Mozilla Thunderbird leaking ?

Oliver Niesner digi_news at gmx.de
Fri Sep 2 12:31:09 UTC 2005


Frank Helk wrote:
> On Fri, 02 Sep 2005 10:23:55 +0200, Frank Helk wrote:
> 
> 
>>I've just updated to 1.0.6 (20050716), which looks like having 
>>the same problem - even while Thunderbird is configured to
>>use TOR/Privoxy (and most of the communication looks
>>encrypted) I capture DNS requests about the used NNTP server
>>circumventing TOR and Privoxy.
> 
> 
> Additional Note:
> 
> TOR detects that behaviour:
> 
> ---------------
> Sep 02 10:09:10.085 [warn] fetch_from_buf_socks(): Your application (using socks4 on port 119) is giving Tor only an IP address. Applications that do 
> DNS resolves themselves may leak information. Consider using Socks4A (e.g. via privoxy or socat) instead.
> Sep 02 10:09:12.757 [warn] fetch_from_buf_socks(): Your application (using socks4 on port 119) is giving Tor only an IP address. Applications that do 
> DNS resolves themselves may leak information. Consider using Socks4A (e.g. via privoxy or socat) instead.
> ---------------
> 
> -FH

I use Thunderbird only for fetching and sending mail and for this it
seems to work.
As you correctly found out the problem is the nttp server on port 119.
As a workaround i would suggest to use tor-resolve to get the ip for
your news service and put this ip directly into thunderbird or use a
different application for reading news.

Hope that helps

Olli







More information about the tor-talk mailing list