1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
|
ACTIVE TODO'S
=============
For 0.32:
---------
- Integrate modified pktstats
- Replace torksocks with torsocks.
- Add badexit icon
- Add KB/s to traffic logs
- implement bootstrap info
- fix use of mapaddress
New Features TODO sometime:
---------------------------
- upnp bug - Message: Ports 80 and 443 on your router
urn:schemas-upnp-org:device:WANConnectionDevice:1 successfully forwarded to the
ports 9030 and 9001 used by your Tor server.
- It would be nice if Tork integrates an option to make it possible to select
and exclude Tor servers that are running older and possibly (hacked) versions
of Tor, other then the current stable and some newer Alpha builds. Servers like
nixnix and bettyboob are at least suspicious because they use the same ISP, old
version, OS build, and push a huge amount of traffic.Adding this option would
make it easier to spot and add servers like these to the enemy server list.
- Fix the controlport warnings when we don't lock the controlport
quickly enough.
- If you don't apply settings and have select server in the drop down menu,
what are we supposed to do?
- Don't apply server/upnp settings (obviously)
- Just prevent server systray info from displaying? (And leave 'server'
selected in drop-down?)
- Leave 'server' grayed-out and unapplied until settings are applied?
- tdesudo is fucked. need to use the API.
- Add a 'monitor' option - tork does not do any setconf'ing.
- Ability to import blocklists. - tdehotnewstuff?
* customized pktstat to report all non-tor traffic
- non-tor traffic osd
- report kb/s in traffic log
- report tor kb/s in traffic log too!
* Separate profiles for separate tor servers.
Add an argument (-profile profilename) specifying the profilename to use.
Add a Tor->Create New Profile button
Add a Tor->Save Profile button (only enabled when non-default profile in
use).
-Saves to desktop file for launching the profile.
<kcfgfile arg="true"/>
TorkConfig::instance(TQString());
delete TorkConfig::self();
TorkConfig::instance(configurationFile);
TorkConfig* config = TorkConfig::self();
//Make a copy of config for use in a profile
TorkConfig::self()->config()->copyTo("profilename",TorkConfig::self()->config()
);
//Load a profile
TDEConfig *tmpconfig;
tmpconfig = new TDEConfig("torkspecialrc", false, false);
tmpconfig->copyTo("torkspecialrctmp",TorkConfig::self()->config());
now delete torkspecialrctmp
- maybe I haven't noticed but vidalia gives other nodes time to re-route
when disconnecting does Tork do that? - DONE
* Add warning when tork is configured to expect privoxy to be running at
startup but there is no sign of it - DONE
- Fix: when selecting 'client' from start-up icon, ensure 'None is set
in server dropdown - DONE
- text alongside icons in toolbar - DONE
- If firstrun wizard cancelled, then cancel out of TorK and re-run it next
time Tor is run. - DONE
For 0.32:
- Use separate pidgin settings for anonymity.
- I just managed to explain how to edit torc to a total non-tech person,
but all that was about was simply adding "fascist firewall" parameter -
maybe Tork could check if there is one in it's way and try using http
port's if needed? (informing the user so that the firewall could be
edited if possible)
* [wish] the ability to choose to have the state "anonymized" or
"non-anonymized" by default
* investigate use of unix sockets a bit
* circuitidletimeout - set to 4 or 5 hours to prevent lag when building
circuits.
* keep track of programs anonymized from Tork/torkify and warn heavily if
they leak
traffic.
* merge torsocks patches
* Shallot Integration. To be useful would have to be bundled.
For 0.32:
- Port to KDE4 - End 2008
Sometime:
* use kpaaworddialog and tdesuclient for password requests
- Re-tool kicker applet
1. 'Optimize' button to replace 'Change Identity':
- 'For Speed'
CircuitBuildTimeout 5 (or values as low as 2)
KeepalivePeriod 60
NewCircuitPeriod 15
NumEntryGuards 8
CircuitIdleTimeout 600
- 'For Safety'
Default values of above.
Launches wizard that configures according to your requirements.
'Change ID' can remain in system tray.
Add changeID to OSD. - DONE
Add 'Optimize' to system tray.
3. Merge KB/s and onion progress display to a single column.
4. Integration with Firefox.
- Prompt for installation of TorButton when first launched.
- Ensure torbutton toggled on when launched.
