Changes between Version 104 and Version 105 of AnonymityModule


Ignore:
Timestamp:
Jul 7, 2011 11:49:41 AM (13 years ago)
Author:
TTaggart
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • AnonymityModule

    v104 v105  
    9494=== Direct Client-to-Server Traffic ===
    9595Then type the command `sudo tcpdump -i eth0 -s 0 -x -w /tmp/direct.pcap.` This will begin listening to the traffic that comes through this node and that specific ethernet link, eth0 in the example, write the data out to the file direct.pcap in the tmp diretory.  At this time, the person connected to Alice will enter the command `wget --no-proxy http://server1/cgi-bin/ip.cgi` This saves a local copy of the web page set up on the server, and by doing so generates HTTP traffic to examine. We were able to listen in on this traffic thanks to the `tcpdump` command. Then the users connected to Server1 will enter the command `cp /tmp/direct.pcap .` This will copy the file with the sniffed data into the users directory. We'll analyze what this data looks like and can tell us at a later time. However if you want to analyze this data now before we sniff more, proceed to Step 3 on this page.
    96 To reiterate, the commands are
     96To reiterate, the commands are:
    9797 * `sudo tcpdump -i eth0 -s 0 -x -w /tmp/direct.pcap.` from the server
    9898 * `wget --no-proxy http://server1/cgi-bin/ip.cgi` from Alice
     
    101101=== Client-to-Server Traffic through a Proxy ===
    102102Now we'll use a proxy to make this traffic a bit more anonymous.  A proxy will mask the source and destination of the traffic from both the client and the server by working as a go between for the two nodes.  Repeat the `tcpdump` command `sudo tcpdump -i eth0 -s 0 -x -w /tmp/throughproxy.pcap.` However, now the user connected to Alice should enter the command `env http_proxy=http://proxy:8888 wget http://server1/cgi-bin/ip.cgi` This command changes an environmental setting and sends the `wget` command through the proxy on port 8888.  Thanks to the `tcpdump` command, we have a copy of this traffic as well. Then the user on the Server1 node should enter `cp /tmp/throughproxy.pcap .` This saves us a copy of the data.
     103Again, in order:
     104 * `sudo tcpdump -i eth0 -s 0 -x -w /tmp/direct.pcap.` from the server
     105 * `env http_proxy=http://proxy:8888 wget http://server1/cgi-bin/ip.cgi` from Alice
     106 * `cp /tmp/direct.pcap .` from the server after closing the tcpdump
    103107
    104108=== Client-to-Server Traffic through Tor ===