Security :: Verify FF Add-on Is Using Tor/Privoxy?
Mar 10, 2010
Mint 8 (Ubuntu 9.10, Karmic Koala), FF 3.5.8 with noscript, betterprivacy, ghostery, torbutton Complete newbie regarding wireshark or netactview but I was advised to try one of these to determine if a Firefox add-on was using Tor.
View 6 Replies
ADVERTISEMENT
Aug 22, 2010
Currently i am using the tutorial from Bodhi to setup Dansguardian to work togather with Privoxy and it worked fine.Then i installed Polipo to work with Privoxy which work as intented with additional forward the port to Privoxy.
Code:
Is it possible to run Polipo together with Privoxy? Yes. In order to get the privacy enhancements of Privoxy and much (but not all) of the performance of Polipo, you should put Polipo upstream of Privoxy.
In other words, you should:
point your web browser at Privoxy (localhost:8118);
point Privoxy at Polipo (put forward / localhost:8123 in the Privoxy config file);
use no parent proxy in Polipo.
Now i tried to use Dansguardian togather with Privoxy and Dansguardian with the same configuration but fail.
View 6 Replies
View Related
May 6, 2010
I'm using Ubuntu 10.04 and for some reason, privoxy just won't start properly on startup. I see privoxy is there when I run 'ps -A', but Firefox says that it is refusing connections. When I run 'sudo /etc/init.d/privoxy restart', it restarts and everything is peachy. But for some reason, it just won't start properly on boot
View 1 Replies
View Related
Apr 15, 2010
In INSTALL I can see:
Quote:
to build from either unpacked tarball or CVS source:
autoheader
autoconf
./configure # (--help to see options)
make # (the make from GNU, sometimes called gmake)
su # Possibly required
make -n install # (to see where all the files will go)
make -s install # (to really install, -s to silence output)
code....
I think that trouble is in autoheader. I don't now does src2pkg (2.1) support it.Is it impossible to build a package of privoxy with src2pkg?
View 9 Replies
View Related
Dec 28, 2010
mpg123 suddenly started playing a police siren occationly. I checked the process once I heard it, and root was the process owner. How could this happen? Have someone broke into my computer? If so - how could I verify an attack? I run Ubuntu 9.10.
View 2 Replies
View Related
May 28, 2011
I searched Using my User Name and did not find the post post made for this problem.Still the search using the User name does not return the first post or this.
View 4 Replies
View Related
May 1, 2010
I ticked the box for this when I installed Lucid, but how can I verify that it's actually performing the encryption/decryption?
View 4 Replies
View Related
Apr 18, 2011
Is there any way to verify if packets being trafficked over a certain port are valid for the service you want to use this port for?
One obvious example that probably clarifies my question:
When I open port 443 (outgoing or incoming) for https/ssl traffic, I don't want this port to be used for say openvpn traffic.
Thus: when someone wants to surf to a website with https, it should be ok but if someone wants to connect to his home openvpn server over that same port, it should be blocked.
View 5 Replies
View Related
Apr 14, 2010
this is not on the master node, but rather the node that is being replicated to. The problem occurs when i query using ldapsearch or an `getent passwd` EG ldapsearch:
Code:
[root@cakeslave ~]# ldapsearch -x -b 'cn=Christian Unger,ou=People,dc=example,dc=org' -D "cn=replica,dc=example,dc=org" -H ldaps://cakeslave.example.org -w cakewalk
ldap_bind: Can't contact LDAP server (-1)
additional info: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
[code]....
The cacert.pem in /etc/ssl/certs and /etc/openldap/certificate are identical (check using md5sum). I have done an strace and found that it looks at /etc/pki/tls/cert.pem .
View 6 Replies
View Related
Feb 3, 2011
Since I cannot upgrade Adblock Plus anymore because iceweasel is too out of date for the new versions, I am trying to give privoxy a try. I am following the howto Block Ads & Fast Caching w/Privoxy +Squid without success. I am always receiving the error:The proxy server is refusing connections Iceweasel is configured to use a proxy server that is refusing connections.Check the proxy settings to make sure that they are correct.
