Tor Browser 6.0.2 is released

by boklm | June 21, 2016

Tor Browser 6.0.2 is now available from the Tor Browser Project page and also from our distribution directory.

Tor Browser 6.0.2 is a fixup release to address the most pressing issues we found after switching to Firefox 45.2.0esr.

In particular, we resolved a possible crash bug visible e.g. on Faceboook or mega.nz and we fixed the broken PDF download button in the PDF reader.

Note: In version 6.0 we started code signing the OS X bundle for Gatekeeper support. A side effect of this signature is that it makes it harder to compare the bundles we ship with the bundles produced using reproducible builds, therefore we plan to post instructions for removing the OS X code signing parts on our website soon. An other effect is that the incremental update will not be working for users who installed the previous version using the .dmg file, due to bug 19410. The internal updater should still work, though, doing a complete update.

Update (June 23, 12:38 UTC): We have still some users that report crashes on Facebook and mega.nz. We suspect this happens because those users are not using Tor Browser in its default configuration but have left the Private Browsing Mode. There are at least two workarounds for this: 1) Using a clean new Tor Browser 6.0.2 (including a new profile) solves the problem. 2) As files cached by those websites in the Tor Browser profile are causing the crashes, deleting them helps as well. See bug 19400 for more details in this regard.

Here is the full changelog since 6.0.1:

  • All Platforms
    • Update Torbutton to 1.9.5.5
    • Bug 19401: Fix broken PDF download button
    • Bug 19411: Don't show update icon if a partial update failed
    • Bug 19400: Back out GCC bug workaround to avoid asmjs crash
  • Windows
    • Bug 19348: Adapt to more than one build target on Windows (fixes updates)
  • Linux
    • Bug 19276: Disable Xrender due to possible performance regressions
Tags
tor browser
tbb
tbb-6.0
Anonymous

Anonymous (not verified) said:

July 04, 2016

Permalink

still crashes on windows 10 64-bit at startup. not able to fix that for several versions now guys?

Anonymous

Anonymous (not verified) said:

July 04, 2016

Permalink

Is there any way for us to setup Tor Browser to remember a userid and password for just two specific websites, and make sure there is no automatic memorization for any other sites?

Anonymous

Anonymous (not verified) said:

July 05, 2016

Permalink

What did you modify in it? What is the improvement?
Isn't there any other Search Engine other than DuckDuckGo?

Anonymous

Anonymous (not verified) said:

July 05, 2016

Permalink

Guys I respect you but please ... can you stop to play "games" and make tor browser to work and without auto-update? thx

Anonymous

Anonymous (not verified) said:

July 06, 2016

Permalink

jquery fails in 6.0+. Does anyone know which DOM features are required for it in about:config? Might be a change I made inadvertently, but seems to have changed since 6.0. jquery is required for many new JS-heavy sites to load properly.

Anonymous

Anonymous (not verified) said:

July 06, 2016

Permalink

Hi guys,
Where torbrowser 6.0.2 keep configs (Mac os x)? Before 6.0.2 all configs of browser was located in one place /Applications/TorBrowser/ , but now seems that another location used to store configs. Because I make a changes in about:config mode, then remove TorBrowser from Application and installed a new one, but still see the changed config.

Anonymous

Anonymous (not verified) said:

July 08, 2016

Permalink

Is there a published procedure for moving the Tor Browser folder under Windows 8 to a new location and patching files so Tor Browser will run at the new location and preserve bookmarks?

Several files like torrc apparently have full path references to the original folder location, so it is not as simple as just moving the existing install folder.

Anonymous

Anonymous (not verified) said:

July 11, 2016

Permalink

After 3 months of problems torbrowser still crashes after connecting on all OSX 10.11.5 that I've tried it on.

no crash report. just the executable crashes at startup. it always runs fine ONCE right after installation, then never again. many users reported this for several versions now with Win 10 64bit...

Anonymous

Anonymous (not verified) said:

July 11, 2016

Permalink

why it do not display languages other than english on web pages...?
does anybody know the solution...?

Anonymous

Anonymous (not verified) said:

July 12, 2016

Permalink

Good Day,.. Hopefully :)

This is --entirely-- NOT related to (Tor Browser 6.0.2 release) ..

But somehow ..it's a [General Topic Question] so please don't refer me to other place for the answer..

