tor-webwml.git

@@ -174,7 +174,7 @@ something as simple as allowing *google* to go via Non-Tor will still cause you

 in all the logs of all websites that use Google Analytics!  See <a

 href="http://foxyproxy.mozdev.org/faq.html#privacy-01">this question</a> on

 the FoxyProxy FAQ for more information.

-

+ </p></li>

  <li>NoScript

  <p>

  Torbutton currently mitigates all known anonymity issues with Javascript.

@@ -193,18 +193,21 @@ the FoxyProxy FAQ for more information.

 <strong>Which Firefox extensions do you recommend?</strong>

 <ol>

- <li><a href="https://crypto.stanford.edu/forcehttps/">ForceHTTPS</a><p>

+ <li><a href="https://crypto.stanford.edu/forcehttps/">ForceHTTPS</a>

+	<p>

 Many sites on the Internet are <a

 href="http://www.defcon.org/html/defcon-16/dc-16-speakers.html#Perry">sloppy

 about their use of HTTPS</a> and secure

 cookies. This addon can help you ensure that you always use HTTPS for sites

 that support it, and reduces the chances of your cookies being stolen for

 sites that do not secure them.</p></li>

- <li><a href="https://addons.mozilla.org/firefox/addon/953">RefControl</a></li>

+ <li><a href="https://addons.mozilla.org/firefox/addon/953">RefControl</a>

+	<p>

 Mentioned above, this extension allows more fine-grained referrer spoofing

 than Torbutton currently provides. It should break less sites than Torbutton's

 referrer spoofing option.</p></li>

- <li><a href="https://addons.mozilla.org/firefox/addon/1474">SafeCache</a> <p>

+ <li><a href="https://addons.mozilla.org/firefox/addon/1474">SafeCache</a>

+	<p>

 If you use Tor excessively, and rarely disable it, you probably want to

 install this extension to minimize the ability of sites to store long term

 identifiers in your cache. This extension applies same origin policy to the

@@ -22,13 +22,13 @@ href="https://bugzilla.mozilla.org/show_bug.cgi?id=218223">218223</a> currently

 prevent this.)</p>

 <ul>

- <li>Disable plugins on Tor Usage (crucial)</li>

+ <li>Disable plugins on Tor Usage (crucial)</p> 

   This option is key to Tor security. Plugins perform their own networking

 independent of the browser, and many plugins only partially obey even their own

 proxy settings.

-

-  <li>Isolate Dynamic Content to Tor State (crucial)</li>

+</p></li>

+  <li>Isolate Dynamic Content to Tor State (crucial)</p> 

   Another crucial option, this setting causes the plugin to disable Javascript

   on tabs that are loaded during a Tor state different than the current one,

@@ -37,21 +37,21 @@ proxy settings.

   Tor. It also prevents all fetches from tabs loaded with an opposite Tor

   state. This serves to block non-Javascript dynamic content such as CSS

   popups from revealing your IP address if you disable Tor.

-

-  <li>Hook Dangerous Javascript (crucial)</li>

+</p></li>

+  <li>Hook Dangerous Javascript (crucial)</p> 

 This setting enables the Javascript hooking code. Javascript is injected into

 pages to hook the Date object to mask your timezone, and to hook the navigator

 object to mask OS and user agent properties not handled by the standard

 Firefox user agent override settings.

-

-  <li>Resize window dimensions to multiples of 50px on toggle (recommended)</li>

+</p></li>

+  <li>Resize window dimensions to multiples of 50px on toggle (recommended)</p> 

 To cut down on the amount of state available to fingerprint users uniquely, 

 this pref causes windows to be resized to a multiple of 50 pixels on each

 side when Tor is enabled and pages are loaded.

-

-  <li>Disable Updates During Tor (recommended)</li>

+</p></li>

+  <li>Disable Updates During Tor (recommended)</p> 

 Under Firefox 2, many extension authors did not update their extensions from 

 SSL-enabled websites. It is possible for malicious Tor nodes to hijack these extensions and replace them with malicious ones, or add malicious code to 

@@ -59,22 +59,22 @@ existing extensions. Since Firefox 3 now enforces encrypted and/or

 authenticated updates, this setting is no longer as important as it once

 was (though updates do leak information about which extensions you have, it is

 fairly infrequent).

-

-  <li>Disable Search Suggestions during Tor (optional)</li>

+</p></li>

+  <li>Disable Search Suggestions during Tor (optional)</p> 

 This optional setting governs if you get Google search suggestions during Tor

 usage. Since no cookie is transmitted during search suggestions, this is a

 relatively benign behavior.

-

-  <li>Block Tor/Non-Tor access to network from file:// urls (recommended)</li>

+</p></li>

+  <li>Block Tor/Non-Tor access to network from file:// urls (recommended)</p> 

 These settings prevent local html documents from transmitting local files to

 arbitrary websites <a href="http://www.gnucitizen.org/blog/content-disposition-hacking/">under Firefox 2</a>. Since exit nodes can insert headers that

 force the browser to save arbitrary pages locally (and also inject script into

 arbitrary html files you save to disk via Tor), it is probably a good idea to

 leave this setting on.