I added these lines to /etc/privoxy/config
enable-remote-toggle 1
enable-edit-actions 1
permit-access 127.0.0.1
Moreover, I have edited the /etc/hosts file to block urls providing adverts and anything I wanted rejected.
View 7 Replies
View Related
Mar 5, 2016
I am at a loss as to what to do to get Privoxy working. I have tried it using Ice Weasel and Konqueror and end up with the same problem: after I set the configuration in the browser, I cannot access anything on the internet.
View 6 Replies
View Related
Mar 29, 2011
I try setting up Privoxy but I keep getting this error and I don't know how to fix it. I try downloading other network programs and at the end of the download Ikeep getting this error.
View 2 Replies
View Related
Jun 14, 2011
Have seen this post and was wondering why would that be so.
Quote:Originally Posted by DaveG
you do not want to download software through the privoxy filters - they could corrupt the data.
Privoxy is supposed to either block or allow specific adverts, why would that corrupt a single file, like an .exe or .tar.gz?
View 1 Replies
View Related
Sep 15, 2010
So I was reading this thread on internet privacy and decided to 'upgrade' my system. I installed privoxy and tor and chained them from squid so it looks like this: iceweasel >> squid >> privoxy >> tor. All is working well except when I go to edit my privoxy default.action file I get a fatal error. I've got version 3.0.9-1 The original line in the newly installed default.action file. #+hide-referer{forge}
I edited it by simply removing the #. +hide-referer{forge} Then:su -c '/etc/init.d/privoxy force-reload'And I get this in the logfile.Sep 14 16:41:36.260 Privoxy(7f4fa64756e0) Fatal error: can't load actions file '/etc/privoxy/default.action': first needed line (361) is invalid: +hide-referer{forge} I've even copy/pasted from the manual and to no avail.Have I been looking at to much text for the last two days?What am I missing?
View 1 Replies
View Related
Nov 7, 2009
I am running a basic squid + privoxy combo for web caching/filtering proxy and it works fine. I'm basically running a stock config w/ a few minor edits to allow the relevant hosts access etc.now I am trying to find an easy way to specify privoxy to not filter a specific site (which it breaks). I have tried wading through the privoxy manual + google but I find the config file incredibly complicated. Are there any experts out there who can tell me: what is the easiest way to tell privoxy to 'pass through' a specific website?
View 2 Replies
View Related
Aug 23, 2010
I am completely fed up trying to do it. I had no problems with 11.0. It refuses to start up during boot like tor. I added tor to the kde start menu and it works just fine after boot. Privoxy refuses to start up during boot. I have to go into SU mode in terminal, then it works. I need to be able to start Privoxy the same way. I tried everything from chown / chmod commands, and it made no difference. I have it set for 777, and my name along with root. I also added the group privoxy to my user ID. I need the computer to disregard that it is a root program.
View 2 Replies
View Related
Feb 24, 2010
Long-time linux user, new to Ubuntu (mainly a gentoo user). I need to get tor and privoxy up and running for a less computer-capable user. I installed Tor and Privoxy, configured them (apparently correctly) and they both appear to work just fine when I start them manually from their init scripts:
sudo /etc/init.d/tor start
sudo /etc/init.d/privoxy start
However, I cannot seem to get privoxy to start up properly when the machine boots. Tor starts up and waits patiently, but privoxy is dying or getting killed for some reason I can't understand, and on Ubuntu, have no idea how to diagnose. There's no privoxy process after booting, and the init.d script reports status: not running. I have the startup scripts for both Tor and Privoxy linked to in all the relevant runlevels. I played with the order thinking it might be a dependency thing. Hell, I even put a line in rc.local to try and force it to go. But no matter what I do, I can't seem to get the privoxy service to start for me any way but by manually typing 'sudo /etc/init.d/privoxy start' in a terminal, after logging in.
1. Help me get privoxy to auto-start during init
2. OR Help me figure out how to figure out how to get privoxy to auto-start during init. On Gentoo, all of the init scripts are listed on the screen during init as they run, and you can even run through them interactively by pressing I during startup. I have no idea how to do this on Ubuntu. I modified the kernel line to remove the splash screen, but the information Ubuntu puts on the screen during init is quite haphazard. How do I figure out what's going wrong with the privoxy init script?
