. But if anyone comes up with an explaination why defining a root password would be a good thing to do, I will definitely add it to the FAQ (https://github.com/ra--/Tor-gateway/wiki/Faq). ad 3) Netfilter protects the gateway from other VMs in a way that it doesn't allow any direct connections but on UDP port 67 (for DHCP). ad 4) There is a lot of work to do on the Tor workstation. Currently it is in a proof-of-concept state at best. The main problem unresolved yet is to find a distribution (like Tiny Core Linux) or setup (like a Live-CD) that guarantees that there is no data written to disk permanently and at the same time stays maintainable. I speculate on moving that feature to VirtualBox but it is currently not possible to export a VM and have a virtual disk be immutable. ad 5) When using a NAT the user does not have to configure anything. When using a bridge the user has to define a local network device. Nevertheless the bridge configuration should probably go into a FAQ. I am currently moving the project to github andwrite up documentation. https://github.com/ra--/Tor-gateway/wiki PAE/NX will probably make sense to use in the future. ad 6) I did the leak testing as follows: -) Prepare the Tor gateway to make it easier to test by adding ReachableORAddresses *:443 to /etc/tor/torrc -) Make VirtualBox capture all packets of the Tor gateway: VBoxManage modifyvm "Tor gateway 0.5.1" --nictrace1 on --nictracefile1 /tmp/torgw.pcap -) Generate traffic on any Tor workstation or the Tor gateway itself. -) Analyze the pcap file with Wireshark wireshark -R '!(tcp.port == 443)' /tmp/torgw.pcap There should only be some DHCP and ARP packets between the Tor gateway VM and VirtualBox on the VM host visible. If you do your own leak testing, please let me know about the results. ad 7) The Tor fast gateway currently also is a proof-of-concept only but it seems to be fairly usable - even at its current state. I added to the TODO-list that the number of hops should be configureable. This should be easy to add but I must say that it's not on top of my priority list yet. Thanks for your valuable feedback!

ad 1) OpenWRT does not provide any explicit hardening features AFAIK. It would be a nice-to-have feature but there are hardly any Linux distributions that fulfill the requirements – which reminds me that I should write them down explicitly (https://github.com/ra–/Tor-gateway/wiki/Todo)

ad 2) The default root password is empty and IMHO there is no need to define one, because one gets a root-shell on the console in VirtualBox only and there is no network service like ssh or telnet running. I can’t see a way where one of the two daemons (dhcpd and tor) could elevate their privileges. But if anyone comes up with an explaination why defining a root password would be a good thing to do, I will definitely add it to the FAQ (https://github.com/ra–/Tor-gateway/wiki/Faq).

ad 3) Netfilter protects the gateway from other VMs in a way that it doesn’t allow any direct connections but on UDP port 67 (for DHCP).

ad 4) There is a lot of work to do on the Tor workstation. Currently it is in a proof-of-concept state at best. The main problem unresolved yet is to find a distribution (like Tiny Core Linux) or setup (like a Live-CD) that guarantees that there is no data written to disk permanently and at the same time stays maintainable. I speculate on moving that feature to VirtualBox but it is currently not possible to export a VM and have a virtual disk be immutable.

ad 5) When using a NAT the user does not have to configure anything. When using a bridge the user has to define a local network device. Nevertheless the bridge configuration should probably go into a FAQ. I am currently moving the project to github andwrite up documentation. https://github.com/ra–/Tor-gateway/wiki

PAE/NX will probably make sense to use in the future.

ad 6) I did the leak testing as follows:
-) Prepare the Tor gateway to make it easier to test by adding
ReachableORAddresses *:443
to /etc/tor/torrc
-) Make VirtualBox capture all packets of the Tor gateway:
VBoxManage modifyvm “Tor gateway 0.5.1″ –nictrace1 on –nictracefile1 /tmp/torgw.pcap
-) Generate traffic on any Tor workstation or the Tor gateway itself.
-) Analyze the pcap file with Wireshark
wireshark -R ‘!(tcp.port == 443)’ /tmp/torgw.pcap

There should only be some DHCP and ARP packets between the Tor gateway VM and VirtualBox on the VM host visible.

If you do your own leak testing, please let me know about the results.

ad 7) The Tor fast gateway currently also is a proof-of-concept only but it seems to be fairly usable – even at its current state. I added to the TODO-list that the number of hops should be configureable. This should be easy to add but I must say that it’s not on top of my priority list yet.

]]>
By: Eli http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90554 Eli Tue, 20 Mar 2012 02:35:31 +0000 http://ra.fnord.at/?p=247#comment-90554 Ok one more thing I forgot to add... There is currently a problem with Tor known as identity correlation through circuit sharing, outlined in the link below. I guess that the gateway ccould be vulnerable to this but it's not your fault since Tor has a problem with this now. Can the Gateway vm be used by multiple vms running at the same time? Is that recommended? I was thinking f a case where mutliple identities are running at the same time in separate domains, anonymously. What is the likliehood that one vm could communicate/cross infect another that is behind the same gateway instance? Thanks again. Ok one more thing I forgot to add…

There is currently a problem with Tor known as identity correlation through circuit sharing, outlined in the link below. I guess that the gateway ccould be vulnerable to this but it’s not your fault since Tor has a problem with this now. Can the Gateway vm be used by multiple vms running at the same time? Is that recommended? I was thinking f a case where mutliple identities are running at the same time in separate domains, anonymously.
What is the likliehood that one vm could communicate/cross infect another that is behind the same gateway instance?

Thanks again.

]]>
By: Eli http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90542 Eli Mon, 19 Mar 2012 01:58:57 +0000 http://ra.fnord.at/?p=247#comment-90542 Hi Ra, this is a re-post my message didn't make it last time. I have a few security related suggestions/points for the Gateway. 1- Tor is currently not taking advantage of compile time hardening like NX, ld, gcc etc. but this is expected to change in the 0.2.3.X branch. Does OpenWRT have such security features? Can you please check if this distro is a security enhanced one? So far OpenWRT seems ideal in the sense that it has a reduced attack surface and lighter footprint. Chrooting would be of little use since if Tor becomes compromised it's already too late. The suggested measures would make any theoretical vulnerabilities in Tor harder to explioit by a lot. 2- Should users change the default root password for the gtway vm? If so can you please post this as a suggestion in your topic? 3- Is netfilter protecting the tor in the gtway from compromise in the event that the workstation is rooted? If that's not the case, is there a way to firewall the gtway components from direct communication from the workstation/ 4- IMHO you should link to a light weight distro (puppy/DSL etc.) for a workstation since that will mean less effort to maintain the project. If you would still prefer to maintain the workstation then I would suggest you slim it down to one browser -not Opera :)- and enable many security features to thwart any potential attacks. Basically turning it into a super-secure micro workspace. 5- The gateway has NAT selected by default, can you please change that to bridged? This will allow the vms to be isolated from the host in the case of an attack. Also enabling PAE/NX by default would make sense when Tor is able to support hardening. 6- I would really like to help you test your gateway for leaks, regrettably I don't have much Linux experience. I found a battery of suggested leaktests used in the TorBox project listed here: https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/LeakTests If you can tell me how i can go about running them I'll see to it that it's tested. 7- The Fast Gateway is working great. I've read that for safer anonymity purposes, however, a minimum of 3 hops is required. Is there a way to have 3 hops but only select fast nodes above a certain threshold to be included for selection? If this ruins performance then nevermind it's just an idea. Thanks for your dedication, your project is much lighter than the bloated and malfunctioning TorBOX that they have. Their gateway alone is a crazy 300mb in size! Too much bloat :S PS: I'm communicating anonymously using disposable mail to prevent authority eavesdropping so please post your replies here as this is the only for me to know your opinions on this. Hi Ra, this is a re-post my message didn’t make it last time. I have a few security related suggestions/points for the Gateway.

