Search
Search titles only
By:
Search titles only
By:
Log in
Register
Search
Search titles only
By:
Search titles only
By:
Menu
Install the app
Install
Forums
New posts
All threads
Latest threads
New posts
Trending threads
Trending
Search forums
What's new
New posts
New ads
New profile posts
Latest activity
Free Ads
Latest reviews
Search ads
Members
Current visitors
New profile posts
Search profile posts
Contact us
Latest ads
එක පැකේජ් එකයි මාසෙටම Unlimited Internet. තාමත් DATA CARD දාන්න සල්ලි වියදම් කරනවද? අඩුම මිලට අපෙන්.
sayuru bandara
Updated:
Tuesday at 12:30 PM
Ad icon
ඉන්ටර්නෙට් එකෙන් හරියටම සල්ලි හොයන්න සහ Success වෙන්න කැමතිද? 🚀 (E-Money & Success Stories)
siri sumana
Updated:
Saturday at 11:44 PM
Gemini AI PRO 18 months Offer
Hawaka
Updated:
May 27, 2026
Ad icon
koko account
DasunEranga
Updated:
May 27, 2026
Ad icon
koko account
DasunEranga
Updated:
May 27, 2026
Electronics
Vehicles
Property
Search
Reply to thread
Forums
Computers & Internet
News & Discussion
Anonymous web browsing
Get the App
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="nightshadow129" data-source="post: 1019986" data-attributes="member: 60472"><p><strong>Tor: anonymity online...<FREE Proxy network...></strong></p><p></p><p><strong><span style="font-size: 10px"><em><strong>ThIs PoSt iS bAsEd On A wIkIpEdIA aRtIcLe...</strong></em></span></strong></p><p><strong></strong></p><p></p><p><strong>Overview of "TOR"</strong></p><p><strong></strong></p><p></p><p> Aiming to protect its users against <a href="http://en.wikipedia.org/wiki/Traffic_analysis" target="_blank">traffic analysis</a> attacks, Tor operates an overlay network of <a href="http://en.wikipedia.org/wiki/Onion_routing" target="_blank">onion routers</a> that enable anonymous outgoing connections and anonymous "hidden" services.</p><p> </p><p> <strong>Anonymous outgoing connections</strong></p><p></p><p> Users of the Tor network run an <em>onion proxy</em> on their machine. This software connects out to Tor, periodically negotiating a <em>virtual circuit</em> through the Tor network. Tor employs <a href="http://en.wikipedia.org/wiki/Cryptography" target="_blank">cryptography</a> in a layered manner (hence the <a href="http://en.wikipedia.org/wiki/Onion" target="_blank">onion</a> analogy), ensuring <a href="http://en.wikipedia.org/wiki/Perfect_forward_secrecy" target="_blank">perfect forward secrecy</a> between routers. At the same time, the onion proxy software presents a <a href="http://en.wikipedia.org/wiki/SOCKS" target="_blank">SOCKS</a> interface to its clients. SOCKS-aware applications may be pointed at Tor, which then <a href="http://en.wikipedia.org/wiki/Multiplexing" target="_blank">multiplexes</a> the traffic through a Tor virtual circuit.</p><p> Once inside the Tor network, the traffic is sent from router to router, ultimately reaching an <em>exit node</em> at which point the <a href="http://en.wikipedia.org/wiki/Cleartext" target="_blank">cleartext</a> packet is available and is forwarded on to its original destination. Viewed from the destination, the traffic appears to originate at the Tor exit node.</p><p> Tor's application independence sets it apart from most other anonymity networks: it works at the <a href="http://en.wikipedia.org/wiki/Transmission_Control_Protocol" target="_blank">TCP</a> stream level. Applications commonly anonymised using Tor include <a href="http://en.wikipedia.org/wiki/Internet_Relay_Chat" target="_blank">IRC</a>, <a href="http://en.wikipedia.org/wiki/Instant_messaging" target="_blank">instant messaging</a> and browsing the <a href="http://en.wikipedia.org/wiki/World_Wide_Web" target="_blank">Web</a>. When browsing the Web, Tor is often coupled with <a href="http://en.wikipedia.org/wiki/Privoxy" target="_blank">Privoxy</a> – a filtering <a href="http://en.wikipedia.org/wiki/Proxy_server" target="_blank">proxy server</a> – that aims to add <a href="http://en.wikipedia.org/wiki/Privacy" target="_blank">privacy</a> at the application layer.</p><p> Not all Tor nodes are equal. They describe themselves with several flags: DIR, Running, Guard, Authority, Fast, Exit, Stable, Valid, V2Dir, BadExit, BadDirectory. To start with, there are Tor Authority servers which are usually Stable but do not act as an Exit Node. There are Tor Exit Nodes, and the ones with Stable IP addresses announce themselves as such.