diff options
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 544 |
1 files changed, 544 insertions, 0 deletions
@@ -0,0 +1,544 @@ +ACTIVE TODO'S +============= + +For 0.32: +--------- + +- Integrate modified pktstats +- Replace torksocks with torsocks. +- Add badexit icon +- Add KB/s to traffic logs +- implement bootstrap info +- fix use of mapaddress + +New Features TODO sometime: +--------------------------- + + - upnp bug - Message: Ports 80 and 443 on your router +urn:schemas-upnp-org:device:WANConnectionDevice:1 successfully forwarded to the +ports 9030 and 9001 used by your Tor server. + + - It would be nice if Tork integrates an option to make it possible to select +and exclude Tor servers that are running older and possibly (hacked) versions +of Tor, other then the current stable and some newer Alpha builds. Servers like +nixnix and bettyboob are at least suspicious because they use the same ISP, old +version, OS build, and push a huge amount of traffic.Adding this option would +make it easier to spot and add servers like these to the enemy server list. + + - Fix the controlport warnings when we don't lock the controlport + quickly enough. + + - If you don't apply settings and have select server in the drop down menu, + what are we supposed to do? + - Don't apply server/upnp settings (obviously) + - Just prevent server systray info from displaying? (And leave 'server' + selected in drop-down?) + - Leave 'server' grayed-out and unapplied until settings are applied? + + - kdesudo is fucked. need to use the API. + + - Add a 'monitor' option - tork does not do any setconf'ing. + + + - Ability to import blocklists. - khotnewstuff? + + * customized pktstat to report all non-tor traffic + - non-tor traffic osd + - report kb/s in traffic log + - report tor kb/s in traffic log too! + + * Separate profiles for separate tor servers. + Add an argument (-profile profilename) specifying the profilename to use. + Add a Tor->Create New Profile button + Add a Tor->Save Profile button (only enabled when non-default profile in +use). + -Saves to desktop file for launching the profile. + + <kcfgfile arg="true"/> + + TorkConfig::instance(QString()); + delete TorkConfig::self(); + TorkConfig::instance(configurationFile); + TorkConfig* config = TorkConfig::self(); + + //Make a copy of config for use in a profile + +TorkConfig::self()->config()->copyTo("profilename",TorkConfig::self()->config() +); + + + //Load a profile + KConfig *tmpconfig; + tmpconfig = new KConfig("torkspecialrc", false, false); + tmpconfig->copyTo("torkspecialrctmp",TorkConfig::self()->config()); + now delete torkspecialrctmp + + - maybe I haven't noticed but vidalia gives other nodes time to re-route + when disconnecting does Tork do that? - DONE + + * Add warning when tork is configured to expect privoxy to be running at + startup but there is no sign of it - DONE + + - Fix: when selecting 'client' from start-up icon, ensure 'None is set + in server dropdown - DONE + + - text alongside icons in toolbar - DONE + + - If firstrun wizard cancelled, then cancel out of TorK and re-run it next + time Tor is run. - DONE + +For 0.32: + + - Use separate pidgin settings for anonymity. + + - I just managed to explain how to edit torc to a total non-tech person, + but all that was about was simply adding "fascist firewall" parameter - + maybe Tork could check if there is one in it's way and try using http + port's if needed? (informing the user so that the firewall could be + edited if possible) + + * [wish] the ability to choose to have the state "anonymized" or +"non-anonymized" by default + + * investigate use of unix sockets a bit + + * circuitidletimeout - set to 4 or 5 hours to prevent lag when building +circuits. + + * keep track of programs anonymized from Tork/torkify and warn heavily if +they leak + traffic. + + + * merge torsocks patches + + * Shallot Integration. To be useful would have to be bundled. + +For 0.32: + + - Port to KDE4 - End 2008 + + + +Sometime: + + * use kpaaworddialog and kdesuclient for password requests + + - Re-tool kicker applet + + 1. 