1- Tor is currently not taking advantage of compile time hardening like NX, ld, gcc etc. but this is expected to change in the 0.2.3.X branch. Does OpenWRT have such security features? Can you please check if this distro is a security enhanced one? So far OpenWRT seems ideal in the sense that it has a reduced attack surface and lighter footprint. Chrooting would be of little use since if Tor becomes compromised it’s already too late. The suggested measures would make any theoretical vulnerabilities in Tor harder to explioit by a lot.

2- Should users change the default root password for the gtway vm? If so can you please post this as a suggestion in your topic?

3- Is netfilter protecting the tor in the gtway from compromise in the event that the workstation is rooted? If that’s not the case, is there a way to firewall the gtway components from direct communication from the workstation/

4- IMHO you should link to a light weight distro (puppy/DSL etc.) for a workstation since that will mean less effort to maintain the project. If you would still prefer to maintain the workstation then I would suggest you slim it down to one browser -not Opera :)- and enable many security features to thwart any potential attacks. Basically turning it into a super-secure micro workspace.

5- The gateway has NAT selected by default, can you please change that to bridged? This will allow the vms to be isolated from the host in the case of an attack. Also enabling PAE/NX by default would make sense when Tor is able to support hardening.

6- I would really like to help you test your gateway for leaks, regrettably I don’t have much Linux experience. I found a battery of suggested leaktests used in the TorBox project listed here:
https://trac.torproject.org/projects/tor/wiki/doc/TorBOX/LeakTests
If you can tell me how i can go about running them I’ll see to it that it’s tested.

7- The Fast Gateway is working great. I’ve read that for safer anonymity purposes, however, a minimum of 3 hops is required. Is there a way to have 3 hops but only select fast nodes above a certain threshold to be included for selection? If this ruins performance then nevermind it’s just an idea.

Thanks for your dedication, your project is much lighter than the bloated and malfunctioning TorBOX that they have. Their gateway alone is a crazy 300mb in size! Too much bloat :S

PS: I’m communicating anonymously using disposable mail to prevent authority eavesdropping so please post your replies here as this is the only for me to know your opinions on this.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90539 Da Sun, 18 Mar 2012 08:58:05 +0000 http://ra.fnord.at/?p=247#comment-90539 THANKS Ra for 0.5.1... Keep up the GREAT WORK! :) THANKS Ra for 0.5.1…

Keep up the GREAT WORK! :)

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90508 ra Wed, 14 Mar 2012 15:15:02 +0000 http://ra.fnord.at/?p=247#comment-90508 Thanks for the feedback! I uploaded Tor fast gateway 0.1.0 which includes an updated Tor package (0.2.2.35). What IMHO is needed at least before announcing the project: -) Move the project to another hoster (Move to github is in progress: https://github.com/ra--/Tor-gateway ) -) update source build scripts to including Tor package building (in progress but not finished yet) Thanks for the feedback!

I uploaded Tor fast gateway 0.1.0 which includes an updated Tor package (0.2.2.35).

What IMHO is needed at least before announcing the project:
-) Move the project to another hoster (Move to github is in progress: https://github.com/ra–/Tor-gateway )
-) update source build scripts to including Tor package building (in progress but not finished yet)

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90507 ra Wed, 14 Mar 2012 14:59:35 +0000 http://ra.fnord.at/?p=247#comment-90507 I uploaded Tor gateway 0.5.1 which includes Tor version 0.2.2.35. I uploaded Tor gateway 0.5.1 which includes Tor version 0.2.2.35.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90503 ra Wed, 14 Mar 2012 10:36:02 +0000 http://ra.fnord.at/?p=247#comment-90503 Tor 0.2.1.32 is the currently recommended version for the 0.2.1.x branch. According to the Tor Changelog[0] 0.2.1.31 includes some security fixes and I can't find any information on the 0.2.1.32 release. Tor gateway 0.5.1-pre includes the currently recommended version for the 0.2.2.x branch (0.2.2.35). [0] https://gitweb.torproject.org/tor.git/blob/HEAD:/ChangeLog Tor 0.2.1.32 is the currently recommended version for the 0.2.1.x branch. According to the Tor Changelog[0] 0.2.1.31 includes some security fixes and I can’t find any information on the 0.2.1.32 release.

Tor gateway 0.5.1-pre includes the currently recommended version for the 0.2.2.x branch (0.2.2.35).

[0] https://gitweb.torproject.org/tor.git/blob/HEAD:/ChangeLog

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90496 Da Tue, 13 Mar 2012 05:57:17 +0000 http://ra.fnord.at/?p=247#comment-90496 Hi Ra, Ok sorry, I guess I misread those last replies, I see this is something in the planning you want to make, so that the end-user can update it. Can't wait to see that... So in the Tor gateway 0.5.0, Tor 0.2.1.30 is safe to use? THANKS Hi Ra,

Ok sorry, I guess I misread those last replies, I see this is something in the planning you want to make, so that the end-user can update it.

Can’t wait to see that…

So in the Tor gateway 0.5.0, Tor 0.2.1.30 is safe to use?

THANKS

]]>
By: Maz http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90490 Maz Mon, 12 Mar 2012 17:13:20 +0000 http://ra.fnord.at/?p=247#comment-90490 The pre-release version seems to be working nicely. I didn't do any type of deep testing though, just ran it and it worked. It's great to see that you added your project to sourceforge. Can you please update the Tor package for the fast gateway as well? Using the fast gateway means no more need for relying on seedy VPN services to get faster speed. Thankyou RA keep it up. Please let the Tor project know so they can link to it for activists. The pre-release version seems to be working nicely. I didn’t do any type of deep testing though, just ran it and it worked. It’s great to see that you added your project to sourceforge.

