[or-cvs] r22939: {website} add in the warning, try to salvage more of the page. (website/branches/web20/download/en)

Andrew Lewman andrew at torproject.org
Tue Aug 17 19:19:57 UTC 2010 

Author: phobos
Date: 2010-08-17 19:19:57 +0000 (Tue, 17 Aug 2010)
New Revision: 22939

Modified:
   website/branches/web20/download/en/download.wml
Log:
add in the warning, try to salvage more of the page.


Modified: website/branches/web20/download/en/download.wml
===================================================================
--- website/branches/web20/download/en/download.wml	2010-08-17 18:48:26 UTC (rev 22938)
+++ website/branches/web20/download/en/download.wml	2010-08-17 19:19:57 UTC (rev 22939)
@@ -9,8 +9,69 @@
       	<h1>Download Tor</h1>
         <!-- BEGIN WARNING -->
       	<div class="warning">
-          <p>Tor does not magically encrypt all of your Internet activities. Understand what Tor does and does not do for you.
-          <br /><a href="<page download/warning>">Read more »</a></p>
+          <h2>Want Tor to really work?</h2>
+<p></p>...then please don't just install it and go on.  You need to change some of your habits, and reconfigure your software! Tor by itself is <em>NOT</em> all you need to maintain your anonymity. There are several major pitfalls to watch out for:
+</p>
+
+<ol>
+<li>
+Tor only protects Internet applications that are configured to
+send their traffic through Tor &mdash; it doesn't magically anonymize
+all your traffic just because you install it.  We recommend you
+use <a href="http://www.mozilla.com/en-US/firefox/all-older.html">Firefox</a> with the <a
+href="<page torbutton/index>">Torbutton</a> extension.
+</li>
+
+<li>
+Torbutton blocks browser plugins such as Java, Flash, ActiveX, RealPlayer,
+Quicktime, Adobe's PDF plugin, and others: they can be manipulated
+into revealing your IP address. For example, that means Youtube is
+disabled. If you really need your Youtube, you can <a href="<page
+torbutton/faq>#noflash">reconfigure Torbutton</a> to allow it; but
+be aware that you're opening yourself up to potential attack. Also,
+extensions like Google toolbar look up more information about the
+websites you type in: they may bypass Tor and/or broadcast sensitive
+information. Some people prefer using two browsers (one for Tor, one
+for unsafe browsing).
+</li>
+
+<li>
+Beware of cookies: if you ever browse without Tor and a site gives
+you a cookie, that cookie could identify you even when you start
+using Tor again. Torbutton tries to handle your cookies safely. <a
+href="https://addons.mozilla.org/firefox/82/">CookieCuller</a> can help
+protect any cookies you do not want to lose.
+</li>
+
+<li>
+Tor anonymizes the origin of your traffic, and it encrypts everything
+between you and the Tor network and everything inside the Tor network,
+but <a
+href="https://trac.torproject.org/projects/tor/wiki/TheOnionRouter/TorFAQ#SoImtotallyanonymousifIuseTor">it
+can't encrypt your traffic between the Tor network and its final
+destination.</a> If you are communicating sensitive information, you
+should use as much care as you would on the normal scary Internet &mdash;
+use HTTPS or other end-to-end encryption and authentication.
+</li>
+
+<li>
+While Tor blocks attackers on your local network from discovering
+or influencing your destination, it opens new risks: malicious or
+misconfigured Tor exit nodes can send you the wrong page, or even send
+you embedded Java applets disguised as domains you trust. Be careful
+opening documents or applications you download through Tor, unless you've
+verified their integrity.
+</li>
+</ol>
+
+<br />
+<p>
+Be smart and learn more. Understand what Tor does and does not offer.
+This list of pitfalls isn't complete, and we need your
+help <a href="<page volunteer>#Documentation">identifying and documenting
+all the issues</a>.
+</p>
+          </p>
         </div>
         <!-- END WARNING -->
         <table class="topforty">
@@ -109,9 +170,15 @@
           	</tr>
             <tr>
               <td>iPhone, iPod Touch, iPad</td>
+              <td></td>
               <td><span class="mac"><a href="http://sid77.slackware.it/iphone/">Test packages by Marco</a></span></td>
               <td></td>
+          	</tr>
+          	<tr>
+              <td>Nokia Maemo/N900</td>
               <td></td>
+              <td><span class="nokia"><a href="<page docs/N900>">Experimental instructions</a></span></td>
+              <td></td>
           	</tr>
         </table>
         <table class="topforty">

More information about the tor-commits mailing list