Jump to: navigation, search

YaCy

This page contains changes which are not marked for translation.

Introduction[edit]

YaCy is a p2p, censorship resistant libre search engine. It can be configured to crawl the internet and private intranets.[1]

How-To[edit]

Install[edit]

1. Before adding the repo[2][3], fetch the key and verify[4] fingerprints. Always check the fingerprint for yourself. The output at the moment is:

pub  2048R/0x1F968B3903D886E7 2012-01-07 Michael Peter Christen <mc@yacy.net>
      Key fingerprint = 8BD7 5250 1CB6 2448 A30E  A3EA 1F96 8B39 03D8 86E7

Download key with curl to home folder.

curl -o yacy-pubkey.asc http://debian.yacy.net/yacy_orbiter_key.asc

Check fingerprints/owners without importing anything.

gpg --keyid-format long --with-fingerprint yacy-pubkey.asc

If it looks good import into trusted.gpg.d.

gpg --no-default-keyring --keyring ./yacy-pubkey.gpg --import yacy-pubkey.asc
sudo cp yacy-pubkey.gpg /etc/apt/trusted.gpg.d/yacy-pubkey.gpg
echo 'deb http://debian.yacy.net ./' > /etc/apt/sources.list.d/yacy.list 
sudo apt-get update -qq
sudo apt-get install openjdk-7-jre-headless 
sudo apt-get install yacy

To read more on managing YaCy, consult the official documentation.

2. A proxy exception in Tor Browser must be configured to interact with YaCy. Tor Browser blocks communication with localhost to mitigate some fingerprinting attacks[5]. Note that this exception has fingerprinting implications in event of a website actively abusing JavaScript, but its still much safer than using another browser [6]. To mitigate the risks completely, you are advised to disable scripts globally in NoScript and permit them only when really necessary - a good practice anyhow.

Add FoxyProxy to Tor Browser in Whonix.

Warning: Installing FoxyProxy worsens the user's browser fingerprint and adversely affects anonymity since it is not a default Tor Browser add-on. The Tor Project's anonymity warning is explicit: [7]

Can I install other Firefox extensions?

Tor Browser is free software, so there is nothing preventing you from modifying it any way you like. However, we do not recommend installing any additional Firefox add-ons with Tor Browser. Add-ons can break your anonymity in a number of ways, including browser fingerprinting and bypassing proxy settings.

When using a browser and FoxyProxy in combination, a user's web fingerprint becomes more unique. The potential fingerprinting harm to user anonymity depends on how many others are running Tor Browser in conjunction with FoxyProxy.

This configuration is so specialized that probably very few are doing it, reducing the user pool to a small subset. Due to the risk, this approach is generally recommended against. If a user decides to proceed anyhow, the tunnel configuration should not be combined with any browser other than Tor Browser (like Firefox or Chrome), due to an even greater browser fingerprinting risk.

This warning equally applies to configurations such as Tor Browser and I2P, or Tor Browser and remote (http(s)/socks4/5) proxies.

To install FoxyProxy, follow these steps in the Whonix-Workstation (Qubes-Whonix: Whonix-Workstation AppVM). [8] [9]

Make the tbb-foxyproxy config file available to Tor Browser. [10] [11]

cp /usr/share/usability-misc/tbb-foxyproxy/foxyproxy.xml /home/user/.tb/tor-browser/Browser/TorBrowser/Data/Browser/profile.default/

Navigate to addons.mozilla.org.

Tor Browser Menu -> Tools -> Add-ons

Download and install the FoxyProxy add-on. [12]

Search: "foxyproxy" -> Install: FoxyProxy Standard

Restart Tor Browser.

When prompted, select Restart now.

After restart, the FoxyProxy icon should appear in the Tor Browser toolbar and be enabled. Check you can interact with it and change proxy settings as required.

After FoxyProxy is installed, you may see an app-armory warning you about the denied creation of dconf/user. The current Debian profile for Firefox does not yet include the modern temporary file location /run/user. However, this can be safely ignored since FoxyProxy never needs access to this dconf/user. However, if you'd like give the Tor Browser permission to use tempory file directory /run/user/ and not receive the warning, edit the file

kdesudo kwrite /etc/apparmor.d/home.tor-browser.firefox

And uncomment line

# owner /run/user/[0-9]*/** rwkl,
by removing the #.

To reverse this procedure and restore the default Tor Browser fingerprint:

  • Non-Qubes-Whonix: It is best to use a VM snapshot taken before installing the add-on.
  • Qubes-Whonix: FoxyProxy should be installed to a specific Whonix-Workstation AppVM set up for proxy purposes. The AppVM can be discarded at leisure.

If Non-Qubes-Whonix users did not take a snapshot prior to these changes, Tor Browser can be downloaded again. Alternatively, FoxyProxy can be removed via the about:addons -> Extensions menu.

For further technical discussion of FoxyProxy, see the Whonix forum.

3. To access the WebUI open 127.0.0.1:8090 in Tor Browser.

OPTIONAL

To integrate YaCy with Tor Browser you can install the official YaCyBar add-on from Mozilla. N.B. This option is not possible right now because the add-on code needs a revamp.

Development[edit]

Looks like socks proxy support is not coming anytime soon:
http://mantis.tokeek.de/view.php?id=219


Random News:

Have you read our Documentation, Technical Design and Developer Portal links yet?


Impressum | Datenschutz | Haftungsausschluss

https | (forcing) onion
Share: Twitter | Facebook | Google+

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.

Whonix (g+) is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Libre Software license as Whonix itself. (Why?)
  1. https://www.digitalocean.com/community/tutorials/how-to-configure-yacy-as-an-alternative-search-engine-or-site-search-tool
  2. http://debian.yacy.net/
  3. http://www.yacy-websuche.de/wiki/index.php/En:DebianInstall
  4. http://debian.yacy.net/yacy_orbiter_key.asc
  5. https://phabricator.whonix.org/T291#5252
  6. https://trac.torproject.org/projects/tor/ticket/10419#comment:37
  7. https://www.torproject.org/docs/faq.html.en
  8. The following instructions have been tested as functional in Tor Browser versions 6.5, 7.0a1 and 7.0a2 "hardened". https://lists.torproject.org/pipermail/tbb-dev/2017-February/000471.html
  9. Some users report xpinstall.signatures.required needs to be disabled in Tor Browser about:config settings to enable FoxyProxy, when it is installed from the Debian repository. This workaround is not required when installing FoxyProxy from addons.mozilla.org. https://forums.whonix.org/t/new-version-of-tbb-no-longer-accepts-foxyproxy-plugin
  10. https://github.com/Whonix/usability-misc
  11. https://github.com/Whonix/usability-misc/blob/master/usr/share/usability-misc/tbb-foxyproxy/foxyproxy.xml
  12. This procedure is safe. Since Firefox 43, all add-ons on Mozilla's servers are signed and verified. https://wiki.mozilla.org/Add-ons/Extension_Signing