Re: Recommend webproxy service
From: nemo outis (outis_at_erewhon.com)
Date: 10/29/04
- Next message: Rocky: "Re: Stolen email"
- Previous message: Bill Unruh: "Re: help recovering from hack"
- In reply to:(deleted message) MiLi: "Re: Recommend webproxy service"
- Next in thread: H2: "wdcsun18.usdoj.gov /modules.php?....Karl Rove's White House " Murder, Inc.""
- Reply: H2: "wdcsun18.usdoj.gov /modules.php?....Karl Rove's White House " Murder, Inc.""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 28 Oct 2004 22:54:46 GMT
In article <4180DB48.A649600B@wherebefore44.ok>, MiLi wrote:
>
>
>MiLi wrote:
>>
>> nemo outis wrote:
>> >
>> > In article <417FD030.A0320865@77uui8.po>, MiLi wrote:
>> > >Just wondering if anyone knows for sure of a web proxy service,
>> > >preferably encrypted, that is genuinely secure; i.e. not a front for
>> > >security services/ TIA
>> >
>> > Your best shot is Tor (a revised onion router system). Uses a
>> > cascade of proxies (somewhat like mixmaster does for email).
>> > Fully encrypted. And Tor is free and open-source! (runs on quite
>> > a few platforms too.)
>> >
>> > About 40 servers running worldwide.
>> > (Who knows how many are compromised? Few or none, I think - but
>> > you may be more paranoid than I.)
>> >
>> > Nip on over to:
>> >
>> > http://www.freehaven.net/tor/
>> >
>> > and decide for yourself.
>> >
>> > Regards,
>>
>> Many thanks!
>
>PROBLEM :-(
>
>I installed "Openssc 0.9.7" and have also obtained ssleay32.dll. But
>when I double-click on TOR-0081.exe, which i placed in a new directory
>along with ssleay32.dll, i get error message:
>
>"The TOR-081 exefile is linked to missing export LIBEAy32.dll:3212"
>
>If I remove ssleay32 i get error message saying it can't be found!
>
>Help appreciated. Using win98se.//
Ok, here's the story:
First, there's been quite a bit of discussion about Tor
(including setup) on alt.privacy lately - it's been the hot topic
the last few weeks (you may want to do some googling of the
newsgroups)
I also recommend you use version 0.94 of Tor rather than 0.81.
But on to your problem...
You say you're using Win98 - I'm using WinXPro but I don't see
why that should be a source of problems.
Here's the drill on openssl for Windows:
First of all you want version version 0.9.7d (or later); versions
0.9.7c and earlier had a security vulnerability (buffer overflow)
that made them susceptible to DoS attacks (although it's not
really that big a deal). BTW 0.9.7e just came out (Oct 25) but,
to my knowlege, no one has made a Windows binary available yet.
So we're talking about version 0.9.7d for now.
There are two sources I know about for openssl Windows binaries
(0.9.7d):
http://vmware-svca.www.conxion.com/secured/gsx/openssl-0.9.7d.zip
(a rather odd place to look, but what the heck)
and the Win32openssl version:
http://www.slproweb.com/download/Win32OpenSSL-v0.9.7e.exe
[whoops, I'm a liar - win32openssl is now subversion e BTW site
is slow!]
I prefer the vmware version over the Win32openssl version
(although both work fine). With the zip version you just extract
the files (openssl.exe is optional) to either your Tor program
directory (my preference) or to the Windows\system32 directory.
Win32openssl does a muc h bigger "install" and puts the two dlls
in system32 by default - if you want them elsewhere you must move
them (although they'll work fine from the system32 directory)
That was your problem (as near as I can tell) - you need BOTH
ssleay32.dll and libeay32.dll on a reachable directory when Tor
is invoked. It appears from your error message that Tor/ssleay32
couldn't find libeay32.dll.
Once you get Tor working with ssleay32 and libeay32 you must
configure your browser to use a SOCKS proxy (version 4, 4a, or 5)
NOT an HTTP or HTPS proxy (that is, if you don't use privoxy
between your browser and Tor and have them talk to each other
directly).
If you use privoxy as well (as you should when surfing to prevent
information leakage with DNS lookups) then you configure your
browser to talk to Privoxy as an HTTP proxy (127.0.0.1:8118 is
the default) and Privoxy talks to Tor as a socks4a channel
(127.0.0.1:9050). Note that to accomplish this with Privoxy you
must add the line
forward-socks4a / localhost:9050 . [including the ending
"dot"]
to Privoxy's config file.
Let me know if this gets you any further along.
Regards,
PS Incidentally Tor can proxy any TCP protocol (ftp, SSH,
etc.). However with most protocols (other than http, https) you
don't use privoxy but address Tor directly so those other
applications must either support socks directly or you must
"socksify" them (using sockscap or freecap). To prevent DNS
"info leakage" be sure that the socks is (effectively) 4a (not an
easy thing for non-geeks to check BTW).
- Next message: Rocky: "Re: Stolen email"
- Previous message: Bill Unruh: "Re: help recovering from hack"
- In reply to:(deleted message) MiLi: "Re: Recommend webproxy service"
- Next in thread: H2: "wdcsun18.usdoj.gov /modules.php?....Karl Rove's White House " Murder, Inc.""
- Reply: H2: "wdcsun18.usdoj.gov /modules.php?....Karl Rove's White House " Murder, Inc.""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
