Date: Tue, 11 Dec 2018 11:54:40 -0500 From: Shawn Webb <shawn.webb@hardenedbsd.org> To: Hubert Hauser <hubot@mail.com> Cc: freebsd-hackers@freebsd.org Subject: Re: Running Tor service in the jail environment Message-ID: <20181211165440.hscrml6jtvp72hhw@mutt-hbsd> In-Reply-To: <66526968-1446-c95e-629a-fb9e1b246111@mail.com> References: <66526968-1446-c95e-629a-fb9e1b246111@mail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--sks7bk5hbsz7jm5q Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Dec 11, 2018 at 01:41:50AM +0000, Hubert Hauser wrote: > I want to torify my FreeBSD old machine purposed to mainly darknet > activities. >=20 > Should I worry about these errors during creating jail? >=20 > |Warning: Some services already seem to be listening on all IP, > (including 127.0.1.1) This may cause some confusion, here they are: root > ntpd 58008 20 udp6 *:123 *:* root ntpd 58008 21 udp4 *:123 *:* root lpd > 48726 6 tcp6 *:515 *:* root lpd 48726 7 tcp4 *:515 *:* Warning: Some > services already seem to be listening on IP 192.168.1.105 This may cause > some confusion, here they are: root ntpd 58008 23 udp4 192.168.1.105:123 > *:* Warning: Some services already seem to be listening on all IP, > (including 192.168.1.105) This may cause some confusion, here they are: > root ntpd 58008 20 udp6 *:123 *:* root ntpd 58008 21 udp4 *:123 *:* root > lpd 48726 6 tcp6 *:515 *:* root lpd 48726 7 tcp4 *:515 *:| >=20 > Should jail have access to loopback interface and public Ethernet > interface assuming that all traffic from this machine will be routed > through Tor? Is it necessary to set up a virtual network interface to > communicate between jails? I wouldn't use a jail for that. Take a look at this article I wrote about how to use Tor in the manner you're looking for: https://github.com/lattera/articles/blob/master/infosec/tor/2017-01-14_tori= fied_home/article.md Thanks, --=20 Shawn Webb Cofounder and Security Engineer HardenedBSD Tor-ified Signal: +1 443-546-8752 Tor+XMPP+OTR: lattera@is.a.hacker.sx GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE --sks7bk5hbsz7jm5q Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEKrq2ve9q9Ia+iT2eaoRlj1JFbu4FAlwP68sACgkQaoRlj1JF bu5w8Q/9GMkymyjypFrxtF8rMGdOOFWry8rHij8oR8s6tNRZ2Zs+C/f0CCBwylUl b9rinquRH38Vi8RlLZAEopp+nbsGM8Lpy/gg1Ho+IZFNoOKVkb7Yr0aSRyBivF9g oE81gd5Ec5H3CWKi78J6OX6wRhKOxY2K1ChG1miWamw9g+uBSQZR0vZ2nl2W8qws xYdaiYQZW7yWNVqvCPlHcHTWto0kaj8qsstgvb27SU2aKi/g1I15TcJyPYKXNWCh 3r4hJCP+MYTHHVn8tHdRqutCMGXeA55uDNb6MOmZFCpxGIsOPWSAL17ig8rqjFb7 iegJv7bDWUONcTl1y7cxQKOqej2etfXkQCRIl7wkF2avpIQOsBBgWcnhXUM1efNy qPcNftZWiyi6/7fSBsoPVrChdUfySg7FRVMlvb6dTzFqJl2xWU9E3/xrbO1wXI7x b45+gouueJFvCjSLyPMqVoR7sUMqTbu+KyTL1TDuoCz2it9/bNecx5LORsYtLE93 TZCKgcfaMEucdRonKDU9q9KT5YAzF0uqVwCdoHwUajNeYqFDELP7wkIrtDwGhG/h R9eA30nIVZk2OXjcH3PfOgGbXM9fPg/e7Rf/D6jtTQmZcyQxwLmfBWAMt3RadxhS XemTbxg3Q0q1kjokc/QeLC8xXvYV5kqL3oVgDqyNUJndZUq2Ez0= =gVwW -----END PGP SIGNATURE----- --sks7bk5hbsz7jm5q--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20181211165440.hscrml6jtvp72hhw>