Bayan watanni goma na ci gaba gagarumin saki na kwazo mai bincike , wanda ci gaba da haɓaka aiki bisa ga reshen ESR ya ci gaba . Mai binciken yana mai da hankali kan samar da ɓoyewa, tsaro da keɓantawa, duk zirga-zirgar ababen hawa ana karkatar da su ta hanyar hanyar sadarwar Tor kawai. Ba shi yiwuwa a yi amfani da kai tsaye ta hanyar daidaitattun hanyar sadarwa na tsarin na yanzu, wanda baya ba da izinin bin diddigin ainihin IP na mai amfani (idan an kutse mai binciken, maharan na iya samun damar yin amfani da sigogin cibiyar sadarwar tsarin, don haka gaba ɗaya toshe yuwuwar leaks yakamata ku yi amfani da su. samfurori kamar ). Tor Browser yana ginawa don Linux, Windows, macOS da Android.
Ya haɗa da ƙari don ƙarin kariya , yana ba ku damar amfani da ɓoyayyen zirga-zirga a duk rukunin yanar gizon inda zai yiwu. An haɗa ƙarin don rage barazanar harin JavaScript da toshe plugins ta tsohuwa . Don magance toshewa da duba zirga-zirga, ana amfani da su и .
Don tsara hanyar sadarwar rufaffiyar hanyar sadarwa a cikin mahallin da ke toshe duk wani zirga-zirga ban da HTTP, ana ba da shawarar jigilar jigilar kayayyaki, wanda, alal misali, ba ku damar tsallake ƙoƙarin toshe Tor a China. Don karewa daga bin diddigin motsin mai amfani da takamaiman fasali na baƙo, WebGL, WebGL2, WebAudio, Social, SpeechSynthesis, Touch, AudioContext, HTMLMediaElement, Mediastream, Canvas, SharedWorker, Izini, MediaDevices.enumerateDevices, da screen.orientation APIs an kashe ko iyakancewa APIs. Hakanan an kashe kayan aikin aika telemetry, Aljihu, View Reader, HTTP Alternative-Services, MozTCPSocket, “link rel=preconnect”, libmdns da aka gyara.
A cikin sabon saki:
- An sake tsara kwamitin kuma samun dama ga alamar matakin kariya, wanda yake daga menu na Torbutton akan babban kwamiti. An matsar da maɓallin Torbutton zuwa gefen dama na kwamitin. Ta hanyar tsoho, an cire alamun HTTPS ko'ina da alamun ƙarar NoScript daga rukunin (ana iya dawo da su a cikin saitin saitin panel).
An cire alamar HTTPS Ko'ina tunda baya samar da bayanai masu amfani kuma ana amfani da turawa zuwa HTTPS koyaushe ta tsohuwa. An cire alamar NoScript saboda mai binciken yana ba da damar sauyawa tsakanin matakan tsaro na asali, kuma maɓallin NoScript yana yawan yaudara tare da faɗakarwa da ke tasowa saboda saitunan da aka karɓa a cikin Tor Browser. Maɓallin NoScript kuma yana ba da damar yin amfani da saiti masu yawa, ba tare da cikakken fahimtar abin da, canza saitunan zai iya haifar da matsalolin sirri da rashin daidaituwa tare da matakin tsaro da aka saita a cikin Tor Browser. Ana iya yin iko da katange JavaScript don takamaiman rukunin yanar gizo ta ƙarin sashin izini a cikin mahallin mahallin adireshin (maɓallin “i”);
- An daidaita salon kuma Tor Browser ya dace da sabon ƙirar Firefox, wanda aka shirya a matsayin wani ɓangare na aikin "". An canza ƙirar shafin farawa "about:tor" kuma an haɗa shi don duk dandamali;
- An gabatar da sabbin tamburan Tor Browser.
- Abubuwan da aka sabunta na abubuwan abubuwan burauza:
Firefox 60.7.0esr, Torbutton 2.1.8, HTTPS ko'ina 2019.5.6.1, da OpenSSL 1.0.2r, Tor Launcher 0.2.18.3; - Ana samar da taruka da tuta"", ana amfani da shi don ginin Mozilla na hukuma.
