From Newsgroup: misc.phone.mobile.iphone

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Q: Why is Apple's iOS TOR implementation different from all other systems?
A: ?

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

Hank Rogers wrote:

Bear in mind that Apple's iOS implementation of Tor browsers is insecure.

Will there be an upcoming detailed tutorial covering this?

Hi Hank Rogers,

Happy New Year!

Thank you for asking about a tutorial because most people only know the
(rather brilliant) propaganda that Apple marketing spews about iOS.

Apple propaganda "says" iOS has security.
But iOS has less security (than other platforms) when Tor is involved.

Want proof?

There are many privacy-focused articles explaining the limitations of Tor
on iOS due to Apple's unilaterally imposed ecosystem restrictions.
For example, Comparitech highlights that iOS makes "true anonymity more difficult to achieve" in this article.

<https://www.comparitech.com/blog/vpn-privacy/vpn-and-tor-onion-browser-on-ios/>

The Tor Projectos own forum discussions acknowledge that Onion Browser is
the recommended option, but also that its security model is inherently constrained by iOS sandboxing and Apple's WebKit requirement

<https://forum.torproject.org/t/what-is-the-most-secure-way-to-use-onion-browser-on-iphone/18986>

Since you asked for a tutorial that doesn't exist, I hope you'll accept
this simple bulleted list explaining why Tor on iOS has never been secure.

a. iOS forces all browsers to use WebKit.
Apple requires every browser on iOS to use the WebKit engine.
Tor Browser on desktop and Android uses a hardened Firefox ESR engine
with Tor-specific patches. Because iOS apps cannot use their own browser
engines, Onion Browser cannot implement Tor Browser's security features
such as anti-fingerprinting, first-party isolation, circuit-per-tab,
or Tor Browser's hardened JavaScript behavior.

b. iOS does not allow Tor Browser's security hardening.
Tor Browser includes many custom patches: fingerprinting resistance,
network isolation, circuit isolation, HTTPS-only enforcement, and
integration with NoScript. These cannot be ported to iOS because WebKit
is locked down and cannot be modified by app developers. As a result,
Onion Browser cannot match Tor Browser's security model.

c. iOS sandboxing restricts Tor integration.
Tor Browser on desktop and Android bundles the Tor daemon and controls
how circuits are created and isolated. iOS sandboxing rules prevent apps
from running background daemons in the same way. Onion Browser uses a
simplified Tor integration and cannot replicate Tor Browser's
circuit-per-domain behavior or its fine-grained isolation.

d. There is no official Tor Browser for iOS.
The Tor Project does not ship Tor Browser for iOS. Instead, they
endorse Onion Browser as the best available option, but it is not Tor
Browser and cannot provide the same protections. The limitations come
from Apple's platform rules, not from Tor developers.

e. Android Tor Browser is much closer to desktop Tor Browser.
Tor Browser for Android is built on Firefox ESR, just like the desktop
version. It includes the same Tor patches, the same fingerprinting
defenses, the same security slider, and the same circuit isolation
logic. iOS cannot support these features because of Apple's
arbitrary restrictions on security.

f. Summary.
Tor on iOS provides access to the Tor network, but not the Tor Browser
security model. The differences come from Apple's mandatory WebKit
requirement, iOS sandboxing, and the inability to run Tor Browser's
hardened Firefox engine. Desktop and Android versions share the same
architecture, while iOS is fundamentally limited.
--
Information that is accurate and technically detailed is what we need to distuinguish between brilliant marketing propaganda, and actual facts.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

On Jan 1, 2026 at 7:01:52rC>PM EST, "Maria Sophia" <mariasophia@comprehension.com> wrote:

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Because iOS is more secure and does not need it.

Q: Why is Apple's iOS TOR implementation different from all other systems?
A: ?

Because iOS is more secure and does not need it.

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Because iOS is more secure and does not need it.

But you know this.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

Tyrone wrote:

On Jan 1, 2026 at 7:01:52'PM EST, "Maria Sophia" <mariasophia@comprehension.com> wrote:

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Because iOS is more secure and does not need it.

Q: Why is Apple's iOS TOR implementation different from all other systems? >> A: ?

Because iOS is more secure and does not need it.

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Because iOS is more secure and does not need it.

But you know this.

Hi Tyrone,

Happy New Year!

This year we will all perhaps understand more about what iOS actually is
(and less about the brilliant Apple marketing that tries to excuse it).

Endlessly parroting Apple marketing propaganda that "iOS is more secure"
does not address the Tor issue we are trying to learn about here, Tyrone.

Endlessly parroting that iOS doesn't need it" is not a technical argument.
The Tor Browser isn't about protecting the OS.

It's about protecting the user's anonymity from fingerprinting, tracking,
and correlation attacks.
Those protections require features Apple does not allow.

Those valuable Tor Browser's protections rely on
a. modifying the browser engine,
b. controlling network isolation,
c. and bundling the Tor daemon.
iOS explicitly forbids all three.

