New Tor Browser Bundles

The Tor Browser Bundles have all been updated to the latest Firefox (10.0.1) as well as a number of other software version updates, such as the latest Vidalia.

https://www.torproject.org/download

Tor Browser Bundle (2.2.35-6)

  • Update Firefox to 10.0.1
  • Update Vidalia to 0.2.17
  • Update Libevent to 2.0.17-stable
  • Update NoScript to 2.3
k239

February 13, 2012

Permalink

Hi there,

Hmm, a quick check, i am still facing the icon on to-right hand corner missing when hiding the Menu Bar in Windows 7 for this version.

k239

February 13, 2012

Permalink

Thank you, Erinn for both the update and the blog entry announcement here.

Thank you for updating so many of the related TBB components.

I'm curious if you could please add some of the regular Tor tools in a future TBB update:

torsocks
usewithtor
tor-resolve

and others, so we can torify applications apart from the browser while still using the bundle.

And, could you add to the about:config options in a future version, ipv6 disabled and prefetching (not the dns option) disabled? It's important to disable prefetching for many reasons, but here's two:

1. Prefetching through sites loads many pages which the user may never visit!

2. Prefetching may, through loaded links in a page, aid in tracking by bar 4d parties. Example: User visits a political blog and comments, some blog comments are linked to "front" sites headed by corporate and/or governmental entities or hacker orgs to capture traffic to these sites, especially bad for people in China and Iran who are struggling for freedom.

Thank you Erinn.

k239

February 13, 2012

Permalink

I CANNOT BELIEVE IT!

I use Tor to ensure NOTHING on the PC that I use shows my internet usage history.

Today, I happened to be browsing the sub directories under the directory where I unpacked the Tor Browser bundle and I find that Firefox 10..0 makes a backup copy of the Bookmarks that I use WITHOUT MY KNOWLEDGE and DOES NOT CLEAR THESE BACKUPS when I clear my Browsing History.

I am capable of managing my Bookmark usage across a couple of daily sessions because I ensure they are gone when I leave - BUT I HAVE BEEN BETRAYED by the very software that I thought was protecting me!

I am now in grave fear for my safety - The first backup was made on 31st January - I have opened them in Notepad and they are accurate.

you should use shred and pray that journaling/defrag/slack space don't betray your assumption

better use FDE or never commit anything incrimination to the disk in the first place

It's me -

I use CCleaner, Index.dat Analyzer, MRU-Blaster and then Eraser to wipe the unused disk space with US Army AR380-19 (3 passes). There is never a query as to why Tor and these utilities are installed, the Goons who audit us are not IT literate.

I am in an environment that is Politically hostile and equipment is regularly audited. Hard drives are copied and randomly scanned.

When I had finished with the PC I was confident that I had covered my tracks, I had no idea that the Tor Browser Bundle would contain this flaw. Any Goon doing a basic search on the C drive for files containing URLs could find it and the date-time stamp will clearly show it was me.

k239

February 18, 2012

In reply to by Anonymous (not verified)

Permalink

Please manually delete these "bookmarkbackups" after a Tor session and also replace the latest content of the "places" file [in the same folder] with the original content.

This original content may be continually preserved by duplicating the "places" file after installation of the new Tor bundle software and using the content of this duplicate file as a resource.

Never mind that those in perilous positions may lose their lives due to this disinterested attitude of Tor

I notified Tor personnel about this issue over two years ago and it's still simply ignored by Tor...

Therefore know now that these blogs are to be used to glorify the pertinent staff member and any critique will simply be glossed over.

And any remarks any of the bloggers disaprove of will simply be censored out of existence notwithstanding their very public disapproval of censorship. (hint: ignoring timeous warnings is also just a form of censorship)

Yep, in Windows I found these daily backups in:

C:\Users\[username]\AppData\Roaming\Mozilla\Firefox\Profiles\[randomcode].default\bookmarkbackups

TrueCrypt containers are great, and should be used by all. But, I'd still manually shred these, just in case. Also, ppl should also use hidden TrueCrypt containers, as well.

