RE: Torbutton Documentation - Adversary Capabilities.
Date: Wed, 14 Jul 2010 22:26:26 +0100 From: pump...@cotse.net To: or-talk@freehaven.net Subject: Re: Torbutton Documentation - Adversary Capabilities. So to go back to the OP's question (my question)what do people think of my questions about JavaScript being able to obtain non-Tor IPs when wiping the cache? I may need correcting here, but I believe that things like Javascript timers are stored in memory as part of the page's Document Object Model (DOM), and DOM Storage attacks are one of the things that Torbutton protects against. The DOM disappears when the window or tab is closed anyway. Furthermore, if Torbutton is set up correctly, the cache in the Tor state is isolated from the cache in the Non-Tor state, so stored .js files can't come back to bite you. GD _ The New Busy think 9 to 5 is a cute idea. Combine multiple calendars with Hotmail. http://www.windowslive.com/campaign/thenewbusy?tile=multicalendarocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_5
[OT]FW: Invitation to connect on LinkedIn
And just how can you add a mailing list to your professional network??? Date: Wed, 30 Jun 2010 07:25:41 -0700 From: jackw...@gmail.com To: or-talk@freehaven.net Subject: Invitation to connect on LinkedIn LinkedIn I'd like to add you to my professional network on LinkedIn. - jack jack wssp Owner at Safari LTD Russian Federation Confirm that you know jack © 2010, LinkedIn Corporation _ Hotmail is redefining busy with tools for the New Busy. Get more from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_2
RE: [OT] another proxy, but not open source :-(
The Haystack developer was interviewed for the BBC documentary The Virtual Revolution - this episode I think: http://www.bbc.co.uk/worldservice/documentaries/2010/03/100301_the_virtual_revolution_part_two.shtml and see http://news.bbc.co.uk/1/hi/world/middle_east/8505645.stm GD _ Hotmail has tools for the New Busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_1
RE: Polipo question
From: j...@pps.jussieu.fr To: or-talk@freehaven.net Subject: Re: Polipo question Date: Sat, 8 May 2010 18:08:22 +0200 does anyone know if there is a config file option to turn off all caching in Polipo? If you look at the Polipo manual, there's an index. If you look at the index, there's an entry for uncachable. If you follow the entry, you'll find the config variable uncachableFile. --jch Thank you, I have a recollection of reading that section and not really understanding it - I think I would need a good understanding of how caching works and all the directives first. From what I read, you have to know in advance which URLs you don't want cached, and put them in uncachableFile. That's not really practical. But thanks for trying to help. GD _ The New Busy is not the too busy. Combine all your e-mail accounts with Hotmail. http://www.windowslive.com/campaign/thenewbusy?tile=multiaccountocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_4
RE: Using tor as proxy for the command line
From: t...@tomhek.nl To: or-talk@freehaven.net Subject: Re: Using tor as proxy for the command line Date: Wed, 5 May 2010 18:32:04 + You can use the command torify, it works for a lot of programs. Put torify in front of the command you want to give and most of the times it proxies the connections perfectly through Tor. Tom Hi, I'm interested in this as well. I found torify in the OSX PPC package, and made a symlink to it. However it looks for torsocks, which I can't find, although there is a tor-tsocks.conf . GD _ The New Busy is not the old busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_3
RE: GSoC Introduction - Extending Tor Network Metrics
Date: Sat, 1 May 2010 17:12:45 -0400 Subject: GSoC Introduction - Extending Tor Network Metrics From: xckj...@gmail.com To: or-talk@freehaven.net Hey everyone, I'm Kevin Berry, one of the GSoC students working for Tor this summer. Originally from New Jersey, I'm currently a junior at Villanova University in Philadelphia. I will be guided by Karsten on Extending Tor Network Metrics. My plans revolve around porting Ernie (the metrics portal software) to a dynamic web application. I will add a search feature to the *large* amount of relay descriptor data (for specific items like server names, characteristics), and automate the collection and publishing of a few high-level network statistics. If you haven't yet read my initial proposal, I'm including it here: http://kjb.homeunix.com/files/gsoc2010_tor_application.html . The timeline was made a bit more specific since I submitted it. Lots to do! I plan on hosting my GSoC blog and project at http://kjb.homeunix.com . Since a bit of my project involves web development, I plan to have snapshots of my project hosted there. It's a dynamic dns domain pointing to a box at home, so I apologize if it is slow/unreliable at times. I'm usually idling in oftc and freenode as kjbbb. I've already met a few of you, but definitely feel free to drop me a line. I will be around a lot more often after finals end next week, so I will have time to set up, ask questions, and get ready to begin working this summer. I'm excited to be able to dedicate my full time to open source and Tor, so thank you Google and everyone else involved for giving me this great opportunity! Kevin It's good to read that people are working to improve Tor. Welcome. However, that's the second unexplained reference to OFTC - do you mean http://www.oftc.net/oftc/ ? It's best not to assume that acronyms are understood by everyone...we don't all move in the same circles. GD _ Hotmail is redefining busy with tools for the New Busy. Get more from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_2
.exit still broken?
