Custom Query (4318 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:


Results (901 - 1000 of 4318)

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20
Ticket Summary Status Owner Type Priority Milestone
#10074 Make presentation slides on using Tails new runa defect Medium
Description

We have some public-facing information on how to use Tor Browser Bundle. There is much less public-facing information on how to use Tails. We need good Tails-related resources available for trainings and cryptoparties. Besides being useful for Tor Project outreach, the Tails website indicates that Tails folks would also benefit from having something like this. https://tails.boum.org/contribute/how/promote/

#10084 Secure Connection Failure new tbb-team defect Medium
Description

On every https: site I have tried so far, with the latest version of the TBB (Linux, 64-bit) I receive the following error message:

Secure Connection Failed An error occurred during a connection to www.torproject.org.

SSL peer reports incorrect Message Authentication Code.

(Error code: ssl_error_bad_mac_alert)

The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.

Please contact the website owners to inform them of this problem. Alternatively, use the command found in the help menu to report this broken site.

#10093 network map not working on 0.2.4.17rc - geoip new chiiph defect Medium
Description

vidalia-relay-bundle-0.2.4.17-rc-0.2.21.exe on XP

on Tor Network Map:

No connections show in the panel under the map no points or routes show on the map The country flag column is all "?"

#10097 flashproxy-reg-appspot should support custom domains new dcf defect Medium
Description

At the moment, the main facilitator is hardcoded. Should be pretty simple to have this as a CLI option.

#10105 start-tor-browser reports an error on start new tbb-team defect Medium
Description

"start-tor-browser: 122: [: -ne: argument expected"

tor browser starts as expected.

This is debian 64-bit.

#10114 tbb-firefox.exe crashes on startup needs_information erinn defect Medium TorBrowserBundle 2.3.x-stable
Description

Whenever I start tbb-firefox.exe (whether through Vidalia or the .exe itself), it instantly crashes and prompts me with "tbb-firefox.exe has stopped working". This didn't happen in previous releases.

AppName: tbb-firefox.exe AppVer: 17.0.10.5051 ModName: nspr4.dll ModVer: 4.9.5.0 Offset: 000012b2

I'm running on a WinXP and can give more information (e.g. DxDiag) if necessary.

#10117 issuu.com documents do not load new pde defect Medium
Description

In firefox issuu.com documents will not display. It gives a "document not found" error. If I disable Amazon Web Services in the https-everywhere menu then the page will load properly. I have also reported this with issuu.com.

#10137 ESR24 won't work without ctypes being enabled new tbb-team defect Medium
Description

While trying to get a working cross-compiler for ESR24 on Mac OS X we found that Firefox is either crashing right after start-up or highly unusable if it is built with --disable-ctypes (see: comment 69ff. in #9829). Other platforms were not tested, so it might be an OSX only problem although I doubt that.

#10144 TOR 2.3.25-14: "Attempted to access image data on a canvas ..." ID security breach enabled in release -14 needs_information mikeperry defect High
Description

Dear Tor Developer, I've visited "Jesse's Cafe Americain" using Tor browser at this address http://jessescrossroadscafe.blogspot.com/ for several years and always get the warning from Tor that this website "attempted to access image data on a canvas" (an ID security breach). At the bottom of the warning box there is a selection button allowing me to choose to "allow" this behavior or to "never allow" this behavior. I always choose "never allow" and that has always worked until my recent upgrade to Tor 2.3.25-14. Now, the warning still appears, the selection box still appears with both options, but the "never allow" option can't actually be activated. When I click "never allow" the "allow" default doesn't change and the warning box disappears with the "allow" option unchanged. As part of the fix, I suggest you change the warning box option to default on "never allow" and force users to select "allow" at their own risk. Thank you for all you do,

  • L. H. Melvin
#10165 Torbrowser surf localhost through Tor new tbb-team defect Medium TorBrowserBundle 2.3.x-stable
Description

Hi!

I have a big problem. Yesterday I installed a program called xampp. I typed in the address bar of the TOR browser https://127.0.0.1 and it's working. However, I would need the localhost is reached, but this does not work. Why? Someone can help me?

#10167 Uploading files to direct to S3 from another site using CORS failes if HTTPS Everywhere is installed new pde defect Medium
Description

Version: 3.4.2 on Firefox 25

Many sites have a file upload feature that uses AWS S3's ability upload files directly to S3 using CORS. There is a jquery library that makes this easy.

http://blueimp.github.io/jQuery-File-Upload/

If HTTPS everywhere is installed on Firefox 25 the OPTION request is never made. If HTTPS Everywhere is disabled and firefox is restarted the upload will work.

#10180 Vidalia connects to Tor, but doesn't launch Firefox new tbb-team defect Medium TorBrowserBundle 2.3.x-stable
Description

I'm running the spanish Version 2.3.25-14 - Linux, Unix, BSD I start Vidalia and everything is fine, it connects to Tor network and then the only step left is to launch firefox, but that never happens. The record of messages doesn't show anything wrong. And i don't know what to do for vidalia launch the browser.

#10184 Atlas should validate search input assigned phw defect Low
Description

If I search for "sysdev {at} leap {dot} se" (which is an invalid search term to Onionoo), Atlas tells me there's a backend error with this search. Onionoo returns a 400 error, so Atlas shouldn't blame Onionoo. Or Atlas could validate search input before sending it to Onionoo. Reported in #10128.

#10187 Cannot upload photos to Facebook new pde defect Medium
Description

With default HTTPS Everywhere settings, one cannot upload photos via Facebook's new interface. Clicking the "Add photos" button does nothing. Disabling HTTPS Everywhere allows this functionality to work.

HTTPS Everywhere 3.4.2 (This isn't in the dropdown?) Firefox 25.0

#10247 on first launch, when i choose 'connect', the old window is still there but unusable new defect Low
Description

Download TBB 3.0rc1. In my case it was 32-bit linux English. Unpack it, run it.

You'll get the "connect" or "configure" dialog page.

Choose 'connect'. A new page will pop up, which is the "bootstrapping Tor status bar" page.

But the old 'connect or configure' page remains open too, and there's a "quit" option still visible. If I click it, it doesn't quit. Eventually my Tor bootstraps, and then both windows *do* vanish ("ok, I guess it did quit"), but then a Tor Browser appears.

Seems like the smarter thing to do for usability would be to vanish the 'connect or configure' page once they've picked one and it's no longer needed.

#10250 Disable RC4 in TBB Firefox new tbb-team defect Medium
Description

Attacks against RC4 have recently been reported as plausible, and Microsoft, among other groups, have recommended avoiding RC4 for symmetric-key encryption. I would recommend blacklisting cipher suites that rely upon RC4 so that other stronger algorithms, such as AES, will be preferred instead, so as to avoid these attacks. For example, I have disabled 0x9c, 0x35, 0x5, 0x4, 0x2f, and 0xa in Chromium because they do not provide perfect forward secrecy, and 0xc007, 0xc011, and 0x66 because they rely on RC4 but do provide perfect forward secrecy.

#10254 Tor-Browser Crashes Regularly needs_information tbb-team defect High TorBrowserBundle 2.3.x-stable
Description

The 2.3.25-15 and its predecessors often crash on Windows XP. I can't reproduce it perfectly. It can involve lists and scrolling during page-loading, though. It happens on Amazon, sometimes, too.

Even with un-commenting in torrc, the logs don't work, so no logs available.

#10255 about:tor page in torbrowser features futile link to "run a Tor relay node" new defect Very Low
Description

It seemingly is not possible to do this in 3.0, or at least not in the way the linked tutorial page describes. Potentially confusing and frustrating for newbies.

#10257 Enabling Amazon Web Services causing Issuu publications to break new defect Medium
Description

I'm not very familiar with this project, but just thought I'd report an error I noticed: The site issuu.com is a digital publishing platform, and I noticed all publications break when the rule for Amazon Web Services is enabled. If you disable the Amazon Web Services rule, the site's publications will work as normal. I've attached two screenshots in case it's helpful.

#10282 Free tier for Amazon EC2 exceeded because of outdated instructions on Torcloud setup page new defect Medium
Description

According to the instructions at https://cloud.torproject.org/#get_started there is no change necessary in the size of the storage used for the Tor cloud instance. If following the current instructions, Amazon creates an EC2 instance with 1 TBit storage which by far exceeds the maximum free tier storage. The default 1 TBit storage is billed at 36 USD per month, even though the torcloud instance only requires 615 MB according to the current (outdated) screenshots on the Tor cloud setup page.

I suggest someone updates the screenshots to make clear what the correct storage volume size of the tor cloud instance should be in order to remain within the free tier.

#10286 Touch events leak absolute screen coordinates assigned tbb-team defect High
Description

In Firefox 24esr, Touch events are now available: https://developer.mozilla.org/en-US/docs/DOM/Touch_events. Unfortunately, these events contain absolute screen coodinates for touch event positions. We should report content-window relative coordinates for these fields.

#10290 Tor Browser History settings broken! new tbb-team defect Medium TorBrowserBundle 2.3.x-stable
Description

I'm on latest 2.3.25-16 Linux 64-bit version...

Every time I go the preferences and switch History settings from "Use Custom Settings" to "Never Remember History", it doesn't seem to be saving the change.

After closing the preferences window and opening it up again, settings are still on "Use Custom Settings".

That's somewhat an important problem. Privacy of many users can have been compromised by this bug.

#10292 Vidalia shows tor is down after the control port is closed new defect Medium
Description

I noticed this several times: when underlying network interface is reset (down/up or 'netif restart'), vidalia shows that tor isn't running (crossed over icon). But tor itself recovers from network loss fine and keeps running in such case. Restart of vidalia brings it to connected state.

Vidalia's connection to tor control socket shouldn't die when network goes down and up.

tor-0.2.3.25_1 vidalia-0.2.21 FreeBSD 9.2

#10295 Images and photos not loading in Tor needs_information defect Medium
Description

I have been using Tor for several months now with few problems. Suddenly I have had trouble with Tor loading and usually have to do so in safe mode. Also starting today, whenever I open a page with links to images, they do not load and when I click on the image link it takes me to an error message page that says the image is not found.