Can you please update the Tor package for the fast gateway as well? Using the fast gateway means no more need for relying on seedy VPN services to get faster speed. Thankyou RA keep it up. Please let the Tor project know so they can link to it for activists.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90485 ra Mon, 12 Mar 2012 08:48:05 +0000 http://ra.fnord.at/?p=247#comment-90485 No, but I put a <a href="http://pluto.fsinf.at/~ra/Tor%20gateway%200.5.1-pre.ova" rel="nofollow">prerelease</a> file online which includes an up to date Tor package (0.2.2.35). Though it didnt receive much testing yet. No, but I put a prerelease file online which includes an up to date Tor package (0.2.2.35). Though it didnt receive much testing yet.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90482 Da Mon, 12 Mar 2012 07:07:38 +0000 http://ra.fnord.at/?p=247#comment-90482 Sorry I was talking about the OVA, so we can update tor inside it now at the terminal? I haven't installed this yet, is information listed in the term now how to do this? THANKS Sorry I was talking about the OVA, so we can update tor inside it now at the terminal?

I haven’t installed this yet, is information listed in the term now how to do this?

THANKS

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90460 ra Fri, 09 Mar 2012 11:35:02 +0000 http://ra.fnord.at/?p=247#comment-90460 It would be possible to set up a external OpenWRT repository to update the Tor package within the gateway. But I am not sure yet if this would really make sense. What I meant is to not depend on the Tor version shipped with OpenWRT and instead build an up to date Tor package that is included in the OVA-file. It would be possible to set up a external OpenWRT repository to update the Tor package within the gateway. But I am not sure yet if this would really make sense. What I meant is to not depend on the Tor version shipped with OpenWRT and instead build an up to date Tor package that is included in the OVA-file.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90456 Da Thu, 08 Mar 2012 23:23:47 +0000 http://ra.fnord.at/?p=247#comment-90456 So there's going to be a script we run inside the gateway at the terminal, as example; sh update-tor and then this is going to automatically update the tor version inside the vm gateway? THANKS ra! :) So there’s going to be a script we run inside the gateway at the terminal, as example; sh update-tor and then this is going to automatically update the tor version inside the vm gateway?

THANKS ra! :)

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90451 ra Thu, 08 Mar 2012 14:17:58 +0000 http://ra.fnord.at/?p=247#comment-90451 Although one could of course try to argument regarding security and stability in one or another direction it is pretty much a question of personal preference in my opinion. Though I have some experience with OpenBSD and FreeBSD I am much more familiar with Linux, so I prefer to use it. Although one could of course try to argument regarding security and stability in one or another direction it is pretty much a question of personal preference in my opinion. Though I have some experience with OpenBSD and FreeBSD I am much more familiar with Linux, so I prefer to use it.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90447 ra Thu, 08 Mar 2012 10:12:39 +0000 http://ra.fnord.at/?p=247#comment-90447 Because 0.2.1.30 is the latest in the current stable release of OpenWRT. They also provide 0.2.2.24-alpha but I *think* it makes little difference since both are not up to date. Updating the Tor package is definetely the next thing on the list. Keeping it up to date with minimal effort is now possible due to the source build scripts. Because 0.2.1.30 is the latest in the current stable release of OpenWRT. They also provide 0.2.2.24-alpha but I *think* it makes little difference since both are not up to date. Updating the Tor package is definetely the next thing on the list. Keeping it up to date with minimal effort is now possible due to the source build scripts.

]]>
By: Anonymous http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90443 Anonymous Thu, 08 Mar 2012 04:38:41 +0000 http://ra.fnord.at/?p=247#comment-90443 Hello, just wanted to repost an idea since it didn't come thru. I was suggesting that you experiment with a minimal install of freebsd as the base for your tor gateway vm. The *bsd family seems to be well regarded in terms of their security and stability comapred to anything else. Resource usage is even lighter. In your opinion, would this make the gateway more secure and resistant to compromise in the event that the workstation vm gets hosed? Hello, just wanted to repost an idea since it didn’t come thru. I was suggesting that you experiment with a minimal install of freebsd as the base for your tor gateway vm. The *bsd family seems to be well regarded in terms of their security and stability comapred to anything else. Resource usage is even lighter. In your opinion, would this make the gateway more secure and resistant to compromise in the event that the workstation vm gets hosed?

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90439 Da Thu, 08 Mar 2012 00:46:19 +0000 http://ra.fnord.at/?p=247#comment-90439 I'm lost here, if the current stable is 0.2.2.35, why did you install 0.2.1.30? THANKS I’m lost here, if the current stable is 0.2.2.35, why did you install 0.2.1.30?

THANKS

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90438 ra Wed, 07 Mar 2012 22:07:26 +0000 http://ra.fnord.at/?p=247#comment-90438 Tor gateway 0.5.0 now includes Tor 0.2.1.30 and it should not be that hard to update it to Tor 0.2.2.x or even Tor 0.2.3.x-alpha. Tor gateway 0.5.0 now includes Tor 0.2.1.30 and it should not be that hard to update it to Tor 0.2.2.x or even Tor 0.2.3.x-alpha.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90421 Da Mon, 05 Mar 2012 03:57:20 +0000 http://ra.fnord.at/?p=247#comment-90421 Sorry I don't know much about the transparent proxy, just something I heard was needed is all... Well, look forward to some new updates! Keep up the great work! Sorry I don’t know much about the transparent proxy, just something I heard was needed is all…

Well, look forward to some new updates!

Keep up the great work!

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90417 ra Sun, 04 Mar 2012 21:54:06 +0000 http://ra.fnord.at/?p=247#comment-90417 The current stable Tor version is 0.2.2.35. The Tor version included in the Tor gateway is 0.2.1.24 which is not totally up to date. See the Changelog[0] for a list of changes between that two versions. I did not have the time yet to release an update to the gateway with Tor version 0.2.2.24-alpha, because I am focusing on releasing source code scripts to the whole project. That should make it easier for others to contribute. On the gateway iptables is only used for the traffic redirection and filtering any kind of traffic but TCP/IPv4. The current stable Tor version is 0.2.2.35. The Tor version included in the Tor gateway is 0.2.1.24 which is not totally up to date. See the Changelog[0] for a list of changes between that two versions. I did not have the time yet to release an update to the gateway with Tor version 0.2.2.24-alpha, because I am focusing on releasing source code scripts to the whole project. That should make it easier for others to contribute.

On the gateway iptables is only used for the traffic redirection and filtering any kind of traffic but TCP/IPv4.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90416 ra Sun, 04 Mar 2012 21:50:23 +0000 http://ra.fnord.at/?p=247#comment-90416 Which kind of transparent proxy do you think of? Which kind of transparent proxy do you think of?

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90415 ra Sun, 04 Mar 2012 21:48:07 +0000 http://ra.fnord.at/?p=247#comment-90415 Great to hear that the fast gateway works well for you, since it is pretty much a proof of concept! (: Great to hear that the fast gateway works well for you, since it is pretty much a proof of concept! (:

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90414 ra Sun, 04 Mar 2012 21:46:58 +0000 http://ra.fnord.at/?p=247#comment-90414 Unfortunately it will take longer than a few days. ): Unfortunately it will take longer than a few days. ):

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90413 ra Sun, 04 Mar 2012 21:05:49 +0000 http://ra.fnord.at/?p=247#comment-90413 You are totally right. Unfortunately the server hosting this blog had some stability problems. I am about to move the blog to another server but it will take some time. You are totally right.
Unfortunately the server hosting this blog had some stability problems. I am about to move the blog to another server but it will take some time.

