[tor-bugs] #2846 [Torify]: Patch GPG to support SOCKS proxies
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Tue Sep 25 02:15:42 UTC 2012
#2846: Patch GPG to support SOCKS proxies
------------------------+---------------------------------------------------
Reporter: rransom | Owner: mikeperry
Type: defect | Status: reopened
Priority: normal | Milestone:
Component: Torify | Version:
Resolution: | Keywords:
Parent: | Points:
Actualpoints: |
------------------------+---------------------------------------------------
Comment(by ioerror):
To be specific - I need the above tests run (with tcpdump logging traffic)
for gpg built against libcurl >= 7.21.7 - this should help us to see if
the SOCKS5 proxy support is working properly.
Here are the commands to run:
x-hkp://
{{{
gpg --keyserver x-hkp://pool.sks-keyservers.net --keyserver-options no-
auto-key-retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
x-broken-hkp://
{{{
gpg --keyserver x-broken-hkp://kpool.sks-keyservers.net --keyserver-
options no-auto-key-retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
ftp://
{{{
gpg --keyserver ftp://keyserver.pgp.com --keyserver-options no-auto-key-
retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
///://
{{{
gpg --keyserver ///://keyserver.pgp.com --keyserver-options no-auto-key-
retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
x-hkp///
{{{
gpg --keyserver x-hkp///keyserver.pgp.com --keyserver-options no-auto-key-
retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
ldap:// (expected breakout)
{{{
gpg --keyserver ldap://keyserver.pgp.com --keyserver-options no-auto-key-
retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
ldaps:// (expected breakout)
{{{
gpg --keyserver ldaps://keyserver.pgp.com --keyserver-options no-auto-
key-retrieve,no-try-dns-srv,http-
proxy=socks5-hostname://127.0.0.1:9050,debug,verbose --recv-key 0x4193A197
}}}
Only the last two should fail and everything else should go through the
SOCKS(4a,5) proxy without DNS leaks.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2846#comment:33>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list