今天的 Tetralet 又在唧唧喳喳了



« 五月 2017 »
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31        






 

在 Internet 上隱匿行蹤!(十二) Tor 的 Hidden Service

Tetralet | 22 元月, 2007 18:34

由於 Onion Routing 是個完全匿名的網路,所以有人就想把 Web 網站架在 Onion Routing 裡,以便讓人們可以放心得在 Onion Routing 裡直接匿名存取,並可以避免洩露伺服器真正的 IP。這就是 Tor 所提供的 Hidden Service。像是著名的 irc.freenode.net 站台就有提供 Hidden Service,它的位址是 mejokbp2brhw4omd.onion。而另一個常被提到的 Hidden Service 的站台就是 Hidden Wiki,網址是 http://6sxoyfb3h2nvok2d.onion/,但使用的人目前並不多。

另外,Hidden Service 也可以用來做為某些站台的中繼站,比如說替 Google 架設 Hidden Service 以便讓那些無法存取 Google 的人們能透過 Tor 直接存取 Google。

FoxyProxy + Hidden Service

由於 Hidden Service 僅能經由 Onion Routing 存取,所以如果您使用的是 IceWeasel (Firefox) ,建議您安裝在前文中介紹的 FoxyProxy 擴允套件,並設定如下:

如此就會讓 IceWeasel 自動經由 Tor 來和所有的 .onion 網址連線,那麼就能不必費心去時時手動切換 IceWeasel 的 Proxy 設定了。

用 irssi + tsocks 透過 Tor 上 irc.freenode.net

如果您用 torify (一個 Tor 附的 tsocks 前端程式) + irssi 透過 Tor 上 irc.freenode.net 時,您會得到一個警告:
*** Banned: Tor freenode is hidden-service-only (mejokbp2brhw4omd.onion) - see freenode.net/irc_servers.shtml. (2006/12/20 08.25)
請換用 Hidden Service 連上 freenode?好吧,讓我們依其指示換用 mejokbp2brhw4omd.onion 吧:
22:56 -!- Irssi: Looking up mejokbp2brhw4omd.onion
22:56 -!- Irssi: Unable to connect server mejokbp2brhw4omd.onion port 6667 [未知的名稱或服務]
DNS 無法解析?那這下子怎麼辨?

解決方案是在 /etc/tor/torrc 中設定如下:
mapaddress 10.40.40.40 mejokbp2brhw4omd.onion

並重新啟動 tor,然後您就可以用 irssi 直接連上 10.40.40.40 來存取 mejokbp2brhw4omd.onion 了。且此時是直接用指定 ip 連上 Onion Routing 的,在此情況下可以不必擔心是否會發生 DNS Leaks 的問題。

用 irssi + socat 透過 Tor 上 irc.freenode.net

在上例中是用 torify + irssi 連上 irc.freenode.net 的,由於 irc.freenode.net 有提供 Hidden Service,所以並不會發生 DNS Leaks 問題。但如果您要連上的是其它不提供 Hidden Service 的伺服器時,使用 torify 就不是什麼好主意了。

解決方案之下是換用 socat。socat 是一個連線轉發程式,它可以將任何連線以另外一種型式轉發出去。使用方式如下:
socat TCP4-LISTEN:6777,fork SOCKS4A:localhost:mejokbp2brhw4omd.onion:6667,socksport=9050 &
這樣它就會監聽本機的 6777 埠,並會將傳入的連線以 SOCKS4A 方式轉發給 localhost 9050 埠處理,並指定連線目的為 mejokbp2brhw4omd.onion6667 埠。

那麼,您就可以用以下指令和 irc.freenode.net 的 Hidden Service 連線了:
irssi -c 127.0.0.1 -p 6777 -n Tetralet
而 Debian 官方就有提供 socat 套件,直接用 apt-get/aptitude 安裝即可。
(待續)
迴響

down again!

