Unlike classic methods like torsocks, which rely on user-space tricks, Oniux uses Linux namespaces to create a fully isolated network environment for each application, preventing data leaks even if the app is malicious or misconfigured. "We are excited to introduce oniux: a small command-line utility providing Tor network isolation for third-party applications using Linux namespaces," reads a Tor blog post. On the other hand, Torsocks works by using an 'LD_PRELOAD' hack to intercept network-related function calls in dynamically linked Linux applications and redirect them through a Tor SOCKS proxy. Linux namespaces are a kernel feature that allows processes to run in isolated environments, each with its own view of specific system resources like networking, processes, or file mounts. Oniux uses Linux namespaces to isolate apps at the kernel level, so all their traffic is forced through Tor. Bill Toulas Bill Toulas is a tech writer and infosec news reporter with over a decade of experience working on various online publications, covering open-source, Linux, malware, data breach incidents, and hacks. Tor has announced Oniux, a new command-line tool for routing any Linux application securely through the Tor network for anonymized network connections. The problem with this approach is that raw system calls aren't caught by Torsocks, and malicious apps can avoid using libc functions to cause leaks. Moreover, Torsocks doesn't work with static binaries at all, and doesn't offer true isolation, as apps still access the host's real network interfaces.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Thu, 15 May 2025 15:24:54 +0000