I deleted and reinstalled the Tor bundle but am still having the same issues.

Can you please give me an idea of what might be wrong or where I can go for help?

Thank you. Frank

#10304 libevent2 detection fails on FreeBSD 9.2 needs_information defect Medium Tor: 0.2.???
Description

./configure --with-libevent-dir=/usr/local/lib/event2 ends with

checking for libevent directory... configure: WARNING: We found the libraries for libevent, but we could not find the C header files. You may need to install a devel package.

In freebsd libevent2 .so files are in /usr/local/lib/event2 and headers are in /usr/local/include/event2

There needs to be command line switch for setting libevent2 include path as well.

#10305 https everywhere slows down google translate in Chrome browser new defect Medium
Description

visiting http://translate.google.com/

and using it is much slower than new Chrome incognito window (which does not use any extensions), sometimes translation seems to hang forever

I think what might cause this is "experimental rules > Google Services"

#10318 Tor Cloud instances default to 1024 GB of storage space new defect Medium
Description

A user on the tor-relays list reported that his Tor Cloud instance had defaulted to 1024 GB of storage space, which resulted in a $120 bill at the end of the month. It seems AWS has set the default storage space value for our t1.micro instances to 1024 GB in the following regions: us-west-1, us-west-2, ap-northeast-1, ap-southeast-1, sa-east-1, ap-southeast-2, eu-west-1.

I have pinged @AWSSupport on Twitter. It would be good to update the Tor Cloud website with new screenshots of the setup process and a warning informing users to change this value to 4 GB (which is the default for us-east-1).

#10334 Multiple problems with TBB3.0rc1 new tbb-team defect Medium
Description

I did few testing with TBB 3.0rc1 on windows XP and discovered following problems. Sadly i was not able to find reliable way to reproduce problem 1.

  1. error message that tor exited unexpectedly
  2. error message that firefox is already running but not responding. i needed to kill FF from task list. This often happens when you close TBB and want to start it again but not in all cases, reproducibility is about 20%
#10337 I'm not sure what the error is here new n8fr8 defect Medium
Description
Orbot is starting?

Orbot is starting?

(re)Setting permission on Tor binary

(re)Setting permission on Privoxy binary

(re)Setting permission on Obfsproxy binary

Orbot is starting?

got tor proc id: 18511

Tor process id=18511

Connecting to control port: 9051

SUCCESS connected to control port

SUCCESS authenticated to control port

Starting Tor client? complete.

adding control port event handler

SUCCESS added control port event handler

Starting privoxy process

/data/data/org.torproject.android/app_bin/privoxy /data/data/org.torproject.android/app_bin/privoxy.config &

orConnStatus (CaptainPicard2): LAUNCHED

NOTICE: Bootstrapped 85%: Finishing handshake with first hop. 

NOTICE: We weren't able to find support for all of the TLS ciphersuites that we wanted to advertise. This won't hurt security, but it might make your Tor (if run as a client) more easy for censors to block. 

NOTICE: To correct this, use a more recent OpenSSL, built without disabling any secure ciphers or features. 

Privoxy is running on port:8118

Privoxy process id=18521

Transparent Proxying: enabling...

enabling transproxy for app: com.forshared(10142)

enabling transproxy for app: mgeek.dolphin.browser:10114(10114)

enabling transproxy for app: com.humblebundle.library(10107)

enabling transproxy for app: com.opera.browser(10138)

enabling transproxy for app: com.silvermoon.client(10099)

enabling transproxy for app: com.cloudmosa.puffin(10116)

enabling transproxy for app: com.valvesoftware.android.steam.community(10102)

enabling transproxy for app: com.google.android.youtube(10091)

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10142 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10142 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10142 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10067 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10067 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10067 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10114 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10114 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10114 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10107 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10107 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10107 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10138 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10138 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10138 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10099 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10099 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10099 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10116 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10116 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10116 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10102 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10102 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10102 -p udp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p tcp ! -d 127.0.0.1 -m owner --uid-owner 10091 -m tcp --syn -j REDIRECT --to-ports 9040 || exit

/data/data/org.torproject.android/app_bin/iptables -t nat -A OUTPUT -p udp -m owner --uid-owner 10091 -m udp --dport 53 -j REDIRECT --to-ports 5400 || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p tcp -d 127.0.0.1 --dport 5400 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p tcp -d 127.0.0.1 --dport 9040 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p tcp -d 127.0.0.1 --dport 9050 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p tcp -d 127.0.0.1 --dport 8118 -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p tcp -o lo -j ACCEPT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p tcp ! -d 127.0.0.1 -j REJECT || exit

/data/data/org.torproject.android/app_bin/iptables -t filter -A OUTPUT -m owner --uid-owner 10091 -p udp ! -d 127.0.0.1 -j REJECT || exit

;errCode=0;resp=FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478

FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:478



TorTransProxy resp code: 0

It stops at 85% and it doesnt go on to a green onion.

#10353 Cookie Protection dialog is empty in FF24 new defect High
Description

The nsCookieService does not seem to expose the Private Browsing Mode cookie database to extensions in any substantial way. Unless I missed something, there does not appear to be a way to enumerate these cookies directly. This means that the Cookie Protections Dialog (and Firefox's own Cookie Dialog) are always empty in the default TBB configuration, unless the user selects to enable history.

We should either create APIs to export and manipulate the private cookie store, or alter the cookie protections dialog to inform the user that cookie protection and manipulation is only available if they are storing disk activity.

#10355 Pipeline defense interferes with twitter and flickr photostreams needs_information defect High
Description

The Pipelining defense appears to damage flickr photostreams and twitter media streams. In both cases, these sites experience page load issues and dead images.

In brief ad-hoc testing, reducing network.http.pipelining.max-optimistic-requests to 10 seems to allow all images to load, but more testing is needed.

#10360 Offline cache prompt shown; Allow button does not dismiss. new defect Medium
Description

Testing the TBB 3.5 rc1 build 3 on MacOS 10.9, we saw that an offline data prompt is displayed but clicking "Allow" does not dismiss the prompt.

Steps to reproduce: 1) Open http://stevesouders.com/tests/clearbrowser/save.php 2) Click "Allow" in the "This website is asking to store data for offline use" prompt. 3) Notice that the prompt is not dismissed.

The following message is shown on the Error Console: NS_ERROR_NOT_AVAILABLE: Component returned failure code: 0x80040111 (NS_ERROR_NOT_AVAILABLE) [nsIOfflineCacheUpdateService.scheduleUpdate] @ chrome://browser/content/browser.js:14006

#10369 Building the Tor component in OS X TBBs is broken with the new cross-compiler assigned gk defect High
Description

At least in order to ship 64bit OS X bundles we need to switch the compiler on OS X to our new cross-compiler. Moreover, as we do not ship the old one users can't build the OS X bundles themselves out-of-the-box anymore currently.

#10371 Obfsproxy memory leak needs_information defect Medium
Description

Hi everyone,

I have installed Obfsproxy from Tor project Debian and Python repositories (one v0.2.3 and the other v0.2.4) on my Ubuntu 12.04 LTS. Unfortunately both of them has memory leak problem and if too many users start using the server, it makes the RAM full and crashes by itself. How can I generate a full report from this memory leak and place it here to help developers fix the issue?

Thanks.

#10386 Move flashproxy.git to under pluggable-transports new infinity0 defect Low
Description

I am a sucker for consistency.

First, I need to find all the places on the internets which have the old address, and document them. For starters, this includes:

  • stuff on crypto.stanford.edu
  • documentation inside the repo itself
  • documentation on trac and other Tor websites
  • github
  • anything else, Google search it.
#10388 TBB should disable "New Private Window" menu option if disk history is disabled new tbb-team defect High
Description

Because we use browser.privatebrowsing.autostart as defense in depth against disk leaks, "New Private Window" is equivalent to "New Window". This can be confusing to users who will expect their "New Private Windows" to be isolated from their normal TBB state, especially since the UI hints are different for these windows.

We should probably patch Firefox to hide this menu option if browser.privatebrowsing.autostart is set. This seems like something Mozilla should be interested in picking up.

#10407 check tells people about javascript but points them to atlas new arlolra defect Medium
Description

At the bottom of check.tp.o we tell them whether they're running javascript, and point them at the faq that tells them they're welcome to turn javascript off if they feel safer.

And then if check thinks they're using Tor, it invites them to go to atlas to learn more about their exit relay.

And atlas basically doesn't work with javascript off. Neither does globe.

I wonder if there's a fix? Seems like a messy tradeoff all around.

#10408 version information reopened tbb-team defect Medium
Description

Assuming I have an unpacked tbb tree, there doesn't seem to be an obvious way to learn its version. Maybe there should be a VERSION file next to the start-tor-browser script?

Emphasis is on obvious -- I now know the information is hidden away in Docs/sources/versions.

#10416 Tor won't start on Windows when path contains non-ascii characters assigned defect High Tor: 0.2.???
Description

When trying to start the TBB from the following path:

C:\Users\kuncaŭščyna\Downloads\Tor Browser\

got the following error:

Vidalia detected that the Tor software exited unexpectedly. Please check the message log for recent warning or error messages.

Here's the log:

Dez 16 18:27:21.431 [Hinweis] Tor v0.2.3.25 (git-17c24b3118224d65) running on Windows 7. Dez 16 18:27:21.431 [Hinweis] Tor can't help you if you use it wrong! Learn how to be safe at https://www.torproject.org/download/download#warning Dez 16 18:27:21.431 [Warnung] Unable to open configuration file "C:\Users\kuncauscyna\Downloads\Tor Browser\Data\Tor\torrc". Dez 16 18:27:21.431 [Fehler] Reading config failed--see warnings above.

Diacritics were obviously "simplified" which created inexisting path.

I know Windows is not recommened for anonymity. But some people use TBB on Win only for censorship circumvention. The easiest solution is simply to add a message to log like:

Unable to open configuration file "C:\Users\kuncauscyna\Downloads\Tor Browser\Data\Tor\torrc". Please check that the path contains only ascii symbols.

But much better would be to fix it to process correctly path in unicode.

