[tbb-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.

Tor Bug Tracker & Wiki blackhole at torproject.org
Sun Aug 30 22:04:48 UTC 2015


#16926: Multiple OS: Tor Browser leaks domains to system DNS management.
-------------------------------+------------------------------
     Reporter:  DrMikeTwiddle  |      Owner:  tbb-team
         Type:  defect         |     Status:  new
     Priority:  critical       |  Milestone:
    Component:  Tor Browser    |    Version:  Tor: unspecified
   Resolution:                 |   Keywords:
Actual Points:                 |  Parent ID:
       Points:                 |
-------------------------------+------------------------------

Comment (by DrMikeTwiddle):

 @cypherpunks:

 > Have you tried to visit the same "tor-only-visited-site.com" using the
 same browser
 > settings (addons, javascript settings, noscript settings, security
 slider settings,
 > etc)?

 Yes. I always surf with Security set to highest. It did make me wonder if
 the site in question had found some way round TB.

 I did a lot of testing today with tor-only-visited-site.com and others
 trying to provoke the result, and so far I can't repeat it but nonetheless
 that one entry is there in the system.log dump from mDNSResponder

 I need to make a clarification on the original report, that might help
 throw some light, the entry was actually a subdomain of tor-only-visited-
 site.com so it was:

 server2.tor-only-visited-site.com

 The site in question is a web based proxy site as I was trying to read
 something and tired of sites banning Tor exits, although I doubt that's
 significant.

 @someone_else:

 > Your network monitoring application may very well trigger DNS lookups

 Well I am running Little Snitch (application firewall), all Tor is
 allowed, but I block a lot of other software phoning home stuff with it.

 Little Snitch runs as a kernel extension I believe.

 Is it possible for LS to intercept queries from TB (presumably before they
 are encrypted and sent) and do a system DNS look up ??

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16926#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tbb-bugs mailing list