Silk Road forums
Discussion => Security => Topic started by: Kr1sKr1ngle on August 17, 2012, 11:31 pm
-
I have downloaded GPG tools and created a key.... I have created a tormail.org account. For some reason, I am unable to get mail application from the mac system to link to the tormail server. what am i doing wrong? can someone please help me? thanks in advance...
-
I have downloaded GPG tools and created a key.... I have created a tormail.org account. For some reason, I am unable to get mail application from the mac system to link to the tormail server. what am i doing wrong? can someone please help me? thanks in advance...
You're not doing anything wrong. Apple's Mail software is simply incompatible with Tor-based email services like TorMail. There simply appears to be no way to get Mail to use the .onion IMAP/SMTP/POP3 servers.
If you want to use an email client with TorMail, you have no choice but to use Thunderbird.
I've run into this before. This is how I solved it...
First off, I'd like to confirm that it is possible to use Thunderbird to access your TorMail accounts.
The main problem is that while the Tor Browser Bundle (TBB) is fine for web surfing, it is simply not adequate for other applications, like Thunderbird.
To solve that problem, you need to install the Vidalia Bundle, which you can find at: https://www.torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.2.38-0.2.20-i386.dmg
Now, you can still use the Tor Browser Bundle (TBB) to surf the web -- the Browser Bundle and the Vidalia Bundle appear to co-exist quite nicely, without stepping on each other's toes.
So, in other words, you're running TWO copies of Vidalia -- one with the Tor Browser Bundle (for surfing the web), with the other being the stand-alone Vidalia Bundle, that services Thunderbird and other applications. N.B.: The Vidalia bundle has to be up and running before you can access Tormail through Thunderbird.
Before you install the Vidalia Browser Bundle, and make changes to your email configuration, you must ensure that Enigmail is installed first. Enigmail can be found in the Add-Ons. Enigmail works with OpenPGP software like GPG, and can be configured to automatically encrypt and decrypt email.
Essentially, Enigmail is a front-end to GPG, and adds functionality such that messages can automatically be encrypted, if the recipient's keys are in your PGP keyring. Messages can also be automatically decrypted as well, once the passphrase has been entered.
Once Enigmail and the Vidalia Browser Bundle are installed, you need to:
1) Change your proxy settings in Thunderbird.
To do that, while in Thunderbird, use control-comma to bring up the preferences widow.
Click on the General Tab
Click on the Config Editor button.
You'll get a warning dialog box, just click "I'll be careful, I promise." to proceed.
You will then be at a page with many values. There will be a long search form at the top where you can enter some text.
Enter the following: network.proxy.socks -- the one you want is: network.proxy.socks_remote_dns - click on the value to toggle it from false to true. Click on the red x in the upper left hand corner to close this window. You will now be back at the Configuration window.
Click on the Network and Disk Space Tab., then click on the Settings button.
The next window will be Configure Proxies to Access the Internet
Ensure the Manual proxy configuration button is checked.
Under http proxy, enter a value of 127.0.0.1 and a port of 8118
Under SSL proxy, enter a value of 127.0.0.1 and a port of 8118
Under Socks Host, enter a value of 127.0.0.1 and a port of 9050
Make sure the Socks v4 radio button is checked.
Once you have done that, click on OK.
Now close out the Advanced window by clicking on the red x in the left hand corner.
N.B.: You may need to re-start the Vidalia Browser bundle each time you re-start your machine.
2) Adding your TorMail account to Thunderbird
From the main Thunderbird window, choose Tools --> Account settings. From the leftmost pane, click on the drop-down button Account Actions and choose Add Email Account.
From the next popup window, add your name, email address, and password; then click the continue button.
Next, click the Manual Config button at the bottom of the next window.
Enter the following value into the respective fields:
Incoming: IMAP Server hostname will read tormail.org -- replace this with jhiwjjlqpyawmpjx.onion. Leave the port at 143 Change SSL to none and Authentication to normal password
Outgoing SMTP Server hostname will read tormail.org -- replace this with jhiwjjlqpyawmpjx.onion. Leave the port at 25. Change SSL to None and Authentication to normal password.
Then click the Create Account button.
At this point, a large red warning box will come up warning you that encryption is not used. Remember, the Tor network encrypts all data packets flowing through it. As TorMail is a hidden service, the data never leaves the Tor network, so the settings are safe. Put a checkmark in the box "I accept the risks" and click the Create Account button.
Thunderbird will attempt to login to your account; you will see it say, "Checking password".
