[tor-talk] Linux TransparentProxy setup and IPv6
Öyvind Saether
oyvinds at everdot.org
Wed Jan 4 18:50:24 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> If you have a Linux machine with an IPv6 address, and you're using
> the iptables technique described on that page, then you're going to
> leak. "iptables" only applies to IPv4 traffic. You need to put in
> an explicit rule using "ip6tables" to block all IPv6 traffic.
>
> Alternatively, just disable IPv6 support on your machine.
>
> Maybe the documentation should be updated with this information?
ip6tables -t filter -A OUTPUT -m owner --uid-owner anonymous -j DROP
..if you are (ab)using the username anonymous and your IPv4 iptables
firewall is setup to do -m owner --uid-owner anonymous rules.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAk8En28ACgkQNBSJHnwv/KrLJQCbBtVThhcdwrZzRlTF300zWapO
V14AoImif1PSKZflpFVDs6OKgk4+bvXb
=cxj/
-----END PGP SIGNATURE-----
More information about the tor-talk
mailing list