Thanks :))

Q: When editing TORRC file, adding ExcludeNodes {ru},

..Then later found the TBB "auto"-added {??} at the end of the line, it then LOOKS like this:

ExcludeNodes {ru},{??}

Wondering what {??} means!?
& if it's fine to delete the {??} !!

for the fun of it, ..seems to me that TBB is ask me WHY are you Excluding Node {ru} ?? .. & continuing it's objection.. RU crazy ??

hahahaah

Hoping your reply may unveil this wonder for me & other users of the great TBB..

Thanks Again..

RGDS:
M.E.

ps.
it also "auto"-added more lines (which looks O.K.) like:
DataDirectory ....
GeoIPFile .....

Hi ALL,

Why it seem that NO Body knows the answer!?
is it too difficult also for the developers of TBB!?

TBB "auto"-added {??} in the TORRC file so it look like this:
ExcludeNodes {ru},{??}

what {??} <=== should mean?

too simple question!
isn't it :)

Anonymous

Anonymous (not verified) said:

July 12, 2016

Permalink

Very sluggish browser, eats a lot of CPU. :(
Must have something to do with e10s and Shim.......!?
Would be great if Tor browser could be built on Palemoon me think, fx45 is bloated and adding customized search engine is gone, the new searchengine file search.json.mozl4 is just gibberish, and the now built in search engines into omni.ja isn't very friendly way to manage them.

I am also missing a about:config setting to stop the browsers search engine from sniffing/accepting webpages own searchaengines wherever it is offered, someone could hide malicious code in thos searchengine packets and/or also perhaps send cross-site noise to places we don't want to.
Somehow I feel the search engine in the browser has become a bit bloated and needs to be taimed.

Here are some other feedback on tbb 6.0.2....

Reveals local time of my PC instead of UTC = GMT +0000, check out: "To Locale String" on this site:
https://www.browserleaks.com/javascript

Click HTTPS certificate info button on left side of URL bar, go to More Information -> View Certificate -> General Tab -> Period of Validity
It shows the month written in local language which I am using in my Windows OS instead of English, for example:
Begins On: 14 May 2016
Expires On: 14 May 2017
where the month "May" is written in the local language used in my PC, don't know if this is an issue, but if the browser reads out and print out the local language maybe it may potentially also leak out the language localization data?

An old bug that has never gone away since several years, whenever the user cleans out all coockies, browsing history, caches etc, if you now hover the mouse courser over all the opened tabs, the browser will start fetch some data from the internet, I think it downloads the favicon's and perhaps some other data from those web pages I have previously visited, this noisy behaviour have to go away, also it would be better to store the favicon and what ever data in some type sandbox isolated to each tab.
Since Firfox version around mid-20 something when they changed the tab layout, the whole tool/tab/url-bar has become semiactive leaky/noisy part of the webpage.
https://trac.torproject.org/projects/tor/ticket/18741

Anonymous

Anonymous (not verified) said:

July 12, 2016

Permalink

Firefox is enforcing signed add-on check since version 44, I have some add-ons that can't be installed on this tor browser version, and setting xpinstall.signatures.required to false under about:config doesn't help override anymore.
Seems there are several reasons going back to a tor browser built on fx38 as Firefox is becoming increasingly locked in and bloated, fx45 suck so big elephant balls they can be seen from outer space. :(
http://www.ghacks.net/2015/12/16/what-you-do-when-firefox-disables-inst…

Anonymous

Anonymous (not verified) said:

July 15, 2016

Permalink

Thanks

No, because one of them is before signing, and the other one is after signing.

The hash of the unsigned one is there for all the other people who build tor browser reproducibly and want to make sure they get the same result.

(The unsigned one has to be what the reproducible build process produces.)

Anonymous

Anonymous (not verified) said:

July 16, 2016

Permalink

The torproject team should strongly consider continue developing on a TBB-ESR version built ontop of Firefox version 38, Firefox 45 with e10s capabilty is just too much with a lot of new unknown vulnerabilities, also it is very resource hungry, at least on windows.

