add the updated tests , the wiki even accept anonymous edits.
you can discuss that openly in the forum of Whonix as well.
(though, i dont see much changes that would make Tor safer only through
the amnesic usage)
intrigeri:
> bo0od:
>> There is a full comparison of Tails and Whonix (p
Not really Tor is the best practice using it with amnesic system like
Tails due to the guards entry issue ..
There is a full comparison of Tails and Whonix (persistent virtual OS)
can be found here:
Clearnet Link:-
https://www.whonix.org/wiki/Comparison_with_Others#Introduction
Onion Link:-
I had this issue before , but instead of finding solution within
facebook i migrated to Diaspora. (open source,decentralized, privacy
respect platform).
bobby...@danwin1210.me:
> Facebook https://www.facebookcorewwwi.onion/ has existed since 2014.
> However, I am unconvinced that it works.
>
> I
yes if its installable/run inside debian , you can install it inside
whonix-workstation. as whonix workstation torify everything by default
without even modifications for the application once been installed/run,
through Whonix-GateWay. if you want to read more about whonix anonymous
OS you can
Not sure what are you talking about , but i know one thing for sure=
Fuck Cloudflare , a cloud of farts.
grarpamp:
> Regardless of whether some components may or may not be
> fee, or subscription, or strings / rules attached, now or in the future...
> (that status or intentions should be made
I see that from a safe hosting perspective to Tor Hidden services, That
Tor should maintain and ship onion balance by default.
Which is sadly last ever maintained before more than 1 year or so, and
also it lacks the support of onion v3.
This is really useful and needed for cheep/safe hosting of
glad to hear that :)
George Kadianakis:
> bo0od writes:
>
>> I see that from a safe hosting perspective to Tor Hidden services, That
>> Tor should maintain and ship onion balance by default.
>>
>> Which is sadly last ever maintained before more than 1 ye
Better to shift to new VPS, now they request these ports to be closed
maybe next day they will tell you something else to be closed and so on...
So if i were you i would say fuck their complaints , find more freedom
host.
potlatch:
> Good day Tor operators,
> One of my VPS providers has
I dont think so , Torbirdy is not real something unless thunderbird
becoming a fork to work properly with Tor design.
There are numerous problem with thunderbird needs to be shutdown or
change in order to work anonymously.
Better to use Torbirdy+Thunderbird with an Anonymous OS like Whonix or
Just my intuition.
>
> -Kevin
>
>
> On Tue, Dec 11, 2018 at 10:11 AM bo0od wrote:
>
>> We had discussions about which one is safer and add less loads on Tor
>> nodes , streaming the video or downloading the video and watching it?
>>
>> Thank You!
&g
We had discussions about which one is safer and add less loads on Tor
nodes , streaming the video or downloading the video and watching it?
Thank You!
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
software and the code is available for install/checkup. You
are referring to FB which is completely the opposite of anything
mentioned here.
Hope that clarify the differences.
Seth David Schoen:
> bo0od writes:
>
>> This is another front end to YouTube:
>
> Hi bo0od,
>
&
This is another front end to YouTube:
Clearnet:
https://invidio.us
Onion V2 Mirror:
http://kgg2m7yk5aybusll.onion/
Onion V3 Mirror:
http://axqzx4s6s54s32yentfqojs3x5i7faxza6xo3ehd4bzzsg2ii4fv2iid.onion
Special Thanks to Omar Roth for making this happen.
Source Code:
One simple line: how is that related to be bad for invidious ?
- You talked about JS been bad (agreed), but its unrelated/invalid to
invidious case. Protonmail cant operate/login without the JS and most
likely their JS is closed source but that has nothing to do with invidous
- You mentioned
i didnt reply to him on what he said because i knew he was a newbie user
with the statement "you cannot browse cnn.com anonymously via I2P".