]]>
By: Bizi http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-2/#comment-90305 Bizi Thu, 23 Feb 2012 01:51:33 +0000 http://ra.fnord.at/?p=247#comment-90305 Is the Tor gateway still safe to use, 0.3.5.ova since this is an older version of Tor? Also why the need for a firewall/iptables rules if someone already has a firewall on their box, isn't that a bit redundant? Thank you... Is the Tor gateway still safe to use, 0.3.5.ova since this is an older version of Tor?

Also why the need for a firewall/iptables rules if someone already has a firewall on their box, isn’t that a bit redundant?

Thank you…

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90302 Da Wed, 22 Feb 2012 23:46:56 +0000 http://ra.fnord.at/?p=247#comment-90302 I thought the Bridges are only a means for people to connect to Tor, where in countries they are being blocked access; https://www.torproject.org/docs/bridges I never heard of anything where this is also a preferable method to get online instead of connecting directly and gain anything from it, or higher anonymity... I thought the Bridges are only a means for people to connect to Tor, where in countries they are being blocked access;

https://www.torproject.org/docs/bridges

I never heard of anything where this is also a preferable method to get online instead of connecting directly and gain anything from it, or higher anonymity…

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90301 ra Wed, 22 Feb 2012 12:40:27 +0000 http://ra.fnord.at/?p=247#comment-90301 email: r_a@lavabit.com email: r_a@lavabit.com

]]>
By: Anonymous http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90299 Anonymous Wed, 22 Feb 2012 12:15:06 +0000 http://ra.fnord.at/?p=247#comment-90299 How to contact you directly? E-Mail? How to contact you directly? E-Mail?

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90268 Da Sat, 11 Feb 2012 02:04:25 +0000 http://ra.fnord.at/?p=247#comment-90268 I hope we can get an update to the Gateway it's using a much older version of Tor... :( Also what about a transparent proxy? ta... I hope we can get an update to the Gateway it’s using a much older version of Tor… :(

Also what about a transparent proxy?

ta…

]]>
By: Anonymous http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90261 Anonymous Fri, 10 Feb 2012 04:17:54 +0000 http://ra.fnord.at/?p=247#comment-90261 This will be very much appreciated. Thank you Ra. This will expose your project to the masses where I'm sure many people will benefit from your contribution and also add to it. I would like to say that with your Fast Tor Gateway, I can achieve excellent bandwidth speeds, ones exactly equal to those under a normal setup directly from my ISP. Now I could really use the internet while Torrified, a far contrast with the typical dismal speeds of the TBB. This will be very much appreciated. Thank you Ra. This will expose your project to the masses where I’m sure many people will benefit from your contribution and also add to it.

I would like to say that with your Fast Tor Gateway, I can achieve excellent bandwidth speeds, ones exactly equal to those under a normal setup directly from my ISP. Now I could really use the internet while Torrified, a far contrast with the typical dismal speeds of the TBB.

]]>
By: Anonymous http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90254 Anonymous Thu, 09 Feb 2012 03:46:55 +0000 http://ra.fnord.at/?p=247#comment-90254 Do it yourself instructions are online. https://trac.torproject.org/projects/tor/wiki/doc/TorBOX Let's cooperate. Do it yourself instructions are online.
https://trac.torproject.org/projects/tor/wiki/doc/TorBOX

Let’s cooperate.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90253 Da Wed, 08 Feb 2012 23:29:31 +0000 http://ra.fnord.at/?p=247#comment-90253 Hi Ra, Glad to see this site is still alive, but I've spent 2 weeks trying to get it to work, it seems that this blog is always down. So you might consider getting another site or host, there are many great sites out there you can use for Free too! If you don't have a good running site that has very little down time, which should really be 99.9% up, then it makes the project look bad and it seems like every time I want to come to this blog since you've been running it, it's down. Keep up the great work, this really needs to be on the Tor Project! :) Hi Ra,

Glad to see this site is still alive, but I’ve spent 2 weeks trying to get it to work, it seems that this blog is always down.

So you might consider getting another site or host, there are many great sites out there you can use for Free too!

If you don’t have a good running site that has very little down time, which should really be 99.9% up, then it makes the project look bad and it seems like every time I want to come to this blog since you’ve been running it, it’s down.

Keep up the great work, this really needs to be on the Tor Project! :)

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90248 ra Wed, 08 Feb 2012 19:23:04 +0000 http://ra.fnord.at/?p=247#comment-90248 See above. Thank you for the feedback! See above. Thank you for the feedback!

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90247 ra Wed, 08 Feb 2012 19:22:40 +0000 http://ra.fnord.at/?p=247#comment-90247 Thanks for the feedback. I really appreciate it! I will work hard in the next days to get this project in a decent shape to become an official Tor project. Thanks for the feedback. I really appreciate it!
I will work hard in the next days to get this project in a decent shape to become an official Tor project.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90246 ra Wed, 08 Feb 2012 19:10:57 +0000 http://ra.fnord.at/?p=247#comment-90246 I plan to set up a public GIT repository which would make it easier to implement changes and automatically build the Tor gateway images. This should also make it more clear on how the Tor gateway works. But before I have to decide if OpenWRT is really the right distribution for that task. I plan to set up a public GIT repository which would make it easier to implement changes and automatically build the Tor gateway images. This should also make it more clear on how the Tor gateway works. But before I have to decide if OpenWRT is really the right distribution for that task.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90245 ra Wed, 08 Feb 2012 19:06:43 +0000 http://ra.fnord.at/?p=247#comment-90245 To manually configure the Tor gateway to use bridges: -) Boot the Tor gateway VM -) Press enter to activate a shell -) Add (for example) bridge 78.82.27.120:9001 bridge 67.164.36.152:9001 bridge 89.206.15.102:443 to /etc/tor/torrc (to get other bridges visit https://bridges.torproject.org/) -) Execute /etc/init.d/tor stop && /etc/init.d/tor start At the moment I have no idea on how to configure that one automatically. Any ideas welcome. AFAIK Tor and I2P are fundamentally different as I2P is a standalone anonymousing network on top of IP whereas Tor anonymouses internet traffic. To manually configure the Tor gateway to use bridges:
-) Boot the Tor gateway VM
-) Press enter to activate a shell
-) Add (for example)
bridge 78.82.27.120:9001
bridge 67.164.36.152:9001
bridge 89.206.15.102:443
to /etc/tor/torrc (to get other bridges visit https://bridges.torproject.org/)
-) Execute /etc/init.d/tor stop && /etc/init.d/tor start

At the moment I have no idea on how to configure that one automatically. Any ideas welcome.

AFAIK Tor and I2P are fundamentally different as I2P is a standalone anonymousing network on top of IP whereas Tor anonymouses internet traffic.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90244 ra Wed, 08 Feb 2012 18:40:59 +0000 http://ra.fnord.at/?p=247#comment-90244 I think was introduced by a Wordpress-Plugin[0] which I had activated for this blog. gravatar is now disabled. [0] http://blog.2i2j.com/plugins/wordpress-thread-comment I think was introduced by a Wordpress-Plugin[0] which I had activated for this blog. gravatar is now disabled.

