Secure remote access to Home Assistant using Tor


#22

I’ve just tested it, fresh installation, with Home Assistant (Hass.io), the latest Tor add-on and the latest Node-RED add-on.

Next I’ve used the following configuration:

{
  "log_level": "info",
  "socks": false,
  "hidden_services": true,
  "stealth": false,
  "client_names": [],
  "ports": [
    "8123:80",
    "1880"
  ]
}

Could access it via Tor just fine.


#23

Thanks! That is working now.

I guess I had a network problem between me and the Pi previously.


#24

@frenck
Franck, many thanks for this great add-on!

Made my HASS IO installation much more secure (using stealth mode) while still having remote access to all ports/services I need using the VPN mode and hidden services. No more port forwarding needed on my router as well.

:+1:


#25

Hi guys,
is there any easy option to access my tor address from my Iphone?


#26

Same here, anyone found a way to access via tor on iPhone?


#27

I have no problems accessing my HA onion link using my Tor Browser on the iphone. What issue are you having?


#28

@blaksec How di you configure the onion Browser? I did not find anyway to configure torrc. Which Browser/app are you using?


#29

I did not have to do anything to configure browser. All I do on the browser side is type in my .onion address. I’m using “Tor Browser” which is available via Appstore

You are supposed to configure torrc on the HA side, not browser side. Here’re the steps I followed: https://www.home-assistant.io/docs/ecosystem/tor/


#30

Not sure I understand. If I just put in the .onion address I get nothing. I bough the Red Onion app, $3. That one you can add to the torrc file and I am able to load the login site to my HA, but I cannot login. It says “unable to connect”. Not sure what’s the problem.


#31

What isthe tor app you are using from app store!?


#32

Im facing the same issue you are facing a problem to login even if i use HA without authentication http password i mean


#33

To be able to use tor on iphone most application gives errore for login , there is one i tried called red onion ll
That one does not allow you to edit torrc file , but if you disable stealth mode , you can use this browser without editting torrc but this mode is less secured than stealth mode.

This is the appstore app
Red Onion II - Next Generation by Omar Mody

What i like in this app it works as vpn on your iphone , so you can use .onion site on safari or chrome


#34

When I try to connect to my Hass.io Tor install I get Error the operation couldn’t be completed (kCFErrorDomainCFNetwork error 120.) Any ideas why? I haven’t restarted Hass so obviously when I get home that will be my first step, but I got no indication from the log or the install process I needed to do this. Everything seemed to be up and running.


#35

@ahzazou Could you describe how you get this to work? Which version of HA do you run. I run 0.77.3 and cannot access the login screen anymore in the Red onion app either. I tested the Red onion II app and I cannot get this to load the site at all.


#36

@henninne Red onion II app does not support editing torrc file , so to make it work , you need to disable stealth mode in TOR configuration , so it will load perfectly , just to be in safe side just be sure at least you have password for you hass instance as this address will be reachable from all Torr network.

in this section

############### This section is just for location-hidden services ###

## Once you have configured a hidden service, you can look at the
## contents of the file ".../hidden_service/hostname" for the address
## to tell people.
...
HiddenServiceDir /var/lib/tor/homeassistant/
HiddenServicePort 80 127.0.0.1:8123
HiddenServiceAuthorizeClient stealth haremote1    <--remove this line to disable stealthmode
...