View 1 Replies
View Related
May 15, 2010
I am running karmic on a laptop. I recently changed iptables to drop all new incoming packets (not the related or established ones) on all ports. I was not running a proxy, so this worked fine. More recently I got v 3.0.13 of privoxy with apt-get and looked through the config file. I changed the default port in the privoxy config to 8080 and kept the ip at 127.0.0.1. Then I changed the Firefox settings to use a HTTP proxy at 127.0.0.1 with port 8080. when I try to run privoxy with the command: privoxy /etc/privoxy/config , the terminal outputs no errors. Then when I try to access a webpage through firefox the page will not load, but firefox doesn't display any reason for it. I don't really even know if privoxy is running because when I check the logfile (after having uncommented the logfile line in the privoxy config file) it is blank. I don't know much about networking, but I was wondering if someone could tell me why this is happening? Well that was a bit dumb of me. I just had to allow new packages in from localhost.
View 2 Replies
View Related
Apr 27, 2010
I installed and configured privoxy - everything worked nicely when I run it manually by
Quote:
/etc/init.d/privoxy start
After restarting the computer privoxy wasn't start automatically. I checked the links in /etc/rcX.d - are o.k. I installed sysv-rc-conf - shows that for runlevel 2 - 5 privoxy is running. I changed /etc/rc2.d/S20privoxy to /etc/rc2.d/S99privoxy - to start that process at the end. I installed Boot-Up Manager. Privoxy is marked for start automatically. I added in /etc/rc.local line: /etc/init.d/privoxy start
Privoxy still doesn't turn on at boot time and every time I must start it manually. Could you tell me how could I repair this ?
View 4 Replies
View Related
Jul 18, 2010
I'm trying to setup iptables to send web (tcp?) traffic through Squid and Privoxy transparently (to save having to setup everything per browser and hoping they honor their settings). I know I have done this before but I can't find the old config nor remember the exact options needed to do this.What I am wanting specificially is for Privoxy to grab the data as it leaves the browser, do its thing then pass it on to Squid before sending it down the line, then doing the same incoming (Privoxy -> Squid -> requesting app).
View 1 Replies
View Related
Apr 26, 2011
Every time I try to set to standard.(cautious|medium|advanced) I get Apr 26 17:20:59.960 7f7faff15700 Fatal error: can't load actions file '/etc/privoxy/match-all.action': invalid line (9): { +standard.Cautious } /
or something similar. No additional help is available in the docs. So i try to use http://p.p (i.e. config.privoxy.org), and click on [URL]... expecting to get the three mode buttons. It just returns to p.p.
I already set the three edit vars to allow remote editing etc.So I looked in the top 15 Google hits for "Privoxy standard.Cautious". Apparently, nobody else knows how to do this either even tried launching firefox in root. but I'm getting kind-of frustrated with the writers/maintainers of Privoxy 3.
View 4 Replies
View Related
Mar 26, 2011
I have been trying to figure out some way of installing Squeeze with some assurance that the new installation won't be pwned from Day One--- and so far I have had no success. Even worse, I have been having some strange problems using SSL in my existing Lenny installation which has been further hampering my efforts. And which may be consistent with the hypothesis that I am in fact being subjected to an on-going MITM attack when I try to install Squeeze over the net. This possibility has encouraged me to keep trying to take reasonable steps to ensure that key binaries in my forthcoming Squeeze have not been tampered with by the time I finish the initial installation. I am seeking steps that can be taken by an average user willing to follow directions written by an expert user.
I found a very interesting recent Debian Security mailing list thread which articulates some of the same concerns that I tried to express several weeks ago. The scenarios which concern Naja Melan and myself (and ???) should not simply be dismissed as too implausible to be worth trying to prevent. I think Melan's thread is rather prescient in view of "Comodogate":http://arstechnica.com/security/news/20 ... estion.ars https://www.eff.org/deeplinks/2011/03/i ... lent-https http://www.wired.com/threatlevel/2011/0 ... ompromise/ http://www.theregister.co.uk/2011/03/23 ... forgeries/ http://blogs.comodo.com/it-security/dat ... ompromise/ http://www.techeye.net/security/firefox ... rtificatesOne of the fake certs acquired by the bad guys would have enabled them to mount a MITM attack on anyone trying to install updates to Iceweasel/Firefox add-ons via addons.mozilla.org, which I think certainly suggests that the alleged state actor intended to tamper with at least some software.
