Orweb Security Advisory: Possible IP leakage with HTML5 video/audio

 Posted on August 21, 2013  |  n8fr8

The Orweb browser app is vulnerable to leak the actual IP of the device it is on, if it loads a page with HTML5 video or audio tags on them, and those tags are set to auto-start or display a poster frame. On some versions of Android, the video and audio player start/load events happen without the user requesting anything, and the request to the URL for the media src or through image poster is made outside of the proxy settings. [Read More]
orbot  orweb  tor 

The Only Way to Visit Strongbox on a Phone

 Posted on May 16, 2013  |  mark

The New Yorker magazine just launched Strongbox, a whistleblower submission system that’s hosted on a hidden website. There’s only one way to access the hidden site on a phone or tablet, and that’s with our Orweb app. Here’s a simple breakdown of how to do securely and anonymously blow the whistle, explained in an interactive tutorial: Visit guardianproject.info/howto/strongbox for an interactive tutorial on using Strongbox on your phone. The website exists as a hidden site on what is widely known as the darknet, since you are going there hidden or “in the dark. [Read More]
Android  darknet  howto  journalism  magazine  onion browser  orbot  orweb  phone  privacy  proxy  security  strongbox  tablet  the new yorker  tor  tutorial  wikileaks