Re: [Tails-dev] [tor-talk] Please review Tails stream isolat…

Delete this message

Reply to this message
Author: adrelanos
Date:  
To: tor-talk, tails-dev
Subject: Re: [Tails-dev] [tor-talk] Please review Tails stream isolation plans
intrigeri:
> Hi,
>
> Nick Mathewson wrote (30 Aug 2012 15:10:52 GMT) :
>> or using some kind of iptables trickery?
>
> I'm not sure how doable it is to use iptables to convert HTTP proxying
> to SOCKS, but I'd be happy to learn :)


Iptables can not translate from one protocol to another.

The closest thing you could do is using something like redsocks. [1]
With iptables you can redirect packages based on their destination IP,
destination port, linux user account, and or process/session id.
Redsocks accepts them and can forward them to another http or socks proxy.

But what's the point? It's a real hack.

A clean solution would be to add http proxy support to Tor [2] or to add
socks support to the applications. Torsocks can be used as a hack.

[1] http://darkk.net.ru/redsocks/
[2] https://trac.torproject.org/projects/tor/ticket/6060