Tor Browser 6.0.4 is released

Tor Browser 6.0.4 is now available from the Tor Browser Project page and also from our distribution directory.

This release finally brings Tor Browser users the latest Tor stable, 0.2.8.6, and avoids pinging Mozilla's servers for system extensions.

Pinging Mozilla's servers was responsible for users getting an extension into their Tor Browser that resulted in annoying and confusing "Your Firefox is out of date" notifications on start-up (bug 19890). Thanks to Mozilla engineers, who fixed that issue as quickly as possible on their side, the extension is not shipped to Tor Browser users anymore since August 11 13:00 UTC. This takes care of getting the add-on removed as well in case it got installed into Tor Browser (as does the fix we ship in Tor Browser 6.0.4) which should have happened/is happening during the next extension update ping. For further information see the discussion in our bug tracker.

Users that are on the alpha channel or are using the hardened Tor Browser were not affected. The same goes for Tails users as far as we know.

The full changelog since Tor Browser 6.0.3 is:

Tor Browser 6.0.4 -- August 16

  • All Platforms
    • Update Tor to 0.2.8.6
    • Update NoScript to 2.9.0.14
    • Bug 19890: Disable installation of system addons

LOL ,, "vfemail.net is bad" Well! it might be not that BAD but quiet NOT-good,, ;)

My recommendation was not based on "javascript enabled" or not! it was rather based on:

1- Acceptance of frequent Geo-locations changes made by TBB, which is not always 'permitted' by most famous web email providers, unless [mobile Number] is entered ;)

2- Ease and quick registration (30 sec or less) so it most used for me as (Trash mail) --not black listed-- ,, websites wont see it "black-listed" like Ex: TRASHMAIL.com

3- Membership never expires (situation like when a website Ex: Twitter want to re-confirm your vfemail email)

4: etc ,, etc ,,

a quite (not so-good) in vfemail ""for non-paid members"" is that it has --sometimes-- a delayed Que to SEND mail .. That doesn't matter much for me because --as said-- use for Coming "confirmations" ..

Finally, "bitmessage.ch" on a fast glance might look GREAT, but not tested by me yet,, Wishing it could pass the above: 1's 2's & (3's: can see that website stated: Account is not deleted if inactive)

Thanks for your contribution and thanks again to our-dual BrainStorming that showed-up nice results :)

If you could use your webmail only by allowing scripts you must have been trusting hushmail greatly. If you are using hushmail by thunderbird/icedove with tor-birdy installed and now you can not reach the server this you need to clarify.

a different privacy topic.
Advice I have read says:
you should never access any same account in both tor and in a "plain net" browser.
so
- have a hushmail account you access only by tor
- and can have another hushmail account accessed otherwise.

"you should never access any same account in both tor and in a "plain net" browser."

Shouldn't that be obvious? I mean, if someone logs into an account with their real IP, then it's pretty much game over, isn't it?

I wish it was obvious to everyone too, but it's not.

Most people don't even realise that their computers/routers get assigned an Internet Protocol Address upon connection to the internet. It all seems like magic to them.

Arther C Clarke once wrote: "Any sufficiently advanced technology is indistinguishable from magic."

For many, this is actually the case for computers and the internet. This is why privacy also requires being asked to change computer and internet habits too.

Anonymous

August 17, 2016

Permalink

Hello Folks: I would like to know your point of view, about using additional - Privacy and Security related add-ons, such as: Calomel SSL Validation, No resource uri leak, Self Destructing Cookies, Privacy Badger, uBlock Origin, Random Agent Spoofer, Decentraleyes and Blue Hell Firewall. Such add-ons are kind of first-class Citizens wherever I have Firefox installed. But I was wondering if they could interfere while using the Tor Browser. Thanks for your time.

Any/all add-ons pose another potential security risk. In other words, the more you install the more at risk you are that one of them may be phoning home all your browsing activity etc. Additionally, your unique combination of installed add-ons can potentially be probed by sites in order to track you. Using the default TBB with no additional add-ons is the best way to blend in with the crowd.
Some of the ones in your list seem redundant with the add-ons/configuration provided in TBB. For example, HTTPS Everywhere and Noscript are included and cookies are automatically deleted every session by default.

Anonymous

August 17, 2016

Permalink

ok

Anonymous

August 17, 2016

Permalink

any one else struggling to connect? keep getting "could not connect to tor control port" had this issue since i have updated, i have not changed any setting. anyone able to help?