Agree on this one, build future tor browsers on some of the older firefox ESR versions, 17, 24, 31 or 38, but not 45, they should also throw out all redundant BS capabilities such as pdf reader which is using canvas, the main point using a tor browser should not be emphasized on whistle and bells features, but rather on privacy and security, unfortunately firefox has become heavily bloated multitalent artist, who knows maybe in the feature firefox can shave me in a sleep, cook pancakes and wipe my ass?

Just try an old firefox 17 of latest ESR version, it is blazingly fast and very light on resources when playing Youtube html5 videos, but do it in a sandbox if you want to plays safe, go to portableapps com and download a protable version and you don't have to mess up with your current installed firefox and run it in a sw called Sandboxie.

Anonymous

Anonymous (not verified) said:

July 17, 2016

Permalink

Ever since TBB 6.0.1 (Windows) update, pictures such as avatars don't show anymore on twitter apps. While the captcha image on a private paste service doesn't show either. I checked on other browsers and they show but they don't show on TBB.

I checked Google for the problem and found this old post:

https://blog.torproject.org/blog/tor-browser-50a3-released

++++

On July 7th, 2015 Anonymous said:
It's gotten really slower and stopped showing pictures on twitter

On July 8th, 2015 Anonymous said:
I can confirm problems on Twitter (no pictures shown), also I'm not able to right-click on Twitter and see the context menu and it always shows the cookie warning on top of the page.

On July 9th, 2015 Anonymous said:
Confirmation - no pictures on Twitter. Also tweet button does not show up, and am unable to use the search function on twitter.

On July 9th, 2015 arma said:
https://bugs.torproject.org/16528

++++

I tried the about:config fix it shows from last year mentioned on https://trac.torproject.org/projects/tor/ticket/16528 and it doesn't work for me. That link is from last year.

Anonymous

Anonymous (not verified) said:

July 18, 2016

Permalink

Hi,
I have just installed a fresh copy of windows 7, installed Tor 6.0.2 also and is not working, when i open a new tab and search for something this message comes :
Tor unexpectedly exited. This might be due to a bug in Tor itself, another program on your system, or faulty hardware. Until you restart Tor, the Tor Browser will not able to reach any websites. If the problem persists, please send a copy of your Tor Log to the support team.

Restarting Tor will not close your browser tabs

what can i do ?
Thank you

Anonymous

Anonymous (not verified) said:

July 18, 2016

Permalink

I have noticed under the tor circuit for this site that it list Canada almost constantly. After several attempts at a new circuit Canada comes up 90%. I am in Canada but I have seen it change to Sweden. I am using a Mac OS running Yosemite and my public IP is 216.75.191.97. Is this typical operation?

this browser
bridge: obfs4 (Canada)
Romania (93.115.91.166)
Netherlands (185.17.184.228)
Internet

Looks like you chose to configure your Tor client to use a bridge in Canada. That bridge is the first hop for all your circuits. So it is not surprising that it would be in all your circuits. This is all normal.

Our blog software is outdated. That feature added more surface area for attack, and wasn't very useful, so we disabled it. In the glorious future when we all have more free time, we plan to have more updated blog software.

Anonymous

Anonymous (not verified) said:

July 23, 2016

Permalink

I have been using tor for a while now, however recently I joined this group on gplus and they are telling everyone not to use tor because it has been hacked into........... I have never had any problems with tor...

Anonymous

Anonymous (not verified) said:

July 26, 2016

Permalink

Unable to access Tor using OBFS4 from public IP address 192.82.150.249.
the log produced is as follows

