[tor-talk] Does the Tor DNS transparent proxy code use clients nameservers?
Rob van der Hoeven
robvanderhoeven at ziggo.nl
Wed Oct 25 21:23:18 UTC 2017
On Wed, 2017-10-25 at 16:54 -0400, Allen wrote:
> or maybe better "dig @localhost:torport hostname +tcp"
>
> On Wed, Oct 25, 2017 at 4:50 PM, Allen <allenpmd at gmail.com> wrote:
> > and what happens if you use dig alone to talk directly to tor?
> > something like "dig -p torport hostname +tcp" (see man dig)
> >
Hmmm, interesting.
If I use dig directly on the DNSPort of the Tor daemon I get the
following results:
===================================================================
rob at jessie:~$ dig @localhost -p 9041 hoevenstein.nl
; <<>> DiG 9.10.3-P4-Debian <<>> @localhost -p 9041 hoevenstein.nl
; (2 servers found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19551
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;hoevenstein.nl. IN A
;; ANSWER SECTION:
hoevenstein.nl. 3600 IN A 94.211.74
.2
;; Query time: 216 msec
;; SERVER: 127.0.0.1#9041(127.0.0.1)
;; WHEN: Wed Oct 25 23:12:26 CEST 2017
;; MSG SIZE rcvd: 48
====================================================================
This looks OK. When I check with Wireshark I see no DNS queries leaving
my system. Must think about what this means. Or better, get some sleep.
It's been a long day...
Thanks!
Rob.
https://hoevenstein.nl
More information about the tor-talk
mailing list