[0] http://blog.2i2j.com/plugins/wordpress-thread-comment

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90243 ra Wed, 08 Feb 2012 18:30:49 +0000 http://ra.fnord.at/?p=247#comment-90243 Interesting. Thanks! Interesting. Thanks!

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90242 ra Wed, 08 Feb 2012 18:27:50 +0000 http://ra.fnord.at/?p=247#comment-90242 The gateway has two network interfaces (eth0 where traffic is routed to the internet and eth1 which is an internal-only network). All incoming tcp traffic on eth1 is redirected with iptables through the tor socks interface, incoming udp traffic with destination port 53 (dns) is also redirection through tor. Any other traffic is discarded. All locally generated traffic is also redirected through tor but the traffic generated by the tor user-id. The gateway has two network interfaces (eth0 where traffic is routed to the internet and eth1 which is an internal-only network). All incoming tcp traffic on eth1 is redirected with iptables through the tor socks interface, incoming udp traffic with destination port 53 (dns) is also redirection through tor. Any other traffic is discarded. All locally generated traffic is also redirected through tor but the traffic generated by the tor user-id.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90241 ra Wed, 08 Feb 2012 18:21:19 +0000 http://ra.fnord.at/?p=247#comment-90241 Take a look at the files /etc/iptables.conf, /etc/tor/torrc, /etc/dhcpd.conf and /etc/config/network in the Tor gateway. Take a look at the files /etc/iptables.conf, /etc/tor/torrc, /etc/dhcpd.conf and /etc/config/network in the Tor gateway.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90240 ra Wed, 08 Feb 2012 18:15:28 +0000 http://ra.fnord.at/?p=247#comment-90240 I consider the Tor workstation as proof of concept only, because it is not really nice to use in its current state. I hope I can post some ideas on how to improve the situation within the next days. I consider the Tor workstation as proof of concept only, because it is not really nice to use in its current state. I hope I can post some ideas on how to improve the situation within the next days.

]]>
By: Anonymous http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90140 Anonymous Fri, 27 Jan 2012 06:59:13 +0000 http://ra.fnord.at/?p=247#comment-90140 That'd be great. Offical Tor project would be superiour! That’d be great. Offical Tor project would be superiour!

]]>
By: Markus http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90129 Markus Thu, 26 Jan 2012 01:32:08 +0000 http://ra.fnord.at/?p=247#comment-90129 hi Ra, any chance that you could collaborate directly with the TorProject? Your implementation is far superior than their TorVM concept model. An advantage of working with them is that they will be more active at maintaining it. hi Ra, any chance that you could collaborate directly with the TorProject? Your implementation is far superior than their TorVM concept model. An advantage of working with them is that they will be more active at maintaining it.

]]>
By: Jinsu http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-90087 Jinsu Fri, 20 Jan 2012 20:24:18 +0000 http://ra.fnord.at/?p=247#comment-90087 Excellent initiative on your part Ra, it's very easy to use. Can you please post how it's possible to configure the tor gateway to utilize bridges instead of connecting directly to the network? Some state wide firewalls are designed to block access to the tor network directly so this would be essential in providing activists with a way to reach the outside while achieving higher anonymity than just using tor on its own. Another idea I have is, would it be possible for you to design an I2P gateway vm? This is an alternative anonymizer project that enjoys much faster connection speeds and lower latency than tor due to the way they are designed. Excellent initiative on your part Ra, it’s very easy to use. Can you please post how it’s possible to configure the tor gateway to utilize bridges instead of connecting directly to the network? Some state wide firewalls are designed to block access to the tor network directly so this would be essential in providing activists with a way to reach the outside while achieving higher anonymity than just using tor on its own.

Another idea I have is, would it be possible for you to design an I2P gateway vm? This is an alternative anonymizer project that enjoys much faster connection speeds and lower latency than tor due to the way they are designed.

]]>
By: jex http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89903 jex Tue, 03 Jan 2012 20:21:36 +0000 http://ra.fnord.at/?p=247#comment-89903 Hi RA, I'm browsing your site with tor browser (with certificate patrol) through an open VPN service,I've noticed that the browser is accepting and saving a certificate from gravatar.com every time, what could that be? Hi RA,
I’m browsing your site with tor browser (with certificate patrol) through an open VPN service,I’ve noticed that the browser is accepting and saving a certificate from gravatar.com every time, what could that be?

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89891 Da Tue, 03 Jan 2012 05:40:53 +0000 http://ra.fnord.at/?p=247#comment-89891 Hi Ra, Actually when you have some time, do you think you could PLEASE put up a tutorial that shows how you created the Gateway? I'd greatly apprecaite this! :) THANKS Ra Hi Ra,

Actually when you have some time, do you think you could PLEASE put up a tutorial that shows how you created the Gateway?

I’d greatly apprecaite this! :)

THANKS Ra

]]>
By: mirimir http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89853 mirimir Sat, 31 Dec 2011 00:07:04 +0000 http://ra.fnord.at/?p=247#comment-89853 I've been discussing VPN via Tor with Das on Wilders. Thanks to your quick reply, I was moved to try it again, using your Tor fast gateway, and pfSense VMs for VPN connections. It worked -- VPN3->[Tor->(VPN2->VPN1)]. Details are at http://tinyurl.com/7lxt8tq I’ve been discussing VPN via Tor with Das on Wilders. Thanks to your quick reply, I was moved to try it again, using your Tor fast gateway, and pfSense VMs for VPN connections. It worked — VPN3->[Tor->(VPN2->VPN1)]. Details are at http://tinyurl.com/7lxt8tq

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89839 Da Fri, 30 Dec 2011 03:19:19 +0000 http://ra.fnord.at/?p=247#comment-89839 Hi Ra, Thanks for the FAST reply, ok I understand for your Gateway image you make. But if someone wants to install Tor on their computer running Linux, or on their own Linux guest, install Tor, how can we set this up so Tor runs over the network the same? Please don't misunderstand me, THANK YOU very much for your work, this is really great, it's just that I'd like to learn how to do this and install Tor on my own computer and have everything going over Tor. So can you please teach me how I can do this? I'm a pretty good Linux geek of 10 years, I'm sure if you help me I can do this too. THANKS Hi Ra,

Thanks for the FAST reply, ok I understand for your Gateway image you make.

But if someone wants to install Tor on their computer running Linux, or on their own Linux guest, install Tor, how can we set this up so Tor runs over the network the same?

Please don’t misunderstand me, THANK YOU very much for your work, this is really great, it’s just that I’d like to learn how to do this and install Tor on my own computer and have everything going over Tor.

So can you please teach me how I can do this?

I’m a pretty good Linux geek of 10 years, I’m sure if you help me I can do this too.

