Feature #5379
Remove Polipo or replace it with Privoxy
100%
Description
https://mailman.boum.org/pipermail/tails-dev/2011-December/000732.html
Privoxy + Tor configuration examples:
- according to Jacob, the Tor project uses Privoxy when they need a HTTP proxy; he sent us a configuration file he trusts to be safe using with Tor in the "Switch to Privoxy?" thread on tails-dev (Sun, 25 Mar 2012 11:12:12 –0700) and another one, based on Liberte’s one but simplified (Sun, 25 Mar 2012 23:15:11 +0200)
- Orbot uses Privoxy
- Liberte uses Privoxy
OTOH, best would probably be to simply remove Polipo. Apart of using torsocks for apt-get and wget, what needs to be done?
APT: a rough initial test was done, that added a
tor+http
shim in/usr/lib/apt/methods
IIRC, to add torsocks in the loop. It worked fairly well, but one of the latelive-build
scripts insists on running APT, which fails in this configuration.
Subtasks
Feature #7416: Have GnuPG directly use the Tor SOCKS port | Resolved | 100 |
|||
Feature #6623: Have wget directly use the Tor SOCKS proxy | Resolved | 80 |
|||
Feature #8194: Have APT directly use the Tor SOCKS proxy | Resolved | 50 |
|||
Feature #8219: Have Totem use the Tor SOCKS proxy | Resolved | 100 |
History
#1 Updated by intrigeri 2013-07-19 09:59:27
- Subject changed from replace polipo with privoxy? to replace polipo with privoxy?
- Starter set to No
#2 Updated by intrigeri 2013-10-04 08:53:34
- Subject changed from replace polipo with privoxy? to Remove Polipo or replace it with Privoxy
#3 Updated by intrigeri 2014-04-21 08:15:10
The apt-transport-tor
Debian package might help (upstream: https://github.com/diocles/apt-transport-tor, entered sid on 2014-04-28).
#4 Updated by intrigeri 2014-11-03 10:55:01
- Status changed from Confirmed to In Progress
- Assignee set to intrigeri
- Feature Branch set to feature/5379-remove-polipo
#5 Updated by intrigeri 2014-11-05 12:18:37
In the current state of my work, the automated test suite passes, except:
- the features I’ve skipped as irrelevant: erase_memory.feature, root_access_control.feature, untrusted_partitions.feature and usb_install.feature
- the Totem feature, as Totem used to rely on
http_proxy
=> to be continued on a dedicated child ticket (Feature #8219)
#6 Updated by intrigeri 2014-11-28 00:06:11
- Feature Branch changed from feature/5379-remove-polipo to feature/6880-torsocks-2
#7 Updated by intrigeri 2014-11-28 14:31:08
- Assignee deleted (
intrigeri) - Target version changed from Hardening_M1 to Tails_1.3
- QA Check set to Ready for QA
#8 Updated by alant 2014-12-23 16:43:22
- Assignee set to intrigeri
- QA Check changed from Ready for QA to Dev Needed
I checked the diff and tested wget, APT, Totem and GnuPG that all work fine under experimental. Tickets and design doc liiks fine too. The only issue blocking the merge are useless unset lines in wget wrapper (https://labs.riseup.net/code/issues/6623#note-14)
#9 Updated by intrigeri 2014-12-24 12:12:01
- Assignee changed from intrigeri to alant
- QA Check changed from Dev Needed to Ready for QA
#10 Updated by Tails 2014-12-25 16:32:59
- Status changed from In Progress to Fix committed
- % Done changed from 70 to 100
Applied in changeset commit:090d360b4c46154da01f3286e28205fe63ba459e.
#11 Updated by alant 2014-12-25 16:47:27
- Assignee deleted (
alant)
#12 Updated by alant 2014-12-25 16:48:28
- QA Check changed from Ready for QA to Pass
#13 Updated by BitingBird 2015-02-24 22:53:16
- Status changed from Fix committed to Resolved