submitted by Gnollsy
I've been playing around on Tor recently.
Specifically I'm running off a Tails bootable USB drive. I was recently made aware of
www.dnsleaktest.com - where you can run a test to see who's "watching" you. The website says: "This page shows the DNS servers that your computer is using to resolve DNS names...
Is this something that I should be worried about? Are those DNS servers actually able to track what I'm doing, despite the whole idea of anonymity on Tor?
Any help is greatly appreciated. Thanks!
[–]deathfantasy
Tor should mask your DNS requests when used correctly. The DNS servers can know what you are connecting to, but they cannot know who you are, just by looking at those requests.
[–]alexpeterson91
I'm not an expert on Tor but my understanding is that it's not actually anonymous, its simply infeasible to track someone through the tor network, due to the several random relays your client connects through. All of those connections are encrypted further making it technologically infeasible to find the source. So all of those DNS servers that show up are just random DNS servers from those random nodes you connected through. They have absolutely no idea where you are or who you are due to the tor network traffic constantly changing routes and encryption. For a test, try to run the test on tor, then change your identity and try again, my assumption is that you'll have an entirely new set of servers tracking your new path, but these servers still do not know who you are, nor where you are.
Tor doesn't make you invisible, it just lets you hide among the millions and millions of clients on the web.
[–]Gnollsy[S]
This is along the lines that I was thinking, but what's confusing me is why there are so many? Isn't the idea of the Tor network that, from any given node
only the source and destination can be determined? Like, you couldn't trace beyond one node in either direction, and I believe Tor bounces your signal at least three separate times to make it anonymous.
Therefor I wouldn't expect to see so many. Two would make sense in my mind, unless the additional servers are from others using ME as a node? Maybe that's it?
[–]eclecticApe
Funny I had this exact question a half year ago...
Basically the way tor handles DNS requests is to balance them throughout the network... it is not a "dns leak"...
the developers are obviously aware of DNS and its potential in revealing your location... therefore
TOR is configured to process DNS requests throughout the network, that is why you are seeing multiple DNS servers being queried at dnsleaktest.com
No worries, do an ipconfig /flush on your computer, and your dns queries will be safely and anonymously routed throughout the network.
Bookmarks