Where is this documented?
Cordially,
Nathaniel Suchy (they/them)
Sent from ProtonMail Mobile
On Sun, Mar 8, 2020 at 5:21 PM, Ben Tasker wrote:
> The canary domain will only disable DoH if you've been defaulted into using
> DoH.
>
> If you've actively turned it on, or set
Or just block datacenter addresses /16s entirely and only allow whitelisted
home/business ISPs. Google has the technical staff to make such a draconian
approach possible.
Cordially,
Nathaniel Suchy (they/them)
Sent from ProtonMail Mobile
On Sun, Mar 8, 2020 at 7:22 PM, Mirimir wrote:
>
What would stop a bad actor from creating a bunch of new circuits and making
all Tor IPs look bad if they were so inclined?
Cordially,
Nathaniel Suchy (they/them)
Sent from ProtonMail Mobile
On Sat, Mar 7, 2020 at 6:42 PM, nusenu wrote:
> As a tor user we are regularly affected by IP ba
implementation.
Cordially,
Nathaniel Suchy (they/them)
Sent from ProtonMail Mobile
On Fri, Mar 6, 2020 at 2:07 AM, wrote:
> You can use network.trr.mode to enforce the use of DoT. IIRC 3 is to
> enforce it and not using other DNS. When using network.trr.mode Firefox
> should not do any other DNS
Recently Mozilla has pushed an update to their product Firefox that enables DNS
over HTTPS in the United States. However this is not the privacy or
anti-censorship tech they claim it to be. Mozilla added a simple test to decide
whether to allow DNS over HTTPS to run. If an unencrypted query to
eep
web" Creepypasta " that I think you'll enjoy ;)
Cordially,
Nathaniel Suchy
Seth Caldwell:
> I know the dark web can be a terrible place, with content not suitable for
> anyone, basically. Like illegal drug cartel, fake passports/IDs,creepy
> websites, and generally all arou
png>)
Cordially,
Nathaniel Suchy
Feb 11, 2019, 8:00 AM by g...@torproject.org:
> Nathaniel Suchy:
>
>> Does Tor Browser not support TLS 1.3?
>>
>
> It supports the draft version as Firefox ESR 60 does (which Tor Browser
> is based on). There is a ticket about a pos
up to a minute to transfer so
it's not instant like chat.
You have to decide what tradeoffs you feel comfortable with, we can't make that
decision for you.
Cordially,
Nathaniel Suchy
Feb 10, 2019, 6:12 AM by petru...@riseup.net:
> Ooops sorry for the noise !
> I'll
Does Tor Browser not support TLS 1.3?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
ur thoughts on this.
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
What about it?
Cordially,
Nathaniel Suchy
Jan 7, 2019, 10:37 PM by bo...@riseup.net:
> Detective Conan (named as case closed in America) which considered to be
> the most famous cartoon in Japan.They produced a Movie in April,2018
> named as "Zero the Enforcer" they mention
2) A "chan" style website which used a v3 onion
I think it's still worth investigating bugs with bridges and v3 services as
when I'm not using bridges (or using my new private bridge) v3s work fine.
Cordially,
Nathaniel Suchy
Jan 6, 2019, 11:19 AM by m...@parckwart.de:
>
then gives you bridges. It gave me obfs4
bridges. Clearweb and Onion v2 Services have no issues, it's just Onion v3
Services that have the issue. Is this a known bug? Is there a workaround?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubsc
Hi,
At some point in 2019 will TorProject.org get an Onion v3 Address. Additionally
at some point will Onion v3 Addresses become the default rather than v2?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https
Some servers have multiple IP Addresses. They might accept Tor traffic on one
and exit through another and the software isn’t picking up on the right IP.
Cordially,
Nathaniel Suchy
Dec 23, 2018, 10:10 AM by jiggytwi...@danwin1210.me:
> I have noticed that the "Tor Circuit"
Assuming they're both the same operating system I agree, I can't speak about
macOS to Linux, Linux to Windows, and the various other combinations of
switches which are available.
Cordially,
Nathaniel Suchy
Dec 20, 2018, 12:32 PM by thedco...@disroot.org:
> While I am not 100%
ile.
