Re: Precompiled tor binary for openwrt/dd-wrt?
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Roger, what do you think of the idea of having /dev/urandom as an alternative rng for embedded devices as a build option? News Assi wrote: Hi, perhaps openwrt hasn't got urandom? urandom is pretty intensive as far as i know, it'd definitely load the little router hard. i'd say the devs will be able to tell you if there's anything that can be done. there is an /dev/urandom, but the load is very high... So that could be the reason... my initial thought is edit the source and change all references to /dev/urandom to /dev/random - this would reduce the randomness a bit but would also reduce loading (and in this case, may enable it to run) Perhaps it is an idea to create to package (urandom and random usage). Bye -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFG4OBGkOzwaes7JsRA+itAJ0RQN+tax7g86DJEVEKxJ4APijoCwCgsH5Q dUqIVn4KgJnsnKf+/16uSz8= =g+vt -END PGP SIGNATURE-
Re: Precompiled tor binary for openwrt/dd-wrt?
glymr writes: perhaps openwrt hasn't got urandom? urandom is pretty intensive as far as i know, it'd definitely load the little router hard. i'd say the devs will be able to tell you if there's anything that can be done. OpenWrt has /dev/random and /dev/urandom. The SSH daemon dropbear, which is installed by default under OpenWrt, uses /dev/urandom. my initial thought is edit the source and change all references to /dev/urandom to /dev/random - this would reduce the randomness a bit but would also reduce loading (and in this case, may enable it to run) Isn't it vice versa? AFAIK /dev/random provides strong random data, which /dev/urandom doesn't guarantee. I don't know why the tor binary crashes on the Linksys router. I can't reproduce this bug on my Asus router. I used a current OpenWrt WhiteRussian build tree to create the binary packages. So far I never had problems to mix packages from the current build tree with packages from WhiteRussian RC5, but maybe something has changed recently.
Off topic: need help getting tripwire to work
Hello, to make my torhost more secure I had tripwire running there which was no problem when I had SuSE9.3. I just took the rpm from SuSE9.0, it worked. Now I had to setup a new host using SuSE10.0, but the tripwire rpm from SuSE9.0 doesnt want to do its job here anymore. So I searched the net and found a source package of tripwire-2.4.0.1 which I tried to compile on my SuSE10.0 box. Unfortunately make exited with errors and I am not that C programmer to help myself. This is the error: make[3]: Entering directory `/usr/src/tripwire-2.4.0.1/src/fco' g++ -DHAVE_CONFIG_H -I. -I. -I../.. -I.. -O -pipe -Wall -c -o fcodatasourceiter.o fcodatasourceiter.cpp ../core/typed.h:57: warning: 'class iTyped' has virtual functions but non-virtual destructor ../core/serializable.h:79: warning: 'class iSerializable' has virtual functions but non-virtual destructor ../core/serializable.h:91: warning: 'class iTypedSerializable' has virtual functions but non-virtual destructor fconameinfo.h:46: warning: 'class iFCONameInfo' has virtual functions but non-virtual destructor fconame.h:147: error: ISO C++ forbids declaration of 'cFCOName_i' with no type fconame.h:147: error: expected ';' before '*' token make[3]: *** [fcodatasourceiter.o] Fehler 1 make[3]: Leaving directory `/usr/src/tripwire-2.4.0.1/src/fco' make[2]: *** [all-recursive] Fehler 1 make[2]: Leaving directory `/usr/src/tripwire-2.4.0.1/src' make[1]: *** [all-recursive] Fehler 1 make[1]: Leaving directory `/usr/src/tripwire-2.4.0.1' make: *** [all] Fehler 2 h1047742:/usr/src/tripwire-2.4.0.1 # Anyone here who can give me a hint how to fix that? Thomas Hluchnik pgpv8voM0CFEF.pgp Description: PGP signature
Re: Off topic: need help getting tripwire to work
