Silk Road forums

Discussion => Security => Topic started by: torchlight on September 16, 2012, 09:04 pm

Title: Is TOR for droid orbot secure?
Post by: torchlight on September 16, 2012, 09:04 pm
A friend of mine said last night he downloaded Tor to his droid cell phone.  I have him a wtf kinda look.

He claims Tor on a cell phone.connected through.3G or 4G is totally safe but wifi is nuts.  Can anyone elaborate?
Title: Re: Is TOR for droid orbot secure?
Post by: CrazyBart on September 16, 2012, 10:07 pm
What are your concerns?

You are still going through the TOR network no matter how you are connecting to the internet.
Title: Re: Is TOR for droid orbot secure?
Post by: newton on September 17, 2012, 12:23 am
I would only worry about being caught with the device. And - never use it at your home or work. The gps shit sktches me a little.
Title: Re: Is TOR for droid orbot secure?
Post by: enterbenq on September 17, 2012, 01:50 am
I do all my transactions with Galaxy Nexus with pattern lock set to instantaneous.
 They can't crack the pattern!
Done about 30 orders o/s and domestic.
I consider it safe
Title: Re: Is TOR for droid orbot secure?
Post by: Shannon on September 17, 2012, 05:43 am
I do all my transactions with Galaxy Nexus with pattern lock set to instantaneous.
 They can't crack the pattern!
Done about 30 orders o/s and domestic.
I consider it safe

only until they hook your phone up to a cellebrite, clone it, and pwn it at their leisure
Title: Re: Is TOR for droid orbot secure?
Post by: enterbenq on September 17, 2012, 07:01 am
Physical extraction for any locked device is only available if the USB debugging has been switched on..
That from the cellebrite website
Title: Re: Is TOR for droid orbot secure?
Post by: Shannon on September 17, 2012, 08:07 am
i don't believe you're completely correct, iirc the cellebrite devices deploy their own bootloaders for pretty almost every android device out there. usb debugging would be required only for the few models that they don't have custom bootloaders for

i think i have some slides from their training seminars lying around somewhere which try to i'll post up
Title: Re: Is TOR for droid orbot secure?
Post by: torchlight on September 18, 2012, 02:20 am
So USB Debugging should be checked or unchecked?  Does "allow mock locations" have anything to do with it?  Does the fact that his phone has no sd card help or hinder him in anyway?
Title: Re: Is TOR for droid orbot secure?
Post by: torchlight on October 01, 2012, 01:59 am
Is a phone with TOR installed safer and more secure if it has no sd card?
Title: Re: Is TOR for droid orbot secure?
Post by: BigEasy on October 01, 2012, 02:07 am
So USB Debugging should be checked or unchecked?  Does "allow mock locations" have anything to do with it?  Does the fact that his phone has no sd card help or hinder him in anyway?

You should NOT allow USB debugging.
Title: Re: Is TOR for droid orbot secure?
Post by: BigEasy on October 01, 2012, 02:13 am
Is a phone with TOR installed safer and more secure if it has no sd card?

I only think that this matters if you are storing your data without using crypto, I don't know much about using full disk crypto ( LUKS ) with the actual phone. You can definitely us it with a SD card.

Check out this link and read as much as you can:
https://github.com/guardianproject/luks/wiki
Title: Re: Is TOR for droid orbot secure?
Post by: gtrmonkey on October 01, 2012, 02:31 am
Having problems with Orweb not working with the capchta, is there a way around this
Title: Re: Is TOR for droid orbot secure?
Post by: torchlight on October 01, 2012, 02:45 am
Enable java on your orweb and your captcha will show up.
Title: Re: Is TOR for droid orbot secure?
Post by: gtrmonkey on October 01, 2012, 05:07 am
Thanks for the help man