1
00:00:00,000 --> 00:00:06,000
Now that we have Thales installed configured with persistence and we learned the basics on how to use

2
00:00:06,000 --> 00:00:08,000
it and interact with it.

3
00:00:08,000 --> 00:00:14,000
In this lecture, I want to talk about the Tor browser that comes with Thales and highlight a major

4
00:00:14,000 --> 00:00:20,000
restriction that Thales enforces over the Tor web browser.

5
00:00:21,000 --> 00:00:23,000
So go into the applications.

6
00:00:23,000 --> 00:00:27,000
You can see we have in our favorites the Tor browser.

7
00:00:27,000 --> 00:00:33,000
As you know, we've actually covered this browser before and we spoke about how it works and we learned

8
00:00:33,000 --> 00:00:40,000
how to install it on different operating systems and how to properly configure it for optimum security

9
00:00:40,000 --> 00:00:41,000
and anonymity.

10
00:00:42,000 --> 00:00:47,000
So what we have here is an identical version to the browser that I showed you before.

11
00:00:47,000 --> 00:00:52,000
You can go to check the Tor project.org to make sure that everything is connected.

12
00:00:52,000 --> 00:00:58,000
But we already know that everything is working because as I mentioned before, all connections sent

13
00:00:58,000 --> 00:01:04,000
from tales from the whole operating system go through the Tor network and we can confirm this from this

14
00:01:04,000 --> 00:01:05,000
onion.

15
00:01:05,000 --> 00:01:10,000
But if you really just want to double check, you can just go to check.

16
00:01:11,000 --> 00:01:13,000
The third project.org.

17
00:01:13,000 --> 00:01:19,000
And as you can see, it's telling us that everything is working, everything is configured properly,

18
00:01:19,000 --> 00:01:21,000
and we are using the Tor network.

19
00:01:21,000 --> 00:01:28,000
Now, as I showed you before, and here you can request a new identity, change security settings or

20
00:01:28,000 --> 00:01:29,000
check for updates.

21
00:01:29,000 --> 00:01:36,000
You can check your tour circuit from here and you can also modify the options from here.

22
00:01:37,000 --> 00:01:42,000
Now, Like I said, I spent multiple lectures explaining what the circuit is.

23
00:01:42,000 --> 00:01:45,000
What do we mean by a new identity and a new circuit?

24
00:01:45,000 --> 00:01:50,000
How to modify the security options for optimum security and anonymity.

25
00:01:50,000 --> 00:01:52,000
So I'm not going to talk about that now.

26
00:01:52,000 --> 00:01:57,000
You can go ahead and do everything that I showed you previously because the steps to do it here are

27
00:01:57,000 --> 00:02:04,000
identical to the steps you would follow with any Tor browser, regardless of what operating system it's

28
00:02:04,000 --> 00:02:05,000
installed on.

29
00:02:05,000 --> 00:02:13,000
So I'm just going to go and change my security settings and crack that to the safest and we are good

30
00:02:13,000 --> 00:02:14,000
to go.

31
00:02:15,000 --> 00:02:19,000
I'm also going to keep this screen at the sides because as I mentioned before, you don't want to use

32
00:02:19,000 --> 00:02:24,000
the screen in full screen because that will give information about your monitor.

33
00:02:24,000 --> 00:02:30,000
Also, keeping it at the default size is always a good idea because that makes you less unique.

34
00:02:30,000 --> 00:02:38,000
And like I said, Tor and Tails work best by making it hard to distinguish the users that use these

35
00:02:38,000 --> 00:02:39,000
services.

36
00:02:39,000 --> 00:02:45,000
So when we keep the window at the default size, it's harder to distinguish between me and other users.

37
00:02:46,000 --> 00:02:52,000
What I want to cover, though, in this lecture is an extra feature that Thales implements or an extra

38
00:02:52,000 --> 00:03:01,000
restriction that tells applies to the Tor browser to improve the security of the whole browser so that

39
00:03:01,000 --> 00:03:06,000
it's more difficult to exploit and use to gain access to our system.

40
00:03:06,000 --> 00:03:15,000
Tells implement kernel level restrictions over the Tor browser so that it cannot access any folder,

41
00:03:15,000 --> 00:03:20,000
any location within the file system except for one folder.

42
00:03:20,000 --> 00:03:27,000
Therefore, if we wanted to download something from the browser or upload something, we can only do

43
00:03:27,000 --> 00:03:30,000
that from one folder in our file system.

44
00:03:31,000 --> 00:03:38,000
So if we look at the places here, you'll see we have a folder called Tor browser and we have a folder

45
00:03:38,000 --> 00:03:44,000
called Tor browser Persistent because I enabled persistence on my installation.