'Optimize' button to replace 'Change Identity': + + - 'For Speed' + CircuitBuildTimeout 5 (or values as low as 2) + KeepalivePeriod 60 + NewCircuitPeriod 15 + NumEntryGuards 8 + CircuitIdleTimeout 600 + - 'For Safety' + Default values of above. + + Launches wizard that configures according to your requirements. + + 'Change ID' can remain in system tray. + Add changeID to OSD. - DONE + Add 'Optimize' to system tray. + + + + + 3. Merge KB/s and onion progress display to a single column. + + 4. Integration with Firefox. + - Prompt for installation of TorButton when first launched. + - Ensure torbutton toggled on when launched. + + + 6. A stacking OSD, i.e. no listview. + - Crystal-effect black with white/grey border + - Transparent + - Upright rounded rectangle. + - Each item represents an active stream. + - Each item contains: + - A 16x16 'cancel icon for killing the stream + - A 22x22 icon representing the site/service. + - The host name. + - + + 7. An Anonymous Email Wizard. + - Assist with download of mixminion. + - Explain 'advanced' usage with KMail. + - Explain 'simple' usage with plain interface. + - Install sendmail-mixminion script + + A test tool: + - Build circuits with selected routers + - Fetch a specified resource with circuits + - B/W Graphs etc. + - Facility to distribute test specs to clients + + * Toggle javascript and cookies from control button in konqueror + + +=============== +PREVIOUS TODO'S +=============== + +Done in 0.31: + + - fix version checking code for 'download stable' + - temp orport rather than torkconfig::orport + - Fix MapAddress + +Done in 0.29.2: + + * use a qvaluelist for the server list (speed up populating it). + likewise for the streamlist. (ALREADY DONE) + * add ability to reverse-resolve ip addresses in traffic log on-demand - DONE + * make log entries copyable - DONE + * add hidden service to 'run server' dropdown. - DONE + * ability to drag urls to system tray - DONE. + +For 0.29: + +1. Speed up pop-up windows - DONE +1. Disable padlock when performing updates. - CANTDO +1. RejectPlainTextPorts. Re-implement to block and warn. - DONE +8. Quick B/W Configuration in System Tray a la KTorrent. - DONE +1. Advise users on how to prevent privoxy running automatically. Attempt + to update privoxy conf and sighup it. - DONE +1. Force users to re-boot before running first-run wizard, just in case + they've installed tor/privoxy freshly, it isn't running, but will only + run at start-up - DONE + + +For 0.29: + +1. + + - +Redesign OSD. Make it more useful and less ugly. + +------------------------------------------- +using TorK with konqueror +When switching konqueror's anonimity there are some problems: + 1. Java and javascript uses same checkbox so you must use both of them or + not use at all. + 2 When you turn off anonimity tork turn on all of things in list (java/js, + plugins, browser identification, etc) even they wasn't used before tork + reconfigure konqueror to use tor. + +------------------------------------------- +> +> - In the First-Run Wizard I think it should be possible to enter a +> password for local Tor instances (it's already possible to do this for +> remote instances) if the user already has set one. Or do you have some +> kind of reason for the current absense of it? +> + + + +TODO for 0.27: +- Upnp + + +* UPNP!! + o make dirport configurable +* Usability: + o Remove 'connect'/disconnect from toolbar + o Simple Mode: + - Add 'Advanced' button that will reveal: + - 'Launch/Server Filter' button + - 'Citizen' button + - 'Fail-Safe' button and 'Fail Safe' config + - 'Change Identity' button + - So in simple mode only 'server' and 'un-censor' remain + - 'Usability' config section + o 'My Tor Server', 'My Server BW', and 'Configure Server'remain hidden unless +a server is + actually running (and advanced mode is selected?). + o 'My Hidden Services' remains hidden unless user elects to create a hidden +service from main + listing. + o 'My Network View' remains hidden until user right-clicks on server list to +select servers. +* New Server wizard for UPNP and basic server info + +* Integrate shallot into hidden service wizard? +* Get rid of libwhich for christ's sake +* Use overlays for server icon + QPixmap icon = DesktopIcon( m_iconName ); + QPixmap overlay( locate ( "icon", KMimeType::favIconForURL( +m_filterData->uri() ) + ".png" ) ); + if ( !overlay.isNull() ) + { + int x = icon.width() - overlay.width(); + int y = icon.height() - overlay.height(); + if ( icon.mask() ) + { + QBitmap mask = *icon.mask(); + bitBlt( &mask, x, y, + overlay.mask() ? const_cast<QBitmap *>(overlay.mask()) : +&overlay, + 0, 0, overlay.width(), overlay.height(), + overlay.mask() ? OrROP : SetROP ); + icon.setMask(mask); + } + bitBlt( &icon, x, y, &overlay ); + } + +* gnutls + +TODO FOR 0.23 +--------------------- +Major +* Applet that displays full raw running config and allows you to set raw +options manually and on the fly. +* Copy ktorrent's bandwidth toggling in the systray menu +* Review konqueror against threats in http://torbutton.torproject.org/dev/ +* Check torkify installation when launching torkify + +Minor +* use kpaaworddialog and kdesuclient for password requests +* Toggle javascript and cookies from control button in konqueror +* rename 'my network view' +* Use RelayBandwidthRate +* Use cookieauthfile and put in ~/.tork +* When server toggled off, throttle bandwidth or something to genuinely stop +it. +* Fiddle with