Opened 7 years ago

Last modified 20 months ago

#7444 new defect

SSL Observatory unable to detect tor installation on PC-BSD

Reported by: cypherpunks Owned by: pde
Priority: Low Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version:
Severity: Normal Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

I'm running PC-BSD 9.2 RC2 with Firefox ESR 10.0.9, HTTPS-Everywhere 3.0.3 and Tor 0.2.2.39, all installed with the default package manager (App cafe).
In SSL observatory, the option to report certificates only via Tor is greyed out.

Child Tickets

Change History (10)

comment:1 Changed 7 years ago by arma

I assume that's because https-everywhere is looking for torbutton running in the same firefox, not a tor package?

You might prefer the Tor Browser Bundle.

comment:2 Changed 7 years ago by pde

Priority: normalminor

HTTPS Everywhere tries to find Torbutton in the browser, and also probes localhost:9050. Perhaps PC-BSD's Tor listens on a different default port?

You can manually work around this by going to about:config, searching for "observatory", setting use_custom_proxy to True and setting proxy_host, proxy_port, and proxy_type to appropriate values for your Tor instance.

comment:3 Changed 7 years ago by pde

(after you've done that you might need to restart the browser before it un-greys the option in the Observatory preferences menu)

comment:4 Changed 7 years ago by pde

Also I think the available values for proxy_type are documented here: https://developer.mozilla.org/en-US/docs/XPCOM_Interface_Reference/nsIProxyInfo , with the exception of "direct", since that value is used for submissions without Tor.

comment:5 Changed 7 years ago by cypherpunks

Tor uses port 9050:

[m@pcbsd-8973] ~% sockstat | grep 905
m        tor        27059 8  tcp4   127.0.0.1:9050        *:*
m        tor        27059 10 tcp4   127.0.0.1:9051        *:*
m        tor        27059 44 tcp4   127.0.0.1:9051        127.0.0.1:44422
m        vidalia    27052 21 tcp4   127.0.0.1:44422       127.0.0.1:9051

There's no TBB for FreeBSD or PC-BSD.

comment:6 in reply to:  5 ; Changed 7 years ago by arma

Replying to cypherpunks:

There's no TBB for FreeBSD or PC-BSD.

Actually, apparently the Linux one works fine: see #7001 (I assume you need some sort of linux compatibility something installed.)

comment:7 in reply to:  6 Changed 7 years ago by cypherpunks

Replying to arma:

Replying to cypherpunks:

There's no TBB for FreeBSD or PC-BSD.

Actually, apparently the Linux one works fine: see #7001 (I assume you need some sort of linux compatibility something installed.)

Well, I'll see later.
Anyway, it doesn't solve the problem for non-TBB use of Firefox...

comment:8 Changed 7 years ago by pde

I agree TBB isn't really the right answer here. We want Tor to be the transport for the Observatory during non-Tor browsing.

Cypherpunk(s): Can you get a trace with wireshark/tshark/tcpdump to see whether Firefox is trying to connect to localhost:9050, and if so, what the conversation looks like?

comment:9 Changed 7 years ago by pde

(The connection to localhost:9050 should happen some time after Firefox is started if you're running HTTPS Everywhere 3.0.x or 4.0development.x.)

comment:10 Changed 20 months ago by teor

Severity: Normal

Set all open tickets without a severity to "Normal"

Note: See TracTickets for help on using tickets.