Commit 9dd64b9e authored by Tails developers's avatar Tails developers
Browse files

Merge branch 'master' into stable

parents ec753f22 dd0e2b48
......@@ -7,7 +7,7 @@
msgid ""
msgstr ""
"Project-Id-Version: PACKAGE VERSION\n"
"POT-Creation-Date: 2011-06-13 10:04-0600\n"
"POT-Creation-Date: 2011-09-23 15:06-0600\n"
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
......@@ -48,10 +48,11 @@ msgid ""
"system. It is [[Free Software|license]] and based on [[Debian GNU/Linux|"
"http://www.debian.org/]]."
msgstr ""
"Tails ist ein Live System: ein komplettes Betriebssystem das dafür geschaffen wurde, "
"unabhängig des bereits installierten Betriebssystems eines Computers "
"von einer CD oder einem USB-Stick aus zu arbeiten. Es ist [[Freie Software|license]] "
"und basiert auf [[Debian GNU/Linux|http://www.debian.org/]]."
"Tails ist ein Live System: ein komplettes Betriebssystem das dafür "
"geschaffen wurde, unabhängig des bereits installierten Betriebssystems eines "
"Computers von einer CD oder einem USB-Stick aus zu arbeiten. Es ist [[Freie "
"Software|license]] und basiert auf [[Debian GNU/Linux|http://www.debian."
"org/]]."
#. type: Plain text
msgid ""
......@@ -60,8 +61,8 @@ msgid ""
"image and sound editor, etc."
msgstr ""
"Tails beinhaltet verschiedene Programme die im Hinblick auf die Sicherheit "
"vorkonfiguriert wurden: einen Instant Messaging Client, ein E-Mail Programm, ein Office-Paket, "
"einen Bild- und Audioeditor, u.a...."
"vorkonfiguriert wurden: einen Instant Messaging Client, ein E-Mail Programm, "
"ein Office-Paket, einen Bild- und Audioeditor, u.a...."
#. type: Title =
#, no-wrap
......@@ -73,7 +74,9 @@ msgid ""
"Tails relies on the Tor anonymity network to protect your privacy online: "
"all outgoing connections to the Internet are forced to go through Tor."
msgstr ""
"Tails setzt auf das Tor Anonymisierungs-Netzwerk zum Schutze Ihrer Privatsphäre: alle ausgehenden Verbindungen zum Internet werden zwingend durch Tor geleitet."
"Tails setzt auf das Tor Anonymisierungs-Netzwerk zum Schutze Ihrer "
"Privatsphäre: alle ausgehenden Verbindungen zum Internet werden zwingend "
"durch Tor geleitet."
#. type: Plain text
msgid ""
......@@ -82,7 +85,11 @@ msgid ""
"confidential business activities and relationships, and state security known "
"as traffic analysis."
msgstr ""
"Tor ist Freie Software und ein offenes Netzwerk das Ihnen dabei hilft, sich gegen eine Form der Netzwerküberwachung zu wehren, die persönliche Freiheit und Privatsphäre, vertrauliche Geschäftsbeziehungen und -tätigkeiten, und die Sicherheit von Ländern gefährdet: die sogenannte *\"Verkehrsdaten-Analyse\"*."
"Tor ist Freie Software und ein offenes Netzwerk das Ihnen dabei hilft, sich "
"gegen eine Form der Netzwerküberwachung zu wehren, die persönliche Freiheit "
"und Privatsphäre, vertrauliche Geschäftsbeziehungen und -tätigkeiten, und "
"die Sicherheit von Ländern gefährdet: die sogenannte *\"Verkehrsdaten-Analyse"
"\"*."
#. type: Plain text
msgid ""
......@@ -92,33 +99,42 @@ msgid ""
"visit, and it prevents the sites you visit from learning your physical "
"location."
msgstr ""
"Tor schützt Sie dadurch, Ihre Kommunikation durch ein verteiltes Netzwerk von Relais, betrieben von Freiwilligen aus aller Welt, springen zu lassen:<br/>\n"
"&nbsp;Es verhindert, daß jemand der Ihre Internetverbindung beobachtet nachvollziehen kann, welche Seiten Sie besuchen, und sorgt dafür, daß die von Ihnen besuchten Seiten Ihren tatsächlichen Standort nicht ausfindig machen können."
"Tor schützt Sie dadurch, Ihre Kommunikation durch ein verteiltes Netzwerk "
"von Relais, betrieben von Freiwilligen aus aller Welt, springen zu lassen:"
"<br/>\n"
"&nbsp;Es verhindert, daß jemand der Ihre Internetverbindung beobachtet "
"nachvollziehen kann, welche Seiten Sie besuchen, und sorgt dafür, daß die "
"von Ihnen besuchten Seiten Ihren tatsächlichen Standort nicht ausfindig "
"machen können."
#. type: Plain text
msgid ""
"To learn more about Tor, see the official [Tor website](https://www."
