Re: [Tails-dev] Tails 0.10-rc1 wants to be tested

Delete this message

Reply to this message
Autor: sajolida
Data:  
Para: The Tails public development discussion list
Assunto: Re: [Tails-dev] Tails 0.10-rc1 wants to be tested
intrigeri:
> Hi,
>
> Tails 0.10-rc1 was tagged in Git, built and pushed to our mirrors:
>
>     http://dl.amnesia.boum.org/tails/testing/tails-i386-0.10-rc1/

>
> It wants to be tested, tested, and tested again. Enjoy!
>
> As usual with Tails RCs, assume it's not been through our test suite,
> your mileage may vary, no warranty of any kind, etc.


Hi, I just faced an issue while using Tails 0.10-rc1: I can't access
local networks using neither ssh not Iceweasel.

1. Using SSH

We should exclude local IPs from the torifying SSH configuration in
/etc/ssh/ssh_config. See the patch in attachment.

2. Using Iceweasel

We should add an exception to the FoxyProxy list. This could be done by
adding a proxy before the main Tor one that does a whitelist for local
IP addresses to have a direct Internet connection.

What do you think?

- --
sajolida
From 589cd729e6f3b41e9ef72da28d5d1e87610e603c Mon Sep 17 00:00:00 2001
From: Tails developers <amnesia@???>
Date: Mon, 2 Jan 2012 17:11:40 +0100
Subject: [PATCH] Do not torify local SSH connections

---
 config/chroot_local-includes/etc/ssh/ssh_config |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)


diff --git a/config/chroot_local-includes/etc/ssh/ssh_config b/config/chroot_local-includes/etc/ssh/ssh_config
index 0128702..7454ff1 100644
--- a/config/chroot_local-includes/etc/ssh/ssh_config
+++ b/config/chroot_local-includes/etc/ssh/ssh_config
@@ -1,4 +1,4 @@
-Host *
+Host !192.168.?.? !10.?.?.? !172.16.?.?

 Ciphers                 aes256-ctr,aes256-cbc,aes128-ctr,aes128-cbc,3des-cbc
 MACs                    hmac-sha1,hmac-md5,hmac-ripemd160
-- 
1.7.7.3