Re: Re: My exit node is gone from the node list
Hi Scott Bennett, Thanks for your kind reply. I agree with your deduction that the possibility you mentioned that inside tor somewhere that causes tor to forget to post a descriptor update after the usual 18 hours have elapsed. I will read the source code about it. 发件人: Scott Bennett 发送时间: 2009-06-04 18:10:32 收件人: lingzhen1982; or-talk 抄送: 主题: Re: My exit node is gone from the node list On Thu, 4 Jun 2009 11:55:28 +0800 "lingzhen1982" wrote: >For several months, I've been running a tor exit node (Nickname: AllenHomeTor, >IP address: 98.216.176.128, Version:0.2.0.30(r15956)). Since a few days, it >seems to have vanished from the list of nodes. And I try to make it reappear >by using a new nickname AllenUSATor(fingerprint: 443E 035C B856 5904 AE98 8DAB >3059 9A0D 2C4C 340C), but I am failed. How can I make it reappear? First, you should not be running that version of tor. Currently valid versions in the stable branch are 0.2.0.33 and 0.2.0.34 for both clients and relays. Second, when tor starts up, does it issue a message that says that your node is reachable from outside? If not, then you probably have a NAT/RDR problem to settle with your gateway. Third, if tor does find itself reachable soon after startup, does it ever issue a message that says its IP address appears to have changed? Or that its DNS queries appear to be hijacked? In the former case tor should, after passing another reachability test, simply publish a new descriptor bearing the new IP address. In the latter case, tor should stop operating as an exit and issue a message to that effect, while continuing to operate as a non-exit relay. >In addtion, my traffic logs suggest that the node is used as much as it could >be. There are much traffic like BitTorrent. I am confused. How can these guys >select my exit node even my node has vanished from the list of nodes? BTW, to >avoid too much BitTorrent traffic, I change my exit policy to only accept port >80 now. How can you tell what sort of traffic it is if your node is no longer an exit node? Why close all those other non-Bittorrent ports as well? >I look forward from your feedback, and thank all responders in advance. There remains another possibility. As several of us have reported here in the past, there has been a gremlin lurking inside tor somewhere that causes tor to forget to post a descriptor update after the usual 18 hours have elapsed. I haven't yet seen it happen with 0.2.1.14-rc, but it was a headache with some earlier versions. However, when you changed your torrc, whether for the change of nickname and identifier or for the change of exit policy, tor should still have published a new descriptor reflecting either of those changes, so the authorities ought to have a new descriptor for at least another 18 hours. Try upgrading to a current version of tor, and then check it a couple of times a day (or more often if you like) for a while to see whether the problem recurs. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * **
Re: unable to submit bug report
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Scott Bennett wrote: > Well, I *intended* to submit a bug report, but appear to be unable to log > into the bugs.torproject.org web site to do so. I tried all sorts of things, > including temporarily enabling JavaScript, which I really hate to do. If there > is someone willing to submit the bug report for me, please let me know where > to send the information. > Thanks! > > > Scott Bennett, Comm. ASMELG, CFIAG > ** > * Internet: bennett at cs.niu.edu * > ** > * "A well regulated and disciplined militia, is at all times a good * > * objection to the introduction of that bane of all free governments * > * -- a standing army." * > *-- Gov. John Hancock, New York Journal, 28 January 1790 * > ** You can send it to me. I've also included my PGP for your use if you so desire. Jon -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkoovu0ACgkQR7/9CWL6/5jjPwCeLzPuZJJk+uQ0fOubCOIwNioY suUAoJCIKR9knNfl8GEXr3tffz7b9C0I =oJfB -END PGP SIGNATURE- pgpkeys.asc Description: application/pgp-keys
unable to submit bug report
Well, I *intended* to submit a bug report, but appear to be unable to log into the bugs.torproject.org web site to do so. I tried all sorts of things, including temporarily enabling JavaScript, which I really hate to do. If there is someone willing to submit the bug report for me, please let me know where to send the information. Thanks! Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * **
Re: google cookie
Chromium is; Chrome has its own little proprietary tidbits. and...@torproject.org wrote: > Google Chrome is open source, so one could find out the facts of what it > does. -- Marcus Griep GPG Key ID: 0x070E3F2D —— https://torproj.xpdm.us Ακακια את.ψο´, 3° signature.asc Description: OpenPGP digital signature
Re: google cookie
Hi! On Wed, Jun 03, 2009 at 12:02:33PM +0200, Karsten N. wrote: >I have a question about google cookies and tor hidden services. >[...] So after the reason has been explained, just setup firefox to ask for all cookies (and deny google its "we track users for ages" cookie). Kind regards, Hannah.