Anonymous

August 17, 2016

Permalink

help

Anonymous

August 20, 2016

In reply to by Anonymous (not verified)

Permalink

I am on it

Anonymous

August 17, 2016

Permalink

Is is possible to prevent the automatic update untill I'm ready to engage the new version?
thanks

If a failed version should appear for a certain OS such as Linux, Mac OS or windows you can't use TOr as it will force the update to the version that may not run as expected/ This is why the user should have the ability to decide when to upgrade

Anonymous

August 17, 2016

Permalink

something weird happened after i update to last version by update manager tor won't open at all!! Linux Mint 18 Sarah.

What do you mean with "update manager"? Do you get an error message? If you open a terminal and change the directory to tor-browser_en-US (assuming you are using the en-US bundle) and start Tor Browser by "./start-tor-browser.desktop --debug" (without quotation marks) do you get any log output in your terminal which would help explain things?

Anonymous

August 17, 2016

Permalink

I line very much TOR browser. But lately it is working very slow. Please give me solution (if any).

Anonymous

August 18, 2016

Permalink

Many had said it and i´ll agree, please notify updates don´t make the browser inactive, lost a loot of info and documents for the documentary.

Ps By saying that, don´t mean I´m not grateful to TOR and the project but that is just a thing Goggle would do did not expect it from U.
Ty for update

Working as intended I'm not sure why the author of that thinks it's a problem when, "Not keeping data in the app bundle" is part of what is required to get Gatekeeper code signing working on OSX, and volatile data needs to go somewhere.

Anonymous

August 18, 2016

Permalink

Any plans to enhance the circuit visualizer/controller in torbutton? Only shows circuit for main domain of site you are accessing, but many websites do cross-domain requests - I realize this would require the extension monitoring requests locally - unsure whether this could be implemented securely - but some ad blockers do the same thing. It would be good to know which circuits are used by the cross-domain requests in a given tab and be able to request a new tor circuit for each of these domains.

Example:

URL domain: google.com

Torbutton shows:

Tor circuit for this site: google.com

This browser
Node1
Node2
Node3
Internet

google.com also connects to the domain gstatic.com which tor will do using a different circuit. However, torbutton does not display this other circuit.

I think you are misunderstanding how Tor Browser is working. The circuit visualizer is showing you which circuit is used for the domain in the URL bar and *all* other requests related to it (be them third or first party ones). That's the idea behind isolating everything to the URL bar domain which is one of our core ideas behind the Tor Browser design.

Anonymous

August 18, 2016

Permalink

I cannot open flash videos, Please note that I've already updated my flash adobe but still there is a massage appear saying that update your flash adobe every time. Please help

Flash and Tor Browser shouldn't be used together. If you must use Flash with tor you need a solution like Whonix where everything is sent through tor including Flash.

If you open a terminal and change the directory to tor-browser_en-US (assuming you are using the en-US bundle) and start Tor Browser by "./start-tor-browser.desktop --debug" (without quotation marks) do you get any log output in your terminal which would help explain things?

Anonymous

August 19, 2016

Permalink

hello,
since i migrate to the new version this tuesday , i can t no longer surf on the web because it takes a too long time before i can connect to sites. i used Tor since a long time and it is the first time that i got this problem
annie

Anonymous

August 19, 2016

Permalink

Hello
I have both a Imac and a Windows based laptop. There are no issues with running TOR on the Imac. The latest version on it runs flawlessly and I expect the latest one to do as well. However, not so with my Windows laptop, which is running Windows 10.
When I downloaded the 6.0.2 version and installed it would quit, as the warning said - unexpectedly. I assumed it was a fluke happening until I attempted many times afterwards with same result. Thinking that the problem was isolated to .02, I downloaded .04 with like results. ???
I am not to technical oriented so if you have a suggestion please keep it as simple as possible. Lol. I am running my laptop clean with no virus or malware programs installed or running. No problem with previous versions.
Help.

Anonymous

August 19, 2016

Permalink

hello all
i am used tor since a long time , but just
after the install of the last version , the access to all sites became very very slow and this speed can t allow to use tor any longer . what is the matter please ?

Anonymous

August 19, 2016

Permalink

ok

Anonymous

August 19, 2016

Permalink

Is it the case now that no pluggable transports are supported, or simply that no bridges are being provided?

Anon may have been referring to something I noticed as well, that no bridges of any kind were being offered by the bridges server for about two weeks. (And the only ones I have been seeing since it's been repopulated are ones I'd marked some time back as stale/nonresponsive but of course some recycling is to be expected.)