Fr Robert Ballecer, SJ Very interesting KH about installing TOR on the RPI Got me thinking ab...

[G+_Bernard Bout]

Fr. Robert Ballecer, SJ Very interesting KH about installing TOR on the RPI. Got me thinking about my desktop/laptop and then I was puzzled.

 

You proved that the traffic going thru the RPI Tor to the outside world was encrypted.

 

However on my Windows Desktop I have the TOR browser installed and if I use it to browse, my ISP cannot see where I am going anyway.

 

I know this because here in Aus, certain Torrent sites are banned by the Govt. and the ISP's have to follow suit and ban them. The famous "Blackbeard" site is one such that is blocked. But using just the TOR browser I am able to browse this and other sites whereas with a normal browser I am blocked. We are almost becoming as censored as China.

 

Correct me if I am wrong, but this RPI TOR is useful if you use say an iPhone or other mobile that does not have a TOR browser, or where you install once and use many devices to connect. But for a single windows computer all I need to give me the same encryption is the TOR browser built on Firefox. It IS slow but quite anonymous.

[G+_Pat Hacker]

B

[G+_Fr. Robert Ballecer, SJ]

The problem is that the TOR browser plugin only encrypts traffic generated by your browser. Any other traffic bypasses TOR.

[G+_Pat Hacker]

Really

[G+_Bernard Bout]

Fr. Robert Ballecer, SJ Yes. After thinking about your reply, it now makes sense. The TOR browser only encrypts browsing access. Everything else is visible, whereas your TOR node encrypts everything. Thanks for that Fr. Robert and a really good & timely solution you presented.

 

I have just one more Q. In your setup script you have this:

 

** Add the following to the config file **

Log notice file /var/log/tor/notices.log

VirtualAddrNetwork 10.192.0.0/10

AutomapHostsSuffixes .onion,.exit

AutomapHostsOnResolve 1

TransPort 9040

 

TransListenAddress 192.168.42.1

DNSPort 53

DNSListenAddress 192.168.42.1

 

It is the last 3 lines I want to ask about - the ip address of 192.168.42.1. Do I use that address or some other address? If so what?

 

Also you have this:

14. Start the TOR service

-- "sudo service tor start"

 

I am not at all familiar with linux and notice that some sudo commands are with the " " and some are not.

Do I include the " before and after " or not?

TIA.

[G+_Fr. Robert Ballecer, SJ]

You can use any address you want as long as its non-routable. (i.e. 192.168.x.x)

[G+_Shooter_FPV (Shooter_FP]

I can only answer for the quotes, as I just did this this morning... all lines do not include quotes, except for one...

 

12. Save our new rules to the NAT table

"sudo sh -c "iptables-save > /etc/iptables.ipv4.nat""

 

I had to do it twice, since the first time I didn't get the usual start of the command line. I watched the video, and saw that "iptables..." had quotes.