logs archiveIRC Archive / Oftc / #tor / 2015 / September / 16 / 1
mammonack
tor browser's noscript isn't giving me an option of scripts to disable on a page like my normal firefox instance and the noscript versions are the same, whats up with that?
cacahuatl
Selectively enabling or disabling scripts is a fingerprint.
It's better to enable them entirely or disable them entirely.
mammonack
idgaf let me make that decision
cacahuatl
Then edit the preferences.
mammonack
which one is that
cacahuatl
idgaf?
mammonack
which preference is that
CypherWolf
mammonack: Right click on noscript. See options or such
qwerty1
idgaf is a word with many meanings; one is "i do not have strong unlinkability requirements"
         

tooner_
i've noticed sometimes few f are g here. exceptions are most welcome, ty folks.
whitanne
where is the tor browser source code?
tooner
you could start here: https://blog.torproject.org/blog/deterministic-builds-part-two-technical-details
whitanne
tooner: i've been through that already
kernelcorn
whitanne: look at the source code of Firefox, then look at gitweb.torproject.org
whitanne
kernelcorn: i just want to see the difference between stock firefox and tor browser
kernelcorn
whitanne: you could try asking on #tor-dev
whitanne
i've been to gitweb.torproject.org but i can't find the latest tor browser
velope
it's there
but there's no convenient automatic lists of diffs to see
kernelcorn
whitanne
kernelcorn: oh, i thought that was it but i got thrown by the commit messages from 2014
kernelcorn
tons of branches
whitanne
kernelcorn: which branch is the "stable one"
maiena
what's the story of this folder name? :P https://gitweb.torproject.org/tor-browser.git/tree/netwerk
slackie
(Action) hi there \o
whitanne
hai
are there any exit nodes that use ipv6?
kernelcorn
I'm sure there are
wgreenhouse
whitanne: there are, but not very many, which is why using them isn't default behavior yet
ncl
ask -dev for there to be an ipv6 flag maybe
wgreenhouse
whitanne: you can enable it (search for IPv6 in the fine manual)
         

whitanne
ok
wgreenhouse
it's not default yet because currently using them would make you look different than the average bear
whitanne
hopefully ipv6 becomes more common soon
kernelcorn
well, there's a number of privacy issues that have yet to be addressed with it
whitanne
kernelcorn: like what
kernelcorn
https://en.wikipedia.org/wiki/IPv6#Privacy NAT and DHCP are not used with IPv6 because the address space is so large, but that also means that your connections are easier to track
flonnie
http://spiritualwarfare666.webs.com/Satans_Library.htm
kernelcorn
NAT is often used to compact a whole range of addresses into one, thus someone from outside the network is unable to distinguish traffic from individual users within that network. With DHCP, outsiders can only conclude that someone within that network accessed resource X, but when IPs within the network are rotated, it's hard to track users across time. IPv6 doesn't need DHCP and it's usually not necessary to use NAT to save addresses, so the s
ame address is used globally forever.
srg
I'm not sure how that would affect routing traffic through tor? it would be the same as using TBB on a static IP (Business ISP or VPN or whatever)
Still only the guard would know the source IP, and the exit know the destination IP
jula
hi
ASmith_
.
mane
morning chaps
TORques
google searching through tor connection seems to track your identity - if you see the CAPTCHA page "To continue, please type the characters below:" look at the URL for the google sufix: URL: https://www.google.xx/... - if that sufix is from your real country the things are crystal clear, they know who you are
maybe the SSL certificates arew personalized ?!
Jotunbane
maybe you happen to exit in your country of origin
cacahuatl
Don't feed the trolls :P
Jotunbane
ahh
TORques
no I checked this
the exit point was from other country and the google sufix was from my real country
how it's possible?
Tester
I recommend you to get a new identity
Zoltan
I'm assuming your using the TBB
Tester
like make your nodes run through a different path
TORques
I will test again
who is trolling dude? http://oi61.tinypic.com/110dlop.jpg
http://s27.postimg.org/n3q2pohyb/google.jpg
how google guessed my country/
cacahuatl
You're not using Tor Browser
TORques
I run a relay and I can't use TBB in the same time
ncl
yes you can?
they even use different default ports...
Zoltan
jesus dude
TORques
I run a relay from another tor.exe not from the TBB - when I start TBB it pop an error window "Tor unexpectedly exited. blabla"
you can'r run 2 instance of tor.exe using the same ports
I only can generate the password with other tor.exe when the relay is running
Bulbasaur123
my VPS suspended without warning :O
i hope not for good
or just lost like 400¬
if i don't get my server back someone should remove creanova from tor friendly ISP list
mane
Bulbasaur123: are you running an exit node?
Bulbasaur123
yes
they just sent me 2 abuse reports when asked why suspended
mane
maybe that's due to the abuse report you got yesterday
yeah
Bulbasaur123
one fas from ficora saying that i spread malware and otherone was from starz media saying i seed SPARTACUS - Season 1-2-3-4 Complete HD 720p
so i think it's not about the one from yesterday
sent me those when i asked why i am suspended and they said nothing about how to get unsuspended also i told em about my tor exit relay
i think my suspension had more to do with the malwares than with torrents
i think i need to setup reduced exit policy
mane
yeah
I'm currently running my exit node only with port 22,80,443 allowed
no abuse reports so far and the node is up for more than one year now
Bulbasaur123
i had all allowed exept the common ports for sending mail
it seems it's in http://www.spamhaus.org/lookup/ blacklist for natting for zeus trojan
how the hell am i supposed to block ZeuZ traffic that got my server suspended when it goes to port 80 on the remote server
velope
by IP, of course
Bulbasaur123
there are limited number of times that one can remove him/herself from the blocklist i would need to know ips of all malware servers :/
hmm it seems only way to keep my server is to change it from exit relay to bridge relay :(
Peng
You can be a normal non-exit relay too probably
mane
anyone wants to help me getting this working? https://timtaubert.de/blog/2014/11/using-the-webcrypto-api-to-generate-onion-names-for-tor-hidden-services/
suelin
sure
mane
suelin: so I've uploaded that code/file into my webserver but it's not executing it
actually it shows the content of the file into the browser
I guess I need to enable js on my webserver
am I right?
paranoid
javascript gets executed by your browser, that has nothing to do with your httpd - afaik
« prev 1 2 3 4 next »