How to tunnel all traffic through Tor?

2

All I want is be able to use flash and javascript while using Tor (I don't intend to use it for torrents)

Normally, using flash with Tor is not recommended because firefox plugins run outside of the sandbox, so the browser's proxy settings don't apply to them, and can reveal your real IP.

But I think it should be possible to also redirect flash to the same socket as the browser, and block the other outgoing ports just in case.

Any ideas on how to do this?

HappyDeveloper

Posted 2012-06-17T02:48:59.840

Reputation: 1 393

2Flash does honor the browser's proxy settings. – user1686 – 2012-06-17T03:34:20.703

As of March 1st 2013 Flash does NOT honor the browser's proxy settings at all. – David Costa – 2013-03-01T23:40:11.407

@DavidCosta as today, does it still not? – Karolinger – 2014-02-17T00:50:19.177

@Karolinger on Linux, it still ignores the proxy settings. (Flash 11.2.202.336, Firefox 27.0.1 and FoxyProxy) – David Costa – 2014-02-17T20:51:05.557

What about doing transparent proxy? An example (in this case there is even the router with TOR but you could apply the same when using TOR locally) can be found here: http://www.evolware.org/?p=224 . You can then make mostly whatever port transparently passing through TOR.

– fede.evol – 2014-02-20T09:21:49.747

Ok, @DavidCosta, thanks. I wonder if it would be the same in Windows. – Karolinger – 2014-02-20T17:56:27.957

Answers

1

The main concern is that Flash or JavaScript, could expose personally identifiable or trackable details.

Flash could be used to store a specific type of cookies ("super cookies"), while JavaScript could be used to obtain quite a bit of browser/computer unique data (a lot of the uniqueness tests here are JavaScript based). They may also be able to obtain your IP through other means, though I admit I'm unsure about this.

However, both JavaScript and Flash should connect using your browser's proxy settings. The Tor browser bundle is optimised for privacy by disabling potentially trackable features, but it is perfectly possible to run Flash through Tor - you just have to install/enable the plugin, or use a normal browser through the Tor proxy.

Bob

Posted 2012-06-17T02:48:59.840

Reputation: 51 526

I didn't know about the super cookies, you opened my eyes. – HappyDeveloper – 2012-06-17T10:43:25.407

About proxy settings, I found this, not sure if still valid: https://coderrr.wordpress.com/2009/07/29/how-to-force-flash-or-any-program-to-use-a-socks-proxy-using-transocks-and-iptables-in-linux/

– HappyDeveloper – 2012-06-17T10:46:05.950

From that link: "The Flash plugin for Linux does not respect any browser’s SOCKS proxy settings" – HappyDeveloper – 2012-06-17T10:46:40.693

@HappyDeveloper I admit I don't know for sure what Flash actually does, but consider if you are behind a (corporate) firewall that only allows outgoing connections through a proxy. If Flash did not follow the browser or OS's proxy settings, it would not be able to connect at all... – Bob – 2012-06-25T11:47:47.653

0

You can use a tor middlebox, there are many tutorials out there. It basically consists in running the OS of your choice in a virtual machine and route all the traffic coming from the VM through tor.

The real IP address cannot be revealed because the VM has no way to discover it but there are other risks that you accept to take if you decide to use Flash or Javascript (see Bob's answer).

There's a Linux distribution that routes all your traffic through Tor by default, it's called Tails. If you really want to use Flash within it you'll have to install and enable it (with its related security risks).

David Costa

Posted 2012-06-17T02:48:59.840

Reputation: 701

-1

Just to add to what Grawity said, tor routes your connection (that is your whole connection) through tor. Its an "on or off" switch, not anything in between. Flash on the other hand is full of vagaries especially when dealing with content that is drm'ed and/or live streamed. I suspect that you are using torbrowser or the torbutton add on which is another issue entirely. I believe there is a checkbox that says something to the effect "disable flash while running tor" and "isolate javascript elements..." with all of this being said, I suspect that you are trying to out-maneuver some sort or region blocking attempt and or impersonate someone that you aren't. Any legit use of this should be allowed (reaching the BBC news website from Saudi Arabia for instance) by the beeb... On the other hand, in order to stream Sports from the bbc, the geolocation verification is much more strict and specifically looks for discrepancies in certificates and cookies within your flashplayer. To not route non-flash traffic through tor would be more convienient... Either way, this isn't the place to discuss this sort of thing. Apologies if my suspicion is misplaced, if it isn't do yourself (and the tor project) a favor and buy a vpn and use that.

Posimosh

Posted 2012-06-17T02:48:59.840

Reputation: 1

4your whole connection: No. Tor sets up a (SOCKS) proxy; anything not connecting through that proxy will go through the normal connection. – Bob – 2012-06-17T04:35:21.733

Asked: 2012-06-17T02:48:59.840

Viewed: 3 952 times

Active: 2014-02-20T08:20:04.940