and about IBB, like i said there is until now no official support for
any browser to I2P or coming with it. But there is work in progress:
-
I2P and Tor comparison:
https://geti2p.net/en/comparison/tor
Kovri and I2Pd C++ bloody war:
https://i2p.rocks/blog/kovri-and-the-curious-case-of-code-rot-part-1.html
I2P by design safer than Tor. but due to the usage and rapid development
of Tor , I2P left behind many steps which needs long
check this list:
clearnet
https://www.whonix.org/wiki/E-Mail#Anonymity_Friendly_Email_Provider_List
Onion link
http://www.dds6qkxpwdeubwucdiaord2xgbbeyds25rbsgr73tbfpqpt4a6vjwsyd.onion/wiki/E-Mail#Anonymity_Friendly_Email_Provider_List
enjoy :)
mimb...@danwin1210.me:
> I am asking for
or use Qubes OS , its useful with some knowledge about it to make it
great OS for hosting (i didnt test that for web hosting , but
theoretically possible).And more secure than docker or plain debian or
bsd ...etc.
Mirimir:
> On 11/15/2018 10:23 PM, Daniel Winzen wrote:
>> Hello,
>>
>> yes my
Detective Conan (named as case closed in America) which considered to be
the most famous cartoon in Japan.They produced a Movie in April,2018
named as "Zero the Enforcer" they mentioned stuff related to Tor Project
but in different ways, here is the comparison between the Movie and
Torproject
if would summarize things in one phrase: "Attempt to miss leading the
audience".
Nathaniel Suchy:
> What about it?
>
> Cordially,
> Nathaniel Suchy
>
>
>
> Jan 7, 2019, 10:37 PM by bo...@riseup.net:
>
>> Detective Conan (named as case closed in America) which considered to be
>> the most
I have run DNS spooefability with classic useful website GRC , and
surprisingly the test showed that most of the servers not really very
top level secured some of them moderate , many of them missed one or
more setting for better result. i dunno how Tor would love to solve this
but it might be
to be honest personally favoring this bug, at least even when i
mistakenly click on "trusted" instead of "temp.allow" i wont get into
this trouble. plus even if a JS penetrating NoScript at least it wont be
persistent.
Robin Lee:
> Hi
>
> There was a regression some time ago in Tor browser that
No body care, since all our countries share the same thing. So enjoy!
and dont use fucking proprietary software such as whatsapp. Only use
free/libre software.
GTI .H:
> Em ter, 16 de abr de 2019 às 12:33, Cyaniventer
> escreveu:
>
>> No! Don't use it if you are actually very serious about
no secure TLS or onion connection to the website, first insecurity note.
Van Gegel:
> Maybe after publication on popular Russian resource Habr:
> https://habr.com/ru/post/448856/
> This is Android app for talking over Tor:
> http://torfone.org/download/Torfone.apk
>
Hi There,
Im just checking the list of the activity that signed by default to legind:
https://trac.torproject.org/projects/tor/query?status=!closed=legind
and it seems since ages not discussed or fixed, so shall i report my
issues to HTTPS-Everywhere on github or TBB ?
Thx!
--
tor-talk
elay Operator and has contributed numerous hours
> bandwidth and money to the Tor Project. He retired from the Navy back in
> 2015. Why do you even care about his military experience bo0od? It's not
> germane to the Tor project at all especially since he's not even in the
> military anymore.
i dont want to see posts rather than Tor or Tor related technical
things. i dont want to see trolls or military or whatever, but if im
told to choose one then i will choose trolls over military. but good
thing its decided already to be Tor things list.
Mirimir:
> On 05/02/2019 08:38 PM, bo
I prefer to see trolls posting rather than someone from the military
(specially USA). Aside from that this is technical list if im not
mistaken so trolls or military or related to Tor shouldnt moderate
anything in here in the first place because that would be meaningless.
Mirimir:
> On 05/02/2019
correction: *or someone not related to Tor
bo0od:
> I prefer to see trolls posting rather than someone from the military
> (specially USA). Aside from that this is technical list if im not
> mistaken so trolls or military or related to Tor shouldnt moderate
> anything in here in the
After approximately one year of development, the Whonix Project is proud
to announce the release of Whonix 15. There are alot of great changes
hope you enjoy them :)
Clearnet link:
https://forums.whonix.org/t/whonix-15-has-been-released/7616
Onion link:
CoyIM
mimb...@danwin1210.me:
> Is there an official or promoted XMPP client that uses Tor plus OTR as
> Pidgin used to do?
