Delivery-Date: Mon, 19 Jan 2015 17:41:29 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.8 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
	RP_MATCHES_RCVD,URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id CB8801E0BE5
	for <archiver@seul.org>; Mon, 19 Jan 2015 17:41:27 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 5844933089;
	Mon, 19 Jan 2015 22:41:23 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id DD90B3307E
 for <tor-talk@lists.torproject.org>; Mon, 19 Jan 2015 22:41:19 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id uUYaRnnHrk-O for <tor-talk@lists.torproject.org>;
 Mon, 19 Jan 2015 22:41:19 +0000 (UTC)
Received: from shell1.rawbw.com (shell1.rawbw.com [198.144.192.42])
 by eugeni.torproject.org (Postfix) with ESMTP id B455633075
 for <tor-talk@lists.torproject.org>; Mon, 19 Jan 2015 22:41:19 +0000 (UTC)
X-Greylist: delayed 2035 seconds by postgrey-1.34 at eugeni;
 Mon, 19 Jan 2015 22:41:19 UTC
Received: from yuri.doctorlan.com (c-50-184-63-128.hsd1.ca.comcast.net
 [50.184.63.128]) (authenticated bits=0)
 by shell1.rawbw.com (8.14.9/8.14.9) with ESMTP id t0JM7LpU057989
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO)
 for <tor-talk@lists.torproject.org>; Mon, 19 Jan 2015 14:07:21 -0800 (PST)
 (envelope-from yuri@rawbw.com)
X-Authentication-Warning: shell1.rawbw.com: Host
 c-50-184-63-128.hsd1.ca.comcast.net [50.184.63.128] claimed to be
 yuri.doctorlan.com
Message-ID: <54BD8018.4080608@rawbw.com>
Date: Mon, 19 Jan 2015 14:07:20 -0800
From: Yuri <yuri@rawbw.com>
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64;
 rv:31.0) Gecko/20100101 Thunderbird/31.3.0
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <E42512B2-FB67-4222-AE0B-C6D1B02DEBB8@mail.bitmessage.ch>
In-Reply-To: <E42512B2-FB67-4222-AE0B-C6D1B02DEBB8@mail.bitmessage.ch>
Subject: Re: [tor-talk] force apt-get & yum updates through tor?
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 01/18/2015 15:23, BM-2cTjsegDfZQNGQWUQjSwro6jrWLC9B3MN3@bitmessage.ch 
wrote:
> I'm wondering what the best way to force yum and apt-get through tor
> is, in fedora 21 and debian 7.7 respectivly. Are any of the following
> least likely to produce dns or other leaks, or considered safest?

The only way to be sure there are no leaks is to run the whole OS in VM 
that has no internet access but through Tor.
I used two ways to achieve this:
1. Use Whonix gateway to connect your VM. This requires another VM 
running, but is very easy to set up.
2. Use combination of tor setup (TransListenAddress and 
DNSListenAddress), and firewall rules to direct traffic from your VM on 
its own virtual net to Tor running on the host.

Yuri
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

