How to run the tor browser through a second proxy after Tor?

Question

My arch-nemesis, Akamai, is interfering with my ability to live my daily life.

I'd like to use Tor Browser to connect to a website that blocks Tor IP addresses by using an open proxy after Tor.  It doesn't matter which protocol to me, so if the method only works with one protocol, that's fine.

This question is very similar, but it doesn't specify browser, and Firefox has too wide of a fingerprinting surface for my application.  I'd like to use Tor Browser's fingerprint from a different IP address.

I have tried the following:

cd Browser; torsocks ./firefox --safe-mode would work in theory if you changed the proxy settings, but in practice, it never actually launches.
Web-based proxies are right out.  I need an SSL handshake with the remote host to even consider conducting business over the network.
cd Browser; proxychains ./firefox --safe-mode is liable to leak DNS information, isn't it?  I recall reading that proxychains doesn't use remote DNS resolution, and just runs a regular dig command.

Any suggestions?  If there's something like proxychains that runs as its own proxy server and I can just set the proxy to that in --safe-mode that might just solve the problem, but for the life of me, I can't find that.

lulofiv · Answer

OK, I've figured it out.

In about:config, change the following settings.

network.proxy.socks_remote_dns -> false
network.proxy.type -> 0
extensions.torlauncher.start_tor -> false

Then in about:addons disable TorLauncher.

In your proxychains.conf, add your proxy after the Tor daemon (9050, rather than the browser's 9150).  Make sure proxy_dns is in the config file.

Run proxychains (your-tbb-dir)/Browser/firefox.

The result should be a browser with the fingerprint of the TBB, but an IP address of a different reputation.

When you are done using the restricted site, reset the following settings

network.proxy.socks_remote_dns -> true
network.proxy.type -> 1
extensions.torlauncher.start_tor -> true

and re-enable TorLauncher.

I still need to look into a few security aspects of this.  I recall reading that proxychains doesn't proxy DNS requests and yet it seems to clearly present an option to do so.

A quick search didn't really get me anywhere, so there's a lot of investigation that I still need to do on this, but I think by using iptables, I should be able to ascertain that the browser cannot create requests to anything but Tor.

I hope this helps anyone with the same problem.

How to run the tor browser through a second proxy after Tor?

One Answer

Add your own answers!

Related Questions

obfs4 bridge every 10-20 seconds send and receive some data on static or default browser pages

tor isn’t routing, how do I configure it?

Automated script for selecting fast TOR circuit?

What is the difference between Tor, Tor Browser and torbrowser-launcher?

What’s to stop a bad directory operator?

I have this issue and cant log connect to tor

The first time it connected just fine but now this happens

Can’t get Meek PT’s or IPv6 addresses?

Tor keeps in “searching informations about the relay” when ExitNodes parameter is set in torcc file

The proxy server is refusing connections on my windows P.C

Failing to set up TOR for command-line use on Mac

What is the reason that Tor doesn’t have Qwant as a search engine?

Problem bootstrapping. Stuck at 10% (conn_done): Connected to a relay

Are relays chosen by location proximity, e.g. county, for circuit building?

Most Secure Connection

How to use meek with Tor expert bundle?

Tor Hidden Service Suddenly Stopped Working

is this a threat to tor?

is it safe to download Tor browser from other browser

Is there any easy download manager that currently works with tor on a linux machine?

Ask a Question