That screen will disappear, and you will be back at the accounts page. You can then click on OK to close it out, and your TorMail account will be operational under Thunderbird.
3) Instructing OpenPGP/Enigmail as to how to treat incoming/outgoing messages
We're still at the Accounts page. Select an account from the left-hand pane by clicking on it. Click on OpenPGP from the top-most menu.
Under this menu you will see a number of options (some of which may be greyed-out)
- Decrypt/Verify
- Save Decrypted Message
- Automatically Decrypt/Verify Messages
- Clear Saved Passphrase
- Reload Message
- Sender's Key sub-options:
- Import public key
- View Key Properties
- Sign Key
- Set Owner Trust
- Preferences
- Edit Per-Recipient Rules
- Key Management
- Manage Smartcard
- Debugging Options sub-options:
- View Console
- View Logfile
- Help
- Setup Wizard
- About OpenPGP
The one we're interested in is Setup Wizard.
Click on Setup Wizard, and you'll be asked if you'd like to use the Wizard now?
click the radio button that says, Yes, I would like the wizard to get me started
Click Continue
Now you will be at the Select Identities pane.
You will be asked, Would you like to setup Open PGP for all identities?
click the radio button Yes.
Click Continue.
The wizard will now ask if you want to sign all your outgoing email.
You can choose Yes or No as you desire. The upside to signing email is that this guarantees the recipient that the email is genuine, and not forged; the downside is that you lose all deniability.
Click Continue
You will next be asked if all your outgoing email should be encrypted by default?
You can choose Yes or No. Choosing Yes is a safe option.
click Continue
The wizard will next ask you for permission to change some settings to make sure there are no problems with signing and/or encryption.
Click the Yes radio button.
Next the wizard will detect any keys that you may have on your PGP keyring. It will show you a list of these keys. There will also be a radio button which will allow you to generate a new PGP key.
Click one of the keys shown to choose as a default key to use for signing and encryption. Click continue.
You will then be at the Summary page. It will say:
You are almost complete! If you click on the "Next" button, the wizard will perform the following actions:
- Use the existing OpenPGP key ID DEADBEEF for signing
- Activate OpenPGP for all identities
- Sign all emails by default
- Encrypt all emails by default
- Adjust al recommended application settings
Click Continue to accept.
Now click Done, and the Wizard will close.
This completes the tutorial. If there are any questions, please don't hesitate to ask.
Guru
ily guru.
i use a gpg keychain, mac, and terminal. <3
-
I have downloaded GPG tools and created a key.... I have created a tormail.org account. For some reason, I am unable to get mail application from the mac system to link to the tormail server. what am i doing wrong? can someone please help me? thanks in advance...
You're not doing anything wrong. Apple's Mail software is simply incompatible with Tor-based email services like TorMail. There simply appears to be no way to get Mail to use the .onion IMAP/SMTP/POP3 servers.
If you want to use an email client with TorMail, you have no choice but to use Thunderbird.
I've run into this before. This is how I solved it...
First off, I'd like to confirm that it is possible to use Thunderbird to access your TorMail accounts.
The main problem is that while the Tor Browser Bundle (TBB) is fine for web surfing, it is simply not adequate for other applications, like Thunderbird.
To solve that problem, you need to install the Vidalia Bundle, which you can find at: https://www.torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.2.38-0.2.20-i386.dmg
Now, you can still use the Tor Browser Bundle (TBB) to surf the web -- the Browser Bundle and the Vidalia Bundle appear to co-exist quite nicely, without stepping on each other's toes.
So, in other words, you're running TWO copies of Vidalia -- one with the Tor Browser Bundle (for surfing the web), with the other being the stand-alone Vidalia Bundle, that services Thunderbird and other applications. N.B.: The Vidalia bundle has to be up and running before you can access Tormail through Thunderbird.
Before you install the Vidalia Browser Bundle, and make changes to your email configuration, you must ensure that Enigmail is installed first. Enigmail can be found in the Add-Ons. Enigmail works with OpenPGP software like GPG, and can be configured to automatically encrypt and decrypt email.
Essentially, Enigmail is a front-end to GPG, and adds functionality such that messages can automatically be encrypted, if the recipient's keys are in your PGP keyring. Messages can also be automatically decrypted as well, once the passphrase has been entered.
Once Enigmail and the Vidalia Browser Bundle are installed, you need to:
1) Change your proxy settings in Thunderbird.
To do that, while in Thunderbird, use control-comma to bring up the preferences widow.