THANKS

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89838 ra Fri, 30 Dec 2011 03:08:23 +0000 http://ra.fnord.at/?p=247#comment-89838 It's exactly as you wrote. Configure your VM to use a single network interface (internal network "tor"), start the Tor gateway and your VM. All of the traffic generated by your VM is transparently routed through Tor. So if you connect to a VPN, also this connection goes through Tor (as long as it's a TCP connection, UDP will be dropped). It’s exactly as you wrote. Configure your VM to use a single network interface (internal network “tor”), start the Tor gateway and your VM. All of the traffic generated by your VM is transparently routed through Tor. So if you connect to a VPN, also this connection goes through Tor (as long as it’s a TCP connection, UDP will be dropped).

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89837 Da Thu, 29 Dec 2011 23:10:57 +0000 http://ra.fnord.at/?p=247#comment-89837 Hi Ra, Ok nice to hear and see it's still being actively developed, sorry I haven't been paying attention to it in a while, my bad it's Da, same as Das too making the post... :) Ra could you PLEASE be so kind as to either point me where I can read, or can you PLEASE tell me how I can setup Tor so that it works on the network level like you did in the Gateway, so that anything going online is routed over Tor? I want to be able to route, connect to a VPN also going over Tor like this and I would really appreciate help for installing Tor and doing this? THANKS Hi Ra,

Ok nice to hear and see it’s still being actively developed, sorry I haven’t been paying attention to it in a while, my bad it’s Da, same as Das too making the post… :)

Ra could you PLEASE be so kind as to either point me where I can read, or can you PLEASE tell me how I can setup Tor so that it works on the network level like you did in the Gateway, so that anything going online is routed over Tor?

I want to be able to route, connect to a VPN also going over Tor like this and I would really appreciate help for installing Tor and doing this?

THANKS

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89819 ra Wed, 28 Dec 2011 22:54:03 +0000 http://ra.fnord.at/?p=247#comment-89819 This is the latest Tor version available in OpenWRT 10.03 is 0.2.1.24. OpenWRT 10.03.1 has been released about a week ago and ships Tor 0.2.2.24. So the gateway should be upgraded to the newer OpenWRT version. This is the latest Tor version available in OpenWRT 10.03 is 0.2.1.24. OpenWRT 10.03.1 has been released about a week ago and ships Tor 0.2.2.24. So the gateway should be upgraded to the newer OpenWRT version.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89818 ra Wed, 28 Dec 2011 22:49:42 +0000 http://ra.fnord.at/?p=247#comment-89818 Yes, the project is definitely active. The last release was not even two months ago..? Yes, the project is definitely active. The last release was not even two months ago..?

]]>
By: Das http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89806 Das Wed, 28 Dec 2011 03:40:56 +0000 http://ra.fnord.at/?p=247#comment-89806 Hi, How can we use our own VM, after setting the internal network to Tor, then when we start our VM and it's running on the Tor network, connect to a VPN so that VPN is now going over Tor? THANKS Hi,

How can we use our own VM, after setting the internal network to Tor, then when we start our VM and it’s running on the Tor network, connect to a VPN so that VPN is now going over Tor?

THANKS

]]>
By: Lii http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89801 Lii Wed, 28 Dec 2011 00:16:31 +0000 http://ra.fnord.at/?p=247#comment-89801 Is this project still being actively developed? From what I can see these versions have not changed in a long time? THANKS Is this project still being actively developed?

From what I can see these versions have not changed in a long time?

THANKS

]]>
By: anewerauser http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89408 anewerauser Tue, 29 Nov 2011 06:08:36 +0000 http://ra.fnord.at/?p=247#comment-89408 Hi Mr Ra Please I want to know how to update the TOR program in the TORGATEWAY. You know it is very important to have the latest version of TOR. Thanks in advance. Hi Mr Ra
Please I want to know how to update the TOR program in the TORGATEWAY.
You know it is very important to have the latest version of TOR.
Thanks in advance.

]]>
By: anewerauser http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89399 anewerauser Mon, 28 Nov 2011 15:04:31 +0000 http://ra.fnord.at/?p=247#comment-89399 Thanks a lot mr RA Your work is very good. But,can you please update Tor Gateway to include the latest TOR update? Thanks in advance. Thanks a lot mr RA
Your work is very good.
But,can you please update Tor Gateway to include the latest TOR update?
Thanks in advance.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89388 ra Mon, 28 Nov 2011 00:39:43 +0000 http://ra.fnord.at/?p=247#comment-89388 No, not on OpenWRT. No, not on OpenWRT.

]]>
By: Skeptikal Hippo http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89361 Skeptikal Hippo Sat, 26 Nov 2011 08:26:49 +0000 http://ra.fnord.at/?p=247#comment-89361 Thank you so much for responding so quickly! I tried your new .ova file and it still didn't work. I read that sometimes the files get corrupted. So I tried downloading the file with Chrome. File imported with no problem! It must have gotten corrupted on my end somehow. Thanks again for all the work you have done! Thank you so much for responding so quickly! I tried your new .ova file and it still didn’t work. I read that sometimes the files get corrupted. So I tried downloading the file with Chrome. File imported with no problem! It must have gotten corrupted on my end somehow. Thanks again for all the work you have done!

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89340 ra Fri, 25 Nov 2011 09:12:12 +0000 http://ra.fnord.at/?p=247#comment-89340 Can you get a more verbose error message (from a detailed output or log file)? I did a fsck of the virtual disk and exported the VM - maybe this works for you: http://pluto.fsinf.at/~ra/Tor workstation 0.1.7-test1.ova Can you get a more verbose error message (from a detailed output or log file)?

I did a fsck of the virtual disk and exported the VM – maybe this works for you: http://pluto.fsinf.at/~ra/Tor workstation 0.1.7-test1.ova

]]>
By: Skeptikal Hippo http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-89327 Skeptikal Hippo Thu, 24 Nov 2011 21:16:18 +0000 http://ra.fnord.at/?p=247#comment-89327 I'm trying to install Tor Workstation 0.1.6 using VB 4.1.6 (OS X Lion) and I'm getting the error "Could not create the clone medium '~/VirtualBox VMs/Tor Workstation/Tor workstation 0.1.6 disk1.vmdk' (VERR_GENERAL_FAILURE) Details: Result Code: VBOX_E_FILE_ERROR (0x80BB0004) Component: Appliance Interface: IAppliance {Hex String} Tor Gateway 0.3.5 installed with no problems. Any ideas? I’m trying to install Tor Workstation 0.1.6 using VB 4.1.6 (OS X Lion) and I’m getting the error “Could not create the clone medium ‘~/VirtualBox VMs/Tor Workstation/Tor workstation 0.1.6 disk1.vmdk’ (VERR_GENERAL_FAILURE)

Details:

Result Code:
VBOX_E_FILE_ERROR (0×80BB0004)
Component: Appliance
Interface: IAppliance {Hex String}

Tor Gateway 0.3.5 installed with no problems.
Any ideas?

]]>
By: Ativismo na Internet - Stormfront http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88955 Ativismo na Internet - Stormfront Fri, 28 Oct 2011 16:52:23 +0000 http://ra.fnord.at/?p=247#comment-88955 [...] [...] [...] [...]