#10426 "new identity" button causes in-progress downloads to be aborted new tbb-team defect Medium
Description

I recently upgraded my Tor Browser Bundle from the previous stable 2.5.x series to 3.5 rc1.

It seems the behavior of the Torbutton menu "new identity" command has change. Previously, if a download was in progress (using the Firefox download manager), it continued unaffected (using the old circuit, presumably) after "new identity" had been clicked.

In 3.5 rc1, any in-progress downloads are aborted if you click "new identity".

I preferred the old behavior. In the new version, the user is forced to wait until any downloads have completed before switching to a new identity. Users may be tempted to continue using an old identity in situations where this might compromise their anonymity, so as to allow a download to complete.

#10428 Visiting http://awards.tweakers.net logs you out on tweakers.net new pde defect Medium
Description

The ruleset for *.tweakers.net doesn't enforce https for the subdomain awards.tweakers.net. Combined with the securecookie rule this causes the session-id cookie to be overwritten with a new one for a not-logged-in session.

It probably is best to just be less specific wrt subdomains:

<rule from="http://([a-z]+\.)?tweakers\.net/"

to="https://$1tweakers.net/" />

Also the exclusion rule for crossdomain.xml might not be necessary anymore, but I haven't checked that yet.

#10432 Sudden spike in memory consumption needs_information defect Medium Tor: 0.2.???
Description

I see a directory authority dying on out-of-memory. It's running 0.2.4.18-rc. This happened after it had been running for about a week. It died shortly after publishing a consensus, at hh:01:40 with a 'Out of memory on malloc(). Dying.'

Plotting RSS every 10 minutes the last couple of hours shows this:

https://people.torproject.org/~linus/volatile/maatuska-rss.0.pdf

I'll collect more data and also try to get date and time of the data points.

#10434 Segmentation fault when Tor Browser 3.5 has a ton of state. needs_information mikeperry defect Medium
Description

To reproduce this bug, spend all day on Twitter clicking a bunch of links and never get a new identity. This is the only way I have been able to consistently get enough state in my browser to trigger the crash. I have a core file, but I would prefer to send it to interested developers over PGP because I have no idea how much information it contains. This is the TBB version I used: https://lists.torproject.org/pipermail/tor-qa/2013-December/000283.html

#10440 Cross Site Scripting at TorProject Blog new defect High
Description

GET parameter incorrectly filter GET query which allows attackers to execute JavaScript code which is called Cross Site Scripting.

https://blog.torproject.org/archive/1%3Cbody%20onload=alert%28666%29%3E/2013/11/,

#10452 TBB 3.5 Windows installer makes users think it's smearing itself across the hard drive new tbb-team defect Medium
Description

We had a lot of Windows TBB users download TBB but then click 'open' rather than 'save'. Then everything worked great, but when they wanted to run it a second time, it was nowhere to be found (since they never saved it anywhere).

So for Windows we now have a simple installer that simply unpacks stuff and sticks it into the self-contained directory, just like before except it's more like what many Windows users expect.

But smart users don't *know* that that's all it's doing. We should a) make it clearer in the installer text itself that TBB remains self-contained in just the directory they specify, and b) make it clearer on the download webpage when they're fetching it.

#10458 "New identity" button in Vidalia is misleading and should be renamed. new chiiph defect Medium
Description

Vidalia's "new identity" button creates a new circuit by issuing a NEWNYM request to Tor.

This is confusing for users because in Torbutton in the Tor Browser there is a "new identity" option which does something different (it also clears session data which could be used to link two identities).

Vidalia's "new identity" should be renamed to reflect the fact that merely issuing a NEWNYM isn't enough to prevent two identities/sessions from being linked.

I suggest calling it something like "new circuit" or "change exit IP address" etc.

#10461 tor seems to ignore "DirServer" option assigned nickm defect Medium Tor: 0.2.???
Description

I've got the following 3 directives in my torrc:

DirServer 95.223.60.130:443 23155386E3B4B93B0294DB3A6263A8FAFE273255 DirServer 89.245.227.226:9001 6CB447C4CBCC4F5BDB4BA096902C2956CB534999 DirServer 109.228.139.83:9001 9DD97868543CB3CF432B96C082DFAC1FD16F6768

but none of the above statements seem to have been honoured by tor as I get this in my logs (debug-level):

[notice] {GENERAL} 0 entries in guards [info] {CIRC} compute_weighted_bandwidths(): Empty routerlist passed in to consensus weight node selection for rule weight as guard [info] {CIRC} smartlist_choose_node_by_bandwidth(): Empty routerlist passed in to old node selection for rule weight as guard [info] {DIR} directory_pick_generic_dirserver(): No router found for consensus network-status fetch; falling back to dirserver list. [info] {DIR} router_pick_dirserver_generic(): No dirservers are reachable. Trying them all again. [notice] {DIR} While fetching directory info, no running dirservers known. Will try again later. (purpose 14) [info] {GENERAL} or_state_save(): Saved state to "/var/lib/tor/tor/state"

Why?

I don't usually set the DirServer options, but, as of yesterday, my tor gets stuck at 5% when I shutdown tor after getting the following log:

{PROTOCOL} Received a bad CERTS cell from [scrubbed]:9001: The link certificate didn't match the TLS public key

I then wiped out the entire /var/lib/tor directory (to force fresh consensus download) and then got this when I tried to start tor (again, debug-level):

============================= Dec 21 11:17:24.000 [notice] {GENERAL} 0 entries in guards Dec 21 11:17:24.000 [info] {CIRC} compute_weighted_bandwidths(): Empty routerlist passed in to consensus weight node selection for rule weight as guard Dec 21 11:17:24.000 [info] {CIRC} smartlist_choose_node_by_bandwidth(): Empty routerlist passed in to old node selection for rule weight as guard Dec 21 11:17:24.000 [info] {DIR} directory_pick_generic_dirserver(): No router found for consensus network-status fetch; falling back to dirserver list. Dec 21 11:17:24.000 [debug] {DIR} directory_initiate_command_rend(): anonymized 0, use_begindir 1. Dec 21 11:17:24.000 [debug] {DIR} directory_initiate_command_rend(): Initiating consensus network-status fetch Dec 21 11:17:24.000 [info] {APP} connection_ap_make_link(): Making internal direct tunnel to [scrubbed]:443 ... Dec 21 11:17:24.000 [debug] {NET} connection_add_impl(): new conn type Socks, socket -1, address (Tor_internal), n_conns 3. Dec 21 11:17:24.000 [debug] {DIR} circuit_get_open_circ_or_launch(): considering 1, $7BE683E65D48141321C5ED92F075C55364AC7123 Dec 21 11:17:24.000 [debug] {CIRC} onion_pick_cpath_exit(): Launching a one-hop circuit for dir tunnel. Dec 21 11:17:24.000 [info] {CIRC} onion_pick_cpath_exit(): Using requested exit node '$7BE683E65D48141321C5ED92F075C55364AC7123~7BE683E65D48141321C at 193.23.244.244' Dec 21 11:17:24.000 [debug] {CIRC} onion_extend_cpath(): Path is 0 long; we want 1 Dec 21 11:17:24.000 [debug] {CIRC} onion_extend_cpath(): Chose router $7BE683E65D48141321C5ED92F075C55364AC7123~7BE683E65D48141321C at 193.23.244.244 for hop 1 (exit is 7BE683E65D48141321C5ED92F075C55364AC7123) Dec 21 11:17:24.000 [debug] {CIRC} onion_extend_cpath(): Path is complete: 1 steps long Dec 21 11:17:24.000 [debug] {CIRC} circuit_handle_first_hop(): Looking for firsthop '193.23.244.244:443' Dec 21 11:17:24.000 [info] {CIRC} circuit_handle_first_hop(): Next router is [scrubbed]: Not connected. Connecting. Dec 21 11:17:24.000 [notice] {CONTROL} Bootstrapped 5%: Connecting to directory server. Dec 21 11:17:24.000 [debug] {CHANNEL} channel_tls_connect(): In channel_tls_connect() for channel 0xb797c2e8 (global id 0) Dec 21 11:17:24.000 [debug] {CHANNEL} channel_set_identity_digest(): Setting remote endpoint digest on channel 0xb797c2e8 with global ID 0 to digest 7BE683E65D48141321C5ED92F075C55364AC7123 Dec 21 11:17:24.000 [debug] {NET} connection_connect(): Connecting to [scrubbed]:443. Dec 21 11:17:25.000 [debug] {NET} connection_connect(): Connection to [scrubbed]:443 in progress (sock 4). Dec 21 11:17:25.000 [debug] {NET} connection_add_impl(): new conn type OR, socket 4, address 193.23.244.244, n_conns 4. Dec 21 11:17:25.000 [debug] {CHANNEL} channel_tls_connect(): Got orconn 0xb797c3c0 for channel with global id 0 Dec 21 11:17:25.000 [debug] {CHANNEL} channel_register(): Registering channel 0xb797c2e8 (ID 0) in state opening (1) with digest 7BE683E65D48141321C5ED92F075C55364AC7123 Dec 21 11:17:25.000 [debug] {CHANNEL} channel_add_to_digest_map(): Added channel 0xb797c2e8 (global ID 0) to identity map in state opening (1) with digest 7BE683E65D48141321C5ED92F075C55364AC7123 Dec 21 11:17:25.000 [debug] {CHANNEL} channel_set_cell_handlers(): Setting cell_handler callback for channel 0xb797c2e8 to 0xb7668500 Dec 21 11:17:25.000 [debug] {CHANNEL} channel_set_cell_handlers(): Setting var_cell_handler callback for channel 0xb797c2e8 to 0xb7667340 Dec 21 11:17:25.000 [debug] {CIRC} circuit_handle_first_hop(): connecting in progress (or finished). Good. Dec 21 11:17:25.000 [info] {APP} connection_ap_make_link(): ... application connection created and linked. Dec 21 11:17:25.000 [debug] {NET} connection_add_impl(): new conn type Directory, socket -1, address 193.23.244.244, n_conns 5. Dec 21 11:17:25.000 [info] {DIR} directory_send_command(): Downloading consensus from 193.23.244.244:443 using /tor/status-vote/current/consensus-microdesc/14C131+27B6B5+49015F+585769+805509+D586D1+E8A9C4+ED03BB+EFCBE7.z Dec 21 11:17:25.000 [info] {GENERAL} or_state_save(): Saved state to "/var/lib/tor/tor/state" Dec 21 11:17:25.000 [debug] {NET} conn_read_callback(): socket -1 wants to read. Dec 21 11:17:25.000 [info] {EDGE} connection_edge_process_inbuf(): data from edge while in 'waiting for circuit' state. Leaving it on buffer. Dec 21 11:17:25.000 [info] {EDGE} connection_edge_process_inbuf(): data from edge while in 'waiting for circuit' state. Leaving it on buffer. Dec 21 11:17:25.000 [debug] {DIR} connection_dir_finished_flushing(): client finished sending command. Dec 21 11:17:25.000 [debug] {NET} conn_read_callback(): socket 4 wants to read. Dec 21 11:17:25.000 [info] {CONTROL} control_event_bootstrap_problem(): Problem bootstrapping. Stuck at 5%: Connecting to directory server. (Connection refused; CONNECTREFUSED; count 1; recommendation ignore) Dec 21 11:17:25.000 [debug] {CHANNEL} channel_close_for_error(): Closing channel 0xb797c2e8 due to lower-layer error Dec 21 11:17:25.000 [debug] {CHANNEL} channel_change_state(): Changing state of channel 0xb797c2e8 (global ID 0) from "opening" to "closing" Dec 21 11:17:25.000 [debug] {CHANNEL} channel_remove_from_digest_map(): Removed channel 0xb797c2e8 (global ID 0) from identity map in state closing (4) with digest 7BE683E65D48141321C5ED92F075C55364AC7123 Dec 21 11:17:25.000 [debug] {CHANNEL} connection_mark_for_close_internal_(): Calling connection_mark_for_close_internal_() on an OR conn at src/or/connection.c:2828 Dec 21 11:17:25.000 [debug] {NET} conn_close_if_marked(): Cleaning up connection (fd -1). Dec 21 11:17:25.000 [debug] {CIRC} circuit_n_chan_done(): chan to NULL/193.23.244.244:443, status=0 Dec 21 11:17:25.000 [info] {CIRC} circuit_n_chan_done(): Channel failed; closing circ. Dec 21 11:17:25.000 [info] {OR} circuit_build_failed(): Our circuit died before the first hop with no connection Dec 21 11:17:25.000 [info] {APP} connection_ap_fail_onehop(): Closing one-hop stream to '$7BE683E65D48141321C5ED92F075C55364AC7123/193.23.244.244' because the OR conn just failed. Dec 21 11:17:25.000 [debug] {CIRC} circuit_increment_failure_count(): n_circuit_failures now 1. Dec 21 11:17:25.000 [debug] {CHANNEL} channel_change_state(): Changing state of channel 0xb797c2e8 (global ID 0) from "closing" to "channel error" Dec 21 11:17:25.000 [info] {HANDSHAKE} connection_or_note_state_when_broken(): Connection died in state 'connect()ing with SSL state (No SSL object)' Dec 21 11:17:25.000 [debug] {NET} connection_remove(): removing socket -1 (type OR), n_conns now 5 Dec 21 11:17:25.000 [debug] {NET} conn_close_if_marked(): Cleaning up connection (fd -1). Dec 21 11:17:25.000 [debug] {NET} connection_remove(): removing socket -1 (type Socks), n_conns now 4 Dec 21 11:17:25.000 [info] {GENERAL} connection_free_(): Freeing linked Socks connection [waiting for circuit] with 152 bytes on inbuf, 0 on outbuf. Dec 21 11:17:25.000 [debug] {NET} conn_read_callback(): socket -1 wants to read. Dec 21 11:17:25.000 [info] {HTTP} connection_dir_client_reached_eof(): 'fetch' response not all here, but we're at eof. Closing. Dec 21 11:17:25.000 [debug] {NET} conn_close_if_marked(): Cleaning up connection (fd -1). =============================

