Tor has introduced Oniux, a new command-line tool that securely routes Linux applications through the Tor network using Linux namespaces for enhanced isolation. Unlike traditional methods like torsocks, Oniux provides leak-proof, kernel-enforced anonymization for any Linux app.
Affected: Linux systems, Tor network infrastructure
Affected: Linux systems, Tor network infrastructure
Keypoints
- Oniux utilizes Linux namespaces to create isolated environments for applications routing through Tor.
- It offers stronger security than torsocks by preventing data leaks even from malicious or misconfigured apps.
- The tool is built on Arti and onionmasq, and is developed in Rust for secure kernel-level isolation.
- Oniux works on all applications, including static binaries, by enforcing traffic routing at the kernel level.
- As an experimental project, Tor encourages testing and feedback to improve Oniuxβs stability and deployment readiness.