This is a huge deficiency in privacy on iOS, which we've discussed before.
All the (rather brilliant) Apple marketing aside, this is just a fact.

Even if iOS was actually strong in some areas (sandboxing, code signing)
those strengths don't magically replace Tor Browser's required hardening.

Tor Browser's fingerprinting resistance, circuit isolation, and hardened browser engine are privacy mechanisms that are simply lacking on iOS.

The situation is that iOS is not a "real" operating system in that it can't
run a tremendous amount of app functionality that every other OS can run.

The Tor Project itself says iOS cannot run a real Tor Browser.
This isn't speculation. It's fact.
Tor Browser exists on Windows, macOS, Linux, and Android.
Not iOS.

The Tor browser can not exist on iOS because Apple's platform rules make it impossible to implement Tor Browser's security model.

Onion Browser is the best available option, but even its developer (Mike
Tegas) and the Tor Project acknowledge that Apple's iOS restricted design cannot allow the Tor Browser's protections due to Apple's restrictions.

In summary, the issue isn't whether iOS is "secure."

The issue is that iOS prevents Tor Browser from being secure in the way any
Tor Browser must be. You need to know this if you want to understand iOS.
--
Seeking how iOS actually works, not how Apple advertises iOS to work.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

Maria Sophia wrote:

Path: sewer!news2.arglkargh.de!news.karotte.org!news.szaf.org!2.eu.feeder.erje.net!feeder.erje.net!usenet.blueworldhosting.com!diablo1.usenet.blueworldhosting.com!nnrp.usenet.blueworldhosting.com!.POSTED!not-for-mail
From: Maria Sophia <mariasophia@comprehension.com>
Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.advocacy
Subject: Why is Apple's iOS implementation of TOR inherently unsecure?
Date: Thu, 1 Jan 2026 19:01:52 -0500
Organization: BWH Usenet Archive (https://usenet.blueworldhosting.com) Message-ID: <10j71tg$6si$1@nnrp.usenet.blueworldhosting.com>
Reply-To: pusvul@getTjewytR4so+mqe2.invalid
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Injection-Date: Fri, 2 Jan 2026 00:01:52 -0000 (UTC)
Injection-Info: nnrp.usenet.blueworldhosting.com; logging-data="7058"; mail-complaints-to="usenet@blueworldhosting.com"
User-Agent: Hogwasher/5.24
Cancel-Lock: sha1:gh5s+xTIlpXU9SzQlmnjU924nOI= sha256:jvbdJPVae5al+/HVh1wRmhuVVe3yIOb6sWimJPkHPE8= sha1:8rmzrq4iT87C6KmFsO9alY/iCm4= sha256:94g2Ct9YT1PUs1A22Rh1dXT64HHHQ+325SyQ4KxBryI=
Xref: sewer misc.phone.mobile.iphone:144396 comp.sys.mac.advocacy:76269

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Q: Why is Apple's iOS TOR implementation different from all other systems?
A: ?

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Lawrence D'Oliveiro wrote:

So does Apple provide a quality platform for TOR usage, with good
guarantees of userso privacy?

No.

Hi Lawrence,

Happy New Year!

I agree with Lawrence D'Oliveiro that the topic here is Tor and whether iOS provides the same privacy guarantees that Tor users expect on other
platforms.

Lawrence answered that directly:
iOS does not provide a platform suitable for running Tor in a way
that preserves the privacy properties Tor is designed for.

That's not an opinion.
That's not subject to debate.
It's a fact.

Tyrone bringing up unrelated claims about iOS "security" does not address
the question. In fact, Tyrone is clearly attempting to shift the discussion away from Tor and toward a different topic entirely.

That is classic whataboutism.

Tyrone trying to shift the subject of this thead does not change the fact
that iOS cannot run a Tor relay, cannot run a Tor exit node, cannot run a persistent Tor daemon, and cannot provide the same privacy model that Tor offers on Linux, Android, Windows, or macOS.

It just can't.
Worse, iOS is the only operating system that can't run the Tor browser.

As even macOS can do it.

However, if someone wants to discuss general iOS security, that is a
separate thread. This thread is about Tor, and the technical limitations of
iOS that prevent Tor from functioning as designed.
=====================================================================
There is no professional security researcher on the planet who says iOS is
more secure than Android, but that topic is discussed in detail already:
=====================================================================
Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.advocacy
Subject: What are the merits of the claim that iOS is "way more secure"?
Date: Mon, 22 Dec 2025 12:15:53 -0700
Message-ID: <10ic5d9$2mvn$1@nnrp.usenet.blueworldhosting.com>

Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.advocacy
Subject: What did Google's project zero really say about Apple never testing much of their iOS code?
Date: Mon, 22 Dec 2025 11:34:16 -0700
Message-ID: <10ic2v8$307u$1@nnrp.usenet.blueworldhosting.com>

Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.advocacy
Subject: What does the CISA KEV database say about Android/iOS known critical exploits?
Date: Mon, 22 Dec 2025 11:20:58 -0700
Message-ID: <10ic26a$1pu9$1@nnrp.usenet.blueworldhosting.com>

Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.advocacy
Subject: What does it really mean when an entity chooses iOS or Android as their main platform?
Date: Mon, 22 Dec 2025 11:10:02 -0700
Message-ID: <10ic1hq$2ckt$1@nnrp.usenet.blueworldhosting.com>

Newsgroups: misc.phone.mobile.iphone,comp.sys.mac.advocacy
Subject: Assessing the Privacy Impact of Appleos WiFi Positioning System
Date: Sun, 21 Dec 2025 21:34:15 -0700
Message-ID: <10iaho7$2osq$1@nnrp.usenet.blueworldhosting.com>
--
What I write is the technical facts even if facts are not popular.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

On 2026-01-01 16:01, Maria Sophia wrote:

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Q: Why is Apple's iOS TOR implementation different from all other systems?
A: ?

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Before you ask "why"...

...ask "if"...

...and then SHOW if your "if" is correct.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

On Jan 4, 2026 at 7:44:40rC>PM EST, "Alan" <nuh-uh@nope.com> wrote:

On 2026-01-01 16:01, Maria Sophia wrote:

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Q: Why is Apple's iOS TOR implementation different from all other systems? >> A: ?

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Before you ask "why"...

...ask "if"...

...and then SHOW if your "if" is correct.

But that's not how kooktards work. They start with a conclusion, then look for evidence. See Creationists.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

On 2026-01-05 04:36:50 +0000, Tyrone said:

On Jan 4, 2026 at 7:44:40rC>PM EST, "Alan" <nuh-uh@nope.com> wrote:

On 2026-01-01 16:01, Maria Sophia wrote:

Q: Why is Apple's iOS implementation of TOR inherently unsecure?
A: ?

Q: Why is Apple's iOS TOR implementation different from all other systems? >>> A: ?

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Before you ask "why"...

...ask "if"...

...and then SHOW if your "if" is correct.

But that's not how kooktards work. They start with a conclusion, then look for
evidence. See Creationists.

Creationists don't even bother to look for evidence. They just blindly
believe whatever garbage their conman priest tells them.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

Your Name wrote:

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Before you ask "why"...

...ask "if"...

...and then SHOW if your "if" is correct.

But that's not how kooktards work. They start with a conclusion, then look for
evidence. See Creationists.

Creationists don't even bother to look for evidence. They just blindly believe whatever garbage their conman priest tells them.

Hi Your Name & Tyrone,

Happy New Year!

Let's keep the discussion focused on facts rather than name-calling.

The Tor Project itself explains why Tor Browser cannot exist on iOS.
The limitations are architectural, not speculative.

If you have information showing that iOS now allows non-WebKit engines, Tor daemon bundling, or Tor Browser's fingerprinting patches, we all would genuinely like to see it.

Personal insults don't address the facts in this thread, which are:
a. iOS requires WebKit
b. iOS forbids Tor Browser's hardened engine
c. iOS forbids background daemons
d. Tor Project itself says a real Tor Browser cannot exist on iOS

If you disagree with any of those, show us all where you feel the technical reasoning is wrong since the goal is to better understand how iOS really
works.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: misc.phone.mobile.iphone

On 2026-01-04 23:40, Maria Sophia wrote:

Your Name wrote:

HINT: Even macOS has a secure Tor implementation. Just not iOS. Why?

Before you ask "why"...

...ask "if"...

...and then SHOW if your "if" is correct.

But that's not how kooktards work. They start with a conclusion, then look for
evidence. See Creationists.

Creationists don't even bother to look for evidence. They just blindly
believe whatever garbage their conman priest tells them.

Hi Your Name & Tyrone,

Happy New Year!

Let's keep the discussion focused on facts rather than name-calling.

The Tor Project itself explains why Tor Browser cannot exist on iOS.
The limitations are architectural, not speculative.

If you have information showing that iOS now allows non-WebKit engines, Tor daemon bundling, or Tor Browser's fingerprinting patches, we all would genuinely like to see it.

Personal insults don't address the facts in this thread, which are:
a. iOS requires WebKit

This the only true thing you've written.

b. iOS forbids Tor Browser's hardened engine

Which assumes without evidence that it is in some way superior to WebKit.

c. iOS forbids background daemons

And yet somehow VPNs for iOS about, and work in the background just fine.

d. Tor Project itself says a real Tor Browser cannot exist on iOS

"No true Scotsman".

If you disagree with any of those, show us all where you feel the technical reasoning is wrong since the goal is to better understand how iOS really works.

So others must provide "technical reasoning"...

...to refute your completely NON-technically presented arguments.

Got it.

:-)

--- Synchronet 3.21a-Linux NewsLink 1.2