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88156 ra Tue, 11 Oct 2011 09:58:41 +0000 http://ra.fnord.at/?p=247#comment-88156 What you call "Tor workspace" I called "Tor workstation", but honestly I think that your term is more appropriate. The hidden service must be configured at the Tor gateway, but the service itself like HTTP may run on any machine on a reachable network. The gateway just does the TCP redirection. So it may also run on the Tor workspace. What you call “Tor workspace” I called “Tor workstation”, but honestly I think that your term is more appropriate.

The hidden service must be configured at the Tor gateway, but the service itself like HTTP may run on any machine on a reachable network. The gateway just does the TCP redirection. So it may also run on the Tor workspace.

]]>
By: Bern http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88152 Bern Mon, 10 Oct 2011 23:04:52 +0000 http://ra.fnord.at/?p=247#comment-88152 There are 2 VMs running, “Tor workspace” and “Tor gateway”. Can the HTTP server be at “Tor workspace” VM? Or it must be at “Tor gateway”? There are 2 VMs running, “Tor workspace” and “Tor gateway”. Can the HTTP server be at “Tor workspace” VM? Or it must be at “Tor gateway”?

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88151 ra Mon, 10 Oct 2011 22:12:47 +0000 http://ra.fnord.at/?p=247#comment-88151 What do you mean by "Tor workspace"? The Tor client runs in the Tor [fast] gateway where you can configure a hidden service to redirect the traffic to a http server. What do you mean by “Tor workspace”? The Tor client runs in the Tor [fast] gateway where you can configure a hidden service to redirect the traffic to a http server.

]]>
By: Bern http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88149 Bern Mon, 10 Oct 2011 20:08:18 +0000 http://ra.fnord.at/?p=247#comment-88149 Would a http server in "Tor workspace" work if I configure the "torrc" file? (https://www.torproject.org/docs/tor-hidden-service.html.en#two) Would a http server in “Tor workspace” work if I configure the “torrc” file? (https://www.torproject.org/docs/tor-hidden-service.html.en#two)

]]>
By: mirimir http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88132 mirimir Fri, 07 Oct 2011 07:32:16 +0000 http://ra.fnord.at/?p=247#comment-88132 OK, I get it. I have Ubuntu VM [10.232.64.2] running thttpd. In Tor fast gateway VM [10.232.64.1] I edit torrc to enable hidden service, and point to Ubuntu VM [HiddenServicePort 80 10.232.64.2:80]. And it works. Now I need to redo it using SSH port forward. For my risk model, I need Tor gateway with LUKS-crypto. I see that it's been ported to OpenWRT. Have you used it? OK, I get it. I have Ubuntu VM [10.232.64.2] running thttpd. In Tor fast gateway VM [10.232.64.1] I edit torrc to enable hidden service, and point to Ubuntu VM [HiddenServicePort 80 10.232.64.2:80]. And it works. Now I need to redo it using SSH port forward.

For my risk model, I need Tor gateway with LUKS-crypto. I see that it’s been ported to OpenWRT. Have you used it?

]]>
By: mirimir http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88121 mirimir Wed, 05 Oct 2011 18:47:02 +0000 http://ra.fnord.at/?p=247#comment-88121 I get ext2 errors whenever I make any file changes in the Tor gateway and then kill the VM without first halting. I gather that ext2 is very easy to corrupt because it doesn't journal. I have some questions that I'd rather not post in public. Please email me. I get ext2 errors whenever I make any file changes in the Tor gateway and then kill the VM without first halting. I gather that ext2 is very easy to corrupt because it doesn’t journal. I have some questions that I’d rather not post in public. Please email me.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88120 ra Wed, 05 Oct 2011 12:17:50 +0000 http://ra.fnord.at/?p=247#comment-88120 Maybe adding the "sync" mount option could fix this.. Maybe adding the “sync” mount option could fix this..

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88119 ra Wed, 05 Oct 2011 12:16:45 +0000 http://ra.fnord.at/?p=247#comment-88119 This is the second time I hear about ext2 fs corruption. Is there a way I can reproduce this problem? This is the second time I hear about ext2 fs corruption. Is there a way I can reproduce this problem?

]]>
By: mirimir http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88114 mirimir Tue, 04 Oct 2011 23:32:34 +0000 http://ra.fnord.at/?p=247#comment-88114 Edit: OK, I get it. It seems that killing VM after making changes corrupts ext2 filesystem. If I halt before killing, changes persist and I don't see inode errors. Thanks. Edit: OK, I get it. It seems that killing VM after making changes corrupts ext2 filesystem. If I halt before killing, changes persist and I don’t see inode errors. Thanks.

]]>
By: mirimir http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88113 mirimir Tue, 04 Oct 2011 21:41:46 +0000 http://ra.fnord.at/?p=247#comment-88113 Is it possible to edit torrc in Tor fast gateway to point to hidden service on another VM? My attemts have failed. Edits don't persist, but missing inode errors do. I suspect that you've left no wasted space in the filesystem. Or used some other Linux magic. Thanks. Is it possible to edit torrc in Tor fast gateway to point to hidden service on another VM? My attemts have failed. Edits don’t persist, but missing inode errors do. I suspect that you’ve left no wasted space in the filesystem. Or used some other Linux magic. Thanks.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-88043 ra Fri, 19 Aug 2011 15:28:45 +0000 http://ra.fnord.at/?p=247#comment-88043 The first public Tor fast gateway version is now online. The first public Tor fast gateway version is now online.

]]>
By: Da http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87991 Da Sun, 31 Jul 2011 02:55:07 +0000 http://ra.fnord.at/?p=247#comment-87991 Hi, Still all the same problems as the older version, to little memory, can't run it in full screen without the screen tearing or the taskbar appearing in the wrong place... Also can you consider making something so people can stop and start Tor, otherwise I guess for the moment the only thing you can do is close and restart the browser... THANKS Hi,

Still all the same problems as the older version, to little memory, can’t run it in full screen without the screen tearing or the taskbar appearing in the wrong place…

Also can you consider making something so people can stop and start Tor, otherwise I guess for the moment the only thing you can do is close and restart the browser…

THANKS

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87988 ra Fri, 29 Jul 2011 10:39:58 +0000 http://ra.fnord.at/?p=247#comment-87988 Thanks for giving the VM a more in depth testing! (: The DNS connection to 85.214.73.63 (which is just the first server listed in /etc/resolv.conf) you see in first place is needed for resolving the names of one of the NTP servers listed in /etc/config/system. Correct time is needed by the Tor client to work. All other connections run through the Tor network (as you noticed 128.31.0.39:9101 is a Tor node). A better solution would be to use the VirtualBox host->guest time synchronization but this would need building the VirtualBox kernel modules for OpenWRT which is still on the TODO-list. Thanks for giving the VM a more in depth testing! (:

The DNS connection to 85.214.73.63 (which is just the first server listed in /etc/resolv.conf) you see in first place is needed for resolving the names of one of the NTP servers listed in /etc/config/system. Correct time is needed by the Tor client to work.

