@spv such "hacks" can't work for normal TCP clients for .onion names for example. But sure, if you want to access a public site on "the other side" of Tor, then it works as well. Just a little pointless.
@bagder interesting. torsocks works fine for onion and clearnet. with regular curl, --proxy socks5://127.0.0.1:9050 clearnet works, but onion does not, and with --proxy socks5h://127.0.0.1:9050 both work
@spv@bagder that's because in curl, socks5 means "curl does dns resolution, then asks socks5 proxy to connect to an ip", while socks5h means "curl asks socks5 proxy to connect to domain name".
Using curl's socks5:// (no h) with Tor is essentially a DNS leak, always use socks5h for that purpose.
@spv@a000d4f7a91939d0e71df1646d7a48 oh right, of course. If torsocks itself can resolve the host, it can just intercept getaddrinfo() and return the suitable IP back to the tool it runs. Sorry, I was clearly not thinking all the way here!
Add comment