- An shirya tsayayyen sakin farko na sigar wayar hannu ta Tor Browser don dandamalin Android, wanda aka gina akan tushen lambar Firefox 60.7.0 don Android kuma yana ba da damar aiki ta hanyar hanyar sadarwar Tor kawai, yana toshe duk wani ƙoƙarin kafa hanyar sadarwa kai tsaye. haɗi. Ana haɗa HTTPS Ko'ina da Maɓallin Tor. Dangane da ayyuka, sigar Android har yanzu tana bayan sigar tebur, amma tana ba da kariya kusan iri ɗaya da keɓancewa.
Wayar hannu akan Google Play, amma kuma a cikin nau'i na kunshin apk daga gidan yanar gizon aikin. Ana sa ran bugawa a cikin kasidar F-droid nan gaba kadan. Yana goyan bayan aiki akan na'urori masu Android 4.1 ko sabon sigar dandamali. Masu haɓaka Tor sun lura cewa ba sa niyyar ƙirƙirar sigar Tor Browser don iOS saboda ƙuntatawa da Apple ya gabatar kuma suna ba da shawarar mai binciken da aka rigaya ya samu don iOS. , wanda aikin ya haɓaka .
Babban bambance-bambance tsakanin Tor Browser na Android da Firefox don Android:
- Lambar toshewa don bin motsi. Kowane rukunin yanar gizon ya keɓe daga buƙatun giciye, kuma ana share duk Kukis ta atomatik bayan ƙarshen zaman;
- Kariya daga tsangwama na zirga-zirga da saka idanu akan ayyukan mai amfani. Duk hulɗa da duniyar waje tana faruwa ne kawai ta hanyar hanyar sadarwar Tor, kuma idan an katse zirga-zirga tsakanin mai amfani da mai bayarwa, maharin zai iya ganin mai amfani kawai yana amfani da Tor, amma ba zai iya tantance wuraren da mai amfani ke buɗewa ba. Kariya daga tsangwama yana da dacewa musamman a cikin yanayin da wasu masu gudanar da wayar hannu ba sa ɗaukar abin kunya su shiga cikin zirga-zirgar HTTP mai amfani da ba a ɓoye ba da fallasa widget din su () ko banners na talla ( и );
- Kariya daga gano takamaiman fasali na baƙo da kuma bin masu amfani ta amfani da hanyoyi ganewa ("bincike yatsa"). Duk masu amfani da Tor Browser suna kallon iri ɗaya daga waje kuma ba za a iya bambanta su ba yayin amfani da hanyoyin tantancewa kai tsaye.
Misali, ban da adana mai ganowa ta hanyar Kuki da API ɗin ajiyar bayanan gida, ƙayyadaddun lissafin shigar mai amfani. , yankin lokaci, jerin nau'ikan MIME masu goyan baya, zaɓuɓɓukan allo, jerin nau'ikan rubutun da ake da su, lokacin yin amfani da zane da WebGL, sigogi a cikin rubutun kai и , hanyar aiki tare da и ; - Aikace-aikacen boye-boye-mataki da yawa. Bugu da ƙari ga kariyar HTTPS, zirga-zirgar mai amfani lokacin wucewa ta Tor kuma ana ɓoye shi aƙalla sau uku (ana amfani da makircin ɓoyayye mai yawa, wanda aka naɗe fakiti a cikin jerin yadudduka ta amfani da ɓoyayyen maɓalli na jama'a, wanda kowane kullin Tor a ciki. Matsayinsa na sarrafawa yana bayyana Layer na gaba kuma ya san kawai mataki na gaba na watsawa, kuma kullin karshe kawai zai iya ƙayyade adireshin inda ake nufi;
- Ikon samun damar albarkatun da mai badawa ya toshe ko kuma wuraren da aka tantance. By na aikin Roskomsvoboda, kashi 97% na wuraren da aka toshe a halin yanzu a cikin Tarayyar Rasha an toshe su ba bisa ka'ida ba (suna cikin rukunin yanar gizo iri ɗaya tare da katange albarkatun). Misali, adiresoshin IP na Digital Ocean dubu 358, adiresoshin Amazon WS dubu 25 da adiresoshin CloudFlare dubu 59 har yanzu ana toshe su. Karkashin toshewa ba bisa ka'ida ba, gami da yawancin ayyukan buɗaɗɗen tushe ciki har da bugs.php.net, bugs.python.org, 7-zip.org, powerdns.com da midori-browser.org.
source: budenet.ru