</p><p> </p><p> <strong>Weaknesses</strong></p><p></p><p> </p><p> <strong>DNS leaks</strong></p><p></p><p> As with many anonymous web surfing systems, direct <a href="http://en.wikipedia.org/wiki/Domain_Name_System" target="_blank">DNS</a> requests are usually still performed by many applications, without using the Tor proxy. Solutions such as the previously mentioned Privoxy or using the command "torify" included with the Tor distribution are possible solutions to this problem.<a href="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-2" target="_blank">[3]</a> Additionally, applications using SOCKS5 – which supports name-based proxy requests – can route DNS requests through Tor, having lookups performed at the exit node and thus receiving the same anonymity as other Tor traffic.</p><p> As of Tor release 0.2.0.1-alpha, Tor includes its own DNS resolver which will dispatch queries over the mix network. This should close the DNS leak and can interact with Tor's address mapping facilities to provide Tor hidden service (.onion) access to non-SOCKS aware applications.<a href="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-3" target="_blank">[4]</a></p><p> </p><p> <strong>Traffic analysis</strong></p><p></p><p> Steven J. Murdoch and George Danezis from <a href="http://en.wikipedia.org/wiki/University_of_Cambridge" target="_blank">University of Cambridge</a> presented an article,<a href="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-4" target="_blank">[5]</a> in the 2005 <a href="http://en.wikipedia.org/wiki/Institute_of_Electrical_and_Electronics_Engineers" target="_blank">IEEE</a> <a href="http://en.wikipedia.org/wiki/Symposium" target="_blank">Symposium</a> on Security and Privacy, <a href="http://en.wikipedia.org/wiki/Oakland%2C_California" target="_blank">Oakland, California</a>, <a href="http://en.wikipedia.org/wiki/United_States" target="_blank">USA</a>, May 8–11, 2005. They presented traffic-analysis techniques that allow adversaries with only a partial view of the network to infer which nodes are being used to relay the anonymous streams and therefore greatly reduce the anonymity provided by Tor. They have also shown that otherwise unrelated streams can be linked back to the same initiator. There have so far been no responses by the development team to this report, which on the face of it seems to destroy the whole aim of Tor.</p><p> </p><p> <strong>Eavesdropping by exit nodes</strong></p><p></p><p> In September <a href="http://en.wikipedia.org/wiki/2007" target="_blank">2007</a>, <a href="http://en.wikipedia.org/w/index.php?title=Dan_Egerstad&action=edit" target="_blank">Dan Egerstad</a>, a <a href="http://en.wikipedia.org/wiki/Sweden" target="_blank">Swedish</a> security consultant, revealed that he had intercepted usernames and passwords for a large number of email accounts, by operating and monitoring Tor exit nodes.<a href="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-5" target="_blank">[6]</a> On November 15, 2007, he was arrested on charges stemming from discovering and publishing this information. As Tor does not and by design cannot encrypt the traffic between an exit node and the target server, any exit node is in a position to capture any traffic which is not encrypted at the application layer, e.g. by <a href="http://en.wikipedia.org/wiki/Transport_Layer_Security" target="_blank">SSL</a>. While this does not inherently violate the anonymity of the source, it affords added opportunities for data interception by self-selected third parties, greatly increasing the risk of exposure of sensitive data by users who are careless or who mistake Tor's anonymity for security.</p><p> According to Egerstad, "If you analyse the traffic, it's just porn. It's kind of sad."<a href="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-Egerstad_SydneyMorningHerald" target="_blank">[7]</a> He also pointed out that Tor is less secure than many users believe. "People think they're protected just because they use Tor. Not only do they think it's encrypted, but they also think 'no one can find me'. But if you've configured your computer wrong, which probably more than 50 per cent of the people using Tor have, you can still find the person (on) the other side."