[tor-talk] JonDo uses Tor v0.2.3.25 SocksPort but not for v0.2.4.20-v0.2.4.23; why?

Mirimir mirimir at riseup.net
Sun Aug 3 05:39:23 UTC 2014


On 08/02/2014 12:30 PM, Joe Btfsplk wrote:
> On 8/2/2014 12:48 PM, Mirimir wrote:
>> I've been playing with JAP/JonDo routed through Tor. The JonDo client
>> has a SOCKS proxy option, and it works well with Tor v0.2.3.25
>> SocksPorts in Ubuntu 14.04.1 x64. I installed Tor from the Ubuntu 12.04
>> repository, by the way.
>>
>> After upgrading Tor to v0.2.4.20, which is default in Ubuntu 14.04, the
>> JonDo client can no longer use Tor SocksPorts. Upgrading Tor to the
>> latest v0.2.4.23 doesn't restore that functionality.
>>
>> Please share insight. I'm guessing that a security fix in Tor, or in
>> libraries that it uses, has broken something about how the JonDo client
>> uses SOCKS proxies.
>>
> Other than just playing / testing, if going to use Tor *network* anyway,
> what might be the advantage of using vanilla Firefox w/ the JonDo
> profile (extension) rather than Torbrowser?  Just asking.

It's not the browser profile that I care about so much. Tor and JonDo
are rather complementary. Against non-global adversaries with
substantial Sybil resources, maybe JonDo is a useful firewall.

> Seems Torbrowser w/ Torbutton & all other customizations to Fx, it is
> modified to be more anonymous & safer than even Firefox using the JonDo
> extension.

I agree.


More information about the tor-talk mailing list