Feature #5379: Remove Polipo or replace it with Privoxy
Have APT directly use the Tor SOCKS proxy
See parent ticket for the rationale and early work on this.
Have APT directly use the Tor SOCKS proxy (Closes: #8194).
At the end of the chroot_local-hooks stage, we replace the hook that used to
tell APT to use the Polipo HTTP proxy with another one that does (a more
elaborate version) s,http://,tor+http://, in APT sources.
Then, APT will use the "tor+http" method, that we install in
/usr/lib/apt/methods, and that is a simple torsocks wrapper for the
#1 Updated by intrigeri about 5 years ago
Failed to backport apt-transport-tor for Wheezy, asked the maintainer.
Someone should retry the shim idea, then, as documented on the parent ticket. I think that our build system now supports some APT breakage after hooks have been run, and we already cause such breakage with
config/chroot_local-hooks/99-zzz_runtime_apt_proxy I think, so maybe we could as well do an elaborate
s,http://,tor://, in APT sources.
#2 Updated by intrigeri about 5 years ago
- Status changed from Confirmed to In Progress
- Target version changed from Hardening_M1 to Tails_1.3
- % Done changed from 0 to 50
- QA Check set to Ready for QA
- Feature Branch set to feature/8194-APT-socks
The shim works fine. Passes the
firewall_leaks automatic test suite features. Retargetting to 1.3, then :)
We should try to replace this trick with proper use of
apt-transport-tor once we are based on Jessie.