26-07-2016, 19:10:51.900 [NOTICE] DisableNetwork is set. Tor will not make or accept non-control network connections. Shutting down all existing connections.
26-07-2016, 19:10:51.900 [NOTICE] Opening Socks listener on 127.0.0.1:9150
26-07-2016, 19:10:53.900 [NOTICE] Bootstrapped 5%: Connecting to directory server
26-07-2016, 19:10:53.900 [NOTICE] Bootstrapped 10%: Finishing handshake with directory server
26-07-2016, 19:10:55.500 [WARN] Proxy Client: unable to connect to 169.229.59.74:31493 ("Connection refused")
26-07-2016, 19:10:55.600 [WARN] Proxy Client: unable to connect to 109.105.109.163:47779 ("Connection refused")
26-07-2016, 19:10:55.600 [WARN] Proxy Client: unable to connect to 109.105.109.163:38980 ("Connection refused")
26-07-2016, 19:10:56.700 [WARN] Proxy Client: unable to connect to 83.212.101.3:80 ("general SOCKS server failure")
26-07-2016, 19:10:56.700 [NOTICE] Ignoring directory request, since no bridge nodes are available yet.
26-07-2016, 19:10:57.300 [NOTICE] Delaying directory fetches: No running bridges
26-07-2016, 19:25:53.900 [WARN] Proxy Client: unable to connect to 109.105.109.163:38980 ("Connection refused")
26-07-2016, 19:25:53.900 [WARN] Proxy Client: unable to connect to 169.229.59.74:31493 ("Connection refused")
26-07-2016, 19:25:53.900 [WARN] Proxy Client: unable to connect to 109.105.109.163:47779 ("Connection refused")
26-07-2016, 19:25:54.000 [WARN] Proxy Client: unable to connect to 83.212.101.3:80 ("general SOCKS server failure")
26-07-2016, 19:32:52.300 [NOTICE] Closing no-longer-configured Socks listener on 127.0.0.1:9150
26-07-2016, 19:32:52.300 [NOTICE] DisableNetwork is set. Tor will not make or accept non-control network connections. Shutting down all existing connections.
26-07-2016, 19:32:52.300 [NOTICE] Closing old Socks listener on 127.0.0.1:9150

Anonymous

Anonymous (not verified) said:

July 27, 2016

Permalink

Unable to access Tor using scramblesuit from public IP address 192.82.150.249.
the log produced is as follows
27-07-2016, 22:25:47.300 [NOTICE] DisableNetwork is set. Tor will not make or accept non-control network connections. Shutting down all existing connections.
27-07-2016, 22:25:47.300 [NOTICE] Opening Socks listener on 127.0.0.1:9150
27-07-2016, 22:25:49.100 [NOTICE] Bootstrapped 5%: Connecting to directory server
27-07-2016, 22:25:49.100 [NOTICE] Bootstrapped 10%: Finishing handshake with directory server
27-07-2016, 22:26:49.200 [WARN] Proxy Client: unable to connect to 83.212.101.3:443 ("general SOCKS server failure")
27-07-2016, 22:26:49.200 [NOTICE] Ignoring directory request, since no bridge nodes are available yet.
27-07-2016, 22:26:50.100 [NOTICE] Delaying directory fetches: No running bridges
27-07-2016, 22:35:00.100 [NOTICE] Closing no-longer-configured Socks listener on 127.0.0.1:9150
27-07-2016, 22:35:00.100 [NOTICE] DisableNetwork is set. Tor will not make or accept non-control network connections. Shutting down all existing connections.
27-07-2016, 22:35:00.100 [NOTICE] Closing old Socks listener on 127.0.0.1:9150

Anonymous

Anonymous (not verified) said:

July 30, 2016

Permalink

guys, does anyone have a solution for pixiv? login isn't working, when u try to log in - u're getting bounced back, on login screen(like your log in atempt was a success, but you never logged actually) some people say remember history fixes that problem, is there any other solutions to make PIXIV work fine with TBB?

Anonymous

Anonymous (not verified) said:

July 30, 2016

Permalink

Don't know why...it's weird but ip-check info, always almost always, shows me IP that differs from exit one in circuit list...any suggestions based on that problem? or whatever it's called

Anonymous

Anonymous (not verified) said:

August 09, 2016

Permalink

Any recent news about the government focusing on those who use proxy services like TOR and targeting them as criminal combatants (in defiance of our 4th amendment rights) since they cannot control the proxy services themselves? I had read that based on the new Supreme Court ruling, government "authorities" can now actively search and seize our property based on a hunch regardless of any proof or additional evidence and a court ordered warrant. I also read that government authorities are using this ruling to also do the same with digital information as well; that they believe they have the right to hack and search our computers if it is "found" that an individual uses a proxy service like TOR and even VPN private services. First off, how would they know someone is using a proxy service like TOR without fist targeting those individuals in the first place by looking at protocols and data filtered through our ISP? I hope I am understanding this wrong!

Anonymous

Anonymous (not verified) said:

August 27, 2016

Permalink

Heu... Do you remember that TOR is a free and open source project before crying as they are committed to your problem ?

If you are not happy enough, you are free to go away

Thanks to the Tor team, love u people