Re: [Tails-dev] uVirtus design

このメッセージを削除

このメッセージに返信
著者: Dlshad Othman
日付:  
To: intrigeri
CC: The Tails public development discussion list
題目: Re: [Tails-dev] uVirtus design
Hi ,

I'll answer each question


intrigeri wrote (08 Oct 2013 10:32:18 GMT) :
>> On 09/13/2013 11:15 AM, intrigeri wrote:
>>> What kind of adversary is the anonymity meant to be strong against?



>>I've eventually found time to test uVirtus 2.0.


>>As far as I can tell, the default web browser goes out in the clear,
>>without any anonymity whatsoever (neither VPN nor Tor): I see no route
>>by the one through my local router, and the firewall's filter and nat
>>tables are empty. Same for DNS resolution, that goes through the
>>OpenDNS open resolvers.


>>Is it on purpose? I'm worried that users may think otherwise, after
>>reading the webpage, and then put themselves at risk. What do
>>you think?


Are you sure? have you tried Sanctuary VPN on the Desktop?


Best
Dlshad

----- Original Message -----
From: "intrigeri" <intrigeri@???>
To: dlshad@???
Cc: "The Tails public development discussion list" <tails-dev@???>
Sent: Sunday, October 13, 2013 6:06:48 AM
Subject: Re: [Tails-dev] uVirtus design

Hi,

intrigeri wrote (08 Oct 2013 10:32:18 GMT) :
>> On 09/13/2013 11:15 AM, intrigeri wrote:
>>> What kind of adversary is the anonymity meant to be strong against?


> I'm still curious about the actual anonymity threat model.


> The "uVirtus offers anonymity through the untraceable VPN connection"
> claim seems a pretty bold one to me, given the obvious problems
> one-hop proxies have when anonymity is at stake.


> Also, on https://uvirtus.org/wiki/index.php/Network_Manager I can read
> instructions to use the OpenDNS or Google DNS server. How does that
> play with these "untraceable" and "anonymity" claims?


I've eventually found time to test uVirtus 2.0.

As far as I can tell, the default web browser goes out in the clear,
without any anonymity whatsoever (neither VPN nor Tor): I see no route
by the one through my local router, and the firewall's filter and nat
tables are empty. Same for DNS resolution, that goes through the
OpenDNS open resolvers.

Is it on purpose? I'm worried that users may think otherwise, after
reading the webpage, and then put themselves at risk. What do
you think?

Cheers,
--
intrigeri
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc