[HOME] [DOWNLOAD] [DOCS] [BLOG] [SUPPORT] [TIPS] [ISSUES] [Priority Support]

Has TOR_TRANSPROXY been disabled in recent Tor Browsers? / gai.conf / getaddrinfo


#1

It’s been awhile since I’ve used this env variable but it appears that it’s no longer supported.

Per https://www.whonix.org/wiki/Template:Tor_Browser_Remove_Proxy_Settings, I’ve tried:

  1. command line method
    TOR_TRANSPROXY=1 ./start-tor-browser.desktop
  2. adding export TOR_TRANSPROXY=1 to ../Browser/start-tor-browser
  3. export TOR_TRANSPROXY=1 (confirmed with env | grep TOR)
    Iceweasel has full connectivity when set to 'No Proxy’
    Tor Browser 6.0.2 has no connectivity when set to ‘No Proxy’

#2

Sigh. Please disregard OP. Apparmor screws me again.

Apparmor wants read access to /etc/gai.conf

I can’t make any sense of
man gai.conf
man getaddrinfo

from https://en.wikipedia.org/wiki/Getaddrinfo:

The functions getaddrinfo() and getnameinfo() convert domain names, hostnames, and IP addresses between human-readable text representations and structured binary formats for the operating system’s networking API. Both functions are contained in the POSIX standard application programming interface (API).

No idea if it’s safe to let through.


#3

TOR_TRANSPROXY=1 is not safe to begin with for reasons explained under https://www.whonix.org/wiki/Template:Tor_Browser_Remove_Proxy_Settings.

That you require the above is no surprise since Tor Browser the uses the system defaults rather than Tor socks proxy for networking. Adding that to AppArmor read access should be no additional risk.