Repeat ad-nauseum! The above log seems to stem from the fact that it looks as though dannenberg ($7BE683E65D48141321C5ED92F075C55364AC7123/193.23.244.244) doesn't accept connections on ports 443 or 80 anymore (is it down?), grinding my tor bootup to a screeching halt - something I tried to offset by explicitly setting 3 "DirServer" options, but to no avail.

Secondly, why is tor insisting on downloading its descriptors/data from that directory and not trying some other - is dannenberg the only one? I seriously doubt it!

#10466 Slow menu response of Torbrowser new tbb-team defect Medium
Description

Since Torbrowser 3.X comes with TorLauncher I really like the TorBrowserBundle and use it daily as my Firefox replacement.

Although the browser experience and speed is really good I noticed an issue that hampers the usability and leads to the impression that TBB is slow.

When I open the main menu or context menu or when I switch in the main menu from the open "File" menu to "Edit" this is much slower in TBB than in the standard FF.

Examples:

1.) right click in the URL address field. TBB is much slower than FF 2.) open "File" menu and move the mouse pointer over "Edit". There is a significant delay in TBB compared to FF. 3.) I have the bookmarks toolbar visible and there are folder in it. When I click on a folder in TBB it can take up to 1-2 second until it opens. In FF the bookmark toolbar folder open immediately. 4.) Right click in the browser window to get the standard browser context menu. It take significantly longer in TBB than in FF 5.) I have structured my bookmarks with folders. If I click on Bookmarks in the main menu and move the mouse down from folder to folder the folder submenu opens immediately in FF whereas there is a delay in TBB.

The delay I am talking about is not always the same. Sometimes it open almost immediately (but never as fast as in FF) sometimes the delay is significant up to 1-3 seconds.

From a user perspective TBB handling seems to be slower because of that. When opening a menu I sometime have the impression as if TBB loads the menu over the network.

The fact that TBB loads pages over the Tor networks slower than FF is understandable from a user perspective. But that local actions are slower than in FF is something a user cannot understand.

Is there something I configure in TBB to make menu handling faster?

I am using TBB 3.5 I have build via gitian on Linux 64-bit Ubuntu.

Thanks & regards,

torland

#10467 URLs are leaked to third party if they contain typos new tbb-team defect High
Description

Open a new tab in the Tor Browser and type "https;www.wikipedia.org" into the URL field (note the typo - a semicolon instead of a colon)

The Tor Browser jumps to startpage.com and searches it for "https;www.wikipedia.org"

Users may make typos - and I think there is no need to leak URLs with typos to a third party (startpage). You should patch Firefox so that anything typed into the URL field is never sent to a third party.

There is already a special field for startpage search in the navigation toolbar - so there is no need to use the URL field for searches.

#10478 Use prepend_policy or similar in preference to mark_circuit_unusable_for_new_conns new defect High Tor: 0.2.???
Description

For some error cases, probably including END_STREAM_REASON_TIMEOUT, END_STREAM_REASON_RESOLVEFAILED, END_STREAM_REASON_CONNECTREFUSED, our current practice of tracking failures with client_dns_incr_failures and marking the whole circuit as unusable for connections is probably no good.

After all, a TIMEOUT can just mean that the particular address was filtered, or that it legitimately timed out, or something like that.

Instead, we should use prepend_policy or some similar mechanism to mark that circuit, not as unsuitable for all new streams, but as simply unsuitable for the particular address. (I say "something like prepend_policy" and not "prepend_policy" because we should really drop the original hostname and not just the resolved address.) We might want to keep a counter of the number of successful and failed streams per circuit.

This is going to be important if we make more failure types retriable (#7870).

#10481 connection_mark_unattached_ap_: checking always true edge_has_sent_end new defect Medium Tor: 0.2.???
Description
  ENTRY_TO_EDGE_CONN(conn)->edge_has_sent_end = 1; /* no circ yet */
  if ((edge_conn->on_circuit != NULL || edge_conn->edge_has_sent_end) &&
      connection_edge_is_rendezvous_stream(edge_conn)) {
    rend_client_note_connection_attempt_ended(
                                    edge_conn->rend_data->onion_address);
  }
#10487 TBB OS X: Last directory recorded in /Users/User/Library/Preferences/ new tbb-team defect Medium
Description

It's not a huge big deal, but worth mentioning TBB 3.5 OS X leaves a record of the last download directory in org.mozilla.torbrowser.plist:

<key>NSNavLastRootDirectory</key>

---><string>/Volumes/place/place/</string>

Some say there is no security through obscurity, correct I'm sure, but no need to specifically point to the directory or volume (even if encrypted) about where data via Tor is being downloaded to.

Seems to be quite a challenge to lock down TBB on OS X. Has anyone checked the status of things like /var/folders lately ?

#10493 History not being deleted in TBB after disabling and enabling Private Browsing Mode new tbb-team defect High
Description

When using the Tor Browser Bundle with a Tor router or transparent torification, browsing history is not being deleted when you request a new identity with Torbutton or when you close the browser and start it again.

#10497 Tor Browser crashes on OS X if gocomics.com and newspaper sites are involved reopened mikeperry defect Medium
Description

I tried to open Julius Caesar (found with Startpage0 and TBB 3.5 hung. After about 15 minutes, I finally had to hit Force Quit, since I had something else I had to do.

#10499 Wrong atlas link on check.torproject.org new arlolra defect Medium
Description

Hello I discovered that it happens that check.torproject.org may show correct exit IP address, but wrong link to Atlas page. See example of such check.torproject.org output in attachment. It reports exit IP 77.220.136.220 but link to atlas leads to page https://atlas.torproject.org/#details/8450F3CA4006D2F84B1F7FB70E03BDE8F55D84C0 (node 76.74.178.217). Sometimes is shows correct link https://atlas.torproject.org/#details/32556374840964DEF82CC8198479A65274956AF9 I use HTTPS, so exit node can't be responsible for this. This must be check.torproject.org's bug.

#10506 Unable to start Tor: Unable to start Tor new n8fr8 defect Very High
Description

I used Orbot for a couple of weeks without any problems, now it has suddenly stopped to start without any apparent reason.

My phone is a Galaxy S4 i9505 with Android 4.3 with root rights.

Thank you for your help.

[ 12-28 16:10:34.812 18135:20310 D/Orbot    ]
Orbot è in esecuzione...

[ 12-28 16:10:35.052 18135:20310 D/Orbot    ]
(re)Setting permission on Tor binary

[ 12-28 16:10:35.072 18135:20310 D/Orbot    ]
executing shell cmd: chmod 700 /data/data/org.torproject.android/app_bin/tor; runAsRoot=false;waitFor=true

[ 12-28 16:10:35.082 18135:20310 D/Orbot    ]
(re)Setting permission on Privoxy binary

[ 12-28 16:10:35.102 18135:20310 D/Orbot    ]
executing shell cmd: chmod 700 /data/data/org.torproject.android/app_bin/privoxy; runAsRoot=false;waitFor=true

[ 12-28 16:10:35.122 18135:20310 D/Orbot    ]
(re)Setting permission on Obfsproxy binary

[ 12-28 16:10:35.142 18135:20310 D/Orbot    ]
executing shell cmd: chmod 700 /data/data/org.torproject.android/app_bin/obfsproxy; runAsRoot=false;waitFor=true

[ 12-28 16:10:35.192 18135:20310 D/Orbot    ]
executing shell cmd: export HOME=/data/data/org.torproject.android/app_bin; runAsRoot=false;waitFor=false

[ 12-28 16:10:35.192 18135:20310 D/Orbot    ]
executing shell cmd: /data/data/org.torproject.android/app_bin/tor DataDirectory /data/data/org.torproject.android/app_data -f /data/data/org.torproject.android/app_bin/torrc || exit
; runAsRoot=false;waitFor=false

[ 12-28 16:10:39.497 18135:20310 D/Orbot    ]
executing shell cmd: export HOME=/data/data/org.torproject.android/app_bin; runAsRoot=false;waitFor=false

[ 12-28 16:10:39.497 18135:20310 D/Orbot    ]
executing shell cmd: /data/data/org.torproject.android/app_bin/tor DataDirectory /data/data/org.torproject.android/app_data -f /data/data/org.torproject.android/app_bin/torrc || exit
; runAsRoot=false;waitFor=false

[ 12-28 16:10:44.051 18135:20310 D/Orbot    ]
executing shell cmd: export HOME=/data/data/org.torproject.android/app_bin; runAsRoot=false;waitFor=false

[ 12-28 16:10:44.051 18135:20310 D/Orbot    ]
executing shell cmd: /data/data/org.torproject.android/app_bin/tor DataDirectory /data/data/org.torproject.android/app_data -f /data/data/org.torproject.android/app_bin/torrc || exit
; runAsRoot=false;waitFor=false

[ 12-28 16:10:48.545 18135:20310 E/Orbot    ]
Unable to start Tor: Unable to start Tor
java.lang.Exception: Unable to start Tor
	at org.torproject.android.service.TorService.runTorShellCmd(TorService.java:828)
	at org.torproject.android.service.TorService.initTor(TorService.java:676)
	at org.torproject.android.service.TorService.run(TorService.java:312)
	at java.lang.Thread.run(Thread.java:841)
#10507 firefox 24.0 in tbb 3.5 is leaking referring page data new tbb-team defect Very High
Description

i run a hidden service website, and occasionally check the apache log to see what content is popular. yesterday i saw something that never appeared before, referring page data. here is an example (onion address munged to protect referring page):

127.0.0.1 - - [28/Dec/2013:02:11:48 -0700] "GET /weblog/index.html HTTP/1.1" 200 5302 "http://mungetheoriginad.onion/index.php?cat&cid=5&sid=mungethis2userkeyblah0" "Mozilla 5.0 (Windows NT 6.1; rv:24.0) Gecko/20100101 Firefox 24.0"

at first i thought it was just somebody using a poorly configured browser, and not TBB... until i tried it myself, and my TBB 3.5 left referring page data as well

#10510 Getting a lot of system clock jumped messages new defect Medium Tor: unspecified
Description

Your help desk suggested that I create this ticket. I am running Tor 0.2.4.18-rc (git-1cda452bc136de6b) on my 64 bit Windows 7 machine. It is configured as a non-exit relay with the nick name 4U2Guess. Since updating to the 2.4 series several months ago I have been getting lots of system clock jumped messages, often several per day, and sometimes for intervals as long as 16105 seconds (4-1/2 hrs). As expected, the program starts over building new circuits, which takes a long time and reduces my average throughput dramatically. After that 4-1/2 hr gap it took 11 minutes to generate a message that Tor had finally successfully opened a circuit

I think that the problem possibly happens because some of the Tor program code 'hogs' the part of the cpu time allocated to Tor and Vidalia effectively preventing the part of the program that checks the clock from executing, sometimes for hours. While these gaps usually fall while I am away from the console and the screen saver has shut off the monitor, I do not think that is the cause, but I am not sure how to test that.

I usually have the microsoft Resource and Performance Monitor (perfmon.exe) running. While it shows a lot of interesting stuff, it does not show things that I am interpreting as evidence that Vidalia or Tor are misbehaving or being adversely affected.

Some of my system details reported by dxdiag:

Time of this report: 12/28/2013, 08:13:12

Machine name: DLC-THINKCENTRE

Operating System: Windows 7 Professional 64-bit (6.1, Build 7601)

Service Pack 1 (7601.win7sp1_gdr.130828-1532)

Language: English (Regional Setting: English)

System Manufacturer: LENOVO

System Model: 3133A9U

BIOS: LENOVO BIOS Rev: 1.0

Processor: Intel(R) Pentium(R) CPU G630 @ 2.70GHz (2 CPUs),

~2.7GHz

Memory: 6144MB RAM

Available OS Memory: 5992MB RAM

Page File: 5092MB used, 6890MB available

Windows Dir: C:\Windows

DirectX Version: DirectX 11

DX Setup Parameters: Not found

User DPI Setting: 96 DPI (100 percent)

System DPI Setting: 96 DPI (100 percent)

DWM DPI Scaling: Disabled

DxDiag Version: 6.01.7601.17514 32bit Unicode

Do you have some suggestions about how to track this problem down?

Thanks.

David C

#10518 local tor client policy remotely modified needs_information defect Medium Tor: unspecified
Description

As part of my torrc I have a MapAddress directive, which redirects all requests to a specific domain via a tor exit point (I still use ".exit"). That works satisfactory and served me well for a good while.

Today when I tried to access that domain, I received and error (domain inaccessible) and when I inspected the tor logs I found a sequence of these messages: "Requested exit point 'XXXX' is excluded or would refuse request. Closing."

This is obviously incorrect as I don't have such policy and have not restricted using that particular node (I did double-check my torrc file and since I also use default-torrc I checked that as well).

Using the atlas service I made sure that the node in question is up and running and that was indeed the case (the tor node has been running for more than 40 days - continuously).

Next, I stopped tor and restarted it (keeping the whole /var/lib/tor/* intact) and tried to access the same domain. I've got the same error message.

Finally, I stopped tor again, wiped out the entire /var/lib/tor/* directory to force my tor client to download fresh consensus and cold-boot everything. After doing that I tried to access the redirected domain again and this time I was SUCCESSFUL!

All of this leaves me to conclude that my tor client policy was remotely modified/altered, which if true, is a very serious issue, hence reporting it here.

#10519 tor uses default IP for dirport instead of the one defined in DirPort new defect Medium Tor: unspecified
Description

When setting up torland relays for ipv6 with Linus @ 30C3 we stumbled over the following error.

I have the following setup:

default ip a.b.c.d

torrc


ORPort a.b.c.33:443 ORPort [xxx6]:443 DirPort a.b.c.33:80 OutboundBindAddress a.b.c.33 OutboundBindAddress [xxx6]

If I start up tor, I get the following error message:


Your server (a.b.c.d:80) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.


I need to have the parameter

Address a.b.c.33

in my torrc in order not to get the error.

regards,

torland

#10521 TBB 3.5 for OS X v. 10.9.1 does not connect to any websites new tbb-team defect High
Description

Upon launching Tor from the TBB 3.5 in OS X version 10.9.1, the about:tor page loads with the following message: "Congratulations! This browser is configured to use Tor."

However, from that page Tor will not load any website - http or hidden service.

This issue has been verified on multiple OS X systems and is captured in the following reddit thread: http://www.reddit.com/r/TOR/comments/1tnjyf/cant_load_any_pages_with_tor/

#10527 The source for the entry "feedly" cannot be loaded and so it doesn't work new pde defect Medium
Description

I (still) have "feedly" in the list of the https-e settings, but it is not used if I am on the site. If I try to download ad view the xml source the error "Cannot be downloaded" is shown.

It worked for me in the past, but now something is broken.

#10533 Random crashes with TBB on OS X 10.9 needs_information erinn defect Medium
Description

I usually leave my Tor Browser w/tabs open for long periods of time. After a week or so, the browser crashes. Before 3.5-rc-1, I would get a warning message saying Tor Browser had crashed and an option to relaunch it. With 3.5-rc-1, the Tor Browser seems to relaunch on its own (all I see is a Tor Browser with zero extra tabs displaying about:tor).

I suspect this is more related to Firefox on OS X than Tor itself, but figured I'd open a ticket anyways.

#10534 Let's not advertise help desk emails directly needs_information mikeperry defect High
Description

Tor Browser 3.5 now advertises support help desk emails more prominently. While showing our users how to get help is a great idea, giving them an help desk address directly puts a severe load on the support assistants that could partially be avoided.

I think we should rather point them to a web page with the following:

  • List of Tor Browser known issues.
  • Frequently Asked Questions related to Tor Browser
  • Frequently Asked Questions related to Tor
  • The help desk emails

That list can be refined over time.

The ticket should probably be split in multiple things, as it concerns Tor Browser release management (for the list of known issues) and the website.