screen dimensions - make usable for smaller resolutions +* Fix bridges +* Authentication cookie - more granular help +* Spiffify gpg refresh + +TODO FOR 0.24 +--------------------- +* A servers history tab, built on a sqlite table. This will accumulate server +lifetime history. It will also collect user's usage history of each server. + + +TODO SOMETIME +------------- +* Keep lobbying for a friendlier tor landing-page with meaningful info. +* use "GETINFO addr-mappings/control". +* Fix installation paths - autoconf voodoo required. +* Use getinfo desc/id/or instead of getinfo server/status/fp +* Nested server list by subnet +* Customise ifdefs for livecd? +* reduce gcc warnings +* Improve stream OSD +* Re-write controller logic. +* use kompile instead of arkollon +* Split out tork.cpp a bit, at least a vagure gesture towards cleaner code +* Find and squash as many bugs as possible in kconfig and elsewhere. +* 'Configure KMail' wizard for Mixminion +* filter log with right-click +* Full-refresh-of-server-list button +* Blogging wizard +* Pre-configure hidden service irc on kopete + + +WON'T DO +-------- +* universal sidebar (?) + + +DONE +---- +* if authentication isn't enabled, enable authentication for the duration of +the session + +Options +* for 'bw options' allow tork to always set values,even when greyed out. +selecting 'default' should reset +values to default. +* for 'performance' do the same +* for 'normal settings' do the same. +* for 'server' do not store 'old' values if greyed out, but always apply +values. this will work because + 'never run as server' is tied to clientonly. +* remove 'i'm special' +* fix exitnode selection +* fix the way some options were being applied while tor is running +* make dynamic password setting the default authentication option + +In 0.22 +------- +* ifdefs for livecd: + + Looking through the UI: + + 1. Remove options to download and install software X + 2. Remove start/stop Tor since this really only connects/disconnects from +Tor. + 3. Remove anonymous browsing with {Konqueror, Firefox, Opera). x + 4. Remove create anonymous services, though the search for hidden services +is + nice. x + 5. Remove anonymous kopete, IRC, SSH, Telnet, GPG keys (I may add the hidden + services to gpg.conf), shell. x + 6. Remove fail-safe options, Incognito already has those. x + 7. Remove run server options.x + 8. Remove privoxy config options, the next version doesn't use privoxy. +Maybe + this could be determined at runtime depending on privoxy being installed. + 9. Remove the "My Tor Client" config tab, I don't think there's anything + useful for Incognito there. x + 10. Remove the "My Tor Server", I think Incognito should be left as middle + man. x + 11. Remove "My Hidden Services", the next release has a different mechanism + for configuring that based on a certain directory structure on the USB drive. +x + 12. remove konqueror plugin + +* Flush circuits for pseudonymity +* Cope with new extra-info handling for servers +* Resolve dns through tor +* Fix stream bandwidth counting +* add n/a icon +* Privoxy config fix, see +http://archives.seul.org/or/talk/Oct-2007/msg00291.html + +In 0.21: +* Apply settings - make togglebox allow you to apply in future always +* Make systray icon reflect client/server status rather than activity +* Create manpages for all binaries +* Make torkify installation easier to manage for packagers +* Build patches from Patrick Matth�i +* stop trying to connect if waiting more than 20 secs +* copy control_auth_cookie to ~/.tor in first-run wizard +* stop other passive popups when a showstopper popup has already been displayed +* zeroise netstats on disconnect +* Debug torkified mixminion +* also, the fonts are wonky. in the wizard when it first started, it couldn't +fit all the words it wanted to fit +* under 'my server bandwidth', there's an option to 'don't reuse a connection +if it is more than'. but that option is for clients, not servers. +*also, under 'my server bandwidth', there's an option 'max number of +simultaneous connections allowed'. my maxconn doesn't actually perform this +function. nothing does. +* remove ASSERT: "(mode & KFile::Files) == 0" +in/tmp/buildd/kdelibs-3.5.5a.dfsg.1/./kio/kfile/kurlrequester.cpp (311) + + +In 0.19: +* Name filter for server list +* Fix 'My Client' bugs +* Improve cookieauth attempts to find cookie, search multiple dirs. +* Make passwords compulsory in firstrun wizard +* Fix My Family +* Add passive pop-up when hovering over system tray +* Display server/client info (maybe number of running servers too?) in +statusbar +* Reflect server status in system tray +* Complete Intro wizard - do's/dont's + + +In 0.18: +* Remove 'complete' server list from network view config. Speed up config page +loading. +* Use asynchronous dns +* 'Failsafe' button +* Add 'program' column to connection display +* Implement general, server and client status events +* Add country servers to exclude list if country blocked +* Add TorK generated messages to Tor log and flag accordingly. +* Implement entry-guards status events + +In 0.17: +* Kicker applet +* Konqueror plugin +* Konqueror right-cliick actions +* Add tor: io slave. +* Reset filters when server list fully refreshed + +In 0.15: +* If thttpd is installed, don't offer to download it. +* Add 'Run Server' button +* Alert user that KDE's non-anonymous settings have been restored when Tork is +closed. +* Beginnings of intro-wizard. +* Speed up sliding notifications +* Fix bug when stopping and restarting connection to tor. +* Turn off extended selection of circuits when dragging to circuit pane + +In 0.14: +* Pseudonymity button +* Display servers by country +* Combo select for tor session type (beneath onion on main page) +* bw for streams +* dynamically block exits with right-click +* Fix browser settings for opera/firefox +* count our own seconds for bw events +* do not install libwhich and libgeoip +* bandwidthrate at different times of the day + +Before 0.14: +* tor traffic log. +* log non-tor traffic +* Replace privoxy templates with TorK ones that are a little more friendly +* Add mixminion client +* add privoxy configuration. +* connect to tor (if it is running) during set-up wizard. this is to determine +if the packaged installation has + the controlport open or not. if it does not, then the set-up wizard will need +to add the relevant conf line + to every possible configuration file candidate it can think of. +* SetUp Wizard should inspect your tor installation and recommend appropriate +tork setup. + + +Tor GUI Suggestions +------------------- +X = Fully(!?) Done +x = Sort of Done + +X Allow the user to fully configure Tor rather than manually searching for and +opening text files. +X Let users learn about the current state of their Tor connection (for example, +how well the current Tor connection is working), and configure or find +out whether any of their applications are using it. +X Make alerts and error conditions visible to the user. +X Run on at least one of Windows, Linux, and OS X, on a +not-unusually-configured consumer-level machine. + +Provide detailed information about which applications, ports, or packets are +(or are not!) passing through Tor, including accounting for both Tor- and +non-Tor traffic. +Provide additional statistics about the Tor connection. +Give users more control over how their Tor behaves at certain times of day or +in other contexts (like operating as a server). + +x How much bandwidth is Tor using? How does this compare to the overall network +traffic to/from the computer? +x Is there network traffic from ports or applications that the user intended to +be anonymized? +What Tor servers does the user know about on the network? Where are they? How +available are they? +An interface for displaying or controlling Tor paths: "show me the network from +Africa by way of Asia". Think of the global satellite map from the movie +Sneakers. +Configure other running applications to use Tor (for example, by modifying or +working through the network stack, and/or by altering application +configurations). +x Provide an elegant installer for Tor, your GUI submission, and other +supporting applications. +X Make your GUI manage the Tor process and other supporting applications -- +start them, stop them, realize when they've died. +X Provide meaningful defaults for a good Tor experience. +Provide application-level anonymity -- that is, not just paying attention to +transport anonymity on the level of Tor, but also paying attention to the +anonymity of the http headers, cookies, etc. +Let the user specify different Tor config option sets depending on time of day +(e.g. daytime vs. nighttime). +Provide useful controller functions for Tor servers too -- for example, walk +the user through recommended bandwidth configurations and exit policies. +X Have a "minimized view" of your GUI for common use, and then a more detailed +view or set of windows when the user wants more detail. +Provide a button or some automatically updating interface to let the user learn +whether Tor is working currently, perhaps by accessing an external what's-my-IP +site and seeing if it thinks you're a Tor server; and give useful messages and +recommendations if it doesn't seem to be working. +Provide a way to automatically configure local firewalls (ipchains, Windows +firewalls, etc) to let Tor traffic out (and in, for Tor servers). As a bonus, +configure it to prevent non-Tor traffic from leaving (and notify when it +tries).
\ No newline at end of file |