FYI everyone the default browser in trisquel 7 is not icecat and doesn't have
the plugins and fingerprint modification that icecat does. Its incredibly
bad. Basically trisquel 7 has a default browser using tor (in private mode)
that is INCORRECTLY CONFIGURED and NO WARNINGS OR INFORMATION
Magic Banana also brings up what if you favorite a website and go to it in
clearmode (outside of private browsing)? Tor should be used in a seperate
browser, configured correctly and used after proper warning/information has
been provided. A seperate browser makes it less likely you'll mess up such as
logging into a personal email in tor, or access a advocate or crimal site
(for research or law enforcement) by accident.
But seriously why did I really have to create this thread. It only takes a
moment to realize why tor in private mode in the way trisquel 7 does it (even
icecat but less worse) is a TERRIBLE idea.
@andrew
> Also, this type of attack is a lot more difficult with Tor:
Its one type of attack (planting cookies by your ISP) in exchange for another
(malicious information, links or downloads).
> The problem you are describing is a problem with many clients and servers
not using end-to-end encryption and/or authentication.
Hence why it's especially bad to use tor when not knowing what it is
@chris
> These examples are improper uses of Tor. If users took the advice of the
Tor project then they would not be vulnerable. This isn't a problem with the
Tor software. It is a problem with some Tor users thinking they know better
than the experts.
Of course it's improper use. It's bundled on software installed by default
and a simple google query may make you believe its an open proxy. It's not
tor users thinking they know better, its tor users who have no idea what tor
is because you gave it to them without any information which is why I created
this thread.
