Information
ID: 73
PHID: PHID-TASK-4ye5vuidy5kq6o7jl2oo
Author: JasonJAyalaP
Status at Migration Time: resolved
Priority at Migration Time: Normal
Description
Many advanced users are confused by Whonix’s socksification of default applications such as ssh, wget, curl, etc. (For stream isolation by uwt.
When they do ssh 10.152.152.11, uwt will result in actually executing torsocks /usr/bin/ssh.anondist-orig 10.152.152.11 . Therefore traffic will flow though torsocks and go a Tor SocksPort. This will fail for local connections. It will result in the following error message:
libtorsocks(12021): connect: Connection is to a local address (10.152.152.11), may be a TCP DNS request to a local DNS server so have to reject to be safe. Please report a bug to Google Code Archive - Long-term storage for Google Code Project Hosting. if this is preventing a program from working properly with torsocks
Maybe in ~/.bashrc (as terminal greeting) we should output the contents of the UWT_DEV_PASSTHROUGH variable.
Users can either use export UWT_DEV_PASSTHROUGH=1 or ssh.anondist-orig to circumvent uwt. This is documented.
Example support request: 1
$ ssh -NgD 4444 root@111.222.333.444
listen: Operation not permitted
listen: Operation not permitted
channel_setup_fwd_listener_tcpip: cannot listen to port: 4444
Could not request local forwarding.
TODO:
- run this from .bashrc
- upgrade existing .bashrc files?
Comments
JasonJAyalaP
2015-01-13 23:44:02 UTC
Patrick
2015-01-14 01:51:09 UTC
Patrick
2016-10-12 21:02:48 UTC
entr0py
2016-10-25 19:02:45 UTC
Patrick
2016-11-22 01:59:53 UTC
Patrick
2017-01-09 07:34:26 UTC