From mboxrd@z Thu Jan 1 00:00:00 1970 From: Christopher Lemmer Webber Subject: Re: Recommendations for browsing via Tor pre tor-browser? Date: Fri, 13 Jul 2018 08:57:00 -0400 Message-ID: <87tvp3l2eb.fsf@dustycloud.org> References: <87zhywl72t.fsf@dustycloud.org> <87muuvjwwj.fsf@gnu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:37522) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fdxdB-0008Hy-JE for help-guix@gnu.org; Fri, 13 Jul 2018 08:57:06 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1fdxd7-0003Sx-Oe for help-guix@gnu.org; Fri, 13 Jul 2018 08:57:05 -0400 In-reply-to: <87muuvjwwj.fsf@gnu.org> List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-guix-bounces+gcggh-help-guix=m.gmane.org@gnu.org Sender: "Help-Guix" To: Ludovic =?utf-8?Q?Court=C3=A8s?= Cc: help-guix Ludovic Court=C3=A8s writes: > Christopher Lemmer Webber skribis: > >> Anyone have recommendations on how they're doing web browsing via Tor, >> sans tor-browser? In the interim I have been using the more >> lightweight, non-js using browsers like links. > > I use Privoxy, and as written in the =E2=80=98privoxy.conf=E2=80=99 examp= le, I have: > > forward-socks5 / 127.0.0.1:9050 . > > where Tor is listening on port 9050 (I use the Tor service of GuixSD.) > > Ludo=E2=80=99. I wonder if localhost + port is a good idea for tor or really any other service. Our experience with the confused deputy attack against guile's live REPL makes me suspicious of anything that's localhost + port. I notice that the Tor configuration file supports a unix domain socket: ControlSocket Path Like ControlPort, but listens on a Unix domain socket, rather th= an a TCP socket. 0 disables ControlSocket (Unix and Unix-like systems only.) I wonder if that would be safer? WDYT?