Cordially,
Nathaniel Suchy
Dec 20, 2018, 10:24 AM by robin...@mailbox.org:
> Hi list
>
> I'm wondering what is the proper way to move all the
> settings/bookmarks/saved passwords from one instance of Tor Browser to
> an other? It doesn't matter if information gets
ons later on. That
said there are some things I just look at in Safari (please don't judge me for
using a WebKit Browser :P )
What about people on this list? Look forward to hearing from you all :)
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsu
ser up to date2) Don't do illegal things on Windows, it has
more users and is easier to mass target the most criminals by focusing on
Windows hosts
3) Maybe, just maybe, don't look at child pornography in the first place
Cordially,
Nathaniel Suchy
Dec 6, 2018, 3:33 PM by jiggytwi..
rypted email providers "fake". They're trying to solve a
complicated problem, inside a web browser, with no easy solution :-/
Cordially,
Nathaniel Suchy
Dec 6, 2018, 8:55 AM by m...@rlogin.net:
> On Thu, 6 Dec 2018 03:25:05 -0500
> grarpamp <> grarp...@gmail.com &l
The keys changing is to avoid a guard from knowing you’re the same user from a
new IP. The keys help encrypt communication between you and the Tor Network.
I’m not sure about the technical specifics, maybe someone else is but that’s a
high level overview :)
Cordially,
Nathaniel Suchy
Dec 4
When do we expect the next stable Tor Browser to be released?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
olicy that was set out a while back.
Publishing a master list is a very bad idea and I hope this never happens.
I like the idea of opt-in lists, but I shouldn't have to speak to opt-out of a
list, just remain quiet and not opt-in.
Cordially,
Nathaniel Suchy
Dec 4, 2018, 1:43 PM by m
I'm interested in information on the security benefits and risks that this
functionality offers as well might be helpful in blocking of some unsolicited
traffic if someone finds a way to publish a list of every onion address :|
Cordially,
Nathaniel Suchy
Dec 3, 2018, 8:42 PM by
Client", a feature I did not know about.
I'm going to figure out if this is possible to implement on the SSH System as
that would solve some concerns about a leaked onion address. Could you
elaborate a bit more on this functionality?
Cordially,
Nathaniel Suchy
Dec 3, 2018, 4:35 PM
attempt at security by really advanced obscurity.
Cordially,
Nathaniel Suchy
On Mon, Dec 3, 2018 at 9:53 AM wrote:
> Can the Tor Project publish the list? Some sites have published lists of
> new .onion addresses, for example:
> http://onionsnjajzkhm5g.onion/onions.php?cat=20&pg=1&a
Neither, Tor was designed to anonymously transfer TCP based application
data. What’s inside them is up to you 🙃
Read over:
https://svn.torproject.org/svn/projects/design-paper/tor-design.pdf if
you’re curious :)
On Wed, Nov 7, 2018 at 6:51 PM Lopes wrote:
> Tor was also made to download files o
I thought this wasn't sent to the list server. Reporting the archive link
on IRC. They can get this handled :)
On Wed, Oct 24, 2018 at 9:10 AM Mirimir wrote:
> On 10/24/2018 02:34 AM, Today's Yug wrote:
> > Contact to me in case of girlfriend trace
>
> So is this grounds for unsubscribing this
to avoid tipping off
censors? Thanks.
Cordially,
Nathaniel Suchy
On Mon, Oct 22, 2018 at 4:59 PM Seby wrote:
> GreyPony Consultants / Con(rad) now also runs a bridge at DigitalOcean.
>
> It is not just any bridge, it is an obfs4 bridge. It also has IPv6 enabled.
>
> All you mortals a
Hi,
I'm a bit curious as to if anyone released macOS Seatbelt Sandbox Profiles
for Tor Browser?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
solved by refreshing the page with alt-svc present, no?"
They're definitely aware it, it's likely not intentional, and they're
trying to find what about Tor Browser changed to start triggering the
CAPTCHAs. Hopefully this will be resolved soon :)
Cordially,
Nathaniel Suchy
O
probably
work?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
bridges?
Cordially,
Nathaniel Suchy
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Hi everyone,
I'm not sure if anyone saw here however recently an exploit vendor dropped
a 0day in Tor Browser 7 on Twitter (See:
https://www.zdnet.com/article/exploit-vendor-drops-tor-browser-zero-day-on-twitter/).
Do we know if this has been exploited in the wild yet?
Cordially,
Nathaniel
One suggestion I’ll add is
https://tornull.org has a huge exit policy with common sinkholes and other
abusive networks. You won’t stop them all BUT it may reduce the complaints
your ISP gets.
Cordially,
Nathaniel
On Fri, Sep 7, 2018 at 12:51 PM nusenu wrote:
> before tackling the actual questio
This is something you need to talk to your ISP about. Communicate with them
and see if they can work something out.
