Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
communication:mumble [2013/07/13 06:40] samthetechieconnect:contact:mumble [2022/05/08 11:42] (current) – external edit 127.0.0.1
Line 1: Line 1:
-======Mumble + Tor====== +{{ :cp-logo-100x33.png?nolink|}} 
-Mumble is an open source project intended for gaming, but which can also siphon all voice traffic over TCP exclusively and also run well without much bandwidth. The fact that it’s designed for low-bandwidth situations also makes it ideal for being bounced around in encrypted chunks across the global Tor network.+======Mumble Server + Mumble Client + Tor====== 
 +  Mumble is an open source project intended for gaming, but which can also siphon all voice traffic over TCP exclusively and also run well without much bandwidth.
  
-Mumble is set up as a client and a server, with the client being the thing you talk to on your computer and the server offering the connection between computers wanting to talk.+  * The fact that it’s designed for low-bandwidth situations also makes it ideal for being bounced around in encrypted chunks across the global Tor network.
  
-=====Step 1: Set up a Mumble Server=====+  * Mumble is set up as client and a server, with the client being the thing you talk to on your computer and the server offering the connection between computers wanting to talk.
  
-  * For simplicity’s sakewe’ll be using an Amazon EC2 instance.+  * Mumble does **not** provide end to end encryption between the clientsi.e. the server has access to al unencrypted voice data, hence it is **necessary** to run your own server.
  
-  The process of creating an EC2 instance can easily be found by searching online.+=====Step 1: Set up a Mumble Server===== 
 + 
 +  Install Ubuntu or Debian on a VPS.
  
   * From this point the guide assumes you’ve already created an Ubuntu instance and are logged in.   * From this point the guide assumes you’ve already created an Ubuntu instance and are logged in.
  
-Install the mumble server software:+  * Install the mumble server software:
  
     $ sudo apt-get update     $ sudo apt-get update
Line 22: Line 25:
   * For the prompts that ensue, say yes to autostart and high priority and set up an administrator password of your choice, ensure all passwords are secure.   * For the prompts that ensue, say yes to autostart and high priority and set up an administrator password of your choice, ensure all passwords are secure.
  
-  * In your AWS console, configure your security group and add some custom TCP rules to allow inbound traffic on the port Mumble is using (default is 64738).+  * Make sure your firewall has TCP rules to allow inbound traffic on the port Mumble is using (default is 64738)
 + 
 +  * Note for advanced users (consider running the mumble server as a tor hidden service). More information: [[https://whonix.org/wiki/Voip#Mumble_Server_Instructions|here]] and [[https://whonix.org/wiki/Hidden_Services|here]]. Beware of the client issues described under Step 3.
  
 =====Step 2: Set up Tor===== =====Step 2: Set up Tor=====
Line 30: Line 35:
   * Search for "what is my ip" to obtain your public IP address. After you’ve made note of that, start up the Tor Browser.   * Search for "what is my ip" to obtain your public IP address. After you’ve made note of that, start up the Tor Browser.
  
-  * From the firefox instances opened when launching the Tor Browser Bundle, Search for "what is my ip" again and observe that your IP address is that of a random Tor exit node.+  * From the firefox instance opened when launching the Tor Browser Bundle, Search for "what is my ip" again or click "Test Tor Network Settings" and observe that your IP address is that of a random Tor exit node.
  
 =====Step 3: Set up Mumble Client===== =====Step 3: Set up Mumble Client=====
  
-Download the [[http://mumble.sourceforge.net/|Mumble client]] for your system and install it. The first time you run Mumble it will ask you to go through an audio tuning wizard and you may also wish to set a PTT (push to talk) keyboard binding.+  * Download the [[http://mumble.sourceforge.net/|Mumble client]] for your system and install it. The first time you run Mumble it will ask you to go through an audio tuning wizard and you may also wish to set a PTT (push to talk) keyboard binding.
  