-

-  <li>Close all Non-Tor/Tor windows and tabs on toggle (optional)</li>

+</p></li>

+  <li>Close all Non-Tor/Tor windows and tabs on toggle (optional)</p> 

 These two settings allow you to obtain a greater degree of assurance that

 after you toggle out of Tor, the pages are really gone and can't perform any

@@ -82,81 +82,81 @@ extra network activity. Currently, there is no known way that pages can still

 perform activity after toggle, but these options exist as a backup measure

 just in case a flaw is discovered. They can also serve as a handy 'Boss

 Button' feature for clearing all Tor browsing off your screen in a hurry.

-

-  <li>Isolate access to history navigation to Tor state (crucial)</li>

+</p></li>

+  <li>Isolate access to history navigation to Tor state (crucial)</p> 

 This setting prevents both Javascript and accidental user clicks from causing

 the session history to load pages that were fetched in a different Tor state

 than the current one. Since this can be used to correlate Tor and Non-Tor

 activity and thus determine your IP address, it is marked as a crucial 

 setting.

-

-  <li>Block History Reads during Tor (crucial)</li>

+</p></li>

+  <li>Block History Reads during Tor (crucial)</p> 

   Based on code contributed by <a href="http://www.collinjackson.com/">Collin

   Jackson</a>, when enabled and Tor is enabled, this setting prevents the

 rendering engine from knowing if certain links were visited.  This mechanism

 defeats all document-based history disclosure attacks, including CSS-only

 attacks.

-

-  <li>Block History Reads during Non-Tor (recommended)</li>

+</p></li>

+  <li>Block History Reads during Non-Tor (recommended)</p> 

   This setting accomplishes the same but for your Non-Tor activity.

-

-  <li>Block History Writes during Tor (recommended)</li>

+</p></li>

+  <li>Block History Writes during Tor (recommended)</p> 

   This setting prevents the rendering engine from recording visited URLs, and

 also disables download manager history. Note that if you allow writing of Tor history,

 it is recommended that you disable non-Tor history reads, since malicious

 websites you visit without Tor can query your history for .onion sites and

 other history recorded during Tor usage (such as Google queries).

-

-  <li>Block History Writes during Non-Tor (optional)</li>

+</p></li>

+  <li>Block History Writes during Non-Tor (optional)</p> 

 This setting also disables recording any history information during Non-Tor

 usage.

-

-<li>Clear History During Tor Toggle (optional)</li>

+</p></li>

+<li>Clear History During Tor Toggle (optional)</p> 

   This is an alternate setting to use instead of (or in addition to) blocking

 history reads or writes.

-

-  <li>Block Password+Form saving during Tor/Non-Tor</li>

+</p></li>

+  <li>Block Password+Form saving during Tor/Non-Tor</p> 

   These options govern if the browser writes your passwords and search

   submissions to disk for the given state.

-

-  <li>Block Tor disk cache and clear all cache on Tor Toggle</li>

+</p></li>

+  <li>Block Tor disk cache and clear all cache on Tor Toggle</p> 

   Since the browser cache can be leveraged to store unique identifiers, cache

 must not persist across Tor sessions. This option keeps the memory cache active

 during Tor usage for performance, but blocks disk access for caching.

-

-  <li>Block disk and memory cache during Tor</li>

+</p></li>

+  <li>Block disk and memory cache during Tor</p> 

   This setting entirely blocks the cache during Tor, but preserves it for

 Non-Tor usage.

-

-  <li>Clear Cookies on Tor Toggle</li>

+</p></li>

+  <li>Clear Cookies on Tor Toggle</p> 

   Fully clears all cookies on Tor toggle.

-  

-  <li>Store Non-Tor cookies in a protected jar</li>

+</p></li>

+  <li>Store Non-Tor cookies in a protected jar</p> 

   This option stores your persistent Non-Tor cookies in a special cookie jar

   file, in case you wish to preserve some cookies. Based on code contributed

   by <a href="http://www.collinjackson.com/">Collin Jackson</a>. It is

   compatible with third party extensions that you use to manage your Non-Tor

   cookies. Your Tor cookies will be cleared on toggle, of course.

-

-  <li>Store both Non-Tor and Tor cookies in a protected jar (dangerous)</li>

+</p></li>

+  <li>Store both Non-Tor and Tor cookies in a protected jar (dangerous)</p> 

   This option stores your persistent Tor and Non-Tor cookies 

   separate cookie jar files. Note that it is a bad idea to keep Tor

   cookies around for any length of time, as they can be retrieved by exit

   nodes that inject spoofed forms into plaintext pages you fetch.