<a href="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-Egerstad_SydneyMorningHerald" target="_blank">[7]</a></p><p> </p><p> <strong>Etiquette and abuse</strong></p><p></p><p> Because Tor is capable of anonymising arbitrary TCP traffic, it attracts its fair share of abuse. Routers maintain an <em>exit policy</em> of what traffic is and is not permitted to leave the Tor network through that node. It is possible to combat most major abuses of the Tor <a href="http://en.wikipedia.org/wiki/Computer_networking" target="_blank">network</a> using a combination of addresses and <a href="http://en.wikipedia.org/wiki/TCP_and_UDP_port" target="_blank">ports</a>. Potential abuses include:</p><p> Bandwidth hoggingIt is considered impolite to transfer massive amounts of data across the Tor network – the onion routers are run by volunteers using their own bandwidth at their own cost.E-mail Anonymous usage of <a href="http://en.wikipedia.org/wiki/Simple_Mail_Transfer_Protocol" target="_blank">SMTP</a> (i.e., outgoing <a href="http://en.wikipedia.org/wiki/E-mail" target="_blank">e-mail</a>) can result in <a href="http://en.wikipedia.org/wiki/Spam_%28electronic%29" target="_blank">spam</a>. Consequently the default exit policy of Tor nodes rejects outgoing connections to port 25, the port most frequently used for SMTP. </p><p> <strong>Anonymous hidden services</strong></p><p></p><p> Although Tor's most popular feature is its provision of anonymity to clients, it can also provide anonymity to servers. By using the Tor network, it is possible to host servers in such a way that their network location is unknown. In order to access a hidden service, Tor must also be used by the client.</p><p> Hidden services are accessed through the Tor-specific <a href="http://en.wikipedia.org/wiki/.onion" target="_blank">.onion</a> <a href="http://en.wikipedia.org/wiki/Pseudo_top-level_domain" target="_blank">pseudo top-level domain</a>. The Tor network understands this <a href="http://en.wikipedia.org/wiki/Top-level_domain" target="_blank">TLD</a> and routes data anonymously to the hidden service. The hidden service then hands over to standard server software, which should be configured to listen only on non-public interfaces. Services that are reachable through Tor hidden services <em>and</em> the public Internet are susceptible to correlation attacks, and consequently are not really hidden.</p><p> An added advantage of Tor hidden services is that, because no public <a href="http://en.wikipedia.org/wiki/IP_address" target="_blank">IP address</a> is required, services may be hosted behind <a href="http://en.wikipedia.org/wiki/Firewall_%28networking%29" target="_blank">firewalls</a> and <a href="http://en.wikipedia.org/wiki/Network_address_translation" target="_blank">NAT</a>.</p><p> </p><p> <strong>Central sites</strong></p><p></p><p> <em>The following links only work for web browsers that have Tor installed and enabled. Due to the nature of the network, access to links are dependent on the nodes you are connected to as well as those your tor software queries during each access attempt. As a result, it may take several tries to access these sites. Also, due to the anonymous nature of this network, sensitive material, which may be illegal in one's jurisdiction or simply distasteful, is posted more commonly than on the general Internet.</em> <ul> <li data-xf-list-type="ul"><a href="http://eqt5g4fuenphqinx.onion/" target="_blank">core.onion</a>, a simple site containing links to other .onion sites, a simple forum and a comment system.</li> <li data-xf-list-type="ul"><a href="http://624eb2rznzhtq2cz.onion/" target="_blank">The Hidden Wiki</a>, a popular wiki-based index site.</li> </ul></blockquote><p></p>
[QUOTE="nightshadow129, post: 1019986, member: 60472"] [b]Tor: anonymity online...<FREE Proxy network...>[/b] [B][SIZE=2][I][B]ThIs PoSt iS bAsEd On A wIkIpEdIA aRtIcLe...[/B][/I][/SIZE] [/B] [B]Overview of "TOR" [/B] Aiming to protect its users against [URL="http://en.wikipedia.org/wiki/Traffic_analysis"]traffic analysis[/URL] attacks, Tor operates an overlay network of [URL="http://en.wikipedia.org/wiki/Onion_routing"]onion routers[/URL] that enable anonymous outgoing connections and anonymous "hidden" services. [B]Anonymous outgoing connections[/B] Users of the Tor network run an [I]onion proxy[/I] on their machine. This software connects out to Tor, periodically negotiating a [I]virtual circuit[/I] through the Tor network. Tor employs [URL="http://en.wikipedia.org/wiki/Cryptography"]cryptography[/URL] in a layered manner (hence the [URL="http://en.wikipedia.org/wiki/Onion"]onion[/URL] analogy), ensuring [URL="http://en.wikipedia.org/wiki/Perfect_forward_secrecy"]perfect forward secrecy[/URL] between routers. At the same time, the onion proxy software presents a [URL="http://en.wikipedia.org/wiki/SOCKS"]SOCKS[/URL] interface to its clients. SOCKS-aware applications may be pointed at Tor, which then [URL="http://en.wikipedia.org/wiki/Multiplexing"]multiplexes[/URL] the traffic through a Tor virtual circuit. Once inside the Tor network, the traffic is sent from router to router, ultimately reaching an [I]exit node[/I] at which point the [URL="http://en.wikipedia.org/wiki/Cleartext"]cleartext[/URL] packet is available and is forwarded on to its original destination. Viewed from the destination, the traffic appears to originate at the Tor exit node. Tor's application independence sets it apart from most other anonymity networks: it works at the [URL="http://en.wikipedia.org/wiki/Transmission_Control_Protocol"]TCP[/URL] stream level. Applications commonly anonymised using Tor include [URL="http://en.wikipedia.org/wiki/Internet_Relay_Chat"]IRC[/URL], [URL="http://en.wikipedia.org/wiki/Instant_messaging"]instant messaging[/URL] and browsing the [URL="http://en.wikipedia.org/wiki/World_Wide_Web"]Web[/URL]. When browsing the Web, Tor is often coupled with [URL="http://en.wikipedia.org/wiki/Privoxy"]Privoxy[/URL] – a filtering [URL="http://en.wikipedia.org/wiki/Proxy_server"]proxy server[/URL] – that aims to add [URL="http://en.wikipedia.org/wiki/Privacy"]privacy[/URL] at the application layer. Not all Tor nodes are equal. They describe themselves with several flags: DIR, Running, Guard, Authority, Fast, Exit, Stable, Valid, V2Dir, BadExit, BadDirectory. To start with, there are Tor Authority servers which are usually Stable but do not act as an Exit Node. There are Tor Exit Nodes, and the ones with Stable IP addresses announce themselves as such. [B]Weaknesses[/B] [B]DNS leaks[/B] As with many anonymous web surfing systems, direct [URL="http://en.wikipedia.org/wiki/Domain_Name_System"]DNS[/URL] requests are usually still performed by many applications, without using the Tor proxy. Solutions such as the previously mentioned Privoxy or using the command "torify" included with the Tor distribution are possible solutions to this problem.[URL="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-2"][3][/URL] Additionally, applications using SOCKS5 – which supports name-based proxy requests – can route DNS requests through Tor, having lookups performed at the exit node and thus receiving the same anonymity as other Tor traffic. As of Tor release 0.2.0.1-alpha, Tor includes its own DNS resolver which will dispatch queries over the mix network. This should close the DNS leak and can interact with Tor's address mapping facilities to provide Tor hidden service (.onion) access to non-SOCKS aware applications.[URL="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-3"][4][/URL] [B]Traffic analysis[/B] Steven J. Murdoch and George Danezis from [URL="http://en.wikipedia.org/wiki/University_of_Cambridge"]University of Cambridge[/URL] presented an article,[URL="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-4"][5][/URL] in the 2005 [URL="http://en.wikipedia.org/wiki/Institute_of_Electrical_and_Electronics_Engineers"]IEEE[/URL] [URL="http://en.wikipedia.org/wiki/Symposium"]Symposium[/URL] on Security and Privacy, [URL="http://en.wikipedia.org/wiki/Oakland%2C_California"]Oakland, California[/URL], [URL="http://en.wikipedia.org/wiki/United_States"]USA[/URL], May 8–11, 2005. They presented traffic-analysis techniques that allow adversaries with only a partial view of the network to infer which nodes are being used to relay the anonymous streams and therefore greatly reduce the anonymity provided by Tor. They have also shown that otherwise unrelated streams can be linked back to the same initiator. There have so far been no responses by the development team to this report, which on the face of it seems to destroy the whole aim of Tor. [B]Eavesdropping by exit nodes[/B] In September [URL="http://en.wikipedia.org/wiki/2007"]2007[/URL], [URL="http://en.wikipedia.org/w/index.php?title=Dan_Egerstad&action=edit"]Dan Egerstad[/URL], a [URL="http://en.wikipedia.org/wiki/Sweden"]Swedish[/URL] security consultant, revealed that he had intercepted usernames and passwords for a large number of email accounts, by operating and monitoring Tor exit nodes.