Hi, I just used .exit notation to test another OpenDNS-using exit node (they have contact details so I won't name names). I'm using 0.2.1.25 and haven't specifically enabled .exit in my torrc, yet it still worked - but the OpenDNS warning returned contained the .exit part of the URL. Wasn't this supposed to be fixed in 0.2.1.25? GD _ The New Busy is not the too busy. Combine all your e-mail accounts with Hotmail. http://www.windowslive.com/campaign/thenewbusy?tile=multiaccountocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_4
RE: Polipo question
Subject: Re: Polipo question From: incoming.li...@ax11.de To: or-talk@freehaven.net Date: Thu, 1 Apr 2010 23:10:09 +0200 Am Donnerstag, den 18.03.2010, 23:35 -0400 schrieb downie -: Hi, does anyone know if there is a config file option to turn off all caching in Polipo? I am having a problem with variable PHP pages being cached, and would prefer not to have to add Cache-Control headers everywhere. The manual doesn't seem to allow for that eventuality. downie Have you tried connecting to http://localhost:8123/polipo/config? (and setting CacheDir to /dev/null there if nothing else works) Cheers, Tom Hi, Polipo is on port 8118 for Tor: anyhow, Firefox won't connect to localhost - it's 'restricted'. Also disc cacheing is off already (critical for privacy), it's the memory cache that is still a problem. downie _ The New Busy think 9 to 5 is a cute idea. Combine multiple calendars with Hotmail. http://www.windowslive.com/campaign/thenewbusy?tile=multicalendarocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_5
exit Qwerty (and anyone using OpenDNS)
Would the owner of exit Qwerty please turn off site blacklisting in their OpenDNS account please? (Anyone else using OpenDNS on your exit - please check you aren't censoring sites). Thanks, GD _ Hotmail is redefining busy with tools for the New Busy. Get more from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID28326::T:WLMTAGL:ON:WL:en-US:WM_HMP:042010_2
TorStockholm exit
Would the owner of exit TorStockholm please turn off site blacklisting in your OpenDNS account. TIA GD _ Hotmail has tools for the New Busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_1
RE: BIND down, weird IPs pop up on tor.log
Date: Tue, 23 Mar 2010 12:48:08 +0100 From: ma...@predicatori.it To: or-talk@freehaven.net Subject: BIND down, weird IPs pop up on tor.log Hi, something really weird has happened to my tor node. I was restarting BIND, wich serves as dns in my LAN, on another machine. Around the same time I found these two lines in /var/log/tor/tor.log: Mar 22 10:29:18.806 [notice] Your IP address seems to have changed to 182.219.88.104. Updating. Mar 22 10:29:18.832 [notice] Your IP address seems to have changed to 182.219.55.216. Updating. I wonder where these IPs came from, and how this could be related to BIND being down at the very moment. $whois says that those are IPs from Down Under, but I'm almost exactly at the other side of the world. Moreover, I can't see any line later on saying that I went back to my real IP. Everything seems to be working normally. Thanks a lot. I assume you have a fixed IP and an Address line in your torrc? Would restarting BIND make Tor try to guess its IP? In that case you could have triggered the bug in 0.2.1.23/24 which gave some of us with dynamic IPs severe problems - the IP guessed was random contents of memory changing every few seconds. It's fixed in 0.2.1.25 (an 0.2.2.10 alpha I'm told). Just a thought - others know the workings better. GD _ Hotmail is redefining busy with tools for the New Busy. Get more from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_2
PrivacyNow
Hi, would the owner of exit PrivacyNow (reportedly in Denmark) please turn off blacklisting of sites in their OpenDNS account? Thanks, GD _ The New Busy is not the old busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_3
RE: Polipo question
