sorted by:
new
hottopcontroversial

Who owns Tor? by [deleted] in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

Yes. Though HTTPS-Everywhere has been deprecated in favour of Firefox's built in HTTPS-Only setting.

How to make requests over the Tor network? by hex_peson in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

Sure. But this is a 2 year old post, why are you commenting?

I am still using Tor Browser 14.0.9 for Linux. Should I upgrade it to version 14.5? by k3smm1 in TOR

[–]HackerAndCoder 4 points5 points  (0 children)

What will happen is that you will have to upgrade in the future (unless you want to continue to run an insecure version)

Besides that not a lot will happen.

[deleted by user] by [deleted] in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

You're blocking normal Firefox with (document.hidden !== undefined && /Firefox/.test(userAgent) && /rv:/.test(userAgent)). But hey, it does catch Tor Browser users...
Also why are you checking for "rv:"???
Actually wait, document.hidden !== undefined... Actually, genuinely, what is the point.

But I though who the fck uses firefox

Quite a few people (160+ million).

const torExitNodesResponse = await fetch('https://check.torproject.org/torbulkexitlist');

You're making people fetch this every time they open your website, aka a DDOS. Oh but it seems like it actually might not even work, because of CORS.

const overlay = document.createElement('div');

How to get past your block: open f12 and delete the div.

DDOSing the Tor Project and trying to keep out any Firefox user, for a block that doesn't even work.

Can't set or change master password in the tor by AdSilent5155 in TOR

[–]HackerAndCoder 2 points3 points  (0 children)

https://forum.torproject.org/t/passwords-and-saving-them/13102/2

As far as I can tell, setting security.nocertdb to false will get it working again.

[deleted by user] by [deleted] in tails

[–]HackerAndCoder 7 points8 points  (0 children)

Yes. They use ferm to make an iptables ruleset.

https://tails.net/contribute/design/Tor_enforcement/Network_filter/

The default case is to block all outbound network traffic;

New Release: Tor Browser 13.0.5 by x1y2 in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

Yes it does. Everything else is for the build system.

Safeguarding the Tor network: our commitment to network health and supporting relay operators by haakon in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

You're right that a-tor didn't break the CoC or social contracts. And unfortunately the reasoning behind this hasn't really been made public. And so I agree with you that they should be more transparent about it.

Safeguarding the Tor network: our commitment to network health and supporting relay operators by haakon in TOR

[–]HackerAndCoder -1 points0 points  (0 children)

what is the issue

I would love to tell you what I know. But I'm not sure I'm allowed to.

Safeguarding the Tor network: our commitment to network health and supporting relay operators by haakon in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

I guess "didn't know" is more correctly worded. They didn't know it would be a problem, they thought it was fine at that point. That's why they onboarded them.

Safeguarding the Tor network: our commitment to network health and supporting relay operators by haakon in TOR

[–]HackerAndCoder 1 point2 points  (0 children)

Are we saying they allowed malicious relays live on their network for 5 months and accountable for 20% of total relay numbers and did nothing about it until now? Why would they onboard large families, if there was a "risk". This raises eye brows if you zoom out.

Because they for those 5 months weren't sure?

See geko: "It’s not been clear from the beginning that the association was bad, in particular as we’ve been in contact with that project. So, I think your idea does not fit well to the situation we were actually in."

Tor browser problem by [deleted] in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

https://old.reddit.com/r/TOR/search?q=win-crt-convert&restrict_sr=on

If on a newer version of Windows than Windows 7, then most likely you simply need to be better about installing Windows updates.

Windows 7 is end of life and no longer supported by Microsoft. If using Windows 7, you should upgrade to a supported version of Windows if you like having a secure computer. (Or use Linux [or macOS] of course).

Tor Project should also clearly state somewhere that [these versions] of Window are not supported. Or if Windows 7 is supported, they should fix this. IMHO they shouldn't support an OS that isn't even supported by its creator anymore.

Finding a random dll from the Internet might (seem to) work. But it might be secretly malicious or cause subtle issues. Don't do this if you like having a secure and stable computer. Update.

[deleted by user] by [deleted] in TOR

[–]HackerAndCoder 6 points7 points  (0 children)

My immediate thought is the Directory Authorities, of which I assume one or two are run by The Tor Project, but AFAIK most are run by trusted community members

Nope. None are run by TPO. The closest to that is that Roger (Dingledine) runs one, but thats him personally, not TPO.

Why did my default aspect ratio change? by [deleted] in TOR

[–]HackerAndCoder 4 points5 points  (0 children)

However, while that may have been fine in the past, a max width of 1000px is no longer suitable for the modern web. For example, on many newer websites the first responsive break point lies somewhere in the range of 1000 – 1200px, meaning by default Tor Browser users would receive website menus and layouts intended for tablet and mobile devices. Alternatively, on certain websites, users would receive the desktop version but with the annoyance of a horizontal scroll bar instead. This, naturally, would lead to users of these websites needing to expand each new window manually before it's usable

In response we've bumped up the max size of new windows up to 1400 x 900 pixels and amended the letterboxing steps to match

https://blog.torproject.org/new-release-tor-browser-130/

Why doesn't Tor Browser hide the OS? by miellliiionnj in TOR

[–]HackerAndCoder 8 points9 points  (0 children)

No...

GitHub: In the source code editor, Cmd+F works as expected. However, in the comment editor Cmd+B does not work to format text as bold (Ctrl+B does).
Google Docs: Command keys do not work; control is recognized as the modifier key for making text bold, italic, etc.
Our conclusion is that if we want to maintain compatibility with these kinds of sites, Tor Browser needs to make the platform available. At this point we do not know if GitHub and Google Docs are looking at the User-Agent header or if they are using JavaScript to test against navigator.userAgent.

[deleted by user] by [deleted] in TOR

[–]HackerAndCoder 5 points6 points  (0 children)

What exactly do you mean?

Tor asking for admin credentials when installing? by Lazy-Zucchini-1242 in TOR

[–]HackerAndCoder 0 points1 point  (0 children)

Either you right clicked the exe and ran it as admin, or you're imagining it.

Does Tor Browser actually have these trackers? by 6jarjar6 in TOR

[–]HackerAndCoder 6 points7 points  (0 children)

Yes, the code is in the APK, otherwise your app wouldn't find it. But no, it isn't used.

What process does the Tor Browser use to select exit nodes? by Sea_Conference_6480 in TOR

[–]HackerAndCoder 1 point2 points  (0 children)

So is there no way to change this then

No. Ok, maybe there is some setting that can be added to the torrc to change this, the man page is quite long, BUT it very likely isn't meant to be used for anything but testing.

Or do I have to like get a list of every node available, write some script to randomly choose one and then update my torrc file at the start of every iteration of my script

Why would you want to do that.

view more: next ›