"torproject.org/):"
msgstr ""
"Mehr über Tor erfahren Sie auf der offiziellen [Tor website](https://www.torproject.org/index.html.de):"
"Mehr über Tor erfahren Sie auf der offiziellen [Tor website](https://www."
"torproject.org/index.html.de):"
#. type: Bullet: '- '
msgid ""
"[Why we need Tor](https://www.torproject.org/about/overview.html."
"en#whyweneedtor)"
msgstr ""
"[Warum wir Tor brauchen](https://www.torproject.org/about/overview.html.de#whyweneedtor)"
"[Warum wir Tor brauchen](https://www.torproject.org/about/overview.html."
"de#whyweneedtor)"
#. type: Bullet: '- '
msgid ""
"[How does Tor work](https://www.torproject.org/about/overview.html."
"en#thesolution)"
msgstr ""
"[Wie arbeitet Tor?](https://www.torproject.org/about/overview.html.de#thesolution)"
"[Wie arbeitet Tor?](https://www.torproject.org/about/overview.html."
"de#thesolution)"
#. type: Bullet: '- '
msgid "[Who uses Tor?](https://www.torproject.org/about/torusers.html.en)"
msgstr "[Wer verwendet Tor?](https://www.torproject.org/about/torusers.html.en) (en)"
msgstr ""
"[Wer verwendet Tor?](https://www.torproject.org/about/torusers.html.en) (en)"
#. type: Title =
#, no-wrap
......@@ -132,7 +148,12 @@ msgid ""
"a friend or one at your local library. After removing your Tails CD or USB "
"stick the computer can start again on its usual operating system."
msgstr ""
"Tails auf einem Computer zu benutzen verändert weder das installierte Betriebssystem, noch ist es von diesem abhängig. Dadurch können Sie es auf die gleiche Weise auf Ihrem, dem Computer eines Freundes, oder dem der örtlichen Bibliothek verwenden. Nachdem Sie Ihre Tails-CD oder den USB-Stick entfernt haben, kann der Computer wieder wie gewohnt von seinem eigenen Betriebssystem starten."
"Tails auf einem Computer zu benutzen verändert weder das installierte "
"Betriebssystem, noch ist es von diesem abhängig. Dadurch können Sie es auf "
"die gleiche Weise auf Ihrem, dem Computer eines Freundes, oder dem der "
"örtlichen Bibliothek verwenden. Nachdem Sie Ihre Tails-CD oder den USB-Stick "
"entfernt haben, kann der Computer wieder wie gewohnt von seinem eigenen "
"Betriebssystem starten."
#. type: Plain text
msgid ""
......@@ -142,7 +163,13 @@ msgid ""
"shuts down. So you won't leave any trace neither of the Tails system nor of "
"what you did on the computer. That's why we call it \"amnesic\"."
msgstr ""
"Tails wurde mit besonderer Sorgfalt konfiguriert nicht die Festplatte des Computers zu benutzen, auch nicht wenn Auslagerungsspeicher (swap space) zur Verfügung steht. Der einzige von Tails genutze Speicher ist der Arbeitsspeicher, der automatisch gelöscht wird, sobald der Computer herunterfährt. So hinterlassen sie weder Spuren durch das Tail System, noch was Sie auf dem Computer getan haben. Deshalb bezeichnen wir dies als \"Amnesie\"."
"Tails wurde mit besonderer Sorgfalt konfiguriert nicht die Festplatte des "
"Computers zu benutzen, auch nicht wenn Auslagerungsspeicher (swap space) zur "
"Verfügung steht. Der einzige von Tails genutze Speicher ist der "
"Arbeitsspeicher, der automatisch gelöscht wird, sobald der Computer "
"herunterfährt. So hinterlassen sie weder Spuren durch das Tail System, noch "
"was Sie auf dem Computer getan haben. Deshalb bezeichnen wir dies als "
"\"Amnesie\"."
#. type: Plain text
msgid ""
......@@ -151,7 +178,11 @@ msgid ""
"save some documents to another USB or external hard-disk and take them aways "
"for future use."
msgstr ""
"Dies erlaubt Ihnen an sensiblen Dokumenten auf jedem Computer zu arbeiten, und schützt Sie vor Datenwiederherstellung nach dem Herunterfahren. Natürlich können Sie weiterhin ausgewählte Dokumente und Dateien auf einem anderen USB-Stick oder einer externen Festplatte speichern, und für die zukünftige Nutzung mit sich nehmen."
"Dies erlaubt Ihnen an sensiblen Dokumenten auf jedem Computer zu arbeiten, "
"und schützt Sie vor Datenwiederherstellung nach dem Herunterfahren. "
"Natürlich können Sie weiterhin ausgewählte Dokumente und Dateien auf einem "
"anderen USB-Stick oder einer externen Festplatte speichern, und für die "
"zukünftige Nutzung mit sich nehmen."