Date: Sat, 20 Mar 2010 10:52:28 -0400 From: and...@torproject.org To: or-talk@freehaven.net Subject: Re: Polipo question On Thu, Mar 18, 2010 at 11:35:49PM -0400, downgeo...@hotmail.com wrote 1.8K bytes in 53 lines about: : does anyone know if there is a config file option to turn off all caching in Polipo? I think you have to compile it without caching. Have you tried setting chunkhighmark and objecthighmark to 0? Thanks for the suggestion; I don't compile myself. /Applications/Vidalia.app/Contents/Resources/polipo.conf:62: unknown config variable diskCacheRoot /Applications/Vidalia.app/Contents/Resources/polipo.conf:71: unknown config variable localDocumentRoot Impossibly low objectHighMark -- setting to 16 almost but not quite :-/ it's still caching small files at least. _ The New Busy is not the old busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_3
Polipo question
Hi, does anyone know if there is a config file option to turn off all caching in Polipo? I am having a problem with variable PHP pages being cached, and would prefer not to have to add Cache-Control headers everywhere. The manual doesn't seem to allow for that eventuality. downie _ The New Busy is not the old busy. Search, chat and e-mail from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_3
RE: Polipo automatic?
To: or-talk@freehaven.net Subject: Polipo automatic? Date: Fri, 12 Mar 2010 21:50:23 -0500 From: zzzjethro...@email2me.net Hi. Just read a post made me think of this: On Mac 10.5.2, with the Vidalia/Bundle, does Polipo automatically run after starting Vidalia or do I have to start it separately? I think it's now Polipo rather than Privoxy for v 0.2.1.24-0.2.7? thanks Certainly with the OSX Vidalia bundle I downloaded, it was enabled already: it's an option in Vidalia/Control Panle/Settings. downie _ Hotmail: Trusted email with Microsoft’s powerful SPAM protection. http://clk.atdmt.com/GBL/go/210850552/direct/01/
Startup script (OSX) broken
Hi, does anyone know why these changes to /Library/StartupItems/Tor/Tor should break it? Polipo is started, but Tor isn't : sh /Library/StartupItems/Tor/Tor start shows as a sleeping process. StartService () { if [ -f $TORCMD ]; then if pid=$(GetPID Tor); then return 0 else ConsoleMessage Starting Tor Service # Tentative # Start Polipo /Applications/Vidalia.app/Contents/MacOS/polipo -c /Applications/Vidalia.app/Contents/Resources/polipo.conf # Making sure it is not running (I know it is not a best approarch) killall tor 2/dev/null /usr/bin/tor --user tor --hush -f /Users/tor/torrelay DataDirectory /Users/tor/tor ControlPort 9051 HashedControlPassword 16:xxx CookieAuthentication 0 RunAsDaemon 1 fi fi } I haven't changed the config file and I can still start Tor by su-ing to the tor user. GD _ Hotmail: Powerful Free email with security by Microsoft. http://clk.atdmt.com/GBL/go/201469230/direct/01/
RE: Access from a local file
Date: Wed, 17 Feb 2010 11:18:03 -0800 From: mogul...@yahoo.com Subject: Re: Access from a local file To: or-talk@freehaven.net One of the reasons is to prevent malicious users from including file:// urls in an external webpage. With file:// urls, a webpage could be designed to test for the existence of local files on your computer. How? Same origin policy prevents an external website from accessing any local files directly. And the 'onload' trick detailed at http://72.32.12.210/archives/vulnwatch/2002-q2/0032.html doesn't work (FF2 OSX anyway) because the images or Iframes never load from local resources at all. Do you have a Proof of Concept? GD _ Hotmail: Trusted email with powerful SPAM protection. http://clk.atdmt.com/GBL/go/201469227/direct/01/
RE: Firefox configurations