-

-  <li>Manage My Own Cookies (dangerous)</li>

+</p></li>

+  <li>Manage My Own Cookies (dangerous)</p> 

   This setting allows you to manage your own cookies with an alternate

 extension, such as <a href="https://addons.mozilla.org/firefox/addon/82">CookieCuller</a>. Note that this is particularly dangerous,

@@ -164,32 +164,32 @@ since malicious exit nodes can spoof document elements that appear to be from

 sites you have preserved cookies for (and can then do things like fetch your

 entire gmail inbox, even if you were not using gmail or visiting any google

 pages at the time!).

- 

-  <li>Do not write Tor/Non-Tor cookies to disk</li>

+</p></li>

+  <li>Do not write Tor/Non-Tor cookies to disk</p> 

   These settings prevent Firefox from writing any cookies to disk during the

   corresponding Tor state. If cookie jars are enabled, those jars will

   exist in memory only, and will be cleared when Firefox exits.

-

-  <li>Disable DOM Storage during Tor usage (crucial)</li>

+</p></li>

+  <li>Disable DOM Storage during Tor usage (crucial)</p> 

   Firefox has recently added the ability to store additional state and

   identifiers in persistent tables, called <a

   href="http://developer.mozilla.org/docs/DOM:Storage">DOM Storage</a>.

   Obviously this can compromise your anonymity if stored content can be

   fetched across Tor-state.

-

-  <li>Clear HTTP auth sessions (recommended)</li>

+</p></li>

+  <li>Clear HTTP auth sessions (recommended)</p> 

   HTTP authentication credentials can be probed by exit nodes and used to both confirm that you visit a certain site that uses HTTP auth, and also impersonate you on this site. 

-

-  <li>Clear cookies on Tor/Non-Tor shutdown</li>

+</p></li>

+  <li>Clear cookies on Tor/Non-Tor shutdown</p> 

   These settings install a shutdown handler to clear cookies on Tor

 and/or Non-Tor browser shutdown. It is independent of your Clear Private Data

 settings, and does in fact clear the corresponding cookie jars.

-

-  <li>Prevent session store from saving Tor-loaded tabs (recommended)</li>

+</p></li>

+  <li>Prevent session store from saving Tor-loaded tabs (recommended)</p> 

   This option augments the session store to prevent it from writing out

   Tor-loaded tabs to disk. Unfortunately, this also disables your ability to 

@@ -197,20 +197,20 @@ settings, and does in fact clear the corresponding cookie jars.

   after a session crash, your browser will be in an undefined Tor state, and

   can potentially load a bunch of Tor tabs without Tor. The following option

   is another alternative to protect against this.

-

-  <li>On normal startup, set state to: Tor, Non-Tor, Shutdown State</li>

+</p></li>

+  <li>On normal startup, set state to: Tor, Non-Tor, Shutdown State</p> 

   This setting allows you to choose which Tor state you want the browser to

   start in normally: Tor, Non-Tor, or whatever state the browser shut down in.

-

-  <li>On crash recovery or session restored startup, restore via: Tor, Non-Tor</li>

+</p></li>

+  <li>On crash recovery or session restored startup, restore via: Tor, Non-Tor</p> 

   When Firefox crashes, the Tor state upon restart usually is completely

   random, and depending on your choice for the above option, may load 

   a bunch of tabs in the wrong state. This setting allows you to choose

   which state the crashed session should always be restored in to.

-

-  <li>Prevent session store from saving Non-Tor/Tor-loaded tabs</li>

+</p></li>

+  <li>Prevent session store from saving Non-Tor/Tor-loaded tabs</p> 

   These two settings allow you to control what the Firefox Session Store

   writes to disk. Since the session store state is used to automatically

@@ -218,8 +218,8 @@ settings, and does in fact clear the corresponding cookie jars.

   Tor tabs to be written to disk, or they may get loaded in Non-Tor

   after a crash (or the reverse, depending upon the crash recovery setting, 

   of course).

-

-  <li>Set user agent during Tor usage (crucial)</li>

+</p></li>

+  <li>Set user agent during Tor usage (crucial)</p> 

   User agent masking is done with the idea of making all Tor users appear

 uniform. A recent Firefox 2.0.0.4 Windows build was chosen to mimic for this

@@ -230,13 +230,13 @@ to anonymity. Note that for this option to have full effectiveness, the user

 must also allow Hook Dangerous Javascript ensure that the navigator.*

 properties are reset correctly.  The browser does not set some of them via the

 exposed user agent override preferences.

-

-  <li>Spoof US English Browser</li>

+</p></li>

+  <li>Spoof US English Browser</p> 

 This option causes Firefox to send http headers as if it were an English

 browser. Useful for internationalized users.

-

-  <li>Don't send referrer during Tor Usage</li>

+</p></li>

+  <li>Don't send referrer during Tor Usage</p> 

 This option disables the referrer header, preventing sites from determining

 where you came from to visit them. This can break some sites, however. <a

@@ -245,6 +245,7 @@ A more streamlined, less intrusive version of this option should be available

 eventually. In the meantime, <a

 href="https://addons.mozilla.org/firefox/addon/953">RefControl</a> can

 provide this functionality via a default option of <b>Forge</b>.

+</p></li>

 </ul>

     </div><!-- #main -->