6. A stacking OSD, i.e. no listview.
- Crystal-effect black with white/grey border
- Transparent
- Upright rounded rectangle.
- Each item represents an active stream.
- Each item contains:
- A 16x16 'cancel icon for killing the stream
- A 22x22 icon representing the site/service.
- The host name.
-
7. An Anonymous Email Wizard.
- Assist with download of mixminion.
- Explain 'advanced' usage with KMail.
- Explain 'simple' usage with plain interface.
- Install sendmail-mixminion script
A test tool:
- Build circuits with selected routers
- Fetch a specified resource with circuits
- B/W Graphs etc.
- Facility to distribute test specs to clients
* Toggle javascript and cookies from control button in konqueror
===============
PREVIOUS TODO'S
===============
Done in 0.31:
- fix version checking code for 'download stable'
- temp orport rather than torkconfig::orport
- Fix MapAddress
Done in 0.29.2:
* use a qvaluelist for the server list (speed up populating it).
likewise for the streamlist. (ALREADY DONE)
* add ability to reverse-resolve ip addresses in traffic log on-demand - DONE
* make log entries copyable - DONE
* add hidden service to 'run server' dropdown. - DONE
* ability to drag urls to system tray - DONE.
For 0.29:
1. Speed up pop-up windows - DONE
1. Disable padlock when performing updates. - CANTDO
1. RejectPlainTextPorts. Re-implement to block and warn. - DONE
8. Quick B/W Configuration in System Tray a la KTorrent. - DONE
1. Advise users on how to prevent privoxy running automatically. Attempt
to update privoxy conf and sighup it. - DONE
1. Force users to re-boot before running first-run wizard, just in case
they've installed tor/privoxy freshly, it isn't running, but will only
run at start-up - DONE
For 0.29:
1.
-
Redesign OSD. Make it more useful and less ugly.
-------------------------------------------
using TorK with konqueror
When switching konqueror's anonimity there are some problems:
1. Java and javascript uses same checkbox so you must use both of them or
not use at all.
2 When you turn off anonimity tork turn on all of things in list (java/js,
plugins, browser identification, etc) even they wasn't used before tork
reconfigure konqueror to use tor.
-------------------------------------------
>
> - In the First-Run Wizard I think it should be possible to enter a
> password for local Tor instances (it's already possible to do this for
> remote instances) if the user already has set one. Or do you have some
> kind of reason for the current absense of it?
>
TODO for 0.27:
- Upnp
* UPNP!!
o make dirport configurable
* Usability:
o Remove 'connect'/disconnect from toolbar
o Simple Mode:
- Add 'Advanced' button that will reveal:
- 'Launch/Server Filter' button
- 'Citizen' button
- 'Fail-Safe' button and 'Fail Safe' config
- 'Change Identity' button
- So in simple mode only 'server' and 'un-censor' remain
- 'Usability' config section
o 'My Tor Server', 'My Server BW', and 'Configure Server'remain hidden unless
a server is
actually running (and advanced mode is selected?).
o 'My Hidden Services' remains hidden unless user elects to create a hidden
service from main
listing.
o 'My Network View' remains hidden until user right-clicks on server list to
select servers.
* New Server wizard for UPNP and basic server info
* Integrate shallot into hidden service wizard?
* Get rid of libwhich for christ's sake
* Use overlays for server icon
QPixmap icon = DesktopIcon( m_iconName );
QPixmap overlay( locate ( "icon", KMimeType::favIconForURL(
m_filterData->uri() ) + ".png" ) );
if ( !overlay.isNull() )
{
int x = icon.width() - overlay.width();
int y = icon.height() - overlay.height();
if ( icon.mask() )
{
QBitmap mask = *icon.mask();
bitBlt( &mask, x, y,
overlay.mask() ? const_cast<QBitmap *>(overlay.mask()) :
&overlay,
0, 0, overlay.width(), overlay.height(),
overlay.mask() ? OrROP : SetROP );
icon.setMask(mask);
}
bitBlt( &icon, x, y, &overlay );
}
* gnutls
TODO FOR 0.23
---------------------
Major
* Applet that displays full raw running config and allows you to set raw
options manually and on the fly.