#10542 Bug: Generated a networkstatus consensus we couldn't parse. new defect Medium Tor: 0.2.???
Description
Jan 02 17:55:01.575 [notice] Time to compute a consensus.
Jan 02 17:55:01.592 [info] networkstatus_compute_consensus(): Generating consens
us using method 17.
Jan 02 17:55:01.784 [notice] Computed bandwidth weights for Case 3be (E scarce, 
Wee=1, Wmd == Wgd) with v10: G=6270726 M=1646308 E=887962 D=4408384 T=13213380
Jan 02 17:55:01.846 [warn] ID on signature on network-status vote does not match
 any declared directory source.
Jan 02 17:55:01.879 [info] dump_desc(): Unable to parse descriptor of type v3 ne
tworkstatus. See file unparseable-desc in data directory for details.
Jan 02 17:55:01.880 [err] networkstatus_compute_consensus(): Bug: Generated a ne
tworkstatus consensus we couldn't parse.
Jan 02 17:55:01.884 [warn] Couldn't generate a ns consensus at all!
Jan 02 17:55:01.885 [info] networkstatus_compute_consensus(): Generating consens
us using method 17.
Jan 02 17:55:02.078 [notice] Computed bandwidth weights for Case 3be (E scarce, 
Wee=1, Wmd == Wgd) with v10: G=6270726 M=1646308 E=887962 D=4408384 T=13213380
Jan 02 17:55:02.140 [warn] ID on signature on network-status vote does not match
 any declared directory source.
Jan 02 17:55:02.140 [err] networkstatus_compute_consensus(): Bug: Generated a ne
tworkstatus consensus we couldn't parse.
Jan 02 17:55:02.145 [warn] Couldn't generate a microdesc consensus at all!
Jan 02 17:55:02.145 [warn] Couldn't generate any consensus flavors at all.

Happens when my authority cert has expired.

Bug 1 is that it says Bug: but it happens. Bug 2 is that it's severity [err] but Tor doesn't die.

#10544 httpse-ruleset-bug - Bright Cove new pde defect Medium
Description

httpse-ruleset-bug

On the RGJ.com website, they post videos. One ruleset prevents the videos from playing correctly. You get a black screen when the ruleset below is enabled.

The video is at the link below. I disabled the brightcove ruleset and it works correctly. XML source is below

http://www.rgj.com/article/20140102/SPORTS06/301020026/Chris-Murray-West-s-breakout-performance-has-Nevada-basketball-hopeful-MWC-watch-video-

<!--

go.brightcove.com is handled in Eloqua-clients.xml.

Other Brightcove rulesets:

  • Zencoder.xml

CDN buckets:

  • brightcove04.brightcove.com.edgesuite.net
  • brightcove04
  • brightcove04.o
  • osab.vorpal.io
  • opensource.brightcove.com

Nonfunctional domains:

  • brightcove.com subdomains:
  • feeds *
  • forum
  • goku (refused)
  • investor *
  • link
  • brightcove04.o (503, Akamai)
  • status *
  • brightcove.vo.llnwd.net (400; CN: *.hs.llnwd.net, .hs. doesn't exist)
  • Reset Refused * Dropped

Problematic domains:

  • admin.brightcove.com (akamai)
  • go.brightcove.com (works; mismatched, CN: secure.eloqua.com)
  • opensource.brightcove.com (works; mismatched, CN: *.vorpal.io)
  • services.brightcove.com (504, valid cert)

Partially covered subdomains:

  • (www.) *
  • blog *
  • Some pages redirect to http

Fully covered subdomains:

  • api
  • read.appcloud
  • write.appcloud
  • developer
  • docs
  • videocloud
  • brightcove.vo.llnwd.net/d21/unsecured/media/
  • brightcove.vo.llnwd.net/d22/unsecured/media/
  • brightcove.vo.llnwd.net/e1/pd
  • brightcove01.brightcove.com/23/
  • brightcove04.brightcove.com/4/ (Akamai; 404...but somethings there...outdated?)
  • rainbow.brightcove.com.edgesuite.net

/101716/rtmp_pd

--> <ruleset name="Brightcove (partial)">

<target host="*.brightcove.com" />

<exclusion pattern="http://(?:www\.)?brightcove\.com/(?!sites/|timetrade-iframe\.html)" /> <exclusion pattern="http://blog\.brightcove\.com/(?!sites/)" /> <!--

Videos fail to load.

https://mail1.eff.org/pipermail/https-everywhere-rules/2012-July/001243.html

-->

<exclusion pattern="http://admin\.brightcove\.com/crossdomain\.xml" /> <!--

https://mail1.eff.org/pipermail/https-everywhere-rules/2013-May/001587.html

-->

<exclusion pattern="http://admin\.brightcove\.com/viewer/us20[\d\.]+/BrightcoveBootloader\.swf(?:\?|$)" /> <!--exclusion pattern="https?:c\.brightcove\.com/services/messagebroker/amf\?playerId=" /--> <exclusion pattern="http://admin\.brightcove\.com/viewer/.+\.swf(?:\?|$)" />

<!--securecookie host="\.brightcove\.com$" name="(test|vorpal-signature|vorpal-user)$" /--> <securecookie host="\w.*\.brightcove\.com$" name=".+" />

<rule from="http://c\.brightcove\.com/services/viewer/"

to="https://secure.brightcove.com/services/viewer/" />

<rule from="http://((?:api|(?:read\.|write\.)?appcloud|blog|docs|files|img|metrics|my|register|secure|signin|videocloud|www)\.)?brightcove\.com/"

to="https://$1brightcove.com/" />

<!-- At least the homepage redirects to http.

-->

<rule from="http://support\.brightcove\.com/(en/contact$|sites/)"

to="https://support.brightcove.com/$1" />

<rule from="https?:s?admin\.brightcove\.com/"

to="https://sadmin.brightcove.com/" />

<rule from="http://services\.brightcove\.com/"

to="https://secure.brightcove.com/" />

</ruleset>

#10547 [CHROME] Hanging on BBC Websites new pde defect Medium
Description

Chrome Version:  31.0.1650.63m

HTTPS Everywhere Version:  2013.10.16

HTTPS Everywhere is preventing images loading on BBC websites e.g. www.bbc.co.uk/news. Half the time it works fine and images load fine, but about half of the time the images don't load and the bottom right of the Chrome window says: "Waiting for extension HTTPS Everywhere..."

When I first load a BBC website it works fine, then after a while it stops working, but only in that specific tab. If I open a BBC website in another tab then it will work fine in that tab.

#10552 Tor Cloud instance creates 1,024 Gigabyte root drive new defect Medium
Description

Following the Tor Cloud instructions I created an Amazon AWS cloud Tor bridge and it ran fine for a month. Discovered when the first bill came and the $ were a lot higher than expected that the Amazon AMI (ami-d09403e0) that is the only Tor instance I could find is built from a snapshot that has a 1,024 gigabyte EBS store as it's root drive. Thats a lot for a t1.micro linux instance.

I followed the somewhat outdated Tor Cloud instructions and "clicked through" and did not catch and change storage size to something more reasonable (like 10 gigabytes) when I set it up. The AMI should probably be corrected and the "click next" instructions updated to make sure the drive size is reasonable.

The truly paranoid might suspect someone is actively trying to discourage people from helping Tor by creating more bridges in the Cloud.

You guy's didn't subcontract creating that AMI to the NSA did you <g>.

#10557 Https everywhere rules not working at login pages new frank.breitling@… defect Medium
Description

For example the login pages

www.gmx.de www.amnesty.org

are not switched to HTTPS. This is a serious flaw. The rules need to be corrected.

#10562 Cannot play embedded youtube videos because of HTTPS Everywhere youtube rule new pde defect Medium
Description

The embedded Youtube video on e.g. http://iloveskydiving.org/view/videos/80-seconds-of-skydiving-line-twists/ Does not play (it reports error # 2035) when the HTTPS Everywhere rule "Youtube (partial)" is enabled.

#10566 tor relay hangs for 20 seconds periodically if domain from Address can not be resolved new defect Medium Tor: 0.2.???
Description

tor version: 0.2.4.20-1 Debian sid i686

This problem started few hours ago. I checked many sources of problem. I even thought NSA delays my connections with Tor netwerk to fingerprint me :) Then I checked another tor instance, from tor browser, where no Address is specified, it worked fine.

The reason occurred to be in Down DNS server. Domain I specified for Address, was not resolved. I commented out Address, now Tor works fine!

#10567 HTTPS Everywhere breaks S3 uploader on Stickermule new pde defect Medium
Description

Uploading a file to Stickermule, e.g. http://www.stickermule.com/products/rounded-corner-stickers/configure?utf8=%E2%9C%93&variant=94&width=&height=&quantity=50, fails when HTTPS Everywhere 2014.1.3 on Chrome is enabled.

The error message in devtools is:

XMLHttpRequest cannot load http://artisan-production.s3.amazonaws.com/. The request was redirected to 'https://artisan-production.s3.amazonaws.com/', which is disallowed for cross-origin requests that require preflight.

#10573 `nsILocalFile` should be replaced with `nsIFile` in our extensions new tbb-team defect Medium
Description
Warning: Starting with Gecko 14, `nsILocalFile` inherits all functions and attributes from `nsIFile`, meaning that you no longer need to use `nsILocalFile`. If your add-on doesn't support versions older than 14, you should use `nsIFile` instead of `nsILocalFile`.

See bug https://bugzilla.mozilla.org/show_bug.cgi?id=682360 for more information.
components/tl-protocol.js
{
  var file = Cc['@mozilla.org/file/local;1'].createInstance(Ci.nsILocalFile);
  file.initWithPath(aPath);
#10575 Unused code confuses validator new tbb-team defect Medium
Description

Warning: Synchronous HTTP requests can cause serious UI performance problems, especially to users with slow network connections.

chrome/content/torbutton.js

var url = m_tb_prefs.getCharPref("extensions.torbutton.versioncheck_url");
req.open('GET', url, false);
req.overrideMimeType("text/json");
#10577 TorBrowser Health Report pane is misleading new tbb-team defect Medium
Description

If a user opens the TorBrowser (en-US) preferences and selects Advanced -> Data Choices she is greeted with:

TorBrowser Health Report
  Helps you understand your browser performance and shares data with Tor
  Project about your browser health.

