Considering Tor / Onion Routing / Orbot integration #825
Conversation
|
I really like this and would love to land the PR. However there are some blockers that we'd need to eliminate first. The biggest blocker is that we are currently shipping the WebView based version of Focus. There's definitely some convincing (and additional code writing) to do until all stake holders accept a ~30 MB size increase and ship the GeckoView based version. Sooner or later we will hit other limitations of WebView though. It seems like there are some hacks that add proxy support to WebView. However apparently WebView will still leak the user's IP and anonymous browsing with via Tor would be impossible. Do you know more about this? I'm wondering whether a WebView-based version with just onion routing and "restriction bypassing" would still be something that's worth shipping? |
|
Thanks Nathan for all your work, that all sounds exciting, and I do have to follow / support @pocmo concerns. We currently only support the WebView version in the Google Play Store. If we could make Tor work somehow with that version, I'd give it my +1 and consider adding this feature sooner than later. |
|
We've worked with both DuckDuckGo and Facebook to support the various Android OS/SDK workarounds for WebView implementation that need to be done. All of the logic is wrapped up in neat utility classes like this one:
On this front, do you have a specific issue you are referring to? There are cases where the IP can be leaked through media player tags - is that what you mean?
Yes. There is still value in providing access to .Onion address and to reduce opportunities for network censorship, filtering and surveillance. The trick is to communicate that effectively to users, meaning never say the word "anonymous". |
Nice! That's exactly what I was looking for. :)
Yeah, I think I read something related to WebRTC - However I didn't do any research myself.
That's interesting. When I saw that anonymity isn't possible with WebView I pretty much thought that's a deal breaker. I didn't think about the other use cases of Tor. Shipping this on top of WebView is definitely something that is (technically) doable in the short-term (assuming our product and UX teams agree). Switching to Gecko(View) will take some more time - and probably won't happen until we hit some more limitations of WebView.
This will not be easy, I guess. |
Yea. But it's not without precedent. Opera supports a VPN mode on desktop and mobile. Chrome has 'Data Saver'. Talking about it as 'opening up more of the web' could be the trick. We're enabling all users access to .onion sites, and we're enabling users in censored countries and networks (more and more when you count stuff like the UK's net nanny filters) one-click (two-click?) access to everything. |
|
On a technical note @pocmo which branch should I work from to build on WebView. |
You can use the master branch, but make sure to select the focusWebkitDebug flavor/variant in Android Studio (or run |
likely should hide this if Onion Routing is not enabled, and auto-select it if the user does enable it
- This includes both the WebkitProxy code, as well as the various places where it needs to be set or unset - When the Onion Routing setting is changed, the main activity is finished and restarted - Added a click event for the home screen "onion routing" text to take you to a default onion site
|
Got this working well, and tested so far on Android 5.x and 7.x. Fortunately, the proxy settings code for WebView works consistently from SDK 21/Lollipop on up. It will be important to implement a "tor check" page of some sort to make sure it is working. For now, if you click on the "onion routing enabled" text on the home fragement, it will open the tor project's .onion site. |
|
Also added Duckduckgo's Onion as a seperate search service option. Perhaps there would be a way to automatically use the Onion, if the user had DDG already selected? Or to switch to it when they select to enable Onion Routing. |
I'm not quite sure if I'm following correctly as this relates anonymous? Because no matter who/what we do with Tor and Webview, users will never be fully anonymous? From a product perspective, I'd like to start thinking about how to add it to the product, message it and of course have UX involved (@antlam). Could we setup a meeting for next week? |
@bbinto : Yea! My calendar is (hopefully) up to date, throw something at it. I'm at a conference this week, but I will try and write something up on the plane to explain what I meant a bit better. |
|
I am around and happy to join a meeting. For me, I see this as enhanced tracking protection or network confidentiality. It protects the users I.P. address from being used and logged by websites, and stops the network operators (be it the local LAN, ISP, etc) from knowing and logging the domain the user is browsing to. I also do like the message regarding opening up more access by providing connectivity to Onion sites. Anyhow, I've been happily using Focus Android WebView with Orbot for the last few weeks, and hope we can bring this capability to your users. |
|
Can it use an existing Orbot implementation instead of bundling it's own? Adding another Tor library might pose issues for F-Droid users of Firefox Klar. |
|
@andreicristianpetcu This patch doesn't bundle Orbot, it just checks if it is installed, and makes the preference enabled for the user to switch the "Onion Routing" option on. It is a very small increase in KB, and won't bother users who don't already have Orbot. |
|
I've rebased this patch onto 0a2cf55, its available here https://gist.github.com/SpotComms/431fde4a263c864e8200a28fbdbea060. |
|
Listing some benefits of TOR in here for others to read (e.g. marketing)
|
|
I better example than "The US government taking ritter.com" away from me that's a bit more timely: Spanish officials seizing Catalan domains that were part of the Catalan Independence Referendum. |
|
These are great. I just want to bring up again that we must avoid the use of the word "anonymity". Increased privacy from network operators, anti-filtering anti-censorship, access to .onion sites are all great and specific ways to talk about what Focus+Orbot provides. |
|
Closing the pull request - just so that we do not keep it in the list indefinitely. We are still interested in TOR support. Let's move discussion etc. to the issue #66. |
Greetings. I'm Nathan from Guardian Project and Tor Project, and I'm here at the Mozilla All-Hands this week. While we do ship a full Fennec/Tor-Browser based app called Orfox (https://github.com/guardianproject/orfox), we were also discussing with Mozilla folks today about some possible collaboration around Focus and GeckoView.
I hacked up this last night, and it is working well enough that I thought I would share. This is more of a "what if" pull request, but it is fully armed and operational. There is more to do (like detect the actual live ports Tor's SOCKS proxy is available on, instead of just the default one), but I think the user experience is fairly complete, and simple enough for Focus.
We have a time to meet with @snorp on Thursday, so I figured this could help seed that conversation a bit.
Cheers!
The text was updated successfully, but these errors were encountered: