Re: [tor-talk] Firefox Portable and Access Denied on Lock File (Windows, x64) (Was: Tor Browser Bundle 3.0alpha1 test builds)
On Sun, Jun 16, 2013 at 6:44 AM, Moritz Bartl mor...@torservers.net wrote: On 16.06.2013 07:20, Jeffrey Walton wrote: In this case, FirefoxPortable should probably be writing its lock file to a temporary directory or the User's application data directory The idea is not to leave any traces outside the Tor Browser Bundle directory. It appears there are no filesystem writes. It appears there are some writes occurring to the Windows Registry tracing back to firefox.exe (if interested). A screen capture of what I observed is available at http://postimg.org/image/nauudq3dd/. To trace them under Windows, start Process Monitor (http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx) and add the following filters: * Process Name, is, Start Tor Browser.exe, include * Process Name, is, tor.exe, include * Process Name, is, firefox.exe, include * Operation, is not, RegSetValue, exclude TBB is not meant to be installed into Program Files. I wonder what we can do about that. The launcher should probably check for sufficient privileges. Well, I'm not a big fan of access() checks in software due to races. Plus, they tend to be somewhat complex in Windows - you have to fetch a DACL and loop over ACLs looking for allow and deny ACEs. Its usually better and easier to try the operation and then handle the ERROR_ACCESS_DENIED gracefully. Also, an install time check may not provide intended results. If a user installs to Desktop and later drags to Program Files, then the user will experience the same issue. Jeff ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Firefox Portable and Access Denied on Lock File (Windows, x64) (Was: Tor Browser Bundle 3.0alpha1 test builds)
Hi All/Mike, My apologies for spinning up another thread. The original seemed like it was getting cluttered, and I believe the cause has been found. In this installation, the Tor bundle was installed in %PROGRAMFILES%. Specifically, C:\Program Files (x86)\Tor Browser. If I run Start Tor Browser.exe as a regular user, I receive an error message, Firefox is already running, but not responding See tor-firefox-windows-already-running.png at http://postimg.org/image/cf8ily0sp/. When I trace the processes involved (Start Tor, Tor, and Firefox) using Sysinternal's Process Monitor, it appears Firefox is trying to write a lock file in %PROGRAMFILES%. The lock file is ...\Tor Browser\FirefoxPortable\Data\Profile\parent.lock, and it results in an ACCESS_DENIED. See tor-firefox-windows-access-denied.png at http://postimg.org/image/xlzmb3j1b/. If I run Start Tor Browser.exe as an Administrator, the browser works fine. When the Tor Browser is launched after installation (as part of the installation), the browser works fine. I believe this is because the setup/install program is not dropping privileges after it completes. In this case, FirefoxPortable should probably be writing its lock file to a temporary directory or the User's application data directory (CSIDL_APPDATA or FOLDERID_RoamingAppData, http://msdn.microsoft.com/en-us/library/windows/desktop/dd378457%28v=vs.85%29.aspx). It should not attempt to write to a read/execute directory. Jeff On Fri, Jun 14, 2013 at 10:39 PM, Mike Perry mikepe...@torproject.org wrote: The new TBB 3.0 series is almost ready for its first alpha release! Here are the major highlights of the 3.0 series: 1. Usability, usability, usability! We've attempted to solve several major usability issues in this series, including: A. No more Vidalia. The Tor process management is handled by the Tor Launcher extension. If you want the Vidalia features, you can point an existing Vidalia binary at control port 9151 after Tor Browser has launched, and it should still work. B. The browser now uses a local about:tor homepage instead of check.torproject.org. A local verification against the control port is still performed, to ensure Tor is working, and a link to check.torproject.org is provided from the about:Tor homepage for manual verification as well. C. For Windows users: an NSIS-based extractor now guides you through the TBB extraction and ensures the extracted bundle ends up on your Desktop, or in a known location chosen by you. Hopefully this will mean no more losing track of the extracted bundle files! 2. The bundles are all under the 25M gmail attachment size limit, so direct email and gettor attachments are once again possible. 3. We now use Gitian to build the bundles. The idea behind Gitian is to allow independent people to take our source code and produce exactly identical binaries on their own. We're not quite at the point where you always get a matching build, but the remaining differences are minor, and within a couple more releases we should have it fully reproducible. For now, we are posting all of the builds for comparison, and you can of course build and compare your own: https://gitweb.torproject.org/builders/tor-browser-bundle.git/blob/HEAD:/gitian/README.build Please try these out, test them, and give us feedback! The plan is to post them on the blog by Monday, unless something goes horribly wrong. ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Browser Bundle 3.0alpha1 test builds
On Fri, Jun 14, 2013 at 11:21 PM, Moritz Bartl mor...@torservers.net wrote: Hi Mike, In short: This is awesome! I suggest to get some things fixed before you do a blog post :-) 32-bit vs. 64-bit: When I try to run the linux32 version on my 64bit system, it just says Tor Browser exited abnormally. Exit code: 255. This should be fixed, a *lot* of users pick the wrong one. Probably the same is true for Mac. I wrote a small patch for the launcher that should detect this properly for Linux, and is easy to port to Mac. It's been in needs_review for 3 months: https://trac.torproject.org/projects/tor/ticket/3841 Mac OS X may not be as simple as it appears. I believe 10.5 offers 32-bit OS that is capable of running 64-bit binaries. You might need something that considers both hw.cpu64bit_capable and hw.optional.x86_64. I believe you need to use hw.optional.x86_64 to determine if 32-bit OS can run the 64-bit binaries. A good discussion is at determine if a CPU is Intel 64-bit, http://lists.apple.com/archives/xcode-users/2013/Mar/msg00116.html. Jeff ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] WebRTC via Tor
On Mon, Jun 10, 2013 at 12:56 AM, David Huerta huerta...@opentil.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ... The problem is that Twilio WebRTC requires UDP connections over ports 10,000 to 60,000 and at least from my research (correct me if I'm wrong), Tor doesn't do onion routing for UDP traffic UDP does not work on some smart phones because many carriers allow UDP from the phone (send) but block UDP to the phone (receive). In the US, you will have probably trouble with Verizon, Sprint, and ATT (and likely others). Jeff ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Change Data Directory on Mac OS X?
Hi All, If this is the wrong group for the question, please let me know. Jeff On Fri, May 24, 2013 at 2:30 AM, Jeffrey Walton noloa...@gmail.com wrote: Hi All, I have Tor installed in /Applications, and the Settings specify a Data Directory of /Applications/TorBrowser_en-US.app/Contents/Resources/Data/Tor. How does one change so so each user gets his/her own data directory? Does Tor perform shell/variable expansion? ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
