Tor Browser Bundle 1.2.10 Released

by phobos | November 21, 2009

On November 20, we released an updated Tor Browser Bundle, version 1.2.10, which includes:

  • updated Vidalia to 0.2.6
  • updated Pidgin to 2.6.3
  • updated Tor to 0.2.1.20
  • updated Firefox to 3.0.15
  • updated OpenSSL to 0.9.8l
  • updated libevent to 1.4.13

You can download the updated version at https://www.torproject.org/torbrowser/

Comments

Please note that the comment area below has been archived.

November 21, 2009

Permalink

Hi

Did I read that those two protocols are now suppoprted in pidgen, and hence this TBB? So voip over Tor is possible? I thought it was not possiple...

The SIP and streaming audio RTP in most VoIP normally uses UDP which is not carried over the Tor network. Tor supports only TCP.

(can we please change to a mathematical question CAPTCHA, i mostly cannot read the tiny obfuscated letters)

November 22, 2009

Permalink

Dear TOR team,
thanks for your great work and the update of the tb bundle.
Happy regards of the pc masters team

November 22, 2009

Permalink

We are waiting for information about updates..

Thank you for your information

November 24, 2009

Permalink

I don't want to run TOR, as I find it a pain in the inferior parte dorsum. So I uninstalled the Vidalia Bundle (twice!!!), and the darn thing still keeps popping up!

I run Windows 7 and Firefox 3.5.5.

November 27, 2009

Permalink

Sorry, I'm a complete noob, hope someone will help me with this question anyway. If I plan to use Pidgin through Tor, do I need to do something about torsocks. I tried to read this:
https://wiki.torproject.org/noreply/TheOnionRouter/TorifyHOWTO
but I don't know. Is it already included in the TBB? What does it do (if someone could explain it to me in the most simple way...)?

November 29, 2009

In reply to phobos

Permalink

Thank you for your answer! Then I guess as long as my tor works I don't have to do anything special with Pidgin to make it work. I probably don't even need to know what torsocks is. Thank you very much!

November 30, 2009

Permalink

Can YOU protect us from Virgin Media/Detica Deep Packet Interception? and are you already doing so ?

given that Virgin Media are now in bed with Detica
https://nodpi.org/2009/11/27/virgin-media-in-bed-with-detica/

"November 27, 2009 by Paladine
Filed under: News
So yesterday I spent the entire day working on this problem of Virgin Media announcing that they are commencing with a trial of Detica’s Deep Packet Inspection product called CView.

Basically, CView will look at the ISP dataflows, detect when p2p technology is being used and then look at the contents of the packets and check them against a database given to them by the RIAA to find out if the data is infringing on copyright.

I am not going to get into any of the political or legal stuff in this blog post – I did all that yesterday in preparing the press release issued by Privacy International; I just wanted to take a few moments to try and inspire direct action.

Over the past 24 hours I have read a lot of the comments people are posting around the web on this issue and everyone seems to be saying “We will just switch to encryption” and whereas I think that is a good idea and endorse it (this web site has been served over SSL since it was launched), I think more needs to be done.
.....
.......
"
given many Virgin media users are now on 20/Mbit down , 50Mbit down , and several on the new trials of 50Mbit down , 10Mbit UPload rates it seems that a direct Encrypted tunnel from sime Virgin Media users PC Lans to a selection of dedicated server side web and other servers around the world would be a very good thing to use for Anti Deep Packet interception IF YOU were to be able to protect us from that DPI kit actually looking at and inderstanding and decompiling the packets.

if a secure TOR tunnel could be used then many TOR users could potentially benefit from this mass of new VM users upload pipes coming on line, for lots of other TOR and related purposes....

SO can You protect the UKs Massive Virgin Media cable userbase traffic being effectively inspected even though OC we cant stop them actually interecpting them
or any secure generic easy to install and use overlay tunnel for all your traffic to then flow through....

December 03, 2009

Permalink

The documentation says not to use Firefox at the same time as the Portable Firefox in the bundle, so as to avoid confusion. Is this possibility of user confusion the only reason, or can the two Firefoxes interfere with each other's configuration?

December 06, 2009

Permalink

When will a torbutton be available that is compatible with Firefox 3.6 I am running Windows 7 and use The current Firefox 3.6 Beta 4.

Thanks for all your hard work on Tor. web security is key and the tor network makes it easy.

December 06, 2009

Permalink

First thanks for tall the great work you do. I've never had a problem until now:

So I just downloaded and installed the newest version of Tor Browser Bundle Tor version 1.2.10. When I try to extract the file I get the following mressage:

7-Zip: Diagnostic Messages
"can not open output file Tor Browser\Firefox\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca}\compon"

There are a total of 61 lines, all appear to read the same except the very last word which changes to "defaul" or "chrome" instead of "compon"
It appears as everything is extracted as normal but when I try to run Tor I just get an empty Firefox window without the Tor "Congratulations" page.

I also just installed Windows XP service pack 3. Not sure if this has anything to do with it.

December 06, 2009

In reply to by Anonymous (not verified)

Permalink

Same poster from above:

I also tried extracting with Winrar and got pretty much the same:

"tor-browser-1.2.10_en-US.exe: Cannot open Tor Browser\FirefoxPortable\App\Firefox\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca}\components\certDialogsOverride.js"

It goes on for about 60 lines.

