logs archiveIRC Archive / Oftc / #tor / 2015 / September / 30 / 1
kibb
is that good ?
is there any tutorial to use safely xchat over The onion router ?
srg
http://bfy.tw/22ZS
^ there
static
so long as you have it set to proxy on your tor listening port you should be good
thorazine
kibb: clients which support DCC are bad news sadly
kibb: the DCC protocol involves transmitting your public IP address encoded as a signed 32bitr int
kibb: most darknet irc servers block all DCC stuff for this reason
but usually have to be custom modified to do so
kibb
which clients leak DCC ?
thorazine
anyway most clients will use things like UPnP or NAT-PMP to discover the public IP
kibb: any client that supports DCC connections
which is basically all of them
torQUES
DCC is used when you download files from other clients/servers (music,...) - it works with the real IP
static
tails uses pidgen by default, though i don't know the exact reason? does pidgen leak DCC?
thorazine
static: DCC is a protocol, what is leaked is the IP address
static: and yes Pidgin using IRC supports DCC
         

static
thorazine: i got the protocol part, sorry. im just curious if its something that can be disabled or if you avoid it by simply not downloading sh*t
cacahuatl
Yes you can
thorazine
static: you can ignore all DCC requests
cacahuatl
DCC works by the person who wants to send you the file sending you their IP, on tails you will either connect to it through Tor or fail to connect, you would not leak your IP.
thorazine
static: DCC file transfers can be active or passive, so if you accept a passive file transfer from someone, your client sends them your IP address
cacahuatl
Even if you attempted to download whatever they sent
No it doesn't -_-
That's FTP
thorazine
cacahuatl: hexchat settings
cacahuatl: I explored using DCC to leak IP info quite extensively
cacahuatl
And also with FTP the "active" option is where you send them your IP and port, passive is where you pull it from the server.
thorazine
i'm not talking about FTP
DCC has active and passive modes too
cacahuatl
...I think you are not talking about DCC either
thorazine
i might have reversed active and passive
http://www.kvirc.net/doc/doc_dcc_connection.html
https://en.wikipedia.org/wiki/Direct_Client-to-Client
"Reverse / Firewall DCC[edit]
This passive DCC mechanism is supported by at least mIRC, Visual IRC, XChat, KVIrc, DMDirc, Klient, Konversation, and PhibianIRC. The sender offers a file by sending the CTCP message:
"
ok?
anyway ignoring all DCC requests keeps you safe
torQUES
in most irc clients ther is a check "get my address from the IRC server" to ask server for the real IP if you have 192.168.*.*
thorazine
torQUES: yes but many IRC clients use NAT-PMP or UPnP to discover it themselves
cacahuatl
You'll note that all the weird janky "passive" stuff is kvirc specific, not that DCC is even a standard.
So, you can pretty much ignore it and just not accept any requests
thorazine
mIRC, Visual IRC, XChat, KVIrc, DMDirc, Klient, Konversation, and PhibianIRC
not just kvirc
but yes you can just ignore requests
torQUES
send me a dummy file to test what happens with tor connected users
thorazine
the catch is that if you accept a passive-mode dcc transfer and your client uses NAT-PMP or UPnP to discover its IP address then your part of the transfer doesn't go over tor
torQUES: too lazy, but it usually transfers
torQUES: which is why any darknet irc worth its salt modifies the ircd to strip all dcc
kernelcorn
thanks cacahuatl. Why would it launch a second daemon?
cacahuatl
Er, oh specifically if you're running tor as a system service and attaching tor browser to that
rather than letting tor browser handle it
*tor launcher handle it
if you don't set that, tor browser will assume what it's attaching to is the daemon started by tor launcher, and the one actually started by tor launcher will just idle in the background
kernelcorn
cacahuatl: so it closes when the first control connection ends?
         

cacahuatl
right, tor button sends the 'TAKEOWNERSHIP' command when it attaches to the control port
kernelcorn
I mean, with that set
ah ok
cacahuatl
if you set the skip launch envvar then it won't
and the daemon will run after the connection closes (you close tor browser)
kernelcorn
cacahuatl: I'm still banging my head against "Owning controller connection has closed -- exiting now." Tor launches, other parts of my software authenticate to the control port and wait till it's bootstrapped, then a connections is made to a HS. That's all fine. Then for some reason that error occurs and Tor exits.
Nothing in my software gives TAKEOWNERSHIP to the control port, so this seems to be upstream
torQUES
starting TBB:
[info] handle_control_takeownership(): Control connection 208 has taken ownership of this Tor instance.
closing TBB:
[notice] Owning controller connection has closed -- exiting now.
[notice] Catching signal TERM, exiting cleanly.
kernelcorn
yes, that's exactly what it looks like
torQUES
it's normal
kernelcorn
tor dying is not normal
torQUES
this is how TBB works
cacahuatl
hmmm, kernelcorn, you know this from looking at packet dumps or just that you're not expecting anything to send it?
kernelcorn
So you're saying that Tor Button does not hold on to its controller connection?
cacahuatl
it does, even if you do new identity, it keeps it
kernelcorn
cacahuatl: "TAKEOWNERSHIP" is not in my code, I can only conclude that it's from Tor Button
I'm setting up a fresh Tor Browser
cacahuatl
so you do like
"TOR_SKIP_LAUNCH=1 ./tor-browser_en-US/Browser/start-tor-browser"?
http://2b5dj4wasoaww3k6.onion/torbrowser.html some notes I took on making tor browser play nice with non-tor-launcher tor processes, might be useful (view in tor browser or your browser will probably blow up)
torQUES
something in your controller code triggered a signal TERM and exit? or maybe an exception?
kernelcorn
torQUES: you're right, that's how the Tor Browser seems to operate, the trouble is that the controller is exiting prematurely.
on a fresh browser instance it follows that pattern
torQUES
how do you authenticate to control port? password or cookie? is possible to lose somehow the magic string?
cacahuatl
So even if you're setting skip launch, sometimes disconnecting and it's "exiting gracefully" (eg, it's not crashing with an abort() or similar)?
torQUES
TBB creates a temporary cookie to control tor.exe deleted on exit
cacahuatl
*somethings
kernelcorn
I'm not setting skip launch, I've renamed the "tor" binary to "torbin" then made a "tor" binary that launches torbin and other programs as child processes.
when torbin dies, everything else shuts down, as it should. The trouble is that torbin should stay up, but somehow it's under the impression that its owning controller has exited.
the Tor Button should be its owning controller, so somehow the Tor Button thinks that it's time to close things down
cacahuatl
oh wait is torbin like a shellscript or something that "ends"?
have you tried doing like 'setsid tor ...' as the launch process?
(I assume you're on linux in this case...)
kernelcorn
"torbin" is made by the Tor Project, "tor" is my application that launches "torbin" as a child
yes, Linux
cacahuatl
right, so torbin is actually tor, and tor is a shellscript or app the launches it, does your application exit after it's setup said programs?
or does it keep itself running?
kernelcorn
it enters a loop to wait for any of its children to exit
cacahuatl
and if one does? :P
kernelcorn
then all the children are killed :P
« prev 1 2 3 4 5 6 7 next »