#. type: Title =
#, no-wrap
......@@ -162,24 +193,32 @@ msgstr "Was kommt als Nächstes?\n"
msgid "To continue discovering Tails, you can now read:"
msgstr "Um Tails weiter zu entdecken, können Sie folgende Seiten lesen:"
#. type: Bullet: ' - '
msgid "why [[should you trust Tails?|doc/trust]]"
msgstr ""
#. type: Bullet: ' - '
msgid ""
"the [[warning page|doc/warning]] page to understand better the security "
"limitations of Tails and Tor,"
msgstr "die [[Warnungen|doc/warning]] um die Sicherheits-Beschränkungen von Tails und Tor besser zu verstehen,"
msgstr ""
"die [[Warnungen|doc/warning]] um die Sicherheits-Beschränkungen von Tails "
"und Tor besser zu verstehen,"
#. type: Bullet: ' - '
msgid ""
"more details about the [[features and software|features]] included in Tails,"
msgstr ""
"weitere Details zu [[Funktionen und Software|features]], die in Tails enthalten sind,"
"weitere Details zu [[Funktionen und Software|features]], die in Tails "
"enthalten sind,"
#. type: Bullet: ' - '
msgid ""
"our [[design document|contribute/design]] about Tails specification, threat "
"model and implementation."
msgstr ""
"unser [[Design Dokument|contribute/design]] zu Tails technischer Spezifikation, Gefahrenmodell und Implementierung."
"unser [[Design Dokument|contribute/design]] zu Tails technischer "
"Spezifikation, Gefahrenmodell und Implementierung."
#. type: Title =
#, no-wrap
......@@ -192,8 +231,9 @@ msgid ""
"Live|http://live.debian.net]], and [[Tor|https://www.torproject.org/]]; see "
"our [[contribute/relationship with upstream]] document for details."
msgstr ""
"Tails wäre ohne [[Debian|http://www.debian.org/]], [[Debian "
"Live|http://live.debian.net]], und [[Tor|https://www.torproject.org/]] nicht möglich; siehe unsere [[contribute/relationship_with_upstream]] Seite für Details."
"Tails wäre ohne [[Debian|http://www.debian.org/]], [[Debian Live|http://live."
"debian.net]], und [[Tor|https://www.torproject.org/]] nicht möglich; siehe "
"unsere [[contribute/relationship_with_upstream]] Seite für Details."
#. type: Bullet: ' - '
msgid ""
......@@ -203,18 +243,22 @@ msgid ""
"be considered as its spiritual successor\"."
msgstr ""
"Tails wurde durch die [[Incognito LiveCD|http://web.archive.org/"
"web/20090220133020/http://anonymityanywhere.com/]] inspiriert. Der Inkognito-Autor erklärte diese am 23. März 2010 für tot und schrieb, daß Tails \"als der geistige Nachfolger angesehen werden sollte\"."
"web/20090220133020/http://anonymityanywhere.com/]] inspiriert. Der Inkognito-"
"Autor erklärte diese am 23. März 2010 für tot und schrieb, daß Tails \"als "
"der geistige Nachfolger angesehen werden sollte\"."
#. type: Bullet: ' - '
msgid ""
"The [[Privatix Live-System|http://mandalka.name/privatix/]] an early source "
"of inspiration, too."
msgstr ""
"Das [[Privatix Live-System|http://mandalka.name/privatix/]] war ebenfalls eine frühe Quelle der Inspiration."
"Das [[Privatix Live-System|http://mandalka.name/privatix/]] war ebenfalls "
"eine frühe Quelle der Inspiration."
#. type: Bullet: ' - '
msgid ""
"Portions of Tails are based on TrueCrypt, freely available at [[http://www."
"truecrypt.org/]]."
msgstr ""
"Teile von Tails basieren auf TrueCrypt, frei erhältlich unter [[http://www.truecrypt.org/]]."
"Teile von Tails basieren auf TrueCrypt, frei erhältlich unter [[http://www."
"truecrypt.org/]]."
......@@ -7,7 +7,7 @@
msgid ""
msgstr ""
"Project-Id-Version: PACKAGE VERSION\n"
"POT-Creation-Date: 2011-08-29 16:21+0300\n"
"POT-Creation-Date: 2011-09-23 15:06-0600\n"
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
......@@ -139,6 +139,10 @@ msgstr ""
msgid "To continue discovering Tails, you can now read:"
msgstr ""
#. type: Bullet: ' - '
msgid "why [[should you trust Tails?|doc/trust]]"
msgstr ""
#. type: Bullet: ' - '
msgid ""
"the [[warning page|doc/warning]] page to understand better the security "
......
