[tor-talk] tor transparent proxy security concerns (autostart and dns resolve for non-tor)
Andrew Lewman
andrew at torproject.org
Thu Jan 5 17:28:03 UTC 2012
On Thu, 5 Jan 2012 08:32:07 -0500
hmoh at Safe-mail.net wrote:
> I like the idea of the tor transparent proxy and tor-enabeld linux
> user account very much. But I think there are a lot security concerns.
>
> 'If you want to make the iptables rules permanent you have to make
> sure they are executed at startup time, for example by adding a
> script in the right directory. On Debian/Ubuntu you can do something
> like this:
>
> sudo touch /etc/init.d/anonuser
> sudo chmod a+x /etc/init.d/anonuser
> sudo nano /etc/init.d/anonuser'
I believe this is incorrect advice. Debian/ubuntu/mint need to use
update-rc.d, see http://www.debian-administration.org/articles/28 for
instructions.
--
Andrew
http://tpo.is/contact
pgp 0x74ED336B
More information about the tor-talk
mailing list