[tor-bugs] #22068 [Core Tor/Torsocks]: Make it explicit that Torsocks won't work correctly in certain scenarios in the README
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Apr 26 05:30:22 UTC 2017
#22068: Make it explicit that Torsocks won't work correctly in certain scenarios in
the README
-----------------------------------+---------------------
Reporter: Franciscouzo | Owner: dgoulet
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Core Tor/Torsocks | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
-----------------------------------+---------------------
As far as I understand, Torsocks works by setting LD_PRELOAD, so an
application that doesn't uses libc, and instead uses syscalls directly
will be able to bypass torsocks and connect directly to the Internet.
I think a warning about it on the README file, and MAN page is needed,
besides making it explicit that using Torsocks is not 100% safe as the
README might make you think, for example:
> ''Torsocks allows you to use most applications in a safe way with Tor.
It ensures that DNS requests are handled safely and explicitly rejects any
traffic other than TCP from the application you're using.''
> Torsocks is an ELF shared library that is loaded before all others. The
library overrides every needed Internet communication libc function calls
such as connect(2) or gethostbyname(3).
> ''This process is transparent to the user and if torsocks detects any
communication that can't go through the Tor network such as UDP traffic,
for instance, the connection is denied. If, for any reason, there is no
way for torsocks to provide the Tor anonymity guarantee to your
application, torsocks will force the application to quit and stop
everything.''
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22068>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list