Using Aioe Org Via Tor
Using Aioe.org newsserver with Tor anonymity network
Aioe.org advices to use Tor if you wish higher degree of anonymity while posting or reading. This page http://news.aioe.org/spip.php?article28 provides are some example on how to configure Thunderbird and other newsreaders to use Tor.
However, it is very desirable to connect via SSL while using Tor because anyone can install Tor node and watch (or even modify) passing NNTP traffic. To use news.aioe.org SSL service via Tor with socat you can run the following shell script
$ cat startsocat.sh #!/bin/sh # Script to tunnel localhost 31415 via Tor network to aioe.org NNTP SSL # Works under Linux and Windows+Cygwin nohup socat TCP4-LISTEN:31416,fork,reuseaddr SOCKS4A:127.0.0.1:nntp.aioe.org:563,socksport=9050 & nohup socat TCP4-LISTEN:31415,fork,reuseaddr SSL:localhost:31416,cafile=aioe.pem &
Because aioe uses self-generated SSL certificate, it won't pass normal SSL verification; you must fetch it and store to aioe.pem manually. Without this step socat will report certificate verification error. To create the file aioe.pem, use the following command:
openssl s_client -connect news.aioe.org:563 |tee logfile
Copy lines from -----BEGIN CERTIFICATE----- to -----END CERTIFICATE----- to the file aioe.pem.
After starting the script a newsreader can connect via NNTP to localhost:31415. For a quick test, run telnet localhost 31415. After a few seconds, you should receive an aioe.org NNTP prompt:
$ telnet localhost 31415 200 aioe.org InterNetNews NNRP server INN 2.4.4 (20080128 snapshot) ready (posting ok).