46
00:03:44,000 --> 00:03:52,000
You will only see this if you enable persistence and as the names suggest, the Tor browser folder is

47
00:03:52,000 --> 00:03:59,000
non persistent, so anything you place in this folder will be deleted once you shut down or restart

48
00:03:59,000 --> 00:03:59,000
tales.

49
00:03:59,000 --> 00:04:06,000
The persistent folder is persistent, so if you store anything in that folder it will not be deleted

50
00:04:06,000 --> 00:04:09,000
when you restart or shut down tales.

51
00:04:09,000 --> 00:04:17,000
Now these two folders or directories are the only folders that the Tor browser has access to.

52
00:04:17,000 --> 00:04:23,000
So if, for example, you wanted to save this image, so you're going to go right click and save image

53
00:04:23,000 --> 00:04:28,000
as I'm just giving this as an example, but this applies for anything that you want to save.

54
00:04:28,000 --> 00:04:34,000
You'll see we're automatically in Amnesia, which is the name of our user Tor browser.

55
00:04:34,000 --> 00:04:36,000
So this is the path that we are in.

56
00:04:36,000 --> 00:04:42,000
And if we wanted to change this path to save this somewhere else, you'll see we get an error message

57
00:04:42,000 --> 00:04:43,000
saying Permission denied.

58
00:04:45,000 --> 00:04:52,000
You'll get this error message if you click on any other directory in your computer except the Tor browser

59
00:04:52,000 --> 00:04:56,000
directory, the Tor browser Normal and the Tor browser persistent.

60
00:04:56,000 --> 00:05:02,000
So let's store this, for example, in the Tor browser in here, and it's just going to be called Tor

61
00:05:02,000 --> 00:05:03,000
on PNG.

62
00:05:03,000 --> 00:05:05,000
I'm going to save it.

63
00:05:05,000 --> 00:05:09,000
And now if I go to places Tor browser.

64
00:05:10,000 --> 00:05:12,000
You'll see we have the image here.

65
00:05:12,000 --> 00:05:15,000
So it's just like any other directory.

66
00:05:15,000 --> 00:05:21,000
The only thing is this is the only directory that is visible to the Tor browser.

67
00:05:21,000 --> 00:05:26,000
So the same thing applies if you wanted to upload a file and send it anywhere.

68
00:05:26,000 --> 00:05:33,000
You won't be able to upload any files unless they are stored in tor browser or in the Tor browser.

69
00:05:33,000 --> 00:05:33,000
Persistent.

70
00:05:33,000 --> 00:05:39,000
So if you had something on desktop or in music or in the documents, you'll have to first copy it to

71
00:05:39,000 --> 00:05:46,000
one of these directories, either to tor browser or TOR browser persistent and then upload it from there.

72
00:05:47,000 --> 00:05:53,000
So if I just go to a file sharing service, it's by no means anonymous or private.

73
00:05:53,000 --> 00:06:00,000
I'm just using it as an example to show you how the browser only have access to specific directories.

74
00:06:01,000 --> 00:06:07,000
So if I click on Browse to select the file that I want to upload, again, you can see by default I'm

75
00:06:07,000 --> 00:06:11,000
in the Tor browser directory which I can upload files from with no problems.

76
00:06:11,000 --> 00:06:16,000
But if I try to go to my documents again I'll get the same error.

77
00:06:16,000 --> 00:06:18,000
Downloads or any other directory.

78
00:06:18,000 --> 00:06:20,000
I'll always be getting this error.

79
00:06:20,000 --> 00:06:27,000
Therefore, if you want to upload something you'll have to copy it, paste it in your Tor browser or

80
00:06:27,000 --> 00:06:27,000
your TOR browser.

81
00:06:27,000 --> 00:06:29,000
Persistent if you have one.

82
00:06:29,000 --> 00:06:31,000
If you enable persistence.

83
00:06:31,000 --> 00:06:38,000
And then from here you can just select it, open it and it'll upload just like any other operating system.

84
00:06:38,000 --> 00:06:44,000
Now like I said, this is not a private or an anonymous way of uploading files.

85
00:06:44,000 --> 00:06:47,000
I will show you a better way later on in the course.

86
00:06:49,000 --> 00:06:50,000
So that's it for this lecture.

87
00:06:50,000 --> 00:06:55,000
We've already used the Tor browser and we are already a little bit familiar with it.

88
00:06:55,000 --> 00:07:02,000
I just wanted to highlight the restriction that tells enforces on the Tor browser and in the next lecture

89
00:07:02,000 --> 00:07:07,000
I'm going to introduce you to the insecure browser that comes with tales.