Cordially,
Nathaniel
On Fri, Sep 7, 2018 at 9:14 AM Udo van den Heuvel wrote:
> On 07-09-18 15:10, Nathaniel Suchy wrote:
> > Talk to your ISP about what Tor is and as
Port numbers might “limit” traffic when a service is using default ports.
However I could configure SSH to run on port 80 without an issue.
Similarly, no matter what the port is, a malware author can use it to send
malware out.
Talk to your ISP about what Tor is and ask them to disable the virus
On 8/30/2018 2:11 PM, Nathaniel Suchy wrote:
>
> So this exit node is censored by Turkey. That means any site blocked in
> Turkey is blocked on the exit. What about an exit node in China or Syria or
> Iraq? They censor, should exits there be allowed? I don't think they
> sho
g but maybe some strong surveillance/analysis?
>
> On Thu, 30 Aug 2018, 16:22 Nathaniel Suchy, wrote:
>
>> The exit is behind a filtered ISP. Opposed to a website blocking exits.
>> That’s the difference.
>>
>> 1) The content provider causes the block.
>> 2)
d with a detection addon in Tor Browser? Detect that
> the site may be blocked at the exit and offer to fetch a new circuit for
> the site?
>
>
> On Thu, Aug 30, 2018, 19:22 Nathaniel Suchy wrote:
>
>> The exit is behind a filtered ISP. Opposed to a website blocking exits.
>&g
nd
> the result is the same than websites blocking the country, users of that
> exit can't access the websites just because the exit is in that country but
> doesn't do any filtering itself.
>
> On Thu, 30 Aug 2018, 16:14 Nathaniel Suchy, wrote:
>
>> That’s a
That’s a website blocking Tor users. Not a Tor Exit blocking a website.
On Thu, Aug 30, 2018 at 7:06 PM Pascal Terjan wrote:
>
>
> On Thu, 30 Aug 2018, 14:11 Nathaniel Suchy, wrote:
>
>> So this exit node is censored by Turkey. That means any site blocked in
>> Turke
s
too) situation A could happen. The odds might not be in your favor. Don't
risk that!
Cordially,
Nathaniel Suchy
On Thu, Aug 30, 2018 at 3:25 PM grarpamp wrote:
> This particular case receiving mentions for at least a few months...
> D1E99DE1E29E05D79F0EF9E083D18229867EA93C kommissaro
I agree it has a learning curve. The confinement properties of Snaps are
the interesting part to me.
On Thu, Aug 23, 2018 at 8:59 AM Conrad Rockenhaus
wrote:
>
> > On Aug 22, 2018, at 3:50 PM, Nathaniel Suchy wrote:
> >
> > The confinement capabilities of "Snap"
The confinement capabilities of "Snap" packages are quite interesting. As
Tor Browser continues to grow in usage, I'm interested in seeing what new
techniques are adopted to improve security. What do you all think about the
usage of a container (Snap or otherwise) to improve security?
--
tor-talk
Hello,
I see Tor Browser 8 is in the alpha testing phase. Do we know the estimated
time when the final build of Tor Browser 8 will be out?
Cordially,
Nathaniel
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-
Someone recommended that email was a more "anonymous" protocol. That really
depends. Most email servers, by default, forward the client IP Address in
headers. Make sure you are using Tor Browser with webmail or TorBirdy in
Thunderbird if you want to use email "anonymously". Going to add at best
ema
It's quite possible for an exit node to act maliciously, HSTS+TLS is there
to protect you from that - there are some tests across the network to
detect bad exits, nothing automated is going to out-do a human analysis of
a specific exit though.
On Thu, Aug 9, 2018 at 2:47 PM Matthew Finkel
wrote:
Could you list some example websites that have this problem?
On Tue, Aug 7, 2018 at 8:08 AM nusenu wrote:
> Hi,
>
> I assume that Torbrowser users are more affected by webservers
> that do not send their complete certificate chain (incl. interm. CAs)
> due to the fact that torbrowser stores/cache
Me too xD
On Tue, Jul 24, 2018 at 6:42 PM Lore Galore
wrote:
> Robert,
>
> I, for one, got a kick out of CAPITAL punishment :D
>
> --
> Best Regards,
> Lore Galore
> Using The Bat! v7.1.18 on Windows 6.3 Build 9600
>
>
> On 7/24/2018 3:37 PM, Nat
Hi r0b3rT,
I'm sure you don't mind me spelling your name like that. Is this a list for
capital punishment? Or is this a community for freedom? Hopefully at this
point the argument seems silly. You have a preferred way you want your name
capitalized and spelled. The same applies to the Tor Project.
Thank you for the clarifications on this issue.