  [ ] Enable TorBrowser Health Report                              Learn More

There are several things wrong with that pane: 1) The Tor Project is not collecting such information even if the Health Report "feature" gets enabled. 2) The link behind "Learn more" is pointing to Mozilla.

So, there is at least some branding wrong. Not sure if we want to be more radical and get e.g. rid of that pane altogether.

#10579 arm crashes when it connects to relay with ExitPolicy reject6 new atagar defect Medium
Description

When I connect arm to a relay with a ipv6 exit policy line in torrc like

ExitPolicy reject6 [c234:5678:a001:5d::136]:22

arm crashes with the following backtrace:

File "/usr/share/arm/starter.py", line 578, in <module>

cli.controller.startTorMonitor(time.time() - initTime)

File "/usr/share/arm/cli/controller.py", line 700, in startTorMonitor

curses.wrapper(drawTorMonitor, startTime)

File "/usr/lib/python2.7/curses/wrapper.py", line 43, in wrapper

return func(stdscr, *args, kwds)

File "/usr/share/arm/cli/controller.py", line 801, in drawTorMonitor

isKeystrokeConsumed = panelImpl.handleKey(key)

File "/usr/share/arm/cli/headerPanel.py", line 180, in handleKey

torTools.getConn().init(torctlConn)

File "/usr/share/arm/util/torTools.py", line 670, in init

self._exitPolicyChecker = self.getExitPolicy()

File "/usr/share/arm/util/torTools.py", line 1345, in getExitPolicy

result = ExitPolicy(entry, result)

File "/usr/share/arm/util/torTools.py", line 2611, in init

self.ipAddressBin += "".join([str((int(octet) >> y) & 1) for y in range(7, -1, -1)])

ValueError: invalid literal for int() with base 10: '[c234'

#10580 arm hangs when monitoring ipv6 relay on switching to connection page new atagar defect Medium
Description

I added ipv6 support for the torland relays. When using arm I noticed that on switching to the connection page arm hangs. I could recreate the issue on 2 relays and a bridge. Once it was configured for ipv6 the connection page did not work anymore.

#10583 connection_bucket_write_limit reveals used link protocol new defect Medium Tor: unspecified
Description

Plain text of TLS record can't be more than 16384 bytes. Tor before v4 link protocol used 512 bytes cells. connection_bucket_write_limit allows to flush not more than 32 cells. That was 16K limit exactly. With v4 size of cells changed, now it's 514 bytes, and connection_bucket_write_limit allows to flush 32 cells still that in result more than 16Kbytes. Passive adversary can to detect used protocol, and openssl can to create two records per one flush while second record contains not so much actual bytes.

#10586 Login problems in a forum site new tbb-team defect Medium
Description

Tor version: 3.5

Issue: After logging in at https://powdertoy.co.uk/Login.html then going to other pages in site (other than the login page), the online/logged-in status disappears (i.e., essentially not logged in again).

Note: This is unusual as I was able to login at the same site previously when using older versions of Tor (2.x).

#10600 Ruleset - expertflyer.com new pde defect Low
Description

Ruleset breaks certain forms within the website, resulting in a javascript error being thrown.

#10606 about:tor may fetch the "you're using Tor" page from browser cache new erinn defect Medium
Description

Using tor-browser-linux64-3.5_en-US.tar.xz

While doing some tests and having disabled the Tor Launcher browser addon (so the Tor gateway doesn't actually get started with the browser) I noticed:

about:tor

still says

"you're using Tor"

even if the Tor gateway isn't running at all for whatever reason.

If it's possible that about:tor gets fetched from browser cache, this page doesn't prove anything

#10607 Tor Browser Bundle 3.5 holds open files (gvfsd-metadata) new tbb-team defect Medium
Description

gvfsd-met 16712 user mem REG 254,0 32768 1320143 /media/usb/tor-browser_en-US/.local/share/gvfs-metadata/uuid-306b4a6d-65c2-4d17-8696-97cca175bf5d-ffd15c89.log

These file handles persist after closing the browser and trying to eject the removal media causing errors on dismounting because a file is still held open by a process. I think this obviously needs to be fixed as it prevents tbb being "portable" in a sense.

Another related bug is https://trac.torproject.org/projects/tor/ticket/8707 described this issue as a privacy leak when it was being stored in the $HOME directory of users now that it is stored in tors directory it presents a new problem. I had commented on the previous bug about this but decided to move it to a new bug so it could get some attention and it's not exactly the same issue.

#10609 aggregate.py unhappy with input data new aagbsn defect Medium
Description
ERROR[Sat Jan 11 06:40:03 2014]:Exception during aggregate: empty string for float()
Traceback (most recent call last):
  File "/home/bwscanner/torflow/NetworkScanners/BwAuthority/aggregate.py", line 876, in <module>
    main(sys.argv)
  File "/home/bwscanner/torflow/NetworkScanners/BwAuthority/aggregate.py", line 424, in main
    timestamp = float(fp.readline())
ValueError: empty string for float()

Could it be that we have a race here?

$ cat .git/refs/heads/master 
229e5e64680a1a3caf496ce2c1e5d064b5edd080
$ git submodule status
 4fdd2031e6b231ed4bbaa79940f67e9b8f691382 TorCtl (2013-10-16)
#10623 Vidalia standalone is a tarbomb new erinn defect Medium
Description
  1. wget https://people.torproject.org/~erinn/vidalia-standalone-bundles/vidalia-standalone-0.2.21-gnu-linux-x86_64-1-en-US.tar.gz
  2. tar zxvf vidalia-standalone-0.2.21-gnu-linux-x86_64-1-en-US.tar.gz
  3. BOOM

Is this by design? I was not expecting it and it made a mess of my home directory.

Not sure how obscure "tarbomb" is, so: https://en.wikipedia.org/wiki/Tar_%28computing%29#Tarbomb

#10626 onion won't peel needs_information erinn defect Medium
Description

i downloaded and installed TorBrowserBunudle Ver3.5. the very first time i ran it i saw this, (see the 1st attachment).
i clicked connect and saw this (see second attachment). then i was able to connect and surf, (see third attachment).

i then closed the browser and reopen a while latter, this is what i saw.(fourth attachment) entered address and saw this,
(fifth attachment). thought that i might have done something wrong during installation, so i deleted the Tor folder and tried again. got the same thing.

next thing i thought was firewall, i use zonealarm and the router has one.
i checked zonealarm and the only thing that i found in it for Tor was Plugin Hang UI for Tor Browsers. set this to trusted and allow on everything. then i checked the router/gatway. i'm kinda leary of giving out the info on that, but i will if need be.also i will say that my isp is att and it came from them. also i wonder if att might be the source of the problem, they are part of the six strike deal and they have said at the end of last year that they have technology, to track bit torrents and other stuff don't remember extactly right now. i don't know if they block or filter anything.

anyway i checked the firewall settings for the router/gateway, and didn't see anything that pertained to Tor that might stop it.
or at least i think i did, not sure.  

after doing this i reinstalled Tor, did the same thing.the next time i reinstalled, in the Tor Settings box that come up instead of connect, i clicked configure box. first time i did this i didn't know all the answers and just said no, and then it connected again. closed it and got the same as before able to connect first time unable to after closing and reopen.
so uninstall, reinstall again, this time in the i tried to copy firefox's settings. i use firefox 26, thing is that firefox is set for auto detect proxy settings for this network( see the sixth attachment).. so i had no settings to go by and just clicked out no.was able to connect the first time , but not after closing. so in what is suppose to be the Tor browser (seventh attachment), i went to options, set to auto detect proxy host, cleared out  proxy host box, port box and no proxy for box. no joy. does the same thing.( 8th attachment).


i then emailed help@torproject, told them the same thing after about about emails, in which all they said was i had the wrong version or i wasn't starting Tor right. then after i gave them more details of  the steps i did. they said they didn't know and to start a bug trac. so here i 'am. does anyone have any idea what i should do.

i really want to use Tor, but i cant, and uninstall, or should i say extract and deleteing it over and over is not a option.    

#10630 MacOS TBB 3.5 hang (due to popups?) needs_information mikeperry defect Medium
Description

I am on the OS X 10.9 running the New Tor Browser Bundle Firefox ESR 24.2.0 and the browser hanged (frozen state) three times. I could not get an example of the process because of the freezing mode that the Browser was. It seems that when it gets to some sites, the site try to send a pop up window and the browser interface refuses to accept and everything hangs from there.

#10631 LinkedIn page freezes Tor Browser reopened defect Medium
Description

The following page freezes with Tor Browser Bundle 3.5 on Linux:

http://no.linkedin.com/pub/torfinn-ingolfsen/3/6a9/981

It does not freeze for vanilla Firefox 24 ESR. Occurs on two different Linux machines (one 32-bit, one 64-bit).

Aside: There seems to be no Trac milestone, version, or component applicable to TBB. Am I reporting to the correct tracker?