>
>
>
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
use invidio.us or invidious instances.
grarpamp:
> WARNING: unable to download video info webpage: HTTP Error 429: Too
> Many Requests
> "Sorry for the interruption. We have been receiving a large volume of
> requests from your network.
> To continue with your YouTube experience, please fill out
Enigmail compatibility with newest Thunderbird already fixed. Torbirdy
goodbye you were a good plugin.
u:
Hi!
On 17.11.19 20:40, Roger Dingledine wrote:
On Sat, Nov 16, 2019 at 04:59:50PM -0500, eliaz wrote:
I just installed Thunderbird 68.22 on a new machine and find out that the
torbirdy
use uget as the GUI alternative of ytdl
grarpamp:
>> Try running "torsocks --isolate youtube-dl", it will select different
>> circuit on each run.
>
> That is often not as useful for this class of problem
> as users may think. One enhanced option to address
> this was ticketed over 7 years ago
follow this ticket:
https://trac.torproject.org/projects/tor/ticket/32536#ticket
also dont always trust what plugins doing for you , if you want
efficient way to do things then do them browser level.
mimb...@danwin1210.me:
I am using the latest version of TBB and for a while now I've
Hi There,
in this section https://github.com/TheTorProject/gettorbrowser there was
Tor Browser releases now its missing so any idea why is that ? is there
new website shifted to it?
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
if they care about anti-censorship they would add Mozilla-over-Tor or
Mozilla-over-I2P. but nah it wasnt their intention to start with.
Note: This is not recently, look for example on their agreement with
cloudflare:
use invidious instance like: invidio.us or anyone eles. Also you can
download YT videos using for e.g youtube-dl. These solves the headache
of google shit.
joebtfs...@gmx.com:
Problems with TBB & YouTube were recently discussed on tor-talk. Things
have changed fairly quickly.
Something new
yes invidious = invidio.us that what i was referring. It has onion v3/v2
and https with many instances running it.
joebtfs...@gmx.com:
@ bo0od, not sure I follow. Invidious means likely to cause unhappiness
or be unpleasant.
Does that have any relationship to invidio.us or similar sites?
Yes
Best to host your hidden service is by using Whonix Anonymous OS , as it
separate Tor/firewall from the website software and it comes with many
benefits. for more detail read:
Clearnet:
https://www.whonix.org/wiki/Onion_Services#Step_4:_Denial_of_Service_Mitigation_Options
Onion:
wrong , 9150 is for Tor browser so to make it connect to Tor change port
9050.
Better as well to use these types of garbage applications inside
anonymous systems like Whonix or Tails.
Jason Long:
Hello,
I want to secure the internet connection of an application like Telegram. If I
set
if user happened to be running VM or OS installed directly into the
hardware (doesnt matter) and the storage reached its maximum and
TorBrowser notified the user that there is new version to upgrade and
user upgraded TB, he will open TB (after upgrade) without any sign there
is something wrong
lol i see, thank you for pointing me to the tickets.
Roger Dingledine:
On Fri, Mar 27, 2020 at 10:15:54AM +, bo0od wrote:
no matter how many time you upgrade TB it wont upgrade (which is rational
because there is no space). But a notification telling the user that would
be better.
(same
I wonder if Tor has a roadmap for applying pqc into their design, great
to see that some projects trying to add it for experimental state:
- OpenSSH https://www.openssh.com/releasenotes.html
"* ssh(1), sshd(8): Add experimental quantum-computing resistant
key exchange method, based on a
check here: https://blog.privacytools.io/delisting-startpage/
and when it ends with blocking Tor users just no surprise.
later maybe they will delete pages like this one:
https://support.startpage.com/index.php?/Knowledgebase/Article/View/288/15/how-does-startpage-interact-with-tor
history:
whats the different between watching video over invidious or youtube? I
dont see a reason for me to search or watch videos over youtube.
joebtfs...@gmx.com:
On 3/4/20 1:15 PM, bo0od wrote:
use invidious instance like: invidio.us or anyone eles. Also you can
download YT videos using for e.g
Its stupid anyway to provide contact info for running relies, if Tor is
an P2P protocol it would be funny to even think about it because thats
mean like each user of Tor should provide his info.
