Opened 8 years ago

Closed 8 years ago

Last modified 7 years ago

#5284 closed defect (invalid)

Operating system updates behind Transparent Proxy okay?

Reported by: proper Owned by:
Priority: Very High Milestone:
Component: Core Tor/Tor Version:
Severity: Keywords: tor-client
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Tor's transparent proxy feature is at the moment a bit complicated to take advantage off and therefore unpopular. That might change in the future, because a) documentation improves; b) in the future (depending on the outcome of this bug) there might be pre-configured, ready-to-use packages; you discussed to give TorRouter such a feature #3453 as well.

You ask the user not to use Bittorrent over Tor, as the network can not handle the load.

What about operating system updates behind a Transparent Tor Proxy?

The transparent proxy feature is great, it offers to reduce the risk of leaks and offers an anonymous torified operating system. Operating system updates behind Tor are a dilemma. It's several hundred of megabytes.

Once users have an anonymous torified operating system, they use apt-get upgrade, they won't bother with offline updates, as they are complicated and possible leaks (creates signature).

So what do you suppose to do with the Transparent Proxy feature? Leave complicated, a nice addon for powerusers? Or encourage people to extensively use it? How do you want to solve the operating system update dilemma? Can the Tor network handle the load?

Child Tickets

Change History (5)

comment:1 Changed 8 years ago by proper

I forgot to mention, it's not only about operating system updates. It's also about downloading legitimate software. No warez. "apt-get install gnome"...

comment:2 Changed 8 years ago by rransom

Resolution: invalid
Status: newclosed

Operating system updates over Tor are the main reason that transparent proxying is not recommended -- automatic update installers are likely to leak information about the software they are trying to update, whether due to malicious design or due to lack of consideration for users' location privacy.

Also, this is not a ‘defect’, ‘critical’, or an issue to be addressed by changing ‘Tor Client’. Try tor-talk or IRC.

comment:4 Changed 7 years ago by nickm

Keywords: tor-client added

comment:5 Changed 7 years ago by nickm

Component: Tor ClientTor
Note: See TracTickets for help on using tickets.