I use torsocks for 3 applications: IRC, SSH and Thunderbird (My Tor browser uses port 9150 fom the torbrowser bundle daemon). I want to use a different tor circuit each application. On the internet I can find a few solutions to make this work but what is safest way using torcc?
According to link above each socks have a different circuit but are the socks isolated in this case? Is it recommended to completely isolate each socks? Do I need to add IsolateDestAddr IsolateDestPort and create streamgroups like here Proposal 171 (revised): Separate streams across circuits by connection metadata with using seperated Trans- and DNSPorts?
I don’t want to mess up and make my tor setup less secure. What is the safest way to configure the socks?
I’m aware about torsocks and that it force a whole application over tor which many application proxysettings don’t do. But I just want to have options. Some application don’t work properly over Torsocks. What is the best configuration in torrc?
Now I use torcc with different SOCKSPorts. Is that ok or can that cause some identity problems?
If multiple entries of this option are present in your configuration file, Tor will perform stream isolation between listeners by default.
So if I have to modify torrc and use multiple SocksPort entries as you said in order to use a different tor circuit each application, your solution seem to be the best also for me.
Now I use torcc with different SOCKSPorts. Is that ok … ?
I think that is ok.
Note that in my case: However modifying torrc for each application is dangerous because it makes me use the root privilege and reconfigure tor. If I use a different tor circuit each application without torsocks, I use tor’s isolation feature via socks authentication. e.g. for curl:
