From mboxrd@z Thu Jan 1 00:00:00 1970 From: Joshua Branson Subject: Re: Problem with Tor & IceCat Date: Thu, 10 Jan 2019 09:59:29 -0500 Message-ID: <87zhs8y2we.fsf@dismail.de> References: <20190106191314.5e57d87a@e.mail.de> <87muod7dkg.fsf@dismail.de> <20190107024136.180582c8@e.mail.de> <87tvikrig1.fsf@elephly.net> <87bm4qu5rn.fsf@gnu.org> <20190109005259.6c1d99b8@e.mail.de> <87imyxdhk9.fsf@dismail.de> <87y37s4t7k.fsf@elephly.net> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([209.51.188.92]:44853) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ghboC-0001HS-MW for help-guix@gnu.org; Thu, 10 Jan 2019 09:59:49 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ghboB-000590-DC for help-guix@gnu.org; Thu, 10 Jan 2019 09:59:48 -0500 Received: from dismail.de ([78.46.223.134]:22685) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1ghboA-00054I-Oy for help-guix@gnu.org; Thu, 10 Jan 2019 09:59:47 -0500 Received: from dismail.de (localhost [127.0.0.1]) by dismail.de (OpenSMTPD) with ESMTP id 4d8f5045 for ; Thu, 10 Jan 2019 15:59:33 +0100 (CET) Received: from smtp1.dismail.de (10.240.26.11 [10.240.26.11]) by mx1.dismail.de (OpenSMTPD) with ESMTP id 7d15c5e6 for ; Thu, 10 Jan 2019 15:59:33 +0100 (CET) Received: from smtp1.dismail.de (localhost [127.0.0.1]) by smtp1.dismail.de (OpenSMTPD) with ESMTP id b5e0ced4 for ; Thu, 10 Jan 2019 15:59:33 +0100 (CET) Received: by dismail.de (OpenSMTPD) with ESMTPSA id 40b69229 (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256:NO) for ; Thu, 10 Jan 2019 15:59:32 +0100 (CET) In-Reply-To: <87y37s4t7k.fsf@elephly.net> (Ricardo Wurmus's message of "Thu, 10 Jan 2019 13:01:35 +0100") List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-guix-bounces+gcggh-help-guix=m.gmane.org@gnu.org Sender: "Help-Guix" To: help-guix@gnu.org Ricardo Wurmus writes: > Joshua Branson writes: > >> Archetyp Jung writes: >> >>> Sorry Ludo, but I reinstalled the operating system yesterday. :-( >>> >>> Thanks to my customized config.scm, everything works fine here, >>> including Tor. ;-) >>> >>> BTW: I no longer use Tor in GNU IceCat with the Tor=E2=84=A2 browser bu= tton, >>> but directly via Proxy DNS when using SOCKS v5. >> >> Can you describe this setup? I would like to use Tor properly, and >> currently I cannot. :( > > You only need to add (tor-service) to the list of services. Then tell > your browser to connect to the SOCKS proxy at localhost:9050. If you > use Epiphany or Eolie that would be done through the network settings > where you can configure GNOME-wide settings. > > For Icecat that would be done in Preferences, searching for =E2=80=9Cprox= y=E2=80=9D, > hitting =E2=80=9CSettings=E2=80=A6=E2=80=9D and specifying a manual proxy= in the =E2=80=9CSOCKS Host=E2=80=9D > line. Also check the box next to =E2=80=9CProxy DNS when using SOCKS v5= =E2=80=9D. Thanks for getting back to me. So just to verify, using Tor via the Tor plugin provided in Icecat, is not enough? I have to manually going into settings and tinker some settings? A user mentioned the following a few days ago, which makes me think that DNS is not being sent to TOR. When I said, that using icecat with the tor-service, that I could not connect to tor hidden services, then he said the following: That's concerning to me: it seems to imply that DNS requests are _not_ being proxied through Tor, which could leak very sensitive information to your ISP and other parties. Was he incorrect in his assumption? Does the default Icecat + the tor plugin, and (service tor-service-type), correctly route all icecat traffic through tor? How can I check that DNS is not being sent over HTTP? Thanks, Joshua > > -- > Ricardo > -- Joshua Branson Sent from Emacs and Gnus