-In Mumble, go to Configure > Settings > Network and make sure “Advanced" is checked. Check “Force TCP mode."+  * In Mumble, go to Configure > Settings > Network and make sure “Advanced" is checked. Check “Force TCP mode."
  
 {{https://gs1.wac.edgecastcdn.net/8019B6/data.tumblr.com/736f05879076eef1c51b08a5b919dd85/tumblr_inline_mpsyt0HWj01qz4rgp.png}} {{https://gs1.wac.edgecastcdn.net/8019B6/data.tumblr.com/736f05879076eef1c51b08a5b919dd85/tumblr_inline_mpsyt0HWj01qz4rgp.png}}
  
-Under Proxy, choose “SOCKS5 proxy" and enter “Localhost" for the Hostname and 9050 for the port. Unchecking “Reconnect automatically," will prevent Mumble from attempting to reconnect unsecurely if, for any reason, the tor service stops. Also check “Suppress certificate and password storage" and uncheck “Submit anonymous statistics." Click OK.+  * Under Proxy, choose “SOCKS5 proxy" and enter “Localhost" for the Hostname and 9050 for the port (you can also find the port number under Torbutton Preferences). 
 + 
 +  *  Unfortunately, as of version 1.2.7, Mumble still fails to resolve hostnames over the proxy even with the setting on, and hence will fail to connect to hidden services and may **leak** a DNS request. 
 + 
 +  * Hence, unless your OS is fully torified, you need to invoke Mumble with __torsocks__ (see [[documentation/irssi_plus_tor]]) or __[[https://github.com/haad/proxychains|proxychains4]]__. Under Mac OS/X, even that may not function ((The Android client Plumble, however, works fine with Orbot)). 
 +    * usewithtor mumble 
 +    * proxychains4 mumble 
 +    * check for success by watching the network, e.g. running "tcpdump -n 'port 53'" (linux/unix) 
 + 
 +  * Unchecking “Reconnect automatically," will prevent Mumble from attempting to reconnect unsecurely if, for any reason, the tor service stops. 
 + 
 +  * Also check “Suppress certificate and password storage" and uncheck “Submit anonymous statistics." Click OK.
  
 {{https://gs1.wac.edgecastcdn.net/8019B6/data.tumblr.com/e7f7f43e2ad53f759a6c8fdd80b2d6f7/tumblr_inline_mpsyyd0Siv1qz4rgp.png}} {{https://gs1.wac.edgecastcdn.net/8019B6/data.tumblr.com/e7f7f43e2ad53f759a6c8fdd80b2d6f7/tumblr_inline_mpsyyd0Siv1qz4rgp.png}}
Line 46: Line 62:
 =====Step 4: Call Your Friends!===== =====Step 4: Call Your Friends!=====
  
-  * Now that you have Mumble and Tor running, go to Server > Connect > Add New and add the IP address and port number of the Mumble server you set up in Step.1+  * Now that you have Mumble and Tor running, go to Server > Connect > Add New and add the IP address (respectively, onion name) and port number of the Mumble server you set up in Step.1
  
   * Use whatever label you want to name the server with and whatever username you want to make up.   * Use whatever label you want to name the server with and whatever username you want to make up.
Line 72: Line 88:
     <W>2013-07-12 02:48:47.112 1 => <122:JuggaloPrideIzBack(-1)> Authenticated     <W>2013-07-12 02:48:47.112 1 => <122:JuggaloPrideIzBack(-1)> Authenticated
  
-Generally, clients generate their own certificates, which usually end up looking something like this:+  * Generally, clients generate their own certificates, which usually end up looking something like this:
  
 {{https://gs1.wac.edgecastcdn.net/8019B6/data.tumblr.com/72c48f6185234413017fc7c42a6046eb/tumblr_inline_mpszp4nyWR1qz4rgp.png}} {{https://gs1.wac.edgecastcdn.net/8019B6/data.tumblr.com/72c48f6185234413017fc7c42a6046eb/tumblr_inline_mpszp4nyWR1qz4rgp.png}}