......@@ -6,9 +6,9 @@
msgid ""
msgstr ""
"Project-Id-Version: tails-about-fr\n"
"POT-Creation-Date: 2011-06-13 10:04-0600\n"
"PO-Revision-Date: 2011-06-17 17:00+0100\n"
"Last-Translator: nada <nada@quedal.net>\n"
"POT-Creation-Date: 2011-09-23 15:06-0600\n"
"PO-Revision-Date: 2011-10-08 12:31+0100\n"
"Last-Translator: \n"
"Language-Team: nada-fr <LL@li.org>\n"
"Language: \n"
"MIME-Version: 1.0\n"
......@@ -105,9 +105,13 @@ msgstr "Et ensuite ?\n"
msgid "To continue discovering Tails, you can now read:"
msgstr "Pour aller plus loin dans votre découverte de Tails, vous pouvez lire :"
#. type: Bullet: ' - '
msgid "why [[should you trust Tails?|doc/trust]]"
msgstr "pourquoi [[faire confiance à Tails ?|doc/trust]]"
#. type: Bullet: ' - '
msgid "the [[warning page|doc/warning]] page to understand better the security limitations of Tails and Tor,"
msgstr "la [[page d'avertissement|doc/warning]] qui vous présente les limites en matière de sécurité de Tails et de Tor,"
msgstr "la [[page d'avertissements|doc/warning]] qui vous présente les limites en matière de sécurité de Tails et de Tor,"
#. type: Bullet: ' - '
msgid "more details about the [[features and software|features]] included in Tails,"
......@@ -115,7 +119,7 @@ msgstr "une revue détaillée des [[fonctionnalités et logiciels inclus|feature
#. type: Bullet: ' - '
msgid "our [[design document|contribute/design]] about Tails specification, threat model and implementation."
msgstr ""
msgstr "notre [[page conception|contribute/design]] de Tails, traite des spécifications ainsi que des contenus."
#. type: Title =
#, no-wrap
......
......@@ -64,6 +64,7 @@ What's next?
To continue discovering Tails, you can now read:
- why [[should you trust Tails?|doc/trust]]
- the [[warning page|doc/warning]] page to understand better the security limitations of Tails and Tor,
- more details about the [[features and software|features]] included in Tails,
- our [[design document|contribute/design]] about Tails specification, threat model and implementation.
......
......@@ -7,7 +7,7 @@
msgid ""
msgstr ""
"Project-Id-Version: PACKAGE VERSION\n"
"POT-Creation-Date: 2011-09-13 03:32-0600\n"
"POT-Creation-Date: 2011-09-24 14:44-0600\n"
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
......@@ -96,8 +96,9 @@ msgstr ""
#. type: Plain text
msgid ""
"In the graphical boot menu, press `TAB` to add the `debug` parameter to the "
"boot command line, and remove the `splash` one from there, so that a bunch "
"of hopefully useful messages are displayed on boot."
"boot command line, and remove the `quiet` parameter (as many times as it "
"appears: remove each one) from there, so that a bunch of hopefully useful "
"messages are displayed on boot."
msgstr ""
#. type: Plain text
......
......@@ -7,7 +7,7 @@
msgid ""
msgstr ""
"Project-Id-Version: PACKAGE VERSION\n"
"POT-Creation-Date: 2011-09-13 03:32-0600\n"
"POT-Creation-Date: 2011-09-24 14:44-0600\n"
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
......@@ -96,8 +96,9 @@ msgstr ""
#. type: Plain text
msgid ""
"In the graphical boot menu, press `TAB` to add the `debug` parameter to the "
"boot command line, and remove the `splash` one from there, so that a bunch "
"of hopefully useful messages are displayed on boot."
"boot command line, and remove the `quiet` parameter (as many times as it "
"appears: remove each one) from there, so that a bunch of hopefully useful "
"messages are displayed on boot."
msgstr ""
#. type: Plain text
......
......@@ -6,7 +6,7 @@
msgid ""
msgstr ""
"Project-Id-Version: PACKAGE VERSION\n"
"POT-Creation-Date: 2011-09-13 03:32-0600\n"
"POT-Creation-Date: 2011-09-24 14:44-0600\n"
"PO-Revision-Date: 2011-03-25 12:39+0100\n"
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
"Language-Team: LANGUAGE <LL@li.org>\n"
......@@ -106,10 +106,16 @@ msgid "The Live System does not boot entirely\n"
msgstr "Le Système Live Amnesique Incognito ne démarre pas complètement\n"
#. type: Plain text
#, fuzzy
#| msgid ""
#| "In the graphical boot menu, press `TAB` to add the `debug` parameter to "
#| "the boot command line, and remove the `splash` one from there, so that a "
#| "bunch of hopefully useful messages are displayed on boot."
msgid ""
"In the graphical boot menu, press `TAB` to add the `debug` parameter to the "
"boot command line, and remove the `splash` one from there, so that a bunch "
"of hopefully useful messages are displayed on boot."
"boot command line, and remove the `quiet` parameter (as many times as it "
"appears: remove each one) from there, so that a bunch of hopefully useful "
"messages are displayed on boot."
msgstr ""
"Dans le menu graphique de démarrage, appuyez sur la touche `TAB` pour "
"ajouter le paramètre `debug` à la ligne de commande de démarrage, et ôtez le "
......