Click on the General Tab
Click on the Config Editor button.
You'll get a warning dialog box, just click "I'll be careful, I promise." to proceed.
You will then be at a page with many values. There will be a long search form at the top where you can enter some text.
Enter the following: network.proxy.socks -- the one you want is: network.proxy.socks_remote_dns - click on the value to toggle it from false to true. Click on the red x in the upper left hand corner to close this window. You will now be back at the Configuration window.
Click on the Network and Disk Space Tab., then click on the Settings button.
The next window will be Configure Proxies to Access the Internet
Ensure the Manual proxy configuration button is checked.
Under http proxy, enter a value of 127.0.0.1 and a port of 8118
Under SSL proxy, enter a value of 127.0.0.1 and a port of 8118
Under Socks Host, enter a value of 127.0.0.1 and a port of 9050
Make sure the Socks v4 radio button is checked.
Once you have done that, click on OK.
Now close out the Advanced window by clicking on the red x in the left hand corner.
N.B.: You may need to re-start the Vidalia Browser bundle each time you re-start your machine.
2) Adding your TorMail account to Thunderbird
From the main Thunderbird window, choose Tools --> Account settings. From the leftmost pane, click on the drop-down button Account Actions and choose Add Email Account.
From the next popup window, add your name, email address, and password; then click the continue button.
Next, click the Manual Config button at the bottom of the next window.
Enter the following value into the respective fields:
Incoming: IMAP Server hostname will read tormail.org -- replace this with jhiwjjlqpyawmpjx.onion. Leave the port at 143 Change SSL to none and Authentication to normal password
Outgoing SMTP Server hostname will read tormail.org -- replace this with jhiwjjlqpyawmpjx.onion. Leave the port at 25. Change SSL to None and Authentication to normal password.
Then click the Create Account button.
At this point, a large red warning box will come up warning you that encryption is not used. Remember, the Tor network encrypts all data packets flowing through it. As TorMail is a hidden service, the data never leaves the Tor network, so the settings are safe. Put a checkmark in the box "I accept the risks" and click the Create Account button.
Thunderbird will attempt to login to your account; you will see it say, "Checking password".
That screen will disappear, and you will be back at the accounts page. You can then click on OK to close it out, and your TorMail account will be operational under Thunderbird.
3) Instructing OpenPGP/Enigmail as to how to treat incoming/outgoing messages
We're still at the Accounts page. Select an account from the left-hand pane by clicking on it. Click on OpenPGP from the top-most menu.
Under this menu you will see a number of options (some of which may be greyed-out)
- Decrypt/Verify
- Save Decrypted Message
- Automatically Decrypt/Verify Messages
- Clear Saved Passphrase
- Reload Message
- Sender's Key sub-options:
- Import public key
- View Key Properties
- Sign Key
- Set Owner Trust
- Preferences
- Edit Per-Recipient Rules
- Key Management
- Manage Smartcard
- Debugging Options sub-options:
- View Console
- View Logfile
- Help
- Setup Wizard
- About OpenPGP
The one we're interested in is Setup Wizard.
Click on Setup Wizard, and you'll be asked if you'd like to use the Wizard now?
click the radio button that says, Yes, I would like the wizard to get me started
Click Continue
Now you will be at the Select Identities pane.
You will be asked, Would you like to setup Open PGP for all identities?
click the radio button Yes.
Click Continue.
The wizard will now ask if you want to sign all your outgoing email.
You can choose Yes or No as you desire. The upside to signing email is that this guarantees the recipient that the email is genuine, and not forged; the downside is that you lose all deniability.
Click Continue
You will next be asked if all your outgoing email should be encrypted by default?
You can choose Yes or No. Choosing Yes is a safe option.
click Continue
The wizard will next ask you for permission to change some settings to make sure there are no problems with signing and/or encryption.
Click the Yes radio button.
Next the wizard will detect any keys that you may have on your PGP keyring. It will show you a list of these keys. There will also be a radio button which will allow you to generate a new PGP key.
Click one of the keys shown to choose as a default key to use for signing and encryption. Click continue.
You will then be at the Summary page. It will say:
You are almost complete! If you click on the "Next" button, the wizard will perform the following actions:
- Use the existing OpenPGP key ID DEADBEEF for signing
- Activate OpenPGP for all identities
- Sign all emails by default
- Encrypt all emails by default
- Adjust al recommended application settings
Click Continue to accept.
Now click Done, and the Wizard will close.
This completes the tutorial. If there are any questions, please don't hesitate to ask.
