Squid Proxy Causes Unavoidable DNS Leaks

ADB firefox-gen at walala.org
Mon Sep 12 18:13:17 UTC 2005


Good research there, friend. Can you test this out and let us all know 
what the procedure is, assuming it works?
~Andrew

u-281 at vif.com wrote:

>Hi
>
>Very interesting!!!
>
>Squid can be compiled with the option --disable-internal-dns, and configured to
>use an external dns server (dnsserver).  I think replacing the line
>gethostbyname in dnsserver.c by something like spawnv("/usr/bin/tor-resolve",
>buf, localhost:9050, NULL); could do it to use tor network for dns requests. 
>Then one could grab the result from tor-resolve and send it back to dnsserver. 
>I'm not that fluent in C to accomplish this, but it seems to be a viable
>solution.
>
>It could be tested easily:
>echo tor.eff.org | dnsserver
>
>Another solution could be to modify tor-resolve to accept requests in that form
>too: echo tor.eff.org | tor-resolve.
>
>Thus maybe squiq could use tor-resolve directly as its dns_program.
>
>Just some thoughts I had yesterday.
>
>Take care!
>
>
>
>
>  
>



More information about the tor-talk mailing list