On Thu, Sep 28, 2006 at 12:34:53PM +0200, Thomas Hluchnik wrote: fconame.h:147: error: ISO C++ forbids declaration of 'cFCOName_i' with no type fconame.h:147: error: expected ';' before '*' token If you're using gcc version 4 or higher, than this is due to the pickyness of the compiler; see http://sourceforge.net/tracker/index.php?func=detailaid=1450721group_id=3130atid=103130 You could either use an older gcc (4) or try to fix the code manually; this was already done for the older version of tripwire, for details see: http://www.mail-archive.com/debian-bugs-rc@lists.debian.org/msg24375.html Anyone here who can give me a hint how to fix that? Hope that helps, Thomas Hluchnik Alexander Janssen. -- I am tired of all this sort of thing called science here... We have spent millions in that sort of thing for the last few years, and it is time it should be stopped. -- Simon Cameron, U.S. Senator, on the Smithsonian Institute, 1901. signature.asc Description: Digital signature
Tor with ssh port forwarding
Hello, There are 2 hosts. Host 1 is at home (Debian-testing). Host 2 is at my workplace (WindowsXP Pro) I use Tor with Privoxy at home (host 1). Firefox with Torbutton plugin works fine. So it seems everything ok. At my workplace I use (WindowsXP, host 2) SSH port forwarding (with Putyy) for webbrowsing. At Firefox in preferences, in connection tab I had to set Socks host: localhost, port: 1080, using Socksv5. I would like to use the Tor network from the host2 over SSH portforwarding using my Debian host(2) at home. Is it possible? If so, how can I do it? Thanks
Re: Tor with ssh port forwarding
On 28/09/06, Végh István [EMAIL PROTECTED] wrote: !snip! I would like to use the Tor network from the host2 over SSH portforwarding using my Debian host(2) at home. Is it possible? If so, how can I do it? There may be a better alternative, but here's how I would do it: 1. Run squid on your machine at home (say on port 3128) 2. ssh tunnel work:3128 to home:3128 3. Add HttpProxy localhost:3128 and HttpsProxy localhost:3128 to your torrc -- Darren Bane
Re: Tor with ssh port forwarding
On Thu, Sep 28, 2006 at 06:07:49PM +0200, Végh István wrote: Hello, There are 2 hosts. Host 1 is at home (Debian-testing). Host 2 is at my workplace (WindowsXP Pro) I use Tor with Privoxy at home (host 1). Firefox with Torbutton plugin works fine. So it seems everything ok. At my workplace I use (WindowsXP, host 2) SSH port forwarding (with Putyy) for webbrowsing. At Firefox in preferences, in connection tab I had to set Socks host: localhost, port: 1080, using Socksv5. I would like to use the Tor network from the host2 over SSH portforwarding using my Debian host(2) at home. Is it possible? If so, how can I do it? What i do is set up a tunnel in Putty like this: Configuration - Connection - ssh - tunnels: Source Port: 9050 Destination: 127.0.0.1:9050 Press Add Don't forget to save the settings. In Firefox set the SOCKS-Proxy to 127.0.0.1, Port 9050. You can leave everything else blank. ADDITIONALLY you want to tell your Firefox to send DNS-lookups through the SOCKS-tunnel; open a tab, enter about:config as the URL, search for the key network.proxy.socks_remote_dns and set it to true. Thanks Alex. -- I am tired of all this sort of thing called science here... We have spent millions in that sort of thing for the last few years, and it is time it should be stopped. -- Simon Cameron, U.S. Senator, on the Smithsonian Institute, 1901. signature.asc Description: Digital signature
Re: Tor with ssh port forwarding
The same a but blogyfied: http://itnomad.wordpress.com/2006/09/28/tor-howto-using-tor-through-a-ssh-tunnel/ Alex. -- I am tired of all this sort of thing called science here... We have spent millions in that sort of thing for the last few years, and it is time it should be stopped. -- Simon Cameron, U.S. Senator, on the Smithsonian Institute, 1901. signature.asc Description: Digital signature
Schneier mentions TorPark
Here: http://www.schneier.com/blog/archives/2006/09/torpark.html Congratulations!