Guru
Guru,
Thank you kindly for your assistance. I have performed the downloads as you suggested and have made it to the manual configuration portion of adding my tormail account to thunderbird. I am stuck at this step and keep getting the error message "Configuration could not be verified - is the username or password wrong?"
I assure you i am using the correct username and password. Why is this error message coming up and how can i fix it? thanks in advance. I will give you a donation for the assistance :)
-
Guru,
Thank you kindly for your assistance. I have performed the downloads as you suggested and have made it to the manual configuration portion of adding my tormail account to thunderbird. I am stuck at this step and keep getting the error message "Configuration could not be verified - is the username or password wrong?"
I assure you i am using the correct username and password. Why is this error message coming up and how can i fix it? thanks in advance. I will give you a donation for the assistance :)
Having the Vidalia bundle installed and running before starting Thunderbird solved the issue for me. I'll have to go through it again, just to see if there is something I missed. I'll get back to you on this.
Guru
thanks guru! also, i downloaded the vidalia bundle at the link you provided https://www.torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.2.38-0.2.20-i386.dmg, but when i open it, it says Tor is not running...?
arg this is frustrating! lol
-
Guru,
Thank you kindly for your assistance. I have performed the downloads as you suggested and have made it to the manual configuration portion of adding my tormail account to thunderbird. I am stuck at this step and keep getting the error message "Configuration could not be verified - is the username or password wrong?"
I assure you i am using the correct username and password. Why is this error message coming up and how can i fix it? thanks in advance. I will give you a donation for the assistance :)
Having the Vidalia bundle installed and running before starting Thunderbird solved the issue for me. I'll have to go through it again, just to see if there is something I missed. I'll get back to you on this.
Guru
thanks guru! also, i downloaded the vidalia bundle at the link you provided https://www.torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.2.38-0.2.20-i386.dmg, but when i open it, it says Tor is not running...?
arg this is frustrating! lol
I'm presuming when you downloaded the Vidalia Bundle, you double-clicked on the .dmg file. If you did, you would have seen a little pop-up window, showing a vidalia onion icon on the left, and an icon of a folder with an A on it, (representing the Applications folder) on the right. You would have also seen an instruction to drag the vidalia onion icon over to the Applications folder icon. If you did this, the application would have been installed into the Applications folder.
At this point Tor is not running. To establish a Tor circuit, you must explicitly invoke Vidalia in the Applications folder by double-clicking on it. When you do so, you will see an onion icon appear in your dock. At first, the onion will be yellow, signifying that it is in the process of establishing a Tor circuit. When the Tor circuit is complete, and ready to use, the onion will switch to a green colour.
It is only after this that you double-click on the Thunderbird icon in the Applications folder. If you have set up Thunderbird as per the previous instructions, Thunderbird should be able to login to your TorMail accounts, and you should be able to download any email you have there.
Guru
the vidalia onion icon is coming up on my tool bar but it is greyed out and has a big red x thru it. when i run my tor, however, i do have a vidalia onion icon and a earth globe icon in green that pop up. is this sufficient or is the vidalia bundle i am trying to download and run to run at the same time - meaning i would have 2 vidalia onions on my tool bar? thanks guru. really want to get this thing working for safety.
-
Guru,
Thank you kindly for your assistance. I have performed the downloads as you suggested and have made it to the manual configuration portion of adding my tormail account to thunderbird. I am stuck at this step and keep getting the error message "Configuration could not be verified - is the username or password wrong?"
I assure you i am using the correct username and password. Why is this error message coming up and how can i fix it? thanks in advance. I will give you a donation for the assistance :)
Having the Vidalia bundle installed and running before starting Thunderbird solved the issue for me. I'll have to go through it again, just to see if there is something I missed. I'll get back to you on this.
Guru
thanks guru! also, i downloaded the vidalia bundle at the link you provided https://www.torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.2.38-0.2.20-i386.dmg, but when i open it, it says Tor is not running...?
arg this is frustrating! lol
I'm presuming when you downloaded the Vidalia Bundle, you double-clicked on the .dmg file. If you did, you would have seen a little pop-up window, showing a vidalia onion icon on the left, and an icon of a folder with an A on it, (representing the Applications folder) on the right. You would have also seen an instruction to drag the vidalia onion icon over to the Applications folder icon. If you did this, the application would have been installed into the Applications folder.
