[tor-bugs] #24351 [Applications/Tor Browser]: Block Global Active Adversary Cloudflare
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sat May 9 04:30:18 UTC 2020
#24351: Block Global Active Adversary Cloudflare
-------------------------------------------------+-------------------------
Reporter: nullius | Owner:
| cypherpunks
Type: enhancement | Status:
| assigned
Priority: High | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Major | Resolution:
Keywords: security, privacy, anonymity, mitm, | Actual Points:
cloudflare, TorBrowserTeamTriaged |
Parent ID: #18361 | Points: 1000
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by cypherpunks):
Q. How to make sure my computer/phone can't talk to Cloudflare by OS
level?
A.
A1 - Firewall
iptables/nft & DROP rules
A2 - DNS lookup
If the response IP is owned by Cloudflare(ASN), return 127.0.0.1, 0.0.0.0,
or NXDOMAIN.
(there are famous linux package which allows you to do so)
Do both, and CF can't talk to you.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24351#comment:189>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list