Re: google cookie
On Thu, Jun 04, 2009 at 12:21:53PM -0700, wken...@gmail.com wrote 2.1K bytes in 56 lines about: : suspect many browser toolbars do this sort of thing. Google Chrome likely : does it without any toolbars added on. IE? Firefox? Anyone know? Google Chrome is open source, so one could find out the facts of what it does. -- Andrew Lewman The Tor Project pgp 0x31B0974B Website: https://torproject.org/ Blog: https://blog.torproject.org/ Identica/Twitter: torproject
Re: google cookie
In a similar vein, I used to wonder how google would send out probes to all the web sites that I visited - usually within a few minutes of my going to these web sites. I eventually realized it was the google toolbar watching my hopping habits and telling the master google bots to chase along after me on their own, to see what interesting tidbits they could find for themselves. I suspect many browser toolbars do this sort of thing. Google Chrome likely does it without any toolbars added on. IE? Firefox? Anyone know? Wesley On Wed, Jun 3, 2009 at 4:00 AM, Karsten N. wrote: > Marco Bonetti schrieb: > > the answer is pretty boring, instead ;-) > > thanks, seems I am paranoid. ;-) > > Karsten >
Re: automatic abuse replies
On Wed, Jun 03, 2009 at 10:25:28PM +0200, n...@softwarekombinat.de wrote 0.7K bytes in 18 lines about: : Question: Is there a script to automatically reply to these mails with : the proposed "I am running a tor relay" mail? Parsing the XML part : should be fairly straight forward, I think. Would this be a good idea, : anyway? How do you handle these mails? Any best practices? First off, thanks for running a relay. I didn't script the responses, because I had to put them into the ISP's web-based ticket system. However, I literally took the DCMA template and replaced the words in [] with the title of the work and the copyright claimant. awk/sed are fine ways to do this as well. This template may not be valid in your country. People have been creating a more generic response template at https://wiki.torproject.org/noreply/TheOnionRouter/TorAbuseTemplates. 99% of the time there was no response from the ISP abuse dept, they simply closed the ticket. -- Andrew Lewman The Tor Project pgp 0x31B0974B Website: https://torproject.org/ Blog: https://blog.torproject.org/ Identica/Twitter: torproject
Re: This doubletalk is driving me nuts
On Thursday 04 June 2009 13:31:34 Ted Smith wrote: > On Thu, 2009-06-04 at 13:28 -0400, Praedor Atrebates wrote: > > I have just built and installed tor-0.2.1.15-rc in replacement for my > > previous 0.2.0.34 version. > > > > Nothing has changed from before this upgrade, not the location or entries > > in my torrc, not the perms on tor, not the perms on /var/lib/tor, etc. > > When I try to start tor via vidalia, it now fails with messages: > > > > Jun 04 13:23:43.160 [Warning] Error setting groups to gid 85: "Operation > > not permitted". > > Jun 04 13:23:43.160 [Warning] If you set the "User" option, you must > > start Tor as root. > > Jun 04 13:23:43.160 [Warning] Failed to parse/validate config: Problem > > with User value. See logs for details. > > Jun 04 13:23:43.160 [Error] Reading config failed--see warnings above. > > > > > > I have a "toruser" group set on my system. I am a member of the toruser > > group. It worked before, but now it doesn't. Then there is the > > doubletalk - "you must start tor as root" I read that it is a > > bad idea and totally unnecessary to run tor as root and here this message > > is telling me I MUST run it as root all of a sudden. > > > > I want vidalia to start tor when I run it as a mere user who happens to > > be a member of the toruser group. How do I do this? Nothing I do with > > the vidalia settings changes anything and I am still prevented from > > running tor and I will not run it as root. > > > > Someone, please explain/help? > > > > thx > > praedor > > If you set the "User" option in torrc, Tor will try to change uid to > that user. That capability is only available to the root user. If you > want to run Tor as a lower user from the start, unset the "User" option. Thanks, but if I unset the user option then it fails to start because it cannot create /var/lib/tor (which exists and is owned by toruser.toruser of which I am a member). I do not want the lib/tor in my home I want it in one single location on my system. This worked before I upgraded to 0.2.1.15-rc so I don't understand why it refuses now. praedor -- "If we have Senators and Congressmen there that can't protect themselves against the evil temptations of lobbyists, we don't need to change our lobbies, we need to change our representatives." - Will Rogers