At this point Tor is not running. To establish a Tor circuit, you must explicitly invoke Vidalia in the Applications folder by double-clicking on it. When you do so, you will see an onion icon appear in your dock. At first, the onion will be yellow, signifying that it is in the process of establishing a Tor circuit. When the Tor circuit is complete, and ready to use, the onion will switch to a green colour.
It is only after this that you double-click on the Thunderbird icon in the Applications folder. If you have set up Thunderbird as per the previous instructions, Thunderbird should be able to login to your TorMail accounts, and you should be able to download any email you have there.
Guru
the vidalia onion icon is coming up on my tool bar but it is greyed out and has a big red x thru it. when i run my tor, however, i do have a vidalia onion icon and a earth globe icon in green that pop up. is this sufficient or is the vidalia bundle i am trying to download and run to run at the same time - meaning i would have 2 vidalia onions on my tool bar? thanks guru. really want to get this thing working for safety.
Ah, now we're getting somewhere. Yes, you do need the two of them. The vidalia instance in the Tor Browser Bundle (TBB) only works with the browser; it doesn't seem to recognize any external applications, like Thunderbird. That is why you need to have a second copy of Vidalia installed and running.
Try using Control-Click on the Vidalia icon with the red X through it. A menu should come up, and the top-most item should read "Start Tor". Click on that, and the icon should change to yellow in a few seconds, and then change to green. When it changes to green, then you should be good to go.
Guru
Guru, I am getting so close I can smell it! But still not working :-[. When I select "Start Tor" from the greyed out vidalia icon with the x thru it, I am prompted for a password. Do I have something configured wrong, because I have not set up a password. Thanks again for your help.... ;D
-
guru,
i deleted the tor browser bundle and the vidalia bundle and downloaded again to start from scratch. the vidalia bundle is no longer asking for a password but it still will not change from the greyed out with the red x when i tell it to start tor...
-
also guru, is guru your name on SR? i want to make sure i send btc to the right person who is helping me out. thanks!
-
guru,
what i am doing now is starting the vidalia bundle first. this brings up the vidalia logo with the red x and also kickstarts my tbb which brings up another vidalia and the globe icon (both green and active). i am able to conduct all my usual activity on SR. when i click on start tor from the inactive vidalia icon, a screen for the active icon pops up and says, 'connected to the tor network!'. underneath that pop-up window remains the the vidalia control panel for the inactive vid bundle which continues to say tor not running. i still have all of the options available on the inactive vidalia control panel, perhaps you can walk me thru the correct settings?
- start tor
- setup relaying
- view the network
- use a new identity
- bandwidth graph
- help
- about
- message log
- settings
- exit
- show this window on startup
- hide
please help, you have gotten me so close i could cry!
also, please tell me ur SR name so i can send you coin. i assume it is 'Guru' but want to make sure.
Thanks!!!
-
damn guru, this is driving me crazy, i can not believe this can be so hard! thank you so much for your patience and assistance, but i am still lost!
this is how i had it set up:
i would first launch the vidalia browser bundle. under setting on the general tab, i had the start the tor software when vidalia starts box checked with the path selected by hitting the browse button and selecting the tor browser bundle. this would automatically launch the other vidalia icon and the globe icon (both in green and working). the vbb vidalia icon, however, would stay greyed out with the red x and would not connect.
now you are suggesting to get rid of the tbb. in order to do this, since the tbb is set to automatically start when i start the vbb, what do i change the general tab under settings to? do i leave the start the tor software when vidalia starts box checked and if so, what path do i select via the browse button?
does it make sense for me to just download lion and run that as an os instead of snow leopard?
please help me! thanks!
-
WOW! Why OUT a guy for misunderstanding? I wonder if he thought his private message to you would be shared on the forum here? - Not cool dude. I have no fucking idea how I got SR to work. I couldn't explain it to anyone, I just have a knack to do things. Same reason I can play piano and guitar, yet I'm unable to read music.
We can't all be brain surgeon geeks. The rest of us need medication to slow us down to your earthlings level.
I was just looking for this sellers legitimacy Not his personal worries about logging onto the system properly.
Some things are better left unsaid. - Just one man's opinion.
Jagfug - Sovereign Citizen USA
-
i have the same problem been trying for weeks to get the two programs to work together
on a mac 10.6.8
-
i have just done it at last ....that was long i have the same settings as your self and the same errors
all you have to do is open up vidalia first with tor browser open up tormail sign in then and only then
open up Thunderbird go as before with the settings outlined as before hey presto it will configure and you will be up and running
now my problem is getting to send encrypted files with gpg i cant get it to send yet .....