Bookmark backups are easily disabled from about:config - just change the browser.bookmarks.max_backups from 10 to 0 and it won't make backups anymore.

k239

February 14, 2012

Permalink

Just a quick note. I decided to give Tor a try and downloaded the latest browser bundle (2.2.35-6). I unpacked it and ran the "Start Tor Browser" program, and the Vidalia app hung my computer, requiring a hard reset. Upon upgrading my never-used Firefox browser from 9.0.1 to 10.0.1, Vidalia started working. I have no idea why it mattered (or if it was just a coincidence). I'm posting here just in case it happens to others.

k239

February 14, 2012

Permalink

I seem to be the only one that this isn't working for. I had the previous version of Tor on my Mac Intel and it worked fine. Now I get this update and it won't even open. I double-click the icon, and it just does that shitty bouncing animation once or twice, and disappears. Nothing else happens. Doesn't do shit. HELP?

k239

February 15, 2012

Permalink

i tried both the latest browser bundles for mac (both 32 bit and 64 bit) and neither works on my mac ibook. previous versions of the tor bundle have worked ok, im currently using the version with vidalia 0.2.15 and aurora 9.01 which works fine. why wont the latest version work?

k239

February 15, 2012

Permalink

What the blazes is going on here? If one wants the current version of Tor, one has to install the Tor BROWSER bundle? Why? What scheme underlies this?

If you guys were serious about security and not simply creating your own web of deceit, you would provide up-to-date versions of EVERYTHING, including plain Tor and plain Vidalia.

Something smells here....

About the back button problem, do you use a referrer blocking addon (other than Torbutton)? There have been bug reports in the past about that back button behavior that related it something about TBB's referrer spoofing that doesn't play well with referrer blocking.

k239

February 15, 2012

Permalink

What's the problem with that black buttons? Official Mozilla's builds are OK. You guys have marked the bug as fixed some time ago. Several builds have seen the light since, but the bug still is where it was.

k239

February 15, 2012

Permalink

Another note: I have just downloaded and unpacked OS X version of Tor Browser Bundle (2.2.35-6) and it doesn't even start.
Running OS X 10.5.8 (should be compatible).

After clicking the onion icon, nothing happens (after reverting back to 2.2.35-5, everything works just fine).

Is that a bug?!

k239

February 16, 2012

Permalink

Is there any reason why the Tor Project doesn't provide file hashes?

The Tor Project recommended process for verifying file authenticity is severely convoluted. Does anyone even bother with it?

I'd like to see you provide file hashes — it seems to be a much simpler method than what you recommend.

It is as easy to spoof the file hashes as modifying the actual binary, so not even remotely secure. File hashes are only useful to detect unintentional corruption of the binary.

k239

February 27, 2012

Permalink

I think this is a real interesting idea, however using just tor I'm getting trace back around two jumps within 30 sec. I thought that your info said they couldn't trace back at all across tor. Adding another layer and hiding behind the simple ixquick proxy adds another ten seconds and makes three false locations. Is this how tor is supposed to work or is there a problem? Would it be better to to use tails at hotspot to really be anonymous or will the trace back on tor eventually stop before it gets to me?
Thanks for your time.

k239

April 01, 2012

Permalink

i have tor downloaded even tried it with google chrome and firefox and i downloaded it, save it, put it in my applications click on it and it jumps up one time and never opens dont know why it is doing this does anyone have an idea, getting aggravated.

k239

April 24, 2012

Permalink

I have a imac 2007 core 2 duo. OSX 10.5.8. I ran both versions of the tor app on my machine and nothing happened. Double clicked. Run App. OK. nothing happened after that.

What's wrong?

k239

April 26, 2012

Permalink

OK I have the TOR browser on my pc. I have loaded it up and it has opened up the fire fox browser. (I am not that good with this stuff I am a chemist) I type in the window to search for a site to see that it works and it cant find google. tells me that I need to reset my fire wall or check my network connection and settings.... what should I do so I can access the net on the tor browser? please help this newby... ;P