Its not a big deal because solving malicious nodes and putting trust on
DA wouldnt be through
Nice Tool, More good suggestions:
-A better start is to look into integrating it with debian official repos
- Create an AppImage for GNU/Linux distros (safer and faster than adding
external repos)
- Fuck Windows and MacOS , support BSD and/or any free software OS
(optional suggestion)
About whonix not necessarily virtualbox, actually its better to use KVM
or Qubes/Xen OS.
And virtualization is better than containers, plus docker update
mechanism just security sucks.
if you know about sysadmin and know how to use things for anonymity (e.g
avoid leaky stuff like apache and
both (FF,Brave) are by default installation not designed for real
privacy protection e.g:
looking at TB design , there are tons of work done to turn FF fork to
what you have now:
https://2019.www.torproject.org/projects/torbrowser/design/#Implementation
Brave just worst than even FF vanilla
Ooni nowadays is really downgraded capabilities compared to old Ooni, no
test for middle boxes , network tampering ...etc. And there is only
proprietary operating systems support Windows and Mac come on
Maria Xynou:
Hello friends,
Over the last month (between 10th June 2020 to 3rd July
Anonymity is not easy, you need to use operating systems designed to
work with Tor and hardenize other stuff to work safely with it, and
there are 2 options available:
- Tails if you want to use the OS on external USB
- Whonix if you want to use the OS on Virtual Machine like Qubes/xen
(best
Hi
The incident happened yesterday of taking onion v3 off is beyond
horrible, Because the issue happened and (appear to be) fixed without
any single patch downloaded to the user/client Tor.
Someone might come with explanations but on the same time this bug or
attack or whatever can tell
Just followed the instructions mentioned in
https://support.torproject.org/tbb/how-to-verify-signature/ working good
now.
Matthew Finkel:
On Thu, Dec 10, 2020 at 09:19:46AM +, Colin Baxter wrote:
The URL https://support.torproject.org/tbb/how-to-verify-signature/
gives the impression
- Complain to google which owns youtube and tell them to allow Tor
traffic (because this is not Tor issue).
- Use one of the instance from Invidious project:(or build your own
instance)
https://github.com/iv-org/invidious/wiki/Invidious-Instances
- Not anonymity option (but i think watching
I doubt excludenodes does any good, as tpo stated the behavior of how
Tor will react to it is not studied well and might be disabled in the
future. Aside from that just because too many nodes puppet up or you
feel suspecious doesnt necessary be worse than any old trusted node
located within
Hi There,
Checking Torproject website configs there are some stuff are outdated,or
needed...lets see:
* https://www.hardenize.com/report/torproject.org/1619971139#www_tls
- TLS 1.0, 1.1 Deprecated since 2020
- Disable weak ciphers
Duo to the usage of TLS 1.0,1.1 website got B grade from
great it is an intended behavior
Nicolas Vigier:
On Mon, 22 Mar 2021, qorg11 wrote:
The "Onion available" does not appear in a plain http version of a
website. But it does appear in the https version. I checked and my
website does have the onion-location header in the plain http
version. But
Actually OONI tests is absolute useless to find anything bad, All the
tests being done can be known trivially by using the internet e.g:
- check for websites blockage
- check for Tor blockage
- check for Internet speed
..etc
Which one of that need magic/effort to be known? child using the
> Can the files be re-established
> (undeleted) from the hard drive / SSD?
TB is not anti-forensic:
https://www.researchgate.net/publication/332004753_Forensic_Analysis_of_Tor_Browser_A_Case_Study_for_Privacy_and_Anonymity_on_the_Web
I think if you waited more Afghanistan would be added to the list.
Maria Xynou:
Hello,
Today, in collaboration with the *Citizen Lab* and *OutRight Action
International*, we co-published a new research report, "*No Access: LGBTIQ
Website Censorship in Six Countries*", which examines the
> - no IP logging
> - no external resources
You shouldnt trust TPO on not doing that either (not because they do
that but because there is no control on that from user side so you
should assume the worst when it comes to security/privacy/anonymity).
And allowing JS in order to participate in
saved logins in TB ? TB doesnt by default offer to save passwords unless
change stuff in about:config (so what happened to you can be expected
because its not supported by default). But if you have to save passwords
while browsing then either use bitwarden or local password generator
like
63 matches
Mail list logo