Notices tagged with tor

Applying updates to my Tor-ified MTA. Minimal downtime is expected.

#infosec #opsec #Tor

@tindall I mean, I already host my own private #GitLab instance on > 1TB storage #HardenedBSD server. It's accessible via #Tor Onion Service.

Emerald Onion completed their switch from #pfSense to #HardenedBSD as the edge firewall.

It's nice to see that EO's infrastructure is now 100% HardenedBSD. This is extremely important since #Tor has a very unique threat landscape. In this case, using an OS that takes security seriously by implementing exploit mitigations and security hardening techniques will help protect people's lives.

Just found an abandoned implementation of a #Tor client in pure #JavaScript. There hasn't been any recent development so it's safe to say, you shouldn't run this live

https://github.com/Ayms/node-Tor

@mkb Please don't use DO for Tor relays. The #Tor network is already saturated with relays running on DO, OVH, and Amazon. Please consider using a different hosting provider.

Home is where the #tor-ified network jack in the wall is.

One thing I love about my road warrior #Tor-ified network setup is that I don't have to worry about the hotel network siphoning/mining my data.

You can now create your own user accounts on my #Tor-ified MTA: http://adduser.3w2s7tpb5mc7ubsjjnzp4oxvqupjeoywzwdxfvfnjn3toqbuzgkn7kqd.onion/

Once your account is created, you can use IMAP and SMTP or webmail at http://3w2s7tpb5mc7ubsjjnzp4oxvqupjeoywzwdxfvfnjn3toqbuzgkn7kqd.onion/

If you need a .onion email service, feel free to use my MTA.

#infosec #opsec

Got my #Tor-ified #GitLab instance integrated with my Tor-ified MTA. I can now use my .onion email address with GitLab. :)

New fully encrypted storage added to my #Tor-ified MTA. 2TB instead of 10GB of storage. Yay!

Currently testing #Tor on #HardenedBSD with CFi and SafeStack fully applied. This includes cfi-icall with the (-fsanitize-cfi-icall-generalize-pointers) option included.

If this is stable for a minimum of 24 hours, then I'll commit the change in our ports tree and it'll take affect in the next 12-CURRENT/amd64 package build.

Gonna try going 24 hours without using mobile data and only connecting to my #Tor-ified wifi at home.

Current status: expanding the capacity of my #Tor-ified MTA. This will take a while due to full-disk encryption.

Once this is done (> 24 hours?), I'll work on a self-service user creation web page.

Here's a draft version of my "Setting up an MTA Behind Tor" article: https://github.com/lattera/articles/blob/master/opsec/2018-05-08_torified_mta/article.md

#Tor #infosec #opsec #HardenedBSD

I now have a new .onion email, now with webmail access. :)

shawn@3w2s7tpb5mc7ubsjjnzp4oxvqupjeoywzwdxfvfnjn3toqbuzgkn7kqd.onion

Note that this MTA can only send email to other .onion MTAs. It cannot send emails to clearnet addresses.

If you'd like your own .onion inbox, please message me over signal with your desired username.

Note that storage is very limited. I plan to increase storage within the next week or two.

#Tor #opsec #infosec

Goal for this week: stand up a full self-hosted public email fully-encrypted infrastructure behind #Tor for peeps to send emails between other .onion MTAs. Document the process along the way.

Now that I have a working patch for setting up an #OpenSMTPD MTA behind a full #Tor-ified network, I will document my setup.

#infosec #opsec