* Copy ktorrent's bandwidth toggling in the systray menu
* Review konqueror against threats in http://torbutton.torproject.org/dev/
* Check torkify installation when launching torkify
Minor
* use kpaaworddialog and tdesuclient for password requests
* Toggle javascript and cookies from control button in konqueror
* rename 'my network view'
* Use RelayBandwidthRate
* Use cookieauthfile and put in ~/.tork
* When server toggled off, throttle bandwidth or something to genuinely stop
it.
* Fiddle with screen dimensions - make usable for smaller resolutions
* Fix bridges
* Authentication cookie - more granular help
* Spiffify gpg refresh
TODO FOR 0.24
---------------------
* A servers history tab, built on a sqlite table. This will accumulate server
lifetime history. It will also collect user's usage history of each server.
TODO SOMETIME
-------------
* Keep lobbying for a friendlier tor landing-page with meaningful info.
* use "GETINFO addr-mappings/control".
* Fix installation paths - autoconf voodoo required.
* Use getinfo desc/id/or instead of getinfo server/status/fp
* Nested server list by subnet
* Customise ifdefs for livecd?
* reduce gcc warnings
* Improve stream OSD
* Re-write controller logic.
* use kompile instead of arkollon
* Split out tork.cpp a bit, at least a vagure gesture towards cleaner code
* Find and squash as many bugs as possible in tdeconfig and elsewhere.
* 'Configure KMail' wizard for Mixminion
* filter log with right-click
* Full-refresh-of-server-list button
* Blogging wizard
* Pre-configure hidden service irc on kopete
WON'T DO
--------
* universal sidebar (?)
DONE
----
* if authentication isn't enabled, enable authentication for the duration of
the session
Options
* for 'bw options' allow tork to always set values,even when greyed out.
selecting 'default' should reset
values to default.
* for 'performance' do the same
* for 'normal settings' do the same.
* for 'server' do not store 'old' values if greyed out, but always apply
values. this will work because
'never run as server' is tied to clientonly.
* remove 'i'm special'
* fix exitnode selection
* fix the way some options were being applied while tor is running
* make dynamic password setting the default authentication option
In 0.22
-------
* ifdefs for livecd:
Looking through the UI:
1. Remove options to download and install software X
2. Remove start/stop Tor since this really only connects/disconnects from
Tor.
3. Remove anonymous browsing with {Konqueror, Firefox, Opera). x
4. Remove create anonymous services, though the search for hidden services
is
nice. x
5. Remove anonymous kopete, IRC, SSH, Telnet, GPG keys (I may add the hidden
services to gpg.conf), shell. x
6. Remove fail-safe options, Incognito already has those. x
7. Remove run server options.x
8. Remove privoxy config options, the next version doesn't use privoxy.
Maybe
this could be determined at runtime depending on privoxy being installed.
9. Remove the "My Tor Client" config tab, I don't think there's anything
useful for Incognito there. x
10. Remove the "My Tor Server", I think Incognito should be left as middle
man. x
11. Remove "My Hidden Services", the next release has a different mechanism
for configuring that based on a certain directory structure on the USB drive.
x
12. remove konqueror plugin
* Flush circuits for pseudonymity
* Cope with new extra-info handling for servers
* Resolve dns through tor
* Fix stream bandwidth counting
* add n/a icon
* Privoxy config fix, see
http://archives.seul.org/or/talk/Oct-2007/msg00291.html
In 0.21:
* Apply settings - make togglebox allow you to apply in future always
* Make systray icon reflect client/server status rather than activity
* Create manpages for all binaries
* Make torkify installation easier to manage for packagers
* Build patches from Patrick Matth�i
* stop trying to connect if waiting more than 20 secs
* copy control_auth_cookie to ~/.tor in first-run wizard
* stop other passive popups when a showstopper popup has already been displayed
* zeroise netstats on disconnect
* Debug torkified mixminion
* also, the fonts are wonky. in the wizard when it first started, it couldn't
fit all the words it wanted to fit
* under 'my server bandwidth', there's an option to 'don't reuse a connection
if it is more than'. but that option is for clients, not servers.
*also, under 'my server bandwidth', there's an option 'max number of
simultaneous connections allowed'. my maxconn doesn't actually perform this
function. nothing does.
* remove ASSERT: "(mode & KFile::Files) == 0"
in/tmp/buildd/tdelibs-3.5.5a.dfsg.1/./tdeio/tdefile/kurlrequester.cpp (311)
In 0.19:
* Name filter for server list
* Fix 'My Client' bugs
* Improve cookieauth attempts to find cookie, search multiple dirs.
