Disclaimer: I don’t generally have a lot of experience using proxies - this is effectively my opinion and isn’t based on anything other than an educated guess. I just want to try to offer what I can to the conversation.
I wouldn’t bother connecting to anything other than your intended target after going through Tor. At BEST it achieves nothing, at worst it immediately de-anonymizes you. Connecting to a proxy just adds additional information about your habits (making you stick out from normal Tor users who don’t do this). It could add more information depending on your relationship to said proxy (if you run said proxy or are one of the few people regularly using it, I’d imagine this drastically reduces the search space of “who this Tor user might be”).
Trying to get fancy with it is exactly how you end up with unsafe Tor configurations (though I still think it’s valuable to ask these questions when they arise). I’d only ever recommend a path that ends in Tor → Internet
.
I imagine proxy chaining alone suffers similar issues - there likely aren’t many people doing it, so at best you’re just another proxy user, at worst you’re “that one guy who proxy chains”.
My understanding is proxies don’t typically encrypt traffic. So a proxy chain is conceptually like a weaker, unpopular, unencrypted Tor. All the slowdown, none of the anonymity. At best, hiding your IP.
A VPN does what a proxy actually does - masking your IP - but generally in a more secure way (with encryption). A proxy alone may be faster than a VPN, but chaining multiple proxies could easily lose that singular upside.
Tor over VPN is, as covered on Privacy Guides, generally safe and acceptable as long as the order is You → VPN → Tor → Internet
. Your ISP sees you connecting to your VPN, and nothing else. Your VPN sees you connecting from your real IP to your entry node, and nothing else. Your entry node sees you connecting from your VPN, and so forth.
Tor without VPN (You → Tor → Internet
) should still provide anonymity, but does allow your ISP to see that you are using Tor at all to begin with and your entry node your real IP. Depending on your threat model, that may be undesirable.
VPN alone (You → VPN → Internet
) doesn’t provide anonymity, but does mask your IP to external sites and your traffic from your ISP.
As for You → Proxy → Tor → Internet
, I imagine at best it’s a worse version of You → VPN → Tor → Internet
, and at worst it’s no better than You → Tor → Internet
.
For Tor alone, I quite like this interactive graphic the EFF made. It doesn’t cover proxies or VPNs, but I think it’s still helpful for understanding who knows what if you just use Tor.
TLDR: You should probably just stick to You → Tor → Internet
or You → VPN → Tor → Internet
. If you NEED to use a proxy, it should be You → Proxy → Tor → Internet
.