Question

5

How safe is it to transfer sensitive information over Tor Browser Bundle on a restricted network?

rated 0 times [ 5] [ 0] / answers: 1 / hits: 2038 / 2 Years ago, tue, november 8, 2022, 5:46:59

I am using the Tor Browser Bundle in Ubuntu from a client machine on a restricted network. In part, I do this because it appears that TBB's native encryption allows me to bypass certain network filters which cannot inspect my data packets.

However, how safe is it to transfer sensitive information (data that I publish, sites I visit, pages I read, etc.) from within a restricted network over the Tor Browser Bundle?

Answers

Only authorized users can answer the question. Please sign in first, or register a free account.

tudatchful

Add To Favorites

Follow

Total Points: 270

Total Questions: 109

Total Answers: 122

Location: Palau

Member since Tue, May 30, 2023

1 Year ago

tudatchful questions

1 How do I disable Snap "Close the app to avoid disruptions" notifications?

Sat, Mar 4, 23, 19:44, 1 Year ago

1 Changed Jenkins port doesn't applied

Thu, Aug 5, 21, 00:47, 3 Years ago

1 Installing a new 4tb hdd not knowing to go for e.g. ext4 or NTFS as a format, some advice please

Wed, Aug 4, 21, 10:03, 3 Years ago

1 Nautilus/Caja Script to "Extract Here" Selected RAR/Archive(s) via Engrampa, File-Roller or Command?

Sat, Jun 11, 22, 18:34, 2 Years ago

1 firefox.tmp in ~/Download Folder

Mon, Apr 24, 23, 04:31, 1 Year ago

View All

answered 2 Years ago ingsta · Accepted Answer

Tor should protect you from your local network, if that's what you're worried about.

The problem with Tor is the exit node (whose traffic could be sniffed) but that's hard to predict or manipulate (unless you're the NSA). If you're using SSL over Tor, that's even better.

Personally, I'd opt to just SSH to a server of mine and use its OpenSSH's built in SOCKS proxy.

ssh -D 9090 user@server

Then you can set your browser's proxy (remember it has to be a SOCKS proxy, not HTTP - that won't work) to localhost:9090 and boom, your traffic is fully encrypted all the way out to the server.

Pro: To your local network it'll also look like standard encrypted SSH traffic. Much less suspicious than Tor traffic.

Pro: It should be faster. There's less of the deliberate snaking that Tor encourages and server bandwidth is usually pretty great. This should keep things buzzing along.

Meh: The endpoint (where you server sits) is still vulnerable but if it's yours, you should know the network more than you'll know the network of a Tor node.

Con: It's not anonymous. Your server? Your IP. Not yours? Keeps a log of you connecting.