Delivery-Date: Sun, 09 Nov 2014 04:20:28 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.2 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID,URIBL_RHS_DOB autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 082391E0525;
	Sun,  9 Nov 2014 04:20:27 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 7331D319B7;
	Sun,  9 Nov 2014 09:20:22 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id AD003319BF
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 09:20:18 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id yJt6M_3_99ZK for <tor-talk@lists.torproject.org>;
 Sun,  9 Nov 2014 09:20:18 +0000 (UTC)
Received: from s2.netcompartner.com (s2.netcompartner.com [80.86.85.53])
 by eugeni.torproject.org (Postfix) with ESMTP id 5A7733194D
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 09:20:18 +0000 (UTC)
Received: from ncpws04.localnet (ncpws04.netcompartner.com
 [IPv6:2001:470:ec48:0:e2cb:4eff:fe3e:11c6])
 by s2.netcompartner.com (Postfix) with ESMTPSA id 990DBC0606
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 10:20:15 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple;
 d=reclaim-your-privacy.com; s=2014; t=1415524815;
 bh=V2ZeLeeto8B3KrfN/hU12Ovyst9K5EsjPR9P7pnKrvU=;
 h=From:To:Subject:Date:In-Reply-To:References:From;
 b=QEQtXsgT05vEiO02ENYre/CdDtSnPdioSkED0PneIqypgDFK0tnDEEBDXYR++y+9H
 Nf9oXmSWd1mszczfYNVBsjibdVpphqFl449G08DF2sTVWV8VCFi4Hc5GX9NOxTZ/WX
 lD3zlUAFTJPHzK1nAeS5DOIhWz+k65XQnMVAMOuuoiVQkeXipNUp9kSyjMtysIR0Pb
 gR8+r/+u7aoW17O+L+dh278X3e8w4s35A+qdj9hxis2OTbfJTYwizCNjL30oVmhD5j
 ok1d1HpZKCKdhExaVC9UGR+AWcB3WhVxbbyWsDC8n6CwvTTw9lzZ2OFScM9axa0vMl
 Fw9YHQWSCsUzQ==
From: Lars Boegild Thomsen <lth@reclaim-your-privacy.com>
To: tor-talk@lists.torproject.org
Date: Sun, 09 Nov 2014 17:20:06 +0800
Message-ID: <2393905.Itqr65tJ5v@ncpws04>
Organization: Reclaim Your Privacy
User-Agent: KMail/4.14.1 (Linux/3.16-3-amd64; KDE/4.14.2; x86_64; ; )
In-Reply-To: <CAJVRA1T0PavAjqtT=oZ6ew5OwDi6djnDLaQ9G8Mjzm0kHONg2w@mail.gmail.com>
References: <7488606.2oxgLGVBPl@ncpws04> <3413830.AxW13VOK2Y@ncpws04>
 <CAJVRA1T0PavAjqtT=oZ6ew5OwDi6djnDLaQ9G8Mjzm0kHONg2w@mail.gmail.com>
MIME-Version: 1.0
Subject: Re: [tor-talk] Cloak Tor Router
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============2383648478475542676=="
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>


--===============2383648478475542676==
Content-Type: multipart/signed; boundary="nextPart2342526.mf8uWE5jhL"; micalg="pgp-sha1"; protocol="application/pgp-signature"


--nextPart2342526.mf8uWE5jhL
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="us-ascii"

On Thursday 06 November 2014 05:41:09 coderman wrote:
> > I will definitely look into this one.  This should be quite easy to=

> > implement by messing a bit with the firewall tables :)
> > Only problem I see is that to make it useful I think it would have =
to time
> > out at some point.
> in the past i have used OUI prefix lists to avoid known bad behavior.=

> (this doesn't work if a device is spoofing MAC of course, but in that=

> case they are probably savvy :)
> https://standards.ieee.org/develop/regauth/oui/oui.txt

That is one option but I generally dislike hard coding stuff like that.=


> > Number of wireless networks are not an issue so I _am_ beginning to=
 think
> > that more than two is necessary.  For example:
> > 1. Open - Open network - no Tor
> > 2. Transparent proxy - all tcp traffic allowed - forced through Tor=
 -
> > everything on separate circuits  - captive warning
> > 3. Transparent proxy as 2 minus captive portal (for gadgets or some=
one who
> > know what they are doing)
> > 4. Isolating proxy - only https allowed - forced through Tor - ever=
ything on
> > separate circuits and everything else blocked
> the timeout behavior, perhaps you could detect "brain-dead re-attempt=

> repeat" behavior for this duration, and then let through instead.
> this came up in past discussions about a device that is simply
> connected but idle, not yet seen by human.  and a device that is
> headless dumb, like your media player.

In the case of my media player I don't really provide it with login det=
ails, so it is merely a matter of preventing it's chattiness to be tied=
 to my IP address.  I'll be fine if everything from that is just pushed=
 through Tor.  I don't do streaming much by the way (live in a place wi=
th relatively slow Internet), so the chattiness is mostly downloading c=
overs, movie descriptions etc.

I am not sure I get your time out idea.  Do you remember when it was di=
scussed or the subject - then I can go back and read the archive.

> thanks again for the open discussion!

The beauty of Open Source in general :)  I must admit after the Anonabo=
x thing I expected to hit more hostility on this list, but I am quite h=
appy with the discussion so far.

=2D-=20
Lars Boegild Thomsen
https://reclaim-your-privacy.com
Jabber/XMPP: lth@reclaim-your-privacy.com
--nextPart2342526.mf8uWE5jhL
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part.
Content-Transfer-Encoding: 7Bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAABAgAGBQJUXzHMAAoJECTnqaDCoNb07l4H/1JsFk64Gt54eA5B7H8J88f6
4x6SkUjnBT5BZNS2ugQ5+SADnekfiXHct2dy0xqeUcwHdxR/ff4GJ2FaeCVSDOzn
82rT4hSrn6e16IvQhkst3/SH9OUJHyDdPjttZNqNJyUOweCE8NfQTy7WbckkjMaZ
I7gy+vTGXPcYkrPpDto9jsjrWIykFTxpx7FSLZxP0WZjDbDRtfKoL7JMUAZE9pu+
n6X/1dZ0XXvnPox4rHcWdOFJihPk6688fOsILTFHLUwvDU9+BCF8LW6n6+vCzjET
I7rBcfZJhKRv3Ix7UeQFYT92DbM2oz1FBKsBEEg10s9BcnlQcVZq1SRsW224ja0=
=Rg/d
-----END PGP SIGNATURE-----

--nextPart2342526.mf8uWE5jhL--


--===============2383648478475542676==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

--===============2383648478475542676==--