Re: This doubletalk is driving me nuts
On Thu, 2009-06-04 at 13:28 -0400, Praedor Atrebates wrote: > I have just built and installed tor-0.2.1.15-rc in replacement for my > previous > 0.2.0.34 version. > > Nothing has changed from before this upgrade, not the location or entries in > my torrc, not the perms on tor, not the perms on /var/lib/tor, etc. When I > try to start tor via vidalia, it now fails with messages: > > Jun 04 13:23:43.160 [Warning] Error setting groups to gid 85: "Operation not > permitted". > Jun 04 13:23:43.160 [Warning] If you set the "User" option, you must start > Tor > as root. > Jun 04 13:23:43.160 [Warning] Failed to parse/validate config: Problem with > User value. See logs for details. > Jun 04 13:23:43.160 [Error] Reading config failed--see warnings above. > > > I have a "toruser" group set on my system. I am a member of the toruser > group. It worked before, but now it doesn't. Then there is the doubletalk - > "you must start tor as root" I read that it is a bad idea and > totally unnecessary to run tor as root and here this message is telling me I > MUST run it as root all of a sudden. > > I want vidalia to start tor when I run it as a mere user who happens to be a > member of the toruser group. How do I do this? Nothing I do with the > vidalia > settings changes anything and I am still prevented from running tor and I > will > not run it as root. > > Someone, please explain/help? > > thx > praedor > If you set the "User" option in torrc, Tor will try to change uid to that user. That capability is only available to the root user. If you want to run Tor as a lower user from the start, unset the "User" option. signature.asc Description: This is a digitally signed message part
This doubletalk is driving me nuts
I have just built and installed tor-0.2.1.15-rc in replacement for my previous 0.2.0.34 version. Nothing has changed from before this upgrade, not the location or entries in my torrc, not the perms on tor, not the perms on /var/lib/tor, etc. When I try to start tor via vidalia, it now fails with messages: Jun 04 13:23:43.160 [Warning] Error setting groups to gid 85: "Operation not permitted". Jun 04 13:23:43.160 [Warning] If you set the "User" option, you must start Tor as root. Jun 04 13:23:43.160 [Warning] Failed to parse/validate config: Problem with User value. See logs for details. Jun 04 13:23:43.160 [Error] Reading config failed--see warnings above. I have a "toruser" group set on my system. I am a member of the toruser group. It worked before, but now it doesn't. Then there is the doubletalk - "you must start tor as root" I read that it is a bad idea and totally unnecessary to run tor as root and here this message is telling me I MUST run it as root all of a sudden. I want vidalia to start tor when I run it as a mere user who happens to be a member of the toruser group. How do I do this? Nothing I do with the vidalia settings changes anything and I am still prevented from running tor and I will not run it as root. Someone, please explain/help? thx praedor -- "If we have Senators and Congressmen there that can't protect themselves against the evil temptations of lobbyists, we don't need to change our lobbies, we need to change our representatives." - Will Rogers
unsubscribe
I admire what you folks are doing, but this mail is overwhelming. Please unsubscribe me. best wishes ** We found the real ‘Hotel California’ and the ‘ Seinfeld’ diner. What will you find? Explore WhereItsAt.com. (http://www.whereitsat.com/#/music/all-spots/355/47.796964/-66.374711/2/Youve-Found-Where-Its-A t?ncid=emlcntnew0007)
Re: DNS statistics from node operators
Olaf Selke schrieb: > Jacob Appelbaum schrieb: >> I was actually hoping to get statistics from you specifically, so I'm >> glad that you responded! > > ok, just got the patch. Keep you posted... tor now has been running for 17 hours: Jun 04 18:02:06.269 [notice] Our DNS cache has 7667 entries. Jun 04 18:02:06.269 [notice] Our DNS cache size is approximately 2772880 bytes. Olaf