On Fri, Jul 20, 2018 at 5:26 AM, Georg Koppen wrote:
> Nathaniel Suchy:
> > The Tor Browser Bundle has a set of OBFS4 Bridges bundled. How are these
> > bridges selected and which individual or entity is running them?
>
> Th
The Tor Browser Bundle has a set of OBFS4 Bridges bundled. How are these
bridges selected and which individual or entity is running them?
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor
Hi,
Obfuscating when I use the Tor Network and the Tor Browser Bundle is
important to me.
An ISP can easily pull the built in obfs4 bridges from the saved torrc file
after installing the Tor Browser Bundle. They can then determine any
connections to those IP Addresses are likely Tor traffic and t
I hate Cloudflare and what they’re doing to Tor users. Very few of us have
done something malicious on Tor, there are a few bad actors running evil
scripts over Tor however most Tor traffic is good.
On Wed, Jul 11, 2018 at 6:14 AM Mirimir wrote:
> On 07/11/2018 02:04 AM, Alec Muffett wrote:
> > O
I think Tor Browser would need to create a statistics database for the
bridges you provide it with and run tests over time and choose the
bridges which have been historically the most reliable.
On 5/18/18 12:40 PM, Georg Koppen wrote:
> CarlSpackler@getbackinthe.kitchen:
>> When using bridges on a
According to recent commits the desktop enviroment GNOME is removing the
ability to launch apps from Nautilus. This will likely affect all Tor
Browser users on Ubuntu in the name of "security". What steps will /
should be taken from now till the time the update is released to protect
Tor Browser us
I keep seeing the term e10s used on the mailing list and bug tracker
from time to time but it's unclear what that is? So what is e10s, how do
I know if I have it, and how does it benefit / dis-benefit me?
Cheers,
Nathaniel
signature.asc
Description: OpenPGP digital signature
--
tor-talk mailin
P2P VOIP solutions do exist. I personally prefer to use a trusted Mumble
server over Tor.
panoramix.druida:
>
> ‐‐‐ Original Message ‐‐‐
>
> El 9 de mayo de 2018 5:22 PM, grarpamp escribió:
>
>> On Wed, May 9, 2018 at 10:57 AM, Nathan Freitas nat...@freitas.net wrote:
>>
>>> In general
Hi everyone,
Yesterday, I noticed, and pointed out on Twitter (See:
https://twitter.com/nathanielrsuchy/status/994284995765243904) that
after updating the browser page still said Tor Browser was out of date.
Shortly there after the Tor Project released a new build fixing the
issue. If you updated
This is why Signal needs to include Tor Bridges and to be available as a Tor
Hidden Service.
Sent from my iPhone
> On May 2, 2018, at 8:44 AM, Marco Gruß wrote:
>
> Hi,
>
> according to https://signal.org/blog/looking-back-on-the-front/,
> Amazon has explicitly denied usage of one of their do
feel
similar to Tails. Sad to see it go, really cool project though :)
Cheers,
Nathaniel Suchy
Matthew Finkel:
> On Tue, May 01, 2018 at 05:48:00PM +, Nathaniel Suchy (Lunorian) wrote:
>> Hello,
>>
>> So I see there is a download available, that's Linux exclusi
Hello,
So I see there is a download available, that's Linux exclusive, for Tor
Browser "Sandbox", is this a stable or alpha build? Is this considered
production ready or still an experiment?
Cheers,
Nathaniel
signature.asc
Description: OpenPGP digital signature
--
tor-talk mailing list - tor-
ughts?
Cheers,
Nathaniel Suchy
signature.asc
Description: OpenPGP digital signature
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
for the user)
> Download the latest alpha https://dist.torproject.org/torbrowser/8.0a6/
> Remember this is an alpha and should only be used for testing purposes, moat
> should be included in the next major stable.
> Sent from my iPad
>
>> On Apr 29, 2018, at 12:41 PM, Nathaniel Suchy (
ich I assume when used with bridges would help further
hide the fact you are using Tor.
The fact I email here obviously shows I am a Tor user, although I'd like
more technical measures built into Tor Browser to obfuscate the times I
am using Tor.
Cheers,
Nathaniel Suchy
On 4/29/18 2:36 P
,
Nathaniel Suchy
signature.asc
Description: OpenPGP digital signature
--
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Google recaptcha seems to of banned Tor Relays entirely. I do not think
there is as much abuse of Tor Relays as they seem to claim.
One thing you can do is ask the sites you use to use a different captcha
technology. If they refuse they are probably not a website that you want
to trust anyways.
I
What happened to disconnect.me? Did they get acquired? Or are you asking if
it's safe? Also just use DuckDuckGo they've improved over the years.