Date: Sat, 6 Feb 2010 20:16:33 +0100 From: davidlust...@goatse.be To: or-talk@freehaven.net Subject: Re: Firefox configurations On 02/06/2010 07:11 PM, downie - wrote: browser.safebrowsing.enabled false This feels to me as though it should be true. extensions.blocklist.url delete value SHOULD I? This is about checking every URL your browser loads against a blacklist (phish,malware etc) stored on Mozilla/Google's server. Even if that check goes via Tor, do you want that information sent? If not, leave as disabled. GD _ Hotmail: Trusted email with powerful SPAM protection. http://clk.atdmt.com/GBL/go/201469227/direct/01/ That's not true, it downloads a list of blacklisted extentions/plugins from a Mozilla server. This is how Mozilla disabled the .Net extention when Microsoft didn't release a patch for the Firefox extention. I assume you are just correcting me on extensions.blocklist.url ? I was thinking of browser.safebrowsing.provider.0.lookupURL so I was wrong in that respect. GD _ Hotmail: Powerful Free email with security by Microsoft. http://clk.atdmt.com/GBL/go/201469230/direct/01/
RE: client bug in 0.2.2.7-alpha and a new bad exit: exoassist
Date: Sun, 31 Jan 2010 22:36:11 -0600 From: benn...@cs.niu.edu To: flamsm...@gmail.com; or-talk@freehaven.net Subject: Re: client bug in 0.2.2.7-alpha and a new bad exit: exoassist On Sun, 31 Jan 2010 23:10:42 -0500 Flamsmark flamsm...@gmail.com wrote: On 31 January 2010 21:58, Scott Bennett benn...@cs.niu.edu wrote: So it appears that a) there is a new tor client bug in 0.2.2.7-alpha that leaves the exoassist.exit in the name passed along from its SOCKS listener to the destination port. IIRC removing the .exit notation in the Host header has never been a Tor function: it is/was carried out by Privoxy. GD _ Hotmail: Trusted email with powerful SPAM protection. http://clk.atdmt.com/GBL/go/201469227/direct/01/
RE: OSX bundle
Date: Fri, 22 Jan 2010 22:04:14 -0500 From: and...@torproject.org To: or-talk@freehaven.net Subject: Re: OSX bundle 90% of OS X users simply install the bundle and run tor via vidalia. The vidalia-bundle packages for os x are now drag and drop, self contained, and vidalia fully controls tor. Vidalia, tor, and polipo all run as the user that started vidalia. Thanks. If I want to start up Polipo at boot, is /Applications/Vidalia.app/Contents/MacOS/polipo -c /Applications/Vidalia.app/Contents/Resources/polipo.conf sufficient? GD _ Hotmail: Free, trusted and rich email service. http://clk.atdmt.com/GBL/go/196390708/direct/01/
OSX bundle
Hi, should https://www.torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.1.21-0.2.6-ppc.dmg contain a new version of Tor and maybe Polipo/Privoxy? It appears to only contain Vidalia and a Torbutton install. GD _ Hotmail: Powerful Free email with security by Microsoft. http://clk.atdmt.com/GBL/go/196390710/direct/01/
Netcat
Hi, can anyone explain the Torify netcat instructions at https://wiki.torproject.org/noreply/TheOnionRouter/TorifyHOWTO/Misc#NC please? Neither the -X nor -x options exist in my version of nc. Thanks, GD _ Hotmail: Trusted email with Microsoft’s powerful SPAM protection. http://clk.atdmt.com/GBL/go/196390706/direct/01/
Google in China
This may have consequences for demand for (or attacks against) Tor: http://googleblog.blogspot.com/2010/01/new-approach-to-china.html GD _ Hotmail: Free, trusted and rich email service. http://clk.atdmt.com/GBL/go/196390708/direct/01/
RE: trouble upgrading TOR, and question regarding situation in China
Date: Wed, 30 Dec 2009 19:59:26 -0500 From: and...@torproject.org To: or-talk@freehaven.net Subject: Re: trouble upgrading TOR, and question regarding situation in China China has been blocking the list of public relays by IP address since September 25. They appear to have updated the list of public relays around December 24th. Look into using bridges in China, tor still works that way. In September we could check if we were blacklisted by trying to access baidu.com . Is that still the case? GD _ Hotmail: Trusted email with Microsoft’s powerful SPAM protection. http://clk.atdmt.com/GBL/go/177141664/direct/01/
Exit archives
Hi, could you remind me please where to query the historical data of exit nodes' IPs? Thanks, downie _ Chat with Messenger straight from your Hotmail inbox. http://www.microsoft.com/windows/windowslive/hotmail_bl1/hotmail_bl1.aspx?ocid=PID23879::T:WLMTAGL:ON:WL:en-ww:WM_IMHM_4:092009
