wiki:doc/FAQUnanswered

Version 143 (modified by trac, 9 years ago) (diff)

--

This is a list of questions people wish were answered in the [:../TorFAQ]; please add some more. Better yet answer one and move it to [:../TorFAQ]. Finally you can vote for a question to be answered by incrementing the number after the question in parens.

Please do not report bugs here; instead, use the bug tracker. Soon, we'll designate one of the proposed bug servers as official, and you'll be able to post bugs there too.

Also, this is not the place for random it doesn't work or how do I do foo questions. Support questions are really better asked and answered on the or-talk mailinglist. Also, always a good read: How To Ask Questions The Smart Way.

Unanswered FAQ Questions

Is there a way to minimize Tor to the system tray, and/or run it hidden (maybe as a service?) in Win32?

How does Tor work with tabbed browsing, say with Firefox? Do these requests all follow the same circuit through the Tor network? Can an eavesdropper link a user across all sites opened simultaneously in tabs?

Is there a list of default exit ports? Can requests be made to add new default exit ports? If so, to whom? Example: Port 587 [with SSL/TLS] is used by some email providers to allow smtp use by those whose ISPs are blocking smtp port 25.

Tor works fine for POP3 email. But, Whistle-blowers and others who need anonymous political free speech must have reliable SSL smtp email services. How can Tor be used by them when *all* smtp ports, eg, ports 25, 465, 587, etc are now blocked by Tor exit servers? Blocking port 25 helps to defeat spammers, but the smtp SSL/TLS ports are not generally not used by them. Is there any solution with Tor to help the free speech folk and others who need to use secure, reliable smtp services?

Can Tor be used in a network that has NO DEFAULT ROUTE? The only access method from this network is to use a traditional proxy. Is there a way to chain proxies so that TOR requests are sent outbound via the standard proxy? (votes: 1)

Can I help? (votes: 2)

I've got a bug, now what? (votes: 2)

So I'm totally anonymous if I use Tor? (votes: 1)

What attacks remain against onion routing? (votes: 1)

What projects are comparable? (votes: 1)

How does Tor relate to the Freedom Project? (votes: 1)

Is there any way to forward an ident response via TOR so that the ident doesn't come back as whatever the end server wants, but your normal response? (votes: 1)

How can I uninstall tor? (votes: 1)

I have legal questions about running Tor. Is there anybody I can contact? (votes: 1)

If I set up Tor to only act as a router node (reject *:* in torrc) can I still be a contact point for hidden services?

Answers that won't go on the FAQ

Cannot resolve Foo.onion/Resolve requests to hidden services not allowed

tor-resolve doesnt seem to work, i get this: connection_ap_handshake_process_socks(): Resolve requests to hidden services not allowed. Failing. from the copy of tor running locally. Please help!

(from original questioner: thank you. I got the mistaken idea that this would work because it is suggested in the 'how to torrify an application' article on this wiki. It makes more sense now. Someone who understands better might want to upate that document)

This question is answered; see 'How Do I Access Tor Hidden Servers.' You get this message when you try to use tor-resolve to resolve the address of a hidden service. But hidden services are hidden - they don't *have* an IP address you can use. Instead, you need to pass the hostnames to Tor directly.

Clock Skew

My system clock is behind 3 days and I don't have permission to change it. Therefore all the certificates are invalid. Is there a runtime option to skew the time?

This should not a problem as of 0.0.9pre6.

Does not connect to port xyz

All of a sudden, Tor will no longer let me connect to my distant smtp server. The smtp port used is 587 and the connection is SSL. Why is this now happening?

587 isn't in the default exit policy. The tor node known as bollox had an accept everything policy so your port 587 requests would have always gone through that. As bollox is no longer around there are no exit nodes that allow port 587. If you control this smtp server, try changing it's port number to something over 1024.

Debian and how to use the package management system

Also would recomend posting default config files for debian online since apt will not reinstall them if they are removed (/etc/init.d/tor and /etc/torrc for example)

Answer: RTFM. dpkg differentiatea between two states of package removal. There's remove, which will just remove the normal files a package comes with, and there's purge, which will remove configuration files also. Changes to your configuration (like you removing them) are kept over a remove/install cycle. If you want them to installed anyway, you should install with {{dpkg --force-confmiss --install tor...deb}} or just purge tor (which will delete /var/lib/tor with its keys if you are a server!), and then install it again.

.

After uninstalling everything then reinstalling on debian (using apt-get of course) nothing loads in a browser or anything, eventually a 503 will come up. Tor is running and privoxy is running, both correctly configured(I think). If this is a configuration problem, where can I find more information about configuration in debian?

Answer: Duh. Have you checked out /etc/tor? What about /var/log/tor and /usr/share/doc/tor? Why do you think it would be any different than on other OSs?

Privoxy config

Similar to above, on brand new install of sarge with tor and privoxy browser, gaim, etc will spend a long time trying to connect eventually failing with 503, if tor is not running a 503 is instant.

Answer: Privoxy by default does not allow CONNECT to ports other than 443. Fix your privoxy config.

{{{weasel@galaxy:/etc/privoxy$ grep limit.con default.action | grep -v '#' +limit-connect{1-} \ }}}

(If someone writes a proper question, this might actually go into the FAQ)