......@@ -39,8 +39,9 @@ The Live System does not boot entirely
--------------------------------------
In the graphical boot menu, press `TAB` to add the `debug` parameter
to the boot command line, and remove the `splash` one from there, so
that a bunch of hopefully useful messages are displayed on boot.
to the boot command line, and remove the `quiet` parameter (as many
times as it appears: remove each one) from there, so that a bunch of
hopefully useful messages are displayed on boot.
Then try to boot again, and append the end of the boot log (or what
seems to be relevant to your problem) to your bug report.
......
I have found that if I change the default time zone setting at the boot menu it will bring me to a logon prompt. I dont know what the password is. I know that it is NOT "amnesia". I cant boot tails if I canhe the time zone settings at the boot prompt.
> How do you set the timezone? Entering an incorrect time zone seems
> to cause the behaviour you describe, and thus this is a case we
> don't really care about. For the record, the correct form is to set
> the zone according to the structure of /usr/share/zoneinfo, e.g.:
> Etc/GMT+1 or America/Detroit. Marking this as [[done]].
Tails 0.8
Tails seems to be resetting the clock to 16 September 2011 12:00am at start up, subsequently causing Vidalia/Tor to fail at boot time. Booting back to the Ubuntu installation on the internal hard drive consistently shows the correct date and time.
Is it possible that the bug fix (link below) is what is resetting the system time? If so how can I further analyse this issue?
http://tails.boum.org/bugs/Cannot_connect_to_Tor_if_clock_is_too_wrong/
>I just noticed this too. Assuming you're having the same problem I had, keep your network connection unplugged while you boot up, then
sudo gedit /etc/NetworkManager/dispatcher.d/50-htp.sh
>and delete the line that says
mail.riseup.net
>save the file, then plug into your network.
>There's more to the problem, but that should be an easy workaround. More detail at: [[bugs/__34__Clock_is_approx._6_months_after_the_release_date__34___but_it_was_set_correctly]]
Per a discussion on #tor-dev and later #tails with rransom and katmagic it came
to light that FireGPG may have a few serious security and anonymity issues
(katmagic even claimed with "85%" certainty that these issues were among the
main reasons FireGPG was discontinued):
# Decrypted text can be stolen though JavaScript
When decrypting a PGP block in a text box using FireGPG, it is possible for the
site (or exit node through injects) to steal the decrypted text by using
JavaScript.
## Sample attack
<html>
<head>
<script type="text/javascript">
function decrypt() {
var elem = document.getElementById("pgp_msg");
if (elem.innerHTML != elem.value) {
elem.innerHTML = elem.value;
alert(elem.value);
}
}
window.setInterval(decrypt, 1000);
</script>
</head>
<body>
<textarea id="pgp_msg" style="height: 600px; width: 600px">
-----BEGIN PGP MESSAGE-----
<snip>
-----END PGP MESSAGE-----
</textarea>
</body>
</html>
rransom tested this exploit, and it worked. A similar approach should
also work for stealing a plaintext written in a text box before it's encrypted.
## Mitigations
Set extensions.firegpg.result_always_in_new_window to true. With this set, the
results of crypto operations are shown in a new window, so any
JavaScript on the page with the PGP block cannot touch it. However, this does
not protect against JavaScript stealing the plaintext before it's encrypted.
To protect against that the user would have to use FireGPG's "text editor" (or
the Seahorse plugin for gedit, or similar) to write the plaintext,
encrypt and then copy the ciphertext to the text box.
# Fingerprint users based on silent signature verification
If it is possible to use JavaScript to check signatures, an attacker could
potentially learn the user's whole key chain by replaying messages and their
signatures made by those key holders. This would give the attacker an awful lot
of identifying bits of the user.
## Mitigation?
It is unclear whether there is any facility for this in FireGPG. The FireGPG
API may enable it, so it should definitely be disabled (it's disabled by
default in Tails), but who knows what other stuff is in there.
......@@ -10,3 +10,5 @@ This should be patched to not make ANY connections at startup beyond the expecte
> [[todo/Remove_HTP_and_replace_with_greeter_option___47___boot_parameter]] could be of interest. :) --JohnDoe
>> See up-to-date plans that will fix this on [[todo/remove_the_htp_user_firewall_exception]].
> Take a look at how the Haven Project does this. It keeps network cards down until explicitly turned on by the user. ["No Network Activity by Default" section](https://www.haven-project.org/overview.html). THP uses [upstart](http://upstart.ubuntu.com/) to accomplish this. Even a single ARP from the computer running TAILS will give away the MAC and presence of a live computer. Also see the [[todo/macchanger]] todo.
Hi Tails developers,
Here a bug: I run Tails from USB, when desktop shows, I start my wireless connection using the icon up-right corner, when connection established I receive the black-popup alert about "Tor-time-syncronization".. 4 times upon 5, Tor doesnt start and idle for 10 minutes, after it comes out another black-popup telling the synchronization failed, Tor starts but ends because cant connect, and after few seconds system becomes unstable and hungs totally, needs reset.. I tried to run tor manually but receive the error "port already binded"..