RE: Exit archives
Date: Wed, 2 Dec 2009 23:45:01 -0500 From: and...@torproject.org To: or-talk@freehaven.net Subject: Re: Exit archives On Wed, Dec 02, 2009 at 10:57:00PM -0500, downgeo...@hotmail.com wrote 1.4K bytes in 48 lines about: : could you remind me please where to query the historical data of exit nodes' IPs? http://archive.torproject.org/ Thanks Andrew, which of those groups of files is best just to check if an IP was an exit on a given date? I see there is generally a 6 day lag. Is there any chance of getting the November data out early? _ Chat with Messenger straight from your Hotmail inbox. http://www.microsoft.com/windows/windowslive/hotmail_bl1/hotmail_bl1.aspx?ocid=PID23879::T:WLMTAGL:ON:WL:en-ww:WM_IMHM_4:092009
[OT]RE: Unsubscribe
You have to send to a different address. Instructions are in the headers. Subject: Unsubscribe From: tim...@gmail.com To: or-talk@freehaven.net Date: Wed, 23 Sep 2009 17:07:45 +0200 Unsubscribe -- The three fastest modes of communication ... telephone, telegraph and tell-a-woman. _ Hotmail: Free, trusted and rich email service. http://clk.atdmt.com/GBL/go/171222984/direct/01/
RE: Annoying loop situation
From: secur...@barrowhillfarm.org.uk To: or-t...@seul.org Subject: Re: Annoying loop situation Date: Sat, 22 Aug 2009 08:46:57 +0100 On Friday 21 August 2009 23:07:22 downie - wrote: On 08/21/2009 10:52 AM, Bob Williams wrote: I have both privoxy and torbutton installed. When I setup Firefox's proxy settings to use http and ssl through 127.0.0.1 port 8118 and SOCKS host 127.0.0.1 port 9050, torbutton enables itself. If I then disable torbutton (I'm only really interested in running a tor relay) the Firefox settings revert to 'No proxy'. -- Bob Isn't there the additional complication that if you want to use Privoxy without Tor, you have to change the Privoxy config file as well? I don't think Torbutton can do that for you. In what way? [edit] forward-socks4a / 127.0.0.1:9050 . forward-socks5/ 127.0.0.1:9050 . As I understand it (Library/Privoxy/user-manual/config.html Section 7.5.2) those lines forward all requests from Privoxy through Tor: if you want Privoxy filtering without using Tor in client mode, you have to comment those lines out. Then if at some point you *do* want to use Tor in client mode (still with Privoxy), you have to reinstate them. Wiser heads may need to confirm this... GD _ Hotmail® is up to 70% faster. Now good news travels really fast. http://windowslive.com/online/hotmail?ocid=PID23391::T:WLMTAGL:ON:WL:en-US:WM_HYGN_faster:082009
RE: Supercookies
Date: Fri, 21 Aug 2009 09:14:04 +0200 From: matej.kova...@owca.info To: or-talk@freehaven.net Subject: Re: Supercookies Uuuups, it seems BetterPrivacy allows remote code execution. This plugin is currently dangerous for anyone to have installed as it ...The code isn't on the actual website, its a a banner ad but if you want to test your luck just visit hxxp://www.scenereleases.info/ a few times https://addons.mozilla.org/en-US/firefox/addon/6623 (see reviews)... If you expand the reviews section you see the developer rejects this allegation. I think his suggestion that this is an attempt to drive ad revenue for that site is plausible given the above. _ Get back to school stuff for them and cashback for you. http://www.bing.com/cashback?form=MSHYCBpubl=WLHMTAGcrea=TEXT_MSHYCB_BackToSchool_Cashback_BTSCashback_1x1
RE: Annoying loop situation
On 08/21/2009 10:52 AM, Bob Williams wrote: I have both privoxy and torbutton installed. When I setup Firefox's proxy settings to use http and ssl through 127.0.0.1 port 8118 and SOCKS host 127.0.0.1 port 9050, torbutton enables itself. If I then disable torbutton (I'm only really interested in running a tor relay) the Firefox settings revert to 'No proxy'. -- Bob Isn't there the additional complication that if you want to use Privoxy without Tor, you have to change the Privoxy config file as well? I don't think Torbutton can do that for you. GD _ Windows Live: Make it easier for your friends to see what you’re up to on Facebook. http://windowslive.com/Campaign/SocialNetworking?ocid=PID23285::T:WLMTAGL:ON:WL:en-US:SI_SB_facebook:082009
