User-Agent: Mozilla/5.0 (X11; U; Linux i686; tr; rv:1.8.0.6) Gecko/20060808 Firefox/1.5.0.6 Build Identifier: I've written an ebuild to add tordns useflag to tsocks-1.8_beta5 which applies tor patch to tsocks.The patch can be found on http://www.totalinfosecurity.com/patches/tor.php.It modifies the tsocks library to use SOCKS for name resolution thus preventing DNS leaks. Reproducible: Always
Created attachment 97677 [details] tsocks-1.8_beta5.ebuild with tordns useflag
Please, attach the patch here, we have bad experience w/ third-party links going 404 in a couple of days.
Created attachment 97681 [details, diff] Tor patch to tsocks
Created attachment 97682 [details, diff] Tor patch for tsocks
What exactly "tor" means?
Tor(net-misc/tor - http://tor.eff.org/ ) is an anonymous internet communication system and it has a tool called 'torify' which is a wrapper between tsocks and tor.It has a major problem with DNS.The dns requests made to dnsservers by 'torified' programs is a problem with anonimity.For example one can use torify to connect to IRC with irssi by torifying irssi ( simply 'torify irssi') and everything instead of the DNS requests go over tor anonymously. There is already a tool called privoxy to handle http requests without leaking DNS information and there is a tool called 'tor-resolve' to resolve hostnames to IP addresses via tor but still for protocols other than http tor doesn't provide a way to automate the process. There are right now two solutions for that afaik.The first is a seperate project called dns-proxy-tor which is a DNS server that constructs tor to map a domain to a virtual IP address and subsequently tor will treat the virtual IP address as an alias for the original domain name.This makes it possible to safely use SOCKS4 without leaking DNS requests. The second one is the mentioned patch.This patch modifies the tsocks library to use SOCKS for name resolution.This has two advantages for tor users: the tool torify doesn't leak DNS information and it provides direct access to .onion addresses without modifying torrc.As an example to connect to freenode's hidden service ( mejokbp2brhw4omd.onion ) with irssi one has add something like this to his torrc : mapaddress 10.40.40.40 mejokbp2brhw4omd.onion to map the domain to a virtual IP address.When using the mentioned patch 'torify' will do it automatically. I've tested the patched tsocks library using torify to check these two solutions it claims to provide.One can test for DNS leaks by simply starting a sniffer to look for requests made on port 53 and there were no dns requests made to my dns server and programs like irssi,netcat etc. can directly use .onion addresses when torified which wasn't possible before. Regards, Ali Polatel
fixed in tsocks-1.8_beta5-r2. enjoy!
Thanks a bunch :-)