Q: create Tor anonymising middlebox osx

    Hey Arrvee,

Are you still using pdnsd? Are you also using DNSCrypt?

I've been using DNSCrypt for a month or so and have been trying to set up pdnsd.

I haven't found any complete setup instructions online for pdnsd and virtually nothing for using it on Mac.

I entered sudo lsof -i -P | grep -i "listen" and it shows that pdnsd is listening on port 53.

I ran some commands from here that were supposed to make pdnsd launch on boot.

The last command, sudo launchctl load -w /Library/LaunchDaemons/homebrew.mxcl.pdnsd.plist, throws this error: /Library/LaunchDaemons/homebrew.mxcl.pdnsd.plist: Invalid property list.

After reboot pdnsd isn't running.

I really don't know what's supposed to be in the pdnsd.conf file. I pasted some text from here and changed the server port to 54.

Example: configuration for pdnsd

Install pdnsd. A basic configuration to work with DNSCrypt is:

/etc/pdnsd.conf

global { perm_cache = 1024; cache_dir = "/var/cache/pdnsd"; run_as = "pdnsd"; server_ip = 127.0.0.1; status_ctl = on; query_method = udp_tcp; min_ttl = 15m;       # Retain cached entries at least 15 minutes. max_ttl = 1w;        # One week. timeout = 10;        # Global timeout option (10 seconds). neg_domain_pol = on; udpbufsize = 1024;   # Upper limit on the size of UDP messages. }  server { label = "dnscrypt-proxy"; ip = 127.0.0.1; port = 40; timeout = 4; proxy_only = on; }  source { owner = localhost; file = "/etc/hosts"; }

Restart pdnsd.service to apply the changes.

Now DNSCrypt no longer works - it's always on standby. But it does show the two DNS servers I've chosen as its current resolvers.

And apparently homebrew.mxcl.pdnsd.plist also contains the wrong data.

When I delete the DNS servers in System Prefs, the capture portal replaces them with 10.128.128.128.

I don't want to use their servers but DNSCrypt is no longer functional.

Hello OregonRebel,

This thread is over 2 years old. The new forum software needs to show the date better.

In any event, this seems like a lot of work. It sounds like it would be much easier to just find a government facility that provides some kind of public guest WiFi access and do your computing from there. Tor has been outed as a government honeypot for some time now.

Thanks Etresoft, I ran your app again just yesterday.

I'm aware the thread is old, but if thee poster is still registered they should receive the messages.

This has nothing to do with using Tor, that's separate and for different uses than DNS encryption.

I'm trying to prevent redirects, cache poisoning and ISP snooping.

It's has been a lot of work, still not finished yet but getting closer.

Started with DNSCrypt, then read that it is recommended to have a local DNS cache so that every query isn't sent out to the server again, which should reduce load times.

Hello again OregonRebel,

If you have a specific question about DNSCrypt, or about some other issue that led you to that software, it would be best to start your own question. Piggy-backing on an old thread is an excellent way to get your question ignored.

Got your attention didn't I?

I posted here because it was the only discussion listed when I searched for pdnsd.

I'm not gonna start a new post here for something that very few people use and even fewer Mac users use.

I could piggyback on an old DNSCrypt thread but my question isn't about DNSCrypt.

Arrvee stated that he (presumably) was using pdnsd, thus he would be an appropriate person to ask.

While I appreciate the use of your software, your responses have been unhelpful and annoying.

You seemed to imply that I was attempting to hide my illicit online activity when in fact my question had nothing whatsoever to do with Tor. 

I won't mention how annoying that nag screen is in EtreCheck since it is a useful tool that I'm sure you spend a considerable amount of time on and you deserve to be compensated.

OregonRebel wrote:

 

Got your attention didn't I?

 

I posted here because it was the only discussion listed when I searched for pdnsd.

I'm not gonna start a new post here for something that very few people use and even fewer Mac users use.

I could piggyback on an old DNSCrypt thread but my question isn't about DNSCrypt.

Arrvee stated that he (presumably) was using pdnsd, thus he would be an appropriate person to ask.

There are people around who run some funky software. They will be happy to help. All you have to do is ask them. Arrvee hasn't posted anything in years.

While I appreciate the use of your software, your responses have been unhelpful and annoying.

You seemed to imply that I was attempting to hide my illicit online activity when in fact my question had nothing whatsoever to do with Tor. 

My goal in responding was to try, and apparently fail, to get you to construct a better question and get a good answer. I didn't say anything about your activity. This is a thread about Tor and there are still many people who think it is something other than a government-funded project.

I won't mention how annoying that nag screen is in EtreCheck since it is a useful tool that I'm sure you spend a considerable amount of time on and you deserve to be compensated.

There are ways to disable the nag screen.

But now that I re-read your question, it does seem that your problem is with constructing a valid plist file. There are lots of people who can help with that. But they won't know need help until you ask.