[tor-talk] Review request: TorVM implementation in Qubes OS
abel at guardianproject.info
Sat Oct 13 17:16:20 UTC 2012
I've implemented a TorVM service for Qubes OS  and I am seeking
feedback from more knowledgeable eyes on the tor+iptables configuration.
Quick background to give this context:
Qubes is an OS based on Xen and Linux that isolates applications to
domains. Each domain is a virtual machine. Even networking takes place
in virtual machines.
My TorVM configuration is essentially an anonymizing middlebox for it's
network client VMs.
For a visual model of what this looks like see this image .
The relevant config is here:
I'm using tor-0.2.3 to take advantage of stream isolation.
Please scan the documentation for an idea of the goals of TorVM:
Soon I hope to provide a TorBrowser package (that doesn't use bundled
tor+vidalia to prevent tor-inside-tor scenarios).
that image from this blogpost
(NOTE: the configuration in this blog post is not what I've implemented,
see the script above)
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 630 bytes
Desc: OpenPGP digital signature
More information about the tor-talk