Uploading files with TOR

[notthatguy]

Do you still remain anonymous if you upload something through the TOR browser same as if you download? Like if I attach something to an email from my computer, or upload a document on put-file do I lose my anonymity?

[lotuseclat79]

If you have to login (with a password) to the destination node to upload, then your username and password are vulnerable to capture by whomever is running the Exit node of Tor - i.e. are they trustworthy or not?

If you use TAILS (it has an integrated mail with Tor), then in your example, via attaching something from your computer to your mail, then it too would be anonymous - but, not for any uploads that require a login and password to a destination node account (too risky IMHO).

-- Tom

[notthatguy]

Ya I get that login information can be intercepted through TOR.

But if you upload a file even directly to a website directly from your desktop, does it destroy the anonymity? or is the upload directly put through TOR?

I just don't understand if uploads are forced to go through the TOR network.

[CasperFace]

Not sure what you mean by uploading a file "directly from your desktop". If you mean a standard HTML form (via your web browser) which enables you to browse for a local file and submit/upload it, then the upload will be tunneled through Tor in the same way that downloads are. On the other hand, a Flash- or Java-based uploader could potentially bypass your proxy settings and break your anonymity (unless you're forcing those plugins through a SOCKS tunnel or similar). When in doubt, you should always choose the "basic" or HTML-based upload option whenever possible.

[notthatguy]

Quote:

Originally Posted by CasperFace

Not sure what you mean by uploading a file "directly from your desktop". If you mean a standard HTML form (via your web browser) which enables you to browse for a local file and submit/upload it, then the upload will be tunneled through Tor in the same way that downloads are. On the other hand, a Flash- or Java-based uploader could potentially bypass your proxy settings and break your anonymity (unless you're forcing those plugins through a SOCKS tunnel or similar). When in doubt, you should always choose the "basic" or HTML-based upload option whenever possible.

That's EXACTLY what I was looking for. Thank you very much Casper!