I hate this. I have the same problem years later, I find someone with the same problem, and all they say is, "Never mind. I solved it." I didn't!

December 08, 2009

Permalink

1) Does tor browser bundle contain privoxy or polipo or none? Because ideally it should contain everything that is contained in latest tor installation (0.2.1.20). So it should contain polipo. But using tor browser bundle, sometimes there are errors like "503 forwarding failure (privoxy....)". That means browser bundle is still using privoxy. Also the torbutton preferences has "use privoxy" ticked. Is something wrong somewhere?

2) How do i check whether polipo/privoxy is being used by the "browser bundle" ?

The tor browser bundle contains polipo. It has always contained polipo. All bundles include polipo as of 0.2.1.20-stable release.

There are exit nodes that sometimes run privoxy as a normal caching proxy to filter something.

You can check by looking at your task manager and see polipo.exe running.

December 10, 2009

In reply to phobos

Permalink

After starting tor bundle & firefox successfully establishing a circuit, I checked in task manager, there is no entry of polipo.exe ??

December 12, 2009

In reply to phobos

Permalink

It did not ask for polipo (or anything else) during install! It just EXTRACTED the contents to specified directory.

1) I downloaded this:
h**p://www.torproject.org/torbrowser/dist/tor-browser-1.2.10_en-US.exe
2) Then i clicked it, it extracted things. Then i clicked on 'start tor browser.exe' (i am using vista)
3) Then i started task manager and saw no entry of polipo.

I can see all the images on h**p://www.torproject.org/torbrowser/index.html.en (except last one ofcourse because i did not download IM version).
Also, i have privoxy installed (from earlier version) and i think the 'browser bundle' is using that installed privoxy instead of polipo.

December 17, 2009

Permalink

Hi, I downloaded Tor Browser Bundle 1.2.10 and manually update firefox to the latest version. Does it matter? Thanks for your hard work

Well, maybe. torbutton 1.2.3 is the first version that properly supports firefox 3.5.x codebase. Previous versions leaked data in various ways with FF 3.5.x. That's why 3.0.x is included in tor browser bundles.

Now that torbutton 1.2.3 is out, we're working on updating to ff 3.5.x in tbb.

December 18, 2009

In reply to phobos

Permalink

Thanks for your reply. I installed foxyproxy and noticed it has an option of "Tor Wizard"

December 19, 2009

Permalink

phobos: would you please answer the previous unanswered question posted:

"On December 12th, 2009 Anonymous said:

It did not ask for polipo (or anything else) during install! It just EXTRACTED the contents to specified directory"
...........
.........
.........
......
...

my own tor browser bundle doesn't run POLIPO either, nor does my previous versions.

actually, previous versions automatically run pidgin and this new version doesn't

December 22, 2009

Permalink

Overall this version has been very good in my experience. It is the most apparently stable and consistent that I have yet used. Performance also seems to be improved. Yes, I realize that it is impossible to distinguish from the user side performance improvements resulting from changes to the client from those resulting from network enhancements, but there was a very palpable improvement as soon as I began using the new bundle. Having written that, I must ask if there have been any issues reported with the Message Log function as of this version? It seems as if I get a different level of detail (or possibly truncation of reported events at a different point) every time I fire up Tor. Settings are "error", "warning", "notice" on; "info" and "debug" off, which to my best recall are unchanged through several previous version installations. This is asked mostly out of curiosity - this is not a tremendously important issue to me, although I did previously like seeing when my torrc exit node directives were _not_ honored.

December 23, 2009

Permalink

Hello,

I appreciate your work.

I cannot find any information regarding UPDATING Firefox.

It downloads 3.0.16 but then when I re-start, it says proxy refusing connections.

And what about updating add-ons?

I can't seem to find an FAQ or forum for such basic questions as these- specifically about the browser bundle.

December 23, 2009

Permalink

Is it possible to use the 'Adblock-plus' addon in browser bundle? Would this compromise anything?

December 24, 2009

Permalink

Hello phobos,

Did you see my post just above regarding updating Firefox?

I finally managed to update to 3.0.16 and would like to be sure this is okay- that it won't compromise the security and anonymity of the bundle.

Likewise, with updating add-ons, including Torbutton (Firefox tells me a newer version is availabale)

I realize you are probably quite busy but these seem like very basic questions that many others have and this info. really needs to be stated clearly somewhere.

Thank you again.

is this what you want? "Well, maybe. torbutton 1.2.3 is the first version that properly supports firefox 3.5.x codebase. Previous versions leaked data in various ways with FF 3.5.x. That's why 3.0.x is included in tor browser bundles.

Now that torbutton 1.2.3 is out, we're working on updating to ff 3.5.x in tbb.
"

January 23, 2010

Permalink

TLS error: unexpected close while renegotiating (SSL_ST_OK) on Mac OS since Security Update 2010-001.

July 27, 2010

Permalink

tor is the best free browser,it makes me comfortable and reliable.but right now it was blocked since june.so u people should try and revive it back 4 the common man in streat GOD BLESS U PEOPLE IN JESUS NAME AMEN.

April 13, 2012

Permalink

I must have missed it in all of the documentation that I have read, but how do you uninstall the Tor Browser Bundle?