ProxyCap + tor and No Privoxy

If ProxyCap forces IE for instance to direct all its connections through tor 127.0.0.1:9050, is that enough security?? does DNS leak occur?? I use ProxyCap all the time to configure different applications (e.g. FlashFXP, mIRC, Flashget, uTorrent...ec.) to use my own private socks proxies made by dynamic port forwarding to a SSH server, and I do not like the idea of configuring every software to use a http proxy like privoxy, and also some of the applications that I use do not support http proxies (You can't use http proxy with PASV FTP).

Regards,

 

Try it - the Tor client will display a warning if it detects DNS "leaking". Bear in mind though that you will need to do some web filtering since allowing ActiveX, Java and Flash on webpages by default allows a malicious site to trigger a direct connection to find your real address.

The "ideal" setup is really a (non-IE) browser connecting to Proxomitron (which can filter HTTPS traffic), Privoxy (for handling SOCKS plus stripping out a Proxomitron-specific duplicate header) and then Tor. See Setting up Tor/Proxomitron+SocksCap for more discussion on this.

 

Can you explain the difference between Privoxy and Proxomitron?? Privoxy comes with the Vidalia package. How come no one is mentioning that package in the tutorials??!

I am thinking of this

SocksCap --> Local Socks Proxy --> Privoxy --> Internet

So, I will use SocksCap to tunnel all my applications through the local socks proxy which has been configured to pass all the data through Privoxy. Here I am assuming that I do not need Proxomitron since I do not know its benefits. Is this good enough??!!

 

Proxomitron is arguably one of the most powerful web filters available, since it allows people to create their own. It is not open source (and its creator, Scott Lemmon, passed away a few years ago) which is likely why it is not officially recommended by the Tor project (though there is an open source version, Proximodo, in progress). Castlecops' Proxomitron forum is one good place for more information (and expanded filtersets).

Won't work - Privoxy can only handle web traffic. You'd be better off using Privoxy for your browser only (which can then redirect to Tor) and ProxyCap (pointing to your own Socks proxy) for everything else.

 

The Socks proxy will translate the traffic for Privoxy??!! Privoxy will be treated as a http proxy..?? Some socks can act like gateways for IE for instance and a http proxy. Am I wrong??

So you are saying Privoxy can not be used with MSM and Yahoo messenger if I configured those to use Privoxy as http proxy??

 

Privoxy can "translate" http -> socks allowing a non-Socks web browser to use a Socks proxy. You cannot have a socks proxy connect to Privoxy which your previous post was suggesting - you use Privoxy as an alternative (for browsers only) to SocksCap to connect a browser to a Socks proxy.

Privoxy will only handle http traffic (and https, but without filtering) - if you configure other applications to use http for sending non-http data then it will certainly try filtering them but will almost surely cause problems.