|
Home > Archive > Anonymous Servers > March 2005 > Solutions for Tor users
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Solutions for Tor users
|
|
| anonymous 2005-03-26, 5:45 pm |
| Tor is disallowing connections from machines it does not like.
Tor servers are able to monitor whom is connecting to them and if they
do not like your IP you are gone. I have found a work around, but ain't
gonna post it here. Suffice to say I do not believe the operators of TOR
servers are really committed to equal access and privacy. Also as
previously posted by others Privoxy does not do what it claims-it cannot
filter env. and other info on ssl connections.
| |
| Stephen K. Gielda 2005-03-27, 2:45 am |
| In article <Xns96257FF15A813anonymoushotmailcom@82.133.6.116>,
anonymous@hotmail.com says...
> Tor is disallowing connections from machines it does not like.
> Tor servers are able to monitor whom is connecting to them and if they
> do not like your IP you are gone. I have found a work around, but ain't
> gonna post it here. Suffice to say I do not believe the operators of TOR
> servers are really committed to equal access and privacy.
Any machine knows what machine connected to it, it must to be able to
communicate. Also, every service utilizes source blocks in some
fashion. Whether it be an ip range infected with viruses, a
misconfigured client that pounded the server for some reason, or
something else. There are also four different routes that can be
affected, so it may be something inbetween. Just because you cannot get
to a site that someone else can does not mean you were deliberately
blocked.
> Also as
> previously posted by others Privoxy does not do what it claims-it cannot
> filter env. and other info on ssl connections.
>
SSL is end to end, unless privoxy was employing a man-in-the-middle
attack it cannot see the contents of the stream by design, the design of
SSL.
/steve
--
Check out Cotse's Privacy Watch.
A comprehensive information resource.
http://www.cotse.net/privacy/
| |
| nobody 2005-03-27, 5:49 pm |
| Stephen K. Gielda <steve@packetderm.com.bogus> wrote in
news:MPG.1caff78844aed2189899a7@news.newsreader.com:
> In article <Xns96257FF15A813anonymoushotmailcom@82.133.6.116>,
> anonymous@hotmail.com says...
>
yes, and far too many so called anonymous advocates block machines based
on content or what they define as "spam" which is loosely defined and
seems to take on the meaning of: anything I do not like. Also don't
forget the government is in there trying to disallow anonymous
communications.
> Any machine knows what machine connected to it, it must to be able to
> communicate. Also, every service utilizes source blocks in some
> fashion. Whether it be an ip range infected with viruses, a
> misconfigured client that pounded the server for some reason, or
> something else. There are also four different routes that can be
> affected, so it may be something inbetween. Just because you cannot
> get to a site that someone else can does not mean you were
> deliberately blocked.
>
>
> SSL is end to end, unless privoxy was employing a man-in-the-middle
> attack it cannot see the contents of the stream by design, the design
> of SSL.
Usually this is true, but there are programs that will do what Privoxy
CLAIMS it does-namely decrypt, filter and reencrypt. Privoxy fails to do
this and should be called: Showuswhouare.exe
> /steve
| |
| chameleon 2005-03-29, 2:45 am |
| on 27 Mar 2005, Anonymous via Panta Rhei
<anonymous@panta-rhei.dyndns.org> wrote in
news:XAMF4LX638439.2194444444@anonymous.poster:
> In article <0019626923076115nobodynobodycom@82.133.6.116>,
> nobody wrote:
>
excuse me, but apparently you have not read the posts on the topic
the original poster is referring to? Instead you bring up irrelevant
topics that were never discussed. OP is correct, Privoxy does NOT
filter ssl env variables which, of course, is what many sysops use to
identify users. Javascript, cookies, etc, can be turned off and the
end host will still get your env. variables unders ssl connection.
Take another program which actually DOES filter ssl connections and
you are ok. Not so with Privoxy. Privoxy offers variables in the
config file to change or cloak you env variables, but they do not
work under ssl. Privoxy is not so private.
> excuse me, but privoxy does not CLAIM to re-encrypt anything.
> it has USER CONFIGURABLE filter actions that CAN BE USED to
> filter script languages and outgoing http headers and such. The
> MAIN thing Tor users use it for is both that filtering, and the
> fact that it forces all http, https and DNS requests to be
> routed through Tor to prevent leakage of Identifying
> information.
>
> These can be very powerfull tools *IF* the user does not defeat
> them by either not setting them up correctly OR by disableing
> certain features. If you set privoxy to not rewrite javascript
> for example, then it is YOUR FAULT if somebody gets your real
> I.P. Address with a javascript trick.
>
> Are they using flash to do it? then turn flash OFF. ditto for
> java, vbs or any other scripting language. when you want
> private surfing you cannot afford to use security leaks like
> that, you want NOTHING but pure html 4.01 strict.
>
|
|
|
|
|