after set like:
Run the command: sudo gedit /etc/tor/torrc
Append the line to the end of the file, (might want to add a comment): mapaddress 10.40.40.40 mejokbp2brhw4omd.onion
Save the file, and exit
Restart the Tor service: sudo /etc/init.d/tor restart
Open XChat, and go to: Settings > Preferences
Now drop down to: Network > Network setup
Set the Proxy server to be: localhost
Set the Proxy port to be: 9050
Set the Proxy type to be: Socks5
Save, and go to File > Server List, and create a new Network. I called it “Torified FreeNode”
Open up the network, and add into the server list the IP: 10.40.40.40
Enable the option: Use a proxy server
Save the Network settings, and click: Connect
------------
start xchat like below:
-------------
* *** Looking up your hostname...
* *** Checking ident
* *** Couldn't look up your hostname
* *** No identd (auth) response
* Welcome to the freenode IRC Network woaini
* Your host is zelazny.freenode.net[zelazny.freenode.net/17200], running version hyperion-1.0.2b
* *** Your host is zelazny.freenode.net[zelazny.freenode.net/17200], running version hyperion-1.0.2b
* This server was created Sat Dec 9 00:21:21 UTC 2006
* zelazny.freenode.net hyperion-1.0.2b aAbBcCdDeEfFGhHiIjkKlLmMnNopPQrRsStTuUvVwWxXyYzZ01234569*@ bcdefFhiIklmnoPqstv
* IRCD=dancer CAPAB CHANTYPES=# EXCEPTS INVEX CHANMODES=bdeIq,k,lfJD,cgijLmnPQrRstz CHANLIMIT=#:20 PREFIX=(ov)@+ MAXLIST=bdeI:50 MODES=4 STATUSMSG=@ KNOCK NICKLEN=16 :are supported by this server
* SAFELIST CASEMAPPING=ascii CHANNELLEN=30 TOPICLEN=450 KICKLEN=450 KEYLEN=23 USERLEN=10 HOSTLEN=63 SILENCE=50 :are supported by this server
* There are 15143 listed and 15155 unlisted users on 24 servers
* 33 :flagged staff members
* 14861 :channels formed
* I have 3635 clients and 0 servers
* Current local users: 3635 Max: 5448
* Current global users: 30298 Max: 36255
* Highest connection count: 5450 (5448 clients) (561065 since server was (re)started)
* - zelazny.freenode.net Message of the Day -
* - Welcome to zelazny.freenode.net in Corvallis, Oregon, US.
* - Our thanks to Oregon State University for sponsoring this
* - server!
* -
* - ZELAZNY, ROGER JOSEPH [1937-1995]. Roger Zelazny was a
* - leading light in the New Wave of science fiction. He began
* - writing in 1962. Known for such works as This Immortal,
* - Lord of Light, The Dream Master and the Amber books,
* - Zelazny is best known for his idiomatic American
* - protagonists, embodying the mythological figures of the
* - Trickster and the Hero of a Thousand Faces.
* -
* - You're using freenode, a service of Peer-Directed Projects
* - Center (http://freenode.net/pdpc.shtml).
* -
* - Freenode runs an open proxy scanner. Your use of the network
* - indicates your acceptance of this policy. For details on
* - freenode network policy, please take a look at our policy
* - page (http://freenode.net/policy.shtml). Thank you for using
* - the network!
* -
* - Freenode is a service of Peer-Directed Projects Center, an
* - IRS 501(c)(3) not-for-profit organization. Our yearly
* - fundraiser will begin soon; if you'd like to donate early,
* - please see http://freenode.net/pdpc_donations.shtml for more
* - information. Thank you for using freenode!
* -
* End of /MOTD command.
* *** Notice -- Tor is temporarily blocked due to abuse. Apologies for the inconvenience!
* Received a CTCP VERSION from freenode-connect
* You have been killed by Idoru. (collision)
* Closing Link: gateway/tor/session (Nick collision from Idoru.)
* Disconnected (Remote host closed socket)
---------
any wrong?

[回應] pluto @ 12/03/2007, 11:03

nod!

nickname and passwd both right!

[回應] pluto @ 12/03/2007, 11:04

Re: pluto

Tor is temporarily blocked by Freenode due to abuse.

[回應] Tetralet @ 12/03/2007, 12:02

cgiirc登freenode奇怪的事情

如果用http://irc.360cc.net/(dreamhost上)访问freenode的话,为什么有的channel可以进,有的却
---
Access to channel #emacs is blocked
-ChanServ- [#LFS] Welcome to the Linux From Scratch channel.
*** Access to channel #gentoo is blocked
*** Access to channel #bsdports is blocked
---
实在奇怪。请问这是怎么回事?thx

[回應] pluto @ 12/03/2007, 15:42

Re: Pluto

有些頻道的管理者會鎖 Tor、Open Proxy 或特定站台連線過來的使用者。不妨私下請教該頻道的管理者。

[回應] Tetralet @ 12/03/2007, 19:11

everything is okey!

-NickServ- This nickname is owned by someone else
-NickServ- If this is your nickname, type /msg NickServ IDENTIFY
* idoru set your hostname to "gateway/tor/x-c30925fe730be150"
* Received a CTCP VERSION from freenode-connect
-NickServ- Password accepted - you are now recognized
* services. sets mode +e
--------
woo cool!

[回應] pluto @ 13/03/2007, 18:05

authimage
驗證碼皆為英文大寫字母
僅輸入前4碼即可。後2碼是假的,欺敵用。
這是為了防制 Spam 而設計的。若造成您的不便還請見諒!
Accessible and Valid XHTML 1.0 Strict and CSS
Powered by LifeType - Design by BalearWeb