Delivery-Date: Tue, 03 Feb 2015 03:24:17 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,T_DKIM_INVALID,URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id E27191E0B9F
	for <archiver@seul.org>; Tue,  3 Feb 2015 03:24:15 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 7E1C933596;
	Tue,  3 Feb 2015 08:24:11 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 76AFA333FA
 for <tor-talk@lists.torproject.org>; Tue,  3 Feb 2015 08:24:07 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id EpcGev-bTFe1 for <tor-talk@lists.torproject.org>;
 Tue,  3 Feb 2015 08:24:07 +0000 (UTC)
Received: from vincent.hireahit.com (vincent.hireahit.com [23.19.120.58])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id 5F45A333BF
 for <tor-talk@lists.torproject.org>; Tue,  3 Feb 2015 08:24:04 +0000 (UTC)
Received: from VINCENT.hireahit.com by hireahit.com (vincent.hireahit.com)
 (SecurityGateway 3.0.2) with ESMTP id SG001648593.MSG 
 for <tor-talk@lists.torproject.org>; Tue, 03 Feb 2015 00:24:01 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=hireahit.com;
 s=MD-20140321; t=1422951839; x=1423556639; q=dns/txt; h=Message-ID:
 Date:From:User-Agent:MIME-Version:To:Subject:References:
 In-Reply-To:Content-Type:Content-Transfer-Encoding; bh=d0VHbR8eV
 syQHMKYnlt6LVi1Ev8ge5HTFNZjZxR5t5M=; b=wAJ8cgwwJDJDPsoWR2FgAXXQC
 rYvwnEpD9Ydr/mIakckuQ1YgHSmX2qZjZUvb3f0zFtr2kUfyY8Ae1EJ1KwRfBsa3
 2D2iq/v7JnuseRCJop4pPNizSxtZA2kuinDoxtqSKcYY1O5bh/7zGmPwuLdlyu0n
 RolddGHTgSG04Hfsbo=
Received: from [x.x.x.x] ([184.68.44.226])
 by VINCENT.hireahit.com (VINCENT.hireahit.com [23.19.120.58])
 (Cipher TLSv1:AES-SHA:256) (MDaemon PRO v14.5.3d) 
 with ESMTPSA id 62-md50000015934.msg for <tor-talk@lists.torproject.org>;
 Tue, 03 Feb 2015 00:23:58 -0800
X-MDRemoteIP: 184.68.44.226
X-MDArrival-Date: Tue, 03 Feb 2015 00:23:58 -0800
X-Authenticated-Sender: davew@hireahit.com
X-Return-Path: davew@hireahit.com
X-Envelope-From: davew@hireahit.com
X-MDaemon-Deliver-To: tor-talk@lists.torproject.org
Message-ID: <54D0859A.1030104@hireahit.com>
Date: Tue, 03 Feb 2015 00:23:54 -0800
From: Dave Warren <davew@hireahit.com>
User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64;
 rv:24.0) Gecko/20140623 FossaMail/24.6.0
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <f8e73ec8753a6a3a6112de45f796c3ff@openmailbox.org>
 <20150202190609.GB26784@mail2.eff.org>
In-Reply-To: <20150202190609.GB26784@mail2.eff.org>
Subject: Re: [tor-talk] VPN/TOR Router
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 2015-02-02 11:06, Seth David Schoen wrote:
> spencerone@openmailbox.org writes:
>
>> Hey :)
>>
>> I have been looking at a physical product by Cryptographi called the
>> 'SnoopSafe Encrypted VPN/TOR Router'[0].
>>
>> Does this work?  Is this safe?
>>
>> [0] http://cryptographi.com/products/snoopsafe
> There have been a number of discussions on this mailing list before
> about standalone Tor routers.  The usual consensus is that using a
> separate router together with regular Internet applications is risky,
> because the applications don't know that they shouldn't behave in
> certain ways.  For example, the applications might mention your real IP
> address in the course of some protocol, or they might send or allow to
> be sent a persistent cookie, which might eventually be sent over both a
> Torified and a non-Torified connection.

It occurs to me that such a computer wouldn't *know* your real IP to 
share, it would only see it's local IP, and the only IP it would learn 
as an external IP is that of the Tor exit node.

However, the other anonymity related concerns would definitely apply. 
Things like browser identification, cookies and other data that are used 
within Tor and outside of Tor and similar would be huge problems. If 
your goal is to be anonymous, this is obviously a major problem, but not 
everyone needs anonymity, sometimes it's desirable and sufficient to 
encrypt and protect your traffic from the first hop. In this type of 
environment, implementing Tor at the network level would have a number 
of advantages, including reducing the odds of certain types of leakage 
while still allowing many/most applications to function without further 
configuration.

While I wouldn't necessarily suggest using Tor at the router level for 
all users, for at least some use cases, it probably makes a lot of sense 
to consider this as an option.

-- 
Dave Warren
http://www.hireahit.com/
http://ca.linkedin.com/in/davejwarren


-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