Question/workaround: is it possible to disable the "Tor-time-syncronization"?
Thanks :)
#### TAILS 0.8
After establishing Tor circuit and automatically starting Iceweasel warning appears in Vidalia Message Log:
* *Basic* <br />
[05:54:14] Potentially Dangerous Connection! - One of your applications established a connection through Tor to "8.8.8.8:53" using a protocol that may leak information about your destination. Please ensure you configure your applications to use only SOCKS4a or SOCKS5 with remote hostname resolution.
* *Advanced* <br />
Sep 26 05:54:14.291 [Warning] Your application (using socks4 to port 53) is giving Tor only an IP address. Applications that do DNS resolves themselves may leak information. Consider using Socks4A (e.g. via privoxy or socat) instead. For more information, please see https://wiki.torproject.org/TheOnionRouter/TorFAQ#SOCKSAndDNS.
> This warning can be safely ignored. The problem the warning is
> hinting at is this: DNS (which uses port 53) can be done both over
> TCP and UDP. Tor only supports TCP, so if the application chooses to
> use UDP for whatever reason, that query may not go through Tor.
> Hence any one monitoring your connection would then see which site
> you're trying to reach, which is really bad. However, in Tails that
> cannot happen becuase of our [[DNS setup|contribute/design/Tor_enforcement/DNS]]
> and [[contribute/design/Tor_enforcement]] in general.
>> Thus closing. [[done]]
EDIT: Sometimes Iceweasel starts automatically with the system, sometimes not but the warning appears irrespective of it.
> This would be a different bug, because it has nothing to do with this.
EDIT#2: OPs were not specific, but for me, on 2 different hardware clients (HP tower & Dell LT), using different circuits, from different ISPs, in Tails 0.8 Tor failed to load (circuit node search timed out) after announcing this error in the Vidalia message log. Tails 0.72 had been running perfectly on the HP. YMMV but for some of us it appears that unedited v0.8 is completely broken...
> This would also be a different bug. Please open a new one and supply
> some more information. However, it may have been related to the
> recent [[issues with one of our time sources|bugs/__34__Clock_is_approx._6_months_after_the_release_date__34___but_it_was_set_correctly]]
> so you might want to retry.
When clicking on https://boum.org/mailman/listinfo/amnesia-news today I get a warning from Firefox re " ..site's identity cannot be verified" due to an invalid security certificate.
Tried with 3 different comp configs - 2 on actual hardware and 1 inside a VM - and same lockup on the Vidalia software with each. I also got the same messages in Tor log as previous poster regarding ' connection to 8.8.8.8:53 '. Without internet connection (through Tor) , or being able to stop and restart Vidalia to see if it clears up lockup, the image is worthless. Getting connected to wireless or wired network is fine, just that the features of the image arent working to get internet.
> That warning of Vidalia can be safely ignored in the context of
> Tails. Other than that, what do you mean by "Without internet
> connection (through Tor)"? Without any more information, it's hard
> to understand, reproduce and fix the specific bug that affects you.
> --intrigeri
X eats about 30-40% CPU time in 0.8 and everything from starting a new program to switching tabs in Firefox runs very slow. Moving windows leaves multiple old window positions drawn on the desktop for several seconds, the movement is not smooth as it used to be under 0.7.
Here is lspci output:
amnesia@amnesia:~$ lspci
00:00.0 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge
00:00.1 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge
00:00.2 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge
00:00.3 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge
00:00.4 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge
00:00.7 Host bridge: VIA Technologies, Inc. K8T800Pro Host Bridge
00:01.0 PCI bridge: VIA Technologies, Inc. VT8237 PCI bridge [K8T800/K8T890 South]
00:0f.0 RAID bus controller: VIA Technologies, Inc. VIA VT6420 SATA RAID Controller (rev 80)
00:0f.1 IDE interface: VIA Technologies, Inc. VT82C586A/B/VT82C686/A/B/VT823x/A/C PIPC Bus Master IDE (rev 06)
00:10.0 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81)
00:10.1 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81)
00:10.2 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81)
00:10.3 USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 Controller (rev 81)
00:10.4 USB Controller: VIA Technologies, Inc. USB 2.0 (rev 86)
00:11.0 ISA bridge: VIA Technologies, Inc. VT8237 ISA bridge [KT600/K8T800/K8T890 South]
00:11.5 Multimedia audio controller: VIA Technologies, Inc. VT8233/A/8235/8237 AC97 Audio Controller (rev 60)
00:12.0 Ethernet controller: VIA Technologies, Inc. VT6102 [Rhine-II] (rev 78)
00:18.0 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] HyperTransport Technology Configuration
00:18.1 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Address Map
00:18.2 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] DRAM Controller
00:18.3 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Miscellaneous Control
01:00.0 VGA compatible controller: nVidia Corporation NV44A [GeForce 6200] (rev a1)
1 Gb RAM, AMD Sempron 3000+.
Under Windows and Tails 0.7 everything runs fine and quick so I guess it's the fault of the kernel or a new X version.
