Tor,security and web-usability - Sorry, now readable with line-breaks...
Fabian Keil
freebsd-listen at fabiankeil.de
Tue Jun 13 13:01:11 UTC 2006
Steve Crook <listpost at bananasplit.info> wrote:
> On Tue, Jun 13, 2006 at 04:35:49AM -0700, Ringo Kamens wrote:
> > You should have a firewall set up that only lets firefox/privoxy
> > connect to 127.0.0.1, that way you can be sure it isn't leaking
> > anything.
>
> You could extend this philosophy to say nothing but Tor may traverse
> the firewall. It would be interesting to see what impact such a
> strict rule would have on the average Internet-connected PC.
Try trans-proxy-tor and find out: http://p56soo2ibjkx23xo.onion/
It provides example configurations for PF and iptables to do that.
Fabian
--
http://www.fabiankeil.de/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20060613/aca20730/attachment.pgp>
More information about the tor-talk
mailing list