Thank you for reading,
Nathaniel Suchy
Fingerprint=490F 1103 B770 BE69 D4CF 20AC CE75 4786 622D 8ED5
(http://keyserver.ubuntu.com/pks/loo
have
a separate "stand alone" "tor" binary?
--
Thank you for reading,
Nathaniel Suchy
Fingerprint=490F 1103 B770 BE69 D4CF 20AC CE75 4786 622D 8ED5
(http://keyserver.ubuntu.com/pks/lookup?op=get&search=0xCE754786622D8ED5)
--
tor-talk mailing list - tor-talk@lists.torpro
ot;
From: Linus Torvalds
Date: Fri, 22 Jan 2010 07:29:21 -0800
You make a good point. As Dave said "Is it any different than
participating in a public surveilled mailing
list?" I don't see a difference. The NSA can and probably does look at
both.
--
Thank you for reading,
Na
truly-random-numbers
https://yro.slashdot.org/story/16/05/18/0433214/developer-of-anonymous-tor-software-dodges-fbi-leaves-us
Wow they've linked to a lot of of information regarding Tor. Now I gotta
read all of them :)
- --
Thank you for reading,
Nathaniel Suchy
Fingerprint=490F 1103 B770
Paul
As previously mentioned I'd recommend putting a 72 hour delay on stats.
Also just post some information. Don't be too revealing. Just list the
amount of traffic (round the number) and leave it at that.
--
Thank you for reading,
Nathaniel Suchy
Fingerprint=490F 1103 B770 BE69 D4CF 20AC
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 2016-08-26 07:25, carlo von lynX wrote:
On Thu, Aug 25, 2016 at 03:16:12PM -0400, Nathaniel Suchy wrote:
address with a matching GPG key instead. I am still active on Tor's
IRC Channels under the username "deatives" and will con
I am still active on Tor's IRC Channels under
the username "deatives" and will continue to do so.
- --
Thank you for reading,
Nathaniel Suchy
Fingerprint=490F 1103 B770 BE69 D4CF 20AC CE75 4786 622D 8ED5
(http://keyserver.ubuntu.com/pks/lookup?op=get&search=0xCE7547866
Well now you said that publicly if we told you and you did it government
agents could add up 30 minute ip sessions to you and harm your anonymity.
On Tue, Mar 22, 2016 at 8:08 PM Mike Perry wrote:
> Ben Stover:
> > As far as I know TorBrowser switches automatically every 10 minutes the
> node cha
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hello,
I have officially implemented my use of PGP. You may view my signing key
at: https://pgp.mit.edu/pks/lookup?op=get&search=0xF7CA25F498326DA0
For now on all my messages will be signed.
-BEGIN PGP SIGNATURE-
Version: iPGMail (2.9.92)
i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
The ability for CloudFlare customers to disable captchas for Tor users is a
great compromise rather than attempting to "anonymously track" Tor users.
-BEGIN PGP SIGNATURE-
Version: iPGMail (2.9.92)
iQIcBAEBCAAGBQJW2KpfAAoJEPfKJfSYMm2gAAEQALN
If you stop Tor (Orbot) and then start it again the issue should be fixed.
On a side note why isn't Tor built into Orfox on Android? On iPhone there
is an open source project OnionBrowser where the Tor Binary is built in.
I am curious why the Orbot/Orfox team hasn't done the same.
Webpage: https://
I've noticed a lot of users of Tor use PGP. With it you can encrypt or sign
a message. However how do we know a key is real? What would stop me from
creating a new key pair and uploading it to the key servers? And from there
spoofing identity?
--
tor-talk mailing list - tor-talk@lists.torproject.o
Could new people be using Onionchat/Torchat I can't remember the name. But
new addresses are generated for each client.
On Thu, Feb 18, 2016 at 11:49 AM Alexandre Guillioud <
guillioud.alexan...@gmail.com> wrote:
> Not correlated (i'm too small in that pool), but i have workd on software
> to main
I don't answer for money. If wanted money I'd be a security consultant not
a writer on Quora. I answer questions because I care. I've gotten through
11 or 12 but I'm going to go back and correct them all (all 650).
On Thu, Feb 18, 2016 at 11:01 AM wrote:
> On 18.02.16
Hello,
I have some concerns regarding the Quora Community regarding Tor. People
are describing Tor as a privacy tool but that's not the case. Tor alone
simply keeps your IP Address anonymous. You need to use PGP to encrypt
emails. I feel like there is a lot of misinformation put on Quora. There
ar
83 matches
Mail list logo