That's the output of the first line of 'top':
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
2205 root 20 0 98.4m 85m 7084 R 34.3 8.4 2:01.04 Xorg
All other processes are 0% or near 0%. Here is some output from syslog:
Sep 22 11:23:29 localhost kernel: [ 18.114871] nouveau 0000:01:00.0: PCI INT A -> GSI 16 (level, low) -> IRQ 16
Sep 22 11:23:29 localhost kernel: [ 18.117718] [drm] nouveau 0000:01:00.0: Detected an NV40 generation card (0x04a100a1)
Sep 22 11:23:29 localhost kernel: [ 18.119402] [drm] nouveau 0000:01:00.0: Attempting to load BIOS image from PRAMIN
Sep 22 11:23:29 localhost kernel: [ 18.201576] [drm] nouveau 0000:01:00.0: ... appears to be valid
Sep 22 11:23:29 localhost kernel: [ 18.201583] [drm] nouveau 0000:01:00.0: BIT BIOS found
Sep 22 11:23:29 localhost kernel: [ 18.201587] [drm] nouveau 0000:01:00.0: Bios version 05.44.a2.07
Sep 22 11:23:29 localhost kernel: [ 18.201592] [drm] nouveau 0000:01:00.0: TMDS table version 1.1
Sep 22 11:23:29 localhost kernel: [ 18.201595] [drm] nouveau 0000:01:00.0: BIT table 'd' not found
Sep 22 11:23:29 localhost kernel: [ 18.201598] [drm] nouveau 0000:01:00.0: Found Display Configuration Block version 3.0
Sep 22 11:23:29 localhost kernel: [ 18.201604] [drm] nouveau 0000:01:00.0: Raw DCB entry 0: 01000300 00000028
Sep 22 11:23:29 localhost kernel: [ 18.201608] [drm] nouveau 0000:01:00.0: Raw DCB entry 1: 02011310 00000028
Sep 22 11:23:29 localhost kernel: [ 18.201611] [drm] nouveau 0000:01:00.0: Raw DCB entry 2: 01011312 00000000
Sep 22 11:23:29 localhost kernel: [ 18.201615] [drm] nouveau 0000:01:00.0: Raw DCB entry 3: 020223f1 0080c020
Sep 22 11:23:29 localhost kernel: [ 18.201620] [drm] nouveau 0000:01:00.0: DCB connector table: VHER 0x30 5 7 2
Sep 22 11:23:29 localhost kernel: [ 18.201624] [drm] nouveau 0000:01:00.0: 0: 0x00000000: type 0x00 idx 0 tag 0xff
Sep 22 11:23:29 localhost kernel: [ 18.201628] [drm] nouveau 0000:01:00.0: 1: 0x00002130: type 0x30 idx 1 tag 0x08
Sep 22 11:23:29 localhost kernel: [ 18.201632] [drm] nouveau 0000:01:00.0: 2: 0x00000210: type 0x10 idx 2 tag 0xff
Sep 22 11:23:29 localhost kernel: [ 18.201636] [drm] nouveau 0000:01:00.0: 3: 0x00000211: type 0x11 idx 3 tag 0xff
Sep 22 11:23:29 localhost kernel: [ 18.201640] [drm] nouveau 0000:01:00.0: 4: 0x00000213: type 0x13 idx 4 tag 0xff
Sep 22 11:23:29 localhost kernel: [ 18.201649] [drm] nouveau 0000:01:00.0: Parsing VBIOS init table 0 at offset 0xDD1E
Sep 22 11:23:29 localhost kernel: [ 18.204113] [drm] nouveau 0000:01:00.0: Parsing VBIOS init table 1 at offset 0xE003
Sep 22 11:23:29 localhost kernel: [ 18.217237] [drm] nouveau 0000:01:00.0: Parsing VBIOS init table 2 at offset 0xE491
Sep 22 11:23:29 localhost kernel: [ 18.217258] [drm] nouveau 0000:01:00.0: Parsing VBIOS init table 3 at offset 0xE5EE
Sep 22 11:23:29 localhost kernel: [ 18.218372] [drm] nouveau 0000:01:00.0: Parsing VBIOS init table 4 at offset 0xE6A0
Sep 22 11:23:29 localhost kernel: [ 18.218377] [drm] nouveau 0000:01:00.0: mem timing table length unknown: 14
Sep 22 11:23:29 localhost kernel: [ 18.218466] [drm] nouveau 0000:01:00.0: timingset 255 does not exist
Sep 22 11:23:29 localhost kernel: [ 18.250117] [drm] nouveau 0000:01:00.0: 1 available performance level(s)
Sep 22 11:23:29 localhost kernel: [ 18.250124] [drm] nouveau 0000:01:00.0: 0: memory 500MHz core 350MHz fanspeed 100%
Sep 22 11:23:29 localhost kernel: [ 18.250137] [drm] nouveau 0000:01:00.0: c: memory 401MHz core 200MHz
Sep 22 11:23:29 localhost kernel: [ 18.250337] [TTM] Zone kernel: Available graphics memory: 447730 kiB.