another tor death on SIGILL
I reported before that my 0.2.1.14-rc tor had died mysteriously, but that FreeBSD had reported that tor exited on a signal 4 (SIGILL), and that tor had left a tor.core file in /var/db/tor. It just did it again, immediately after I gave it a SIGHUP to get some new circuits. I had done the same just before the other time it failed, but was unsure of the exact timing. This time it is definite, so yes, I will soon submit a problem report with backtraces from both core files. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * **
Re: My exit node is gone from the node list
On Thu, 4 Jun 2009 11:55:28 +0800 "lingzhen1982" wrote: >For several months, I've been running a tor exit node (Nickname: AllenHomeTor, >IP address: 98.216.176.128, Version:0.2.0.30(r15956)). Since a few days, it >seems to have vanished from the list of nodes. And I try to make it reappear >by using a new nickname AllenUSATor(fingerprint: 443E 035C B856 5904 AE98 8DAB >3059 9A0D 2C4C 340C), but I am failed. How can I make it reappear? First, you should not be running that version of tor. Currently valid versions in the stable branch are 0.2.0.33 and 0.2.0.34 for both clients and relays. Second, when tor starts up, does it issue a message that says that your node is reachable from outside? If not, then you probably have a NAT/RDR problem to settle with your gateway. Third, if tor does find itself reachable soon after startup, does it ever issue a message that says its IP address appears to have changed? Or that its DNS queries appear to be hijacked? In the former case tor should, after passing another reachability test, simply publish a new descriptor bearing the new IP address. In the latter case, tor should stop operating as an exit and issue a message to that effect, while continuing to operate as a non-exit relay. >In addtion, my traffic logs suggest that the node is used as much as it could >be. There are much traffic like BitTorrent. I am confused. How can these guys >select my exit node even my node has vanished from the list of nodes? BTW, to >avoid too much BitTorrent traffic, I change my exit policy to only accept port >80 now. How can you tell what sort of traffic it is if your node is no longer an exit node? Why close all those other non-Bittorrent ports as well? >I look forward from your feedback, and thank all responders in advance. There remains another possibility. As several of us have reported here in the past, there has been a gremlin lurking inside tor somewhere that causes tor to forget to post a descriptor update after the usual 18 hours have elapsed. I haven't yet seen it happen with 0.2.1.14-rc, but it was a headache with some earlier versions. However, when you changed your torrc, whether for the change of nickname and identifier or for the change of exit policy, tor should still have published a new descriptor reflecting either of those changes, so the authorities ought to have a new descriptor for at least another 18 hours. Try upgrading to a current version of tor, and then check it a couple of times a day (or more often if you like) for a while to see whether the problem recurs. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at cs.niu.edu * ** * "A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army." * *-- Gov. John Hancock, New York Journal, 28 January 1790 * **
Re: tor controller hangs / doesn't reply
Thus spake Roger Dingledine (a...@mit.edu): > On Tue, Jun 02, 2009 at 06:54:03PM -0400, Sambuddho Chakravarty wrote: > > I use the TorExample.py with slight modification to suit my purpose to > > access the tor control service. However I see it hang often and there is > > no response from the tor control service. I am not sure what could > > possibly be the problem . Its quite non-deterministic . There is no > > fixed pattern or occurrences which cause the server to stop responding. > > Mikeperry: is TorExample.py still (thought to be) compatible with TorCtl > and friends? Yes it works. It even has a control port password of mine in SVN! :) How many more replies are we going to spend debugging hidden, super secret source code? :) -- Mike Perry Mad Computer Scientist fscked.org evil labs
