Package Details: tor-browser 10.0.18-1

Git Clone URL: https://aur.archlinux.org/tor-browser.git (read-only, click to copy)
Package Base: tor-browser
Description: Tor Browser Bundle: anonymous browsing using Firefox and Tor (international PKGBUILD)
Upstream URL: https://www.torproject.org/projects/torbrowser.html
Keywords: Anonymity Browser Internet Network Tor
Licenses: GPL
Submitter: grufo
Maintainer: grufo (jugs)
Last Packager: jugs
Votes: 1149
Popularity: 9.96
First Submitted: 2017-03-23 12:24
Last Updated: 2021-06-21 14:14

Required by (0)

Sources (8)

Pinned Comments

grufo commented on 2019-08-15 02:22

Before running makepkg, you must do this (as normal user):

$ gpg --auto-key-locate nodefault,wkd --locate-keys torbrowser@torproject.org

If you want to update tor-browser from AUR without AUR helpers you can run in a terminal:

$ tor-browser -u

Latest Comments

« First ‹ Previous 1 2 3 4 5 6 7 8 9 ... Next › Last »

je-vv commented on 2020-09-23 20:09

@MrG0z, that doesn't happen to me, if that helps...

MrG0z commented on 2020-09-23 20:04

It's weird. Since the update to 10.0-1, starting "tor-browser" starts my usual Firefox version.

grufo commented on 2020-09-22 03:52

@craeckie

If --allow-remote is disabled by default there is a reason… Btw, you don't need to add --allow-remote to the script, you can pass any argument to it and they will be redirected to the browser.

--grufo

ragouel commented on 2020-08-22 22:17

PKGBUILD is broken

craeckie commented on 2020-07-20 16:51

@WhyNotHugo It's true, that opening links is a liability. But copy-pasting link doesn't change that even a bit. In the case of accidentially opening a link, most users will likely just use a normal browser, if "Tor doesn't work". In that case the actual IP is revealed, which imo is a much bigger liability.

Are there any other effects of enabling --allow-remote?

whynothugo commented on 2020-07-01 16:32

That patch seems a bit of a security liability. If I click on a link on some desktop app (say, an IM client), it could trigger Tor to open that link.

That allows crossing my non-tor IP with my in-tor session.

I'd rather link had to by copy-pasted into Tor explicitly, TBH.

craeckie commented on 2020-07-01 14:24

Hi, currently it's not possible for me to open links in the browser. After adding %u to the desktop file and --allow-remote to tor-browser.sh, it works.

Here's the patch:

diff --git a/PKGBUILD b/PKGBUILD
index 74a0f29..4ba6b34 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -87,9 +87,9 @@ source=("${pkgname}.desktop"
 # No need for `makepkg -g`: the following sha256sums¸don't need to be updated #
 # with each release, everything is done automatically! Leave them like this!  #
 ###############################################################################
-sha256sums=('9ee0a4672e2d0835ffb94bcf26e17b56432030496a9cdf019b70c96083c24340'
+sha256sums=('d88d35a3ff1a431a927869be503b6a32f2767b87206d7de254e358a00975e97e'
             'f25ccf68b47f5eb14c6fec0664c74f30ea9c6c58d42fc6abac3b64670aaa3152'
-            '89118837e6db1d7b089e0067a6430e9a1a8602a64e00b7ea94382abfb0d3e502')
+            'cabfaf0485cd44dfb216dcf9aa10f98beac46064a908f02c3414c3650bc73628')
 sha256sums_i686=($(_dist_checksum "${_tag_i686}")
                  'SKIP')
 sha256sums_x86_64=($(_dist_checksum "${_tag_x86_64}")
diff --git a/tor-browser.desktop b/tor-browser.desktop
index aca8d11..b6a81a4 100644
--- a/tor-browser.desktop
+++ b/tor-browser.desktop
@@ -2,7 +2,7 @@
 Version=1.0
 Type=Application
 Name=Tor Browser (__REPL_LANGUAGE__)
-Exec=/usr/bin/tor-browser
+Exec=/usr/bin/tor-browser %u
 Icon=tor-browser
 Categories=Network;
 Comment=Anonymous browsing using Firefox and Tor
diff --git a/tor-browser.sh b/tor-browser.sh
index 2ca37f2..7b11862 100755
--- a/tor-browser.sh
+++ b/tor-browser.sh
@@ -192,5 +192,5 @@ else
 fi

 # start tor-browser
-"${_TB_APP_DIR_}/Browser/start-tor-browser" "${args[@]}"
+"${_TB_APP_DIR_}/Browser/start-tor-browser" --allow-remote "${args[@]}"

grufo commented on 2020-06-18 11:57

@ragouel

tor-browser does not depend on the tor package.

@je-vv

Of course!

ragouel commented on 2020-06-18 04:05

Please add tor to depends() array.

je-vv commented on 2020-06-11 06:24

@cschmid, I've seen duplicated packages in AUR before, without that been a problems, but yours is a very good question.

There are subtles differences, with AUR you get to upgrade the tor-browser binary on every AUR upgrade you do. On the torbrowser launcher on the other hand, you whether automatically upgrade the binary when launching I'd guess (whenever that happens), or you do it manually, if you know when, through the torbrowser-settings launcher. Also, the torbrowser launcher from community installs a separate gnupg directory under ~/.local/share/torbrowser, which has also pro and cons (con is having yet another gnupg dir, pro would be isolating your own from the tor one, but that doesn't matter anymore if you have your own, since tor is not the only one polluted around there).

One would say that it'd be good torbrowser-launcher it's from Arch repos, but that's not exactly true, since it downloads the torbrowser binary any ways as well, not that it's built from an Arch maintainer. I personally prefer the AUR approach, since that keeps the upgrade as I regularly upgrade stuff, with aursync or the AUR helper of your choice, when I do a system upgrade. And I do use gnupg, :)

Less subtle differences are on the dependencies, I see the community package depending on several python packages, which the AUR one doesn't, while on the other hand the AUR package depends on mozilla-common plus several others whereas the community package doesn't. Some of those deal with gpg and launching BTW. In that regard I like the AUR choice better. Finally I don't see the apparmor optional dependency on the AUR package, but definitely not a must, and can be added to the AUR package as well.

All that applies as long as @grufo keeps maintaining tor-browser.

@grufo, are you still maintaining tor-browser, even though the community package exists? In my case at least, I'd rather stick with the AUR package. Thanks !