* Make passwords compulsory in firstrun wizard
* Fix My Family
* Add passive pop-up when hovering over system tray
* Display server/client info (maybe number of running servers too?) in
statusbar
* Reflect server status in system tray
* Complete Intro wizard - do's/dont's
In 0.18:
* Remove 'complete' server list from network view config. Speed up config page
loading.
* Use asynchronous dns
* 'Failsafe' button
* Add 'program' column to connection display
* Implement general, server and client status events
* Add country servers to exclude list if country blocked
* Add TorK generated messages to Tor log and flag accordingly.
* Implement entry-guards status events
In 0.17:
* Kicker applet
* Konqueror plugin
* Konqueror right-cliick actions
* Add tor: io slave.
* Reset filters when server list fully refreshed
In 0.15:
* If thttpd is installed, don't offer to download it.
* Add 'Run Server' button
* Alert user that KDE's non-anonymous settings have been restored when Tork is
closed.
* Beginnings of intro-wizard.
* Speed up sliding notifications
* Fix bug when stopping and restarting connection to tor.
* Turn off extended selection of circuits when dragging to circuit pane
In 0.14:
* Pseudonymity button
* Display servers by country
* Combo select for tor session type (beneath onion on main page)
* bw for streams
* dynamically block exits with right-click
* Fix browser settings for opera/firefox
* count our own seconds for bw events
* do not install libwhich and libgeoip
* bandwidthrate at different times of the day
Before 0.14:
* tor traffic log.
* log non-tor traffic
* Replace privoxy templates with TorK ones that are a little more friendly
* Add mixminion client
* add privoxy configuration.
* connect to tor (if it is running) during set-up wizard. this is to determine
if the packaged installation has
the controlport open or not. if it does not, then the set-up wizard will need
to add the relevant conf line
to every possible configuration file candidate it can think of.
* SetUp Wizard should inspect your tor installation and recommend appropriate
tork setup.
Tor GUI Suggestions
-------------------
X = Fully(!?) Done
x = Sort of Done
X Allow the user to fully configure Tor rather than manually searching for and
opening text files.
X Let users learn about the current state of their Tor connection (for example,
how well the current Tor connection is working), and configure or find
out whether any of their applications are using it.
X Make alerts and error conditions visible to the user.
X Run on at least one of Windows, Linux, and OS X, on a
not-unusually-configured consumer-level machine.
Provide detailed information about which applications, ports, or packets are
(or are not!) passing through Tor, including accounting for both Tor- and
non-Tor traffic.
Provide additional statistics about the Tor connection.
Give users more control over how their Tor behaves at certain times of day or
in other contexts (like operating as a server).
x How much bandwidth is Tor using? How does this compare to the overall network
traffic to/from the computer?
x Is there network traffic from ports or applications that the user intended to
be anonymized?
What Tor servers does the user know about on the network? Where are they? How
available are they?
An interface for displaying or controlling Tor paths: "show me the network from
Africa by way of Asia". Think of the global satellite map from the movie
Sneakers.
Configure other running applications to use Tor (for example, by modifying or
working through the network stack, and/or by altering application
configurations).
x Provide an elegant installer for Tor, your GUI submission, and other
supporting applications.
X Make your GUI manage the Tor process and other supporting applications --
start them, stop them, realize when they've died.
X Provide meaningful defaults for a good Tor experience.
Provide application-level anonymity -- that is, not just paying attention to
transport anonymity on the level of Tor, but also paying attention to the
anonymity of the http headers, cookies, etc.
Let the user specify different Tor config option sets depending on time of day
(e.g. daytime vs. nighttime).
Provide useful controller functions for Tor servers too -- for example, walk
the user through recommended bandwidth configurations and exit policies.
X Have a "minimized view" of your GUI for common use, and then a more detailed
view or set of windows when the user wants more detail.
Provide a button or some automatically updating interface to let the user learn
whether Tor is working currently, perhaps by accessing an external what's-my-IP
site and seeing if it thinks you're a Tor server; and give useful messages and
recommendations if it doesn't seem to be working.
Provide a way to automatically configure local firewalls (ipchains, Windows
firewalls, etc) to let Tor traffic out (and in, for Tor servers). As a bonus,
configure it to prevent non-Tor traffic from leaving (and notify when it
tries).
|