I fully support your thinking, and I believe that the high number of restrictions will create as a consequence a greater number of distrustful people who will suffer greatly from the controls and will look for alternatives to feel more protected and free. I mean as a feeling, even placebo, of having full control and not being controlled.
Of course there will be those who will not take care of these options and will not look for them.
But now more than ever there is a human need to support the growth of these services, at least I think, to ensure a safe area and a private space for anyone.
darknet.py provides ease of use and security that in some cases is not easy to recreate by simply using torrc.
Features:
- Compatible with any SystemD based Linux
- Makes TOR work with SELinux on RHEL distro
- Secures Linux Kernel preventing IPv4 Forwarding, etc...
- Makes DNS leaks almost impossible
- Redirects all traffic thought TOR
- Works Out of the Box
- MAC Address Spoofing
This software was created to have a Transparent Proxy based on TOR as an alternative to VPN and easy to use in any Linux distribution mainly, especially those based on RHEL or with SELINUX.
Another reason for its creation is that it can be easily combined with i2p increasing the anonymity of the latter network.
As for the article, I know it, in fact, I relied on it for the creation of darknet.py, and the text clearly states that it is not a discouraged only method but rather a method to be reproduced only if you have knowledge and ability to limit the Packet Forwarding of the Linux Kernel, Dropping packages that could create a leaky situation and other practices that could compromise anonymity.
Currently, there are few cases where it is possible to have a DNSLeak with darknet.py and obliviously, it's up to the end user to take the right precautions for their need for anonymity.
darknet.py is an experimental yet stable software that will surely be subject to improvements over time, one on all the different rules of IPTables that are currently good but not excellent.
22/02/2020 Update: - I have fixed some typos. - I have fixed some compatibility issues in RHEL distributions using SELinux. - Improved the exclusion of addresses that should not be routed via TOR. - DNS port 53 to 5353 - Started a parallel project to support other Unix like distributions like BSD.
22/02/2020 Update:
- I have fixed some typos.
- I have fixed some compatibility issues in RHEL distributions using SELinux.
- Improved the exclusion of addresses that should not be routed via TOR.
- DNS port 53 to 5353
- Started a parallel project to support other Unix like distributions like BSD.
This is my second experiment with Python. I hope it's useful to you. I tried to use only the standard library + TOR. Compatibility with Debian/Ubuntu and Fedora is confirmed. If there are any requests or you found Bugs please contact me or start a pull request on github.
I humbly await your feedback.
Thanks.
Pug is an HAML-like tool that allows you to abstract html syntax, preventing errors and improving frontend development speed. Thanks for the tip, I'm updating README to include more informations.
I recently stumbled upon a super useful extension that has significantly enhanced my workflow and productivity.
Happy Coding!