Sep 22 11:23:29 localhost kernel: [ 18.250341] [TTM] Zone highmem: Available graphics memory: 517238 kiB.
Sep 22 11:23:29 localhost kernel: [ 18.250344] [TTM] Initializing pool allocator.
Sep 22 11:23:29 localhost kernel: [ 18.250367] [drm] nouveau 0000:01:00.0: Detected 256MiB VRAM
Sep 22 11:23:29 localhost kernel: [ 18.250667] agpgart-amd64 0000:00:00.0: AGP 3.0 bridge
Sep 22 11:23:29 localhost kernel: [ 18.250687] agpgart-amd64 0000:00:00.0: putting AGP V3 device into 8x mode
Sep 22 11:23:29 localhost kernel: [ 18.250760] nouveau 0000:01:00.0: putting AGP V3 device into 8x mode
Sep 22 11:23:29 localhost kernel: [ 18.250764] [drm] nouveau 0000:01:00.0: 64 MiB GART (aperture)
Sep 22 11:23:29 localhost kernel: [ 18.250855] [drm] nouveau 0000:01:00.0: Saving VGA fonts
Sep 22 11:23:29 localhost kernel: [ 18.315197] [drm] Supports vblank timestamp caching Rev 1 (10.10.2010).
Sep 22 11:23:29 localhost kernel: [ 18.315201] [drm] No driver support for vblank timestamp query.
Sep 22 11:23:29 localhost kernel: [ 18.317754] [drm] nouveau 0000:01:00.0: Setting dpms mode 3 on vga encoder (output 0)
Sep 22 11:23:29 localhost kernel: [ 18.317761] [drm] nouveau 0000:01:00.0: Setting dpms mode 3 on vga encoder (output 1)
Sep 22 11:23:29 localhost kernel: [ 18.317766] [drm] nouveau 0000:01:00.0: Setting dpms mode 3 on tmds encoder (output 2)
Sep 22 11:23:29 localhost kernel: [ 18.317771] [drm] nouveau 0000:01:00.0: Setting dpms mode 3 on TV encoder (output 3)
Sep 22 11:23:29 localhost kernel: [ 18.508573] [drm] nouveau 0000:01:00.0: allocated 1280x1024 fb: 0x49000, bo f7309400
Sep 22 11:23:29 localhost kernel: [ 18.508755] fbcon: nouveaufb (fb0) is primary device
Sep 22 11:23:29 localhost kernel: [ 18.523478] [drm] nouveau 0000:01:00.0: Setting dpms mode 0 on vga encoder (output 0)
Sep 22 11:23:29 localhost kernel: [ 18.523484] [drm] nouveau 0000:01:00.0: Output VGA-1 is running on CRTC 0 using output A
Sep 22 11:23:29 localhost kernel: [ 18.525547] Console: switching to colour frame buffer device 160x64
Sep 22 11:23:29 localhost kernel: [ 18.527337] fb0: nouveaufb frame buffer device
Sep 22 11:23:29 localhost kernel: [ 18.527340] drm: registered panic notifier
Sep 22 11:23:29 localhost kernel: [ 18.527350] [drm] Initialized nouveau 0.0.16 20090420 for 0000:01:00.0 on minor 0
> The culprit in this case is the nouveau driver. IMHO it should be replaced with the nvidia non-free binary driver, as nouveau is still not ripe enough. See e.g. [https://bugzilla.redhat.com/show_bug.cgi?id=595311] [http://forums.fedoraforum.org/showthread.php?t=251316] [http://ubuntuforums.org/showthread.php?t=1436679] [http://www.fedoraforum.org/forum/showthread.php?t=268505] and so on. The nouveau project even writes on it's wiki that nouveau isn't fast.
Here's a patch for /etc/NetworkManager/dispatcher.d/50-htp.sh
39d38
< mail.riseup.net
177c176
< if [ "$(($release_date_secs + 259200))" -lt "$current_date_secs" ]; then
---
> if [ "$(($release_date_secs + 15552000))" -lt "$current_date_secs" ]; then
For the last two days, mail.riseup.net is frequently failing, triggering htpdate's paranoid mode. Thus /usr/local/sbin/htpdate returns an error to 50-htp.sh, which checks is_clock_way_off and finds the clock is more than 3 days (rather than the intended 180 days) later than Tails 0.8 release date.
So, Tails boots up with the hardware clock set correctly, sets the software clock back to September 16, and then can't connect to Tor.
Output at /var/log/htpdate.log looks something like this: