‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Saturday, October 12, 2019 8:02 PM, grarpamp <grarpamp@gmail.com> wrote:
... There were relay boxes on offer in the past, not sure if still today. There are boxes on offer today providing local proxy into tor.
most of these were horrible; some were outright broken (e.g. trivial proxy bypass vulns) some years back i helped write a proposal for an easy to use Tor enforcing router; this would rely on a "Tor Director" application to make setup and administration easy and idiomatic for the platform users were accustomed to. main drawback with this approach is bespoke manufacture; it would be interesting to revisit this approach with rpi4 or other plentiful commodity platform. last but not least, the entire concept of "transparent Tor proxy" is flawed; you must have application level protections against de-anonymization attacks! (die in a fire, anonabox :) i can't seem to find a mirror of the old proposal. see attached instead... best regards,