All other connections run through the Tor network (as you noticed 128.31.0.39:9101 is a Tor node).

A better solution would be to use the VirtualBox host->guest time synchronization but this would need building the VirtualBox kernel modules for OpenWRT which is still on the TODO-list.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87987 ra Fri, 29 Jul 2011 10:01:48 +0000 http://ra.fnord.at/?p=247#comment-87987 The Tor gateway uses the default Tor client circuit creation. Which are three hops default and there might be four in case of a hidden service connection for the rendevous point and two if there are not enough acceptable routers. This is the default Tor client behaviour. The Tor gateway uses the default Tor client circuit creation. Which are three hops default and there might be four in case of a hidden service connection for the rendevous point and two if there are not enough acceptable routers. This is the default Tor client behaviour.

]]>
By: checkitout http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87982 checkitout Fri, 29 Jul 2011 06:16:00 +0000 http://ra.fnord.at/?p=247#comment-87982 Hi Checked this out. A very nice solution. But I did have a look at what the Gateway actually does :-) The first connection is ALWAYS: VirtualBoxVM wants to connect to 85.214.73.63 on UDP port 53 (domain) IP Address: 85.214.73.63 Reverse DNS Name: anonymisierungsdienst.foebud.org Sooner or later always this comes up: VirtualBoxVM wants to connect to 128.31.0.39 on TCP port 9101 (bacula-dir) IP Address: 128.31.0.39 Reverse DNS Name: belegost.csail.mit.edu CAN YOU PLEASE EXPLAIN this. It seems to be kind of a security hole always connecting the foebud first. Do you LOG this??? Hi Checked this out. A very nice solution. But I did have a look at what the Gateway actually does :-)

The first connection is ALWAYS:

VirtualBoxVM
wants to connect to 85.214.73.63 on UDP port 53 (domain)

IP Address: 85.214.73.63
Reverse DNS Name: anonymisierungsdienst.foebud.org

Sooner or later always this comes up:

VirtualBoxVM wants to connect to 128.31.0.39 on TCP port 9101 (bacula-dir)

IP Address: 128.31.0.39
Reverse DNS Name: belegost.csail.mit.edu

CAN YOU PLEASE EXPLAIN this. It seems to be kind of a security hole always connecting the foebud first. Do you LOG this???

]]>
By: anewerauser http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87978 anewerauser Thu, 28 Jul 2011 14:53:27 +0000 http://ra.fnord.at/?p=247#comment-87978 Please Mr Ra How many nodes are there in your TOR GATEWAY? I want to make sure that it is at least 3 nodes. I am waiting for your answer. Please Mr Ra
How many nodes are there in your TOR GATEWAY?
I want to make sure that it is at least 3 nodes.
I am waiting for your answer.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87976 ra Wed, 27 Jul 2011 10:05:15 +0000 http://ra.fnord.at/?p=247#comment-87976 See EXTENDCIRCUIT in https://gitweb.torproject.org/torspec.git/blob/HEAD:/control-spec.txt There are libraries for Java and Python available, jtorctl and pytorctl. See EXTENDCIRCUIT in https://gitweb.torproject.org/torspec.git/blob/HEAD:/control-spec.txt

There are libraries for Java and Python available, jtorctl and pytorctl.

]]>
By: anewerauser http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87972 anewerauser Tue, 26 Jul 2011 10:08:59 +0000 http://ra.fnord.at/?p=247#comment-87972 Hi Mr Ra 1-Please tell me how many nodes in a circuit in your TOR GATEWAY. It should not be less than 3 nodes. Make the 3 nodes default,and put option to change it with command line on the console and tell us what is this command. 2-Another point is :Make the eth0 interface of the Gateway Bridged-network not NAT,so we are sure that it is separate on the LAN [this last point can be achieved by changing the settings of the virtual machine of the virtual box]. 3-As for the TOR workstation,You can look at the TAILS LIVE CD which is a good Debian based live cd made specifically for the anonymous surfing. Thanks for your attention. Hi Mr Ra

1-Please tell me how many nodes in a circuit in your TOR GATEWAY.
It should not be less than 3 nodes.
Make the 3 nodes default,and put option to change it with command line on the console and tell us what is this command.
2-Another point is :Make the eth0 interface of the Gateway Bridged-network not NAT,so we are sure that it is separate on the LAN [this last point can be achieved by changing the settings of the virtual machine of the virtual box].
3-As for the TOR workstation,You can look at the TAILS LIVE CD which is a good Debian based live cd made specifically for the anonymous surfing.
Thanks for your attention.

]]>
By: anewerauser http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87971 anewerauser Mon, 25 Jul 2011 22:15:46 +0000 http://ra.fnord.at/?p=247#comment-87971 --[This will be used in the Tor fast gateway to build two hop circuits]-- Can you explain in more detail,please? Is it 3 nodes or 2 nodes? How can i build a new circuit? –[This will be used in the Tor fast gateway to build two hop circuits]–

Can you explain in more detail,please?
Is it 3 nodes or 2 nodes?
How can i build a new circuit?

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87970 ra Mon, 25 Jul 2011 11:57:08 +0000 http://ra.fnord.at/?p=247#comment-87970 I will publish a changelog with the next release. Controlling Tor through command line is already possible through the control port. This will be used in the Tor fast gateway to build two hop circuits. I will publish a changelog with the next release.

Controlling Tor through command line is already possible through the control port. This will be used in the Tor fast gateway to build two hop circuits.

]]>
By: anewerauser http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87968 anewerauser Sun, 24 Jul 2011 03:19:07 +0000 http://ra.fnord.at/?p=247#comment-87968 Hi Mr RA Your effort is highly appreciated. You may issue a change log for every release. Also You may make a Command line Console in the TOR gateway to include: -build a new circuit -turn on tor -restart TOR -shutdown Thanks a lot. Hi Mr RA
Your effort is highly appreciated.
You may issue a change log for every release.
Also You may make a Command line Console in the TOR gateway to include:
-build a new circuit
-turn on tor
-restart TOR
-shutdown

Thanks a lot.

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87958 ra Thu, 21 Jul 2011 12:03:25 +0000 http://ra.fnord.at/?p=247#comment-87958 Mounting the VMDK file depends on the OS you are using. You should be able to find a solution by searching for "(Linux|Windows|MacOS) mount vmdk". Tor configuration files are usually in /etc/tor (and state files in /var/lib/tor). Mounting the VMDK file depends on the OS you are using. You should be able to find a solution by searching for “(Linux|Windows|MacOS) mount vmdk”.
Tor configuration files are usually in /etc/tor (and state files in /var/lib/tor).

]]>
By: ra http://ra.fnord.at/2011/05/easy-and-secure-anonymous-internet-usage/comment-page-1/#comment-87957 ra Thu, 21 Jul 2011 11:54:12 +0000 http://ra.fnord.at/?p=247#comment-87957 There should definetely be a graphical keyboard layout switch. Might make it to the next version. (: There should definetely be a graphical keyboard layout switch. Might make it to the next version. (:

]]>