(EDIT: important new developments in that story:http://erratasec.blogspot.com/2011/03/c ... festo.html http://www.thetechherald.com/article.ph ... y-attacker http://www.theregister.co.uk/2011/03/28 ... aks_cover/ http://arstechnica.com/security/news/20 ... o-hack.arsBriefly, an anon who claims to be Iranian and who claims to have acted alone, and who suggests that he has some connection with political dissidents inside Iran, has claimed to have been the Comodo affiliate cracker. At least one pentester finds the claim plausible. It woudl explain several aspects of the breach which did not appear consistent with Comodo's conclusion that the breach was sponsored by the Iranian government.)
View 5 Replies
View Related
Jun 16, 2011
As part of the troubleshooting process for my web application, I was told to find out through PHPinfo if PHP is running in CGI mode. I have my phpinfo page up, but I'm not sure what I should be looking for.
I'm running opensuse 11.4
View 1 Replies
View Related
Sep 1, 2011
I have a large file that I copied. (very large).What is the best way to verify the copy is an exact match?md5sum or is there better?
View 1 Replies
View Related
Dec 12, 2009
In an effort to reduce/eliminate adware, I installed Provoxy from the F12 repos using yumex. The config file is unchanged except for the addition of the this line: forward-socks4a / 127.0.0.1:9050 .
I note that rpm placed the following (/etc/rc.d/init.d/privoxy), and that in that file are the following lines:
I seem to recall that network manager was changed somewhat to allow those using static ip addressing to NOT do dhcp on boot. Could this be the reason for the non-starting of the privoxy service on boot? Sometimes it starts on boot, and other times I must manually start it in Gnome's System->Services.
If these lines and the network starting is the problem, how do I fix it? Can I comment out these lines in this file, or is there somewheres else where I should be looking?
View 7 Replies
View Related
Dec 7, 2009
I'm having trouble understanding how to verify the download of the Fedora iso-files. know how to do this on a Windows system. I have been looking in the help section for checking the iso-files, but I'm not sure where to find the right hashes, like MD5, SHA1, and etc.
View 6 Replies
View Related
Jan 8, 2011
I am trying to get openssl to verify a certificate. I will walk you through what I have done so far.
1. openssl genrsa -des3 -out connect.mydomain.com.key 2048
2. openssl req -new -key connect.mydomain.com.key -out connect.mydomain.com.csr
3. Bought an SSL from GoDaddy.
4. Submitted my CSR
5. Downloaded sf_bundle.crt (CA File I presume)
6. Downloaded connect.mydomain.com.crt
Now I can do the following: [root@server tls]# openssl verify -CAfile sf_bundle.crt connect.mydomain.com.crt
connect.mydomain.com.crt: OK This is specifying the CAfile.
[Code]...
View 2 Replies
View Related
Aug 26, 2010
I have an OCZ Vertex SSD...the 30GB variety. recently I upgraded my kernel to 2.6.33. I have read that that is all that is needed in order for trim to just start working. Is there a way that I can verify that TRIM is working?I'm debating getting the Vertex2 100GB model because I love my SSD now, but would love to have a little more storage space. I just don't want to buy it without TRIM working.
View 4 Replies
View Related
May 26, 2010
I want to verify the root password. I am using rPath linux and my use case is like this: 1. There is screen in my application through which user can change the root user's password. He provides 2 information in the screen
i. existing password
ii. new password
2. I use a shell script in the back end that uses the "passwd" command to do it. And it doesn't ask for the existing password. But, my business use case is if user enters wrong existing password, I should not reset the password and throw some error message. How do I verify the existing root user's password? And also keep in mind that I am already in that linux box (logged in as root). Also let me now if there is any smarter way of doing it other than "passwd" command.
View 4 Replies
View Related
Apr 27, 2010
If I send data via scp, will scp automatically verify that the received data matches the sent data? I can do it manually with md5sum, but is that necessary?
View 3 Replies
View Related