[URL="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-5"][6][/URL] On November 15, 2007, he was arrested on charges stemming from discovering and publishing this information. As Tor does not and by design cannot encrypt the traffic between an exit node and the target server, any exit node is in a position to capture any traffic which is not encrypted at the application layer, e.g. by [URL="http://en.wikipedia.org/wiki/Transport_Layer_Security"]SSL[/URL]. While this does not inherently violate the anonymity of the source, it affords added opportunities for data interception by self-selected third parties, greatly increasing the risk of exposure of sensitive data by users who are careless or who mistake Tor's anonymity for security. According to Egerstad, "If you analyse the traffic, it's just porn. It's kind of sad."[URL="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-Egerstad_SydneyMorningHerald"][7][/URL] He also pointed out that Tor is less secure than many users believe. "People think they're protected just because they use Tor. Not only do they think it's encrypted, but they also think 'no one can find me'. But if you've configured your computer wrong, which probably more than 50 per cent of the people using Tor have, you can still find the person (on) the other side."[URL="http://en.wikipedia.org/wiki/Tor_%28anonymity_network%29#_note-Egerstad_SydneyMorningHerald"][7][/URL] [B]Etiquette and abuse[/B] Because Tor is capable of anonymising arbitrary TCP traffic, it attracts its fair share of abuse. Routers maintain an [I]exit policy[/I] of what traffic is and is not permitted to leave the Tor network through that node. It is possible to combat most major abuses of the Tor [URL="http://en.wikipedia.org/wiki/Computer_networking"]network[/URL] using a combination of addresses and [URL="http://en.wikipedia.org/wiki/TCP_and_UDP_port"]ports[/URL]. Potential abuses include: Bandwidth hoggingIt is considered impolite to transfer massive amounts of data across the Tor network – the onion routers are run by volunteers using their own bandwidth at their own cost.E-mail Anonymous usage of [URL="http://en.wikipedia.org/wiki/Simple_Mail_Transfer_Protocol"]SMTP[/URL] (i.e., outgoing [URL="http://en.wikipedia.org/wiki/E-mail"]e-mail[/URL]) can result in [URL="http://en.wikipedia.org/wiki/Spam_%28electronic%29"]spam[/URL]. Consequently the default exit policy of Tor nodes rejects outgoing connections to port 25, the port most frequently used for SMTP. [B]Anonymous hidden services[/B] Although Tor's most popular feature is its provision of anonymity to clients, it can also provide anonymity to servers. By using the Tor network, it is possible to host servers in such a way that their network location is unknown. In order to access a hidden service, Tor must also be used by the client. Hidden services are accessed through the Tor-specific [URL="http://en.wikipedia.org/wiki/.onion"].onion[/URL] [URL="http://en.wikipedia.org/wiki/Pseudo_top-level_domain"]pseudo top-level domain[/URL]. The Tor network understands this [URL="http://en.wikipedia.org/wiki/Top-level_domain"]TLD[/URL] and routes data anonymously to the hidden service. The hidden service then hands over to standard server software, which should be configured to listen only on non-public interfaces. Services that are reachable through Tor hidden services [I]and[/I] the public Internet are susceptible to correlation attacks, and consequently are not really hidden. An added advantage of Tor hidden services is that, because no public [URL="http://en.wikipedia.org/wiki/IP_address"]IP address[/URL] is required, services may be hosted behind [URL="http://en.wikipedia.org/wiki/Firewall_%28networking%29"]firewalls[/URL] and [URL="http://en.wikipedia.org/wiki/Network_address_translation"]NAT[/URL]. [B]Central sites[/B] [I]The following links only work for web browsers that have Tor installed and enabled. Due to the nature of the network, access to links are dependent on the nodes you are connected to as well as those your tor software queries during each access attempt. As a result, it may take several tries to access these sites. Also, due to the anonymous nature of this network, sensitive material, which may be illegal in one's jurisdiction or simply distasteful, is posted more commonly than on the general Internet.[/I] [LIST] [*][URL="http://eqt5g4fuenphqinx.onion/"]core.onion[/URL], a simple site containing links to other .onion sites, a simple forum and a comment system. [*][URL="http://624eb2rznzhtq2cz.onion/"]The Hidden Wiki[/URL], a popular wiki-based index site.[/LIST] [/QUOTE]
Insert quotes…
Verification
Asuwa dahayen wadi kalama keeyada?
Post reply
Top
Bottom
Gemini AI PRO 18 months Offer