#10637 Apt errors and Warnings with Tor Cloud new defect Medium
Description

Hi,

When doing apt-get update, there are some warnings/errors displayed: sudo apt-get update Get:1 http://us-east-1.ec2.archive.ubuntu.com precise Release.gpg [198 B] Get:2 http://security.ubuntu.com precise-security Release.gpg [198 B] Get:3 http://us-east-1.ec2.archive.ubuntu.com precise-updates Release.gpg [198 B] Get:4 http://security.ubuntu.com precise-security Release [49.6 kB] Hit http://us-east-1.ec2.archive.ubuntu.com precise Release Hit http://us-east-1.ec2.archive.ubuntu.com precise-updates Release Hit http://us-east-1.ec2.archive.ubuntu.com precise/main Sources Get:5 http://us-east-1.ec2.archive.ubuntu.com precise/universe Sources [5,019 kB] Get:6 http://security.ubuntu.com precise-security/main Sources [95.7 kB] Get:7 http://security.ubuntu.com precise-security/universe Sources [30.5 kB] Get:8 http://security.ubuntu.com precise-security/main i386 Packages [375 kB] Get:9 http://security.ubuntu.com precise-security/universe i386 Packages [92.5 kB] Hit http://security.ubuntu.com precise-security/main TranslationIndex Hit http://security.ubuntu.com precise-security/universe TranslationIndex Hit http://security.ubuntu.com precise-security/main Translation-en Hit http://security.ubuntu.com precise-security/universe Translation-en Hit http://deb.torproject.org precise Release.gpg Ign http://deb.torproject.org experimental-precise Release.gpg Hit http://deb.torproject.org precise Release Ign http://deb.torproject.org experimental-precise Release Hit http://deb.torproject.org precise/main i386 Packages Get:10 http://us-east-1.ec2.archive.ubuntu.com precise/main i386 Packages [1,274 kB] Ign http://deb.torproject.org precise/main TranslationIndex Hit http://us-east-1.ec2.archive.ubuntu.com precise/universe i386 Packages Hit http://us-east-1.ec2.archive.ubuntu.com precise/main TranslationIndex Hit http://us-east-1.ec2.archive.ubuntu.com precise/universe TranslationIndex Hit http://us-east-1.ec2.archive.ubuntu.com precise-updates/main Sources Get:11 http://us-east-1.ec2.archive.ubuntu.com precise-updates/universe Sources [101 kB] Hit http://us-east-1.ec2.archive.ubuntu.com precise-updates/main i386 Packages Hit http://us-east-1.ec2.archive.ubuntu.com precise-updates/universe i386 Packages Get:12 http://us-east-1.ec2.archive.ubuntu.com precise-updates/main TranslationIndex [3,564 B] Get:13 http://us-east-1.ec2.archive.ubuntu.com precise-updates/universe TranslationIndex [2,850 B] Hit http://us-east-1.ec2.archive.ubuntu.com precise/main Translation-en Hit http://us-east-1.ec2.archive.ubuntu.com precise/universe Translation-en Hit http://us-east-1.ec2.archive.ubuntu.com precise-updates/main Translation-en Hit http://us-east-1.ec2.archive.ubuntu.com precise-updates/universe Translation-en Ign http://deb.torproject.org experimental-precise/main TranslationIndex Err http://deb.torproject.org experimental-precise/main i386 Packages

404 Not Found [IP: 93.95.227.222 80]

Ign http://deb.torproject.org precise/main Translation-en_US Ign http://deb.torproject.org precise/main Translation-en Ign http://deb.torproject.org experimental-precise/main Translation-en_US Ign http://deb.torproject.org experimental-precise/main Translation-en Fetched 7,045 kB in 5s (1,237 kB/s) N: Ignoring file '10periodic.bkp' in directory '/etc/apt/apt.conf.d/' as it has an invalid filename extension N: Ignoring file '50unattended-upgrades.bkp' in directory '/etc/apt/apt.conf.d/' as it has an invalid filename extension W: Failed to fetch http://deb.torproject.org/torproject.org/dists/experimental-precise/main/binary-i386/Packages 404 Not Found [IP: 93.95.227.222 80]

E: Some index files failed to download. They have been ignored, or old ones used instead.

I use the bidge with obfs proxy.

#10643 orweb on android 4.2.2 build 51.2c new n8fr8 defect High
Description

asus memopad 10 me302c android 4.2.2 build 51.2c cannot use orbot orweb or tor. orbot and orweb fail to start tor with log as below. Has been going on for months now,although it used to work fine. Not aware of any updates to android. I blame Google for doing some auto update to some lib which broke it.

Orbot is starting... Orbot is starting... checking Tor binaries (re)Setting permission on Tor binary (re)Setting permission on Privoxy binary (re)Setting permission on Obfsproxy binary checking Tor binaries (re)Setting permission on Tor binary (re)Setting permission on Privoxy binary (re)Setting permission on Obfsproxy binary Orbot is starting... Couldn't start Tor process: Unable to start Tor: Unable to start Tor Network connectivity is good. Waking Tor up...

Orbot is starting... Orbot is starting... checking Tor binaries (re)Setting permission on Tor binary (re)Setting permission on Privoxy binary (re)Setting permission on Obfsproxy binary checking Tor binaries (re)Setting permission on Tor binary (re)Setting permission on Privoxy binary (re)Setting permission on Obfsproxy binary Orbot is starting... Couldn't start Tor process: Unable to start Tor: Unable to start Tor Network connectivity is good. Waking Tor up...

#10647 Orbot completely broken Android 4.1.2 needs_information n8fr8 defect Medium Upgrade Tor's VM Infrastructure
Description

I’ve used Orbot in the past on Android with success with different browsers, but the latest version seems to be completely broken as far as I could tell.

  1. No matter what you do no application can see Tor running, so checking the Tor status page shows that Tor is inactive even when it’s running.

The phone is rooted and I set “Transparent proxying to ON”

But not “Tor everything”

I then manually added different browsers in the add app section.

I tried in several different browsers including Orweb (marked as ‘latest’).

One browser seemed to realize it was connected to something but returned the message “There is a problem with the proxy server” and could not connect to anything.

All other browsers I tried simply ignore that Tor is running and connect directly (as seen on inspection of an IP checking site (or in Orweb that Check Tor page))

Currently this implementation of Tor on Android is completely unusable, which is a shame as it used to work great.

#10681 New Identity may temporarily leak state new tbb-team defect Very High
Description

While booking tickets to the dev meeting via https://www.kayak.com, I hit New Identity and went back to the booking site immediately, and my destination city was filled in for me in the departure field. This seems a bit odd, especially since it also did not list my departure city in the destination field, or seem to have any other itinerary information from my previous search. Unfortunately, I don't know which exit I was using, but the site also does not normally fill in the departure field for you. Attempts to reproduce the issue also failed.

I don't believe I ever typed in the destination city in the departure field either, and browser.formfill.enable is still set to false. My TBB was storing history, though.

I did have popup windows open, so this may also be a manifestation of #5309 instead of a race condition. I was unable to get it to happen again with other popups, though. New Identity did take a while to close all of my windows in the case where it happened.

There was also a report via email of a twitter account being linked after New Identity some time back that may have been this same issue, or possibly also #5309. I believe we were unable to reproduce that one as well though.

#10683 Disabling TorBirdy but not restarting is already disabling the extension assigned sukhbir defect High
Description

Torbirdy is already disabled if I only disable it in the extension tab but omit the restart (which as I am told should be necessary to disable Torbirdy entirely) AND the UI still says Torbirdy is active.

#10684 Torbirdy does not remember customized settings after enabling it again assigned sukhbir defect Medium
Description

I usually have my Torbirdy pointed to the ports used by my TBB and it is a bit annoying that I always need to adapt its settings manually after enabling the extension again.

#10688 Assertion evbuffer_get_length(bufferevent_get_input(bufev_in)) == 0 failed new defect Medium Tor: 0.2.???
Description

tor_tls_init_bufferevent(): Bug: tortls.c:2522: tor_tls_init_bufferevent: Assertion evbuffer_get_length(bufferevent_get_input(bufev_in)) == 0 failed; aborting.

Using dev-libs/openssl-1.0.1e-r2 on Gentoo.

#10689 Tor crash needs_information defect Medium Tor: unspecified
Description

Running a Tor relay on Hardened Gentoo. Kernel messages:

localhost kernel: [1398319.423356] PAX: From 86.171.123.14: execution attempt in: (null), 00000000-00000000 00000000 localhost kernel: [1398319.423363] PAX: terminating task: /usr/bin/tor(tor):1626, uid/euid: 111/111, PC: (nil), SP: 000003cf2f0f6fd8 localhost kernel: [1398319.423370] PAX: bytes at PC: ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? localhost kernel: [1398319.423391] PAX: bytes at SP-8: 000000634c8fa660 00000299070afff2 0000006300000c2d 000000634df10790 00000063516a03b0 0000000000000dd0 0000006351c7cb70 350eec57968c4300 000000634e67ec30 350eec57968c4300 0000000000001000 localhost kernel: [1398319.423451] grsec: From 86.171.123.14: bruteforce prevention initiated due to crash of /usr/bin/tor against uid 111, banning suid/sgid execs for 15 minutes. Please investigate the crash report for /usr/bin/tor[tor:1626] uid/euid:111/111 gid/egid:992/992, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0

#10692 GetTor needs official two-factor-enabled dropbox and google accounts new defect High
Description

we need official, and two-factor-enabled dropbox and google accounts in order to finish what we've started on #8542.

we're already using dropbox links in gettor reply message. this dropbox account was not created using a secure email address and is for test purpose only.

This is very important as an attacker may find a way to reset the password of that dropbox account and replace legit bundles with malicious ones.

#10701 tor-arm's man page doesn't mention --socket option new atagar defect Medium
Description

Are there other things it doesn't mention also?

Also at the bottom of 'man arm' it points me to /usr/share/doc/arm/armrc.sample but actually that should be /usr/share/doc/tor-arm/armrc.sample.gz

#10704 TBB 3.5 hangs under OS X on certain sites (possibly a JavaScript problem) needs_information erinn defect Medium
Description

With the default settings, Tor Browser Bundle for Mac 3.5 hangs under OS X on certain sites (e.g., http://www.rp.pl). The hang occurs after page load. Waiting does not help; the app does not recover after one minute of waiting, so I have to kill the Tor Browser process.

When I turn off JavaScript using the NoScript extension, the app does not hang. When the NoScript extension is disabled, it still hangs. So, the problem seems to be related to JavaScript executing on the page.

The same problem occurs on other sites.

#10720 NSIS scripts can request Windows to avoid registry writes? needs_information erinn defect Medium
Description

In https://trac.torproject.org/projects/tor/ticket/7842#comment:20, Runa mentioned that NSIS scripts can request to avoid writing to the Windows registry.

We should figure out how to do this and use those settings in the TBB Windows NSIS scripts (which live at https://github.com/moba/tbb-windows-installer).

#10726 LiveJournal rule breaks account manage & related pages needs_information pde defect Medium
Description

(Using all default settings, latest Firefox, checked for update.)

When you click 'manage account' link on LJ, it redirects to

https://www.livejournal.com/manage/account/

This URL does not work.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20
Note: See TracQuery for help on using queries.