[tor-talk] Beware of insecure mobile Tor apps such as Orion/Torion

Nathan Freitas nathan at freitas.net
Fri Jul 21 17:55:28 UTC 2017


On Wed, Jul 19, 2017, at 01:44 AM, Roger Dingledine wrote:
> On Tue, Jul 18, 2017 at 11:30:44AM -0400, InterN0T wrote:
> > The developer basically took Mike Tigas' iOS app and introduced several vulnerabilities to it that could be used to track users
> 
> To be clear, right now there are no ios apps that are on par with the
> protections that Tor Browser provides.
> 
> You can read more about the general issue at
> https://blog.torproject.org/blog/tor-heart-onion-browser-and-more-ios-tor
> 
> tl;dr you should assume that there are proxy bypass flaws in every
> single ios app that aims to be a Tor Browser replacement.

Yes, but there is a big difference between malicious, intentional flaws,
and ones that are the result of the limitation of the Apple platform and
policies. We can't lump Mike's Onion Browser effort in with the former.

Onion Browser 2 (now in beta) is NOT Tor browser for iPhone. However, it
is a fantastic privacy-enhancing browser for iOS, that includes Tor,
HTTPS Everywhere, and other security and privacy oriented features
unavailable in most browsers for iPhones. It does not track you. More on
the new beta here:
https://www.patreon.com/posts/quick-onion-2-0-12054247


+n


More information about the tor-talk mailing list