[OT] RE:unsubscribe or-talk
You have to email a special address to unsubscribe. It's in the headers. From: caner...@gmail.com To: or-talk@freehaven.net Subject: unsubscribe or-talk Date: Mon, 10 Aug 2009 22:02:08 +0300 Please unsubscribe me. Thanks. _ Get free photo software from Windows Live http://www.windowslive.com/online/photos?ocid=PID23393::T:WLMTAGL:ON:WL:en-US:SI_PH_software:082009
[OT]RE: unsubscribe or-talk
'It is better to light a candle than curse the darkness.' - Anon Date: Mon, 10 Aug 2009 16:17:01 -0400 Subject: Re: unsubscribe or-talk From: en.wp.s...@gmail.com To: or-talk@freehaven.net As was noted the last ten times (by my count) someone did this, and as you were told when you registered, and as you are told in every email sent by this list, and just like any other mailing list using this software, of which there are a great many, your message says this: Subject: unsubscribe or-talk and a few lines later, X-To-Get-Off-This-List: mail majord...@seul.org, body unsubscribe or-talk Apparently, the illiterate still manage to learn how to subscribe to mailing lists (perhaps their kids show them how?), though to what purpose is anyone's guess. DCollins/ST47 _ Get free photo software from Windows Live http://www.windowslive.com/online/photos?ocid=PID23393::T:WLMTAGL:ON:WL:en-US:SI_PH_software:082009
RE: The dh small subgroup confinement attack and Tor
Date: Sun, 9 Aug 2009 10:02:42 -0300 From: free...@gmail.com To: or-talk@freehaven.net Subject: Re: The dh small subgroup confinement attack and Tor Since the recommended way to run a Browser on Tor is with ALL scripting disabled, this shouldn't effect people that are configured correctly. We recommend you use Firefox with the Torbutton extension. (https://www.torproject.org/download.html.en#Warning). If you can access all the sites you want to without Javascript, good for you. I find vast swathes of the Internet are inaccessible. GD _ Get free photo software from Windows Live http://www.windowslive.com/online/photos?ocid=PID23393::T:WLMTAGL:ON:WL:en-US:SI_PH_software:082009
RE: Please help me test my hidden service
I've tried a few times since you posted to reach this site, without success - 'Domain does not resolve'. Tor 0.2.1.18 is the client, and I can reach the Hidden Wiki (on the second attempt at least). GD Date: Mon, 3 Aug 2009 16:42:57 -0400 From: 2600den...@gmail.com To: or-talk@freehaven.net Subject: Please help me test my hidden service Hey Folks, I posted a while ago saying I was making a how-to manual for newbies on how to set up (reasonably) secure hidden services. I'm almost done but I want to release my server for testing to see if I missed anything obvious. This is a pretty standard LAMP install running in a virtual machine. The OS is Ubuntu on both. The site is at http://76jejbkd7gtm5jbb.onion There's a drupal install at /drupal and a wordpress install (currently not working due to forwarding issues) at /wordpress. Feel free to poke around all you want, just please don't do anything that would stop other users from accessing the machine such as DoS attacks. If you somehow break through, please stay off my home network ; ) I haven't allowed users to add content because... well.. you know what would happen with that in onionland. If you want to add content just throw me an email and I'll make you an account. I figure that way I have somebody to blame if stuff goes horribly wrong. My PGP key is included if you roll that way. I'm also interested to hear people's ideas on how exactly to test the security of this server without handing out shell logins (or is that exactly what I should do?). Any feedback is appreciated. Thanks, Ringo -BEGIN PGP PUBLIC KEY BLOCK- Version: GnuPG v1.4.9 (GNU/Linux) mQGiBEniUKIRBADfn8kULsRd3si+zPnVbeVp4C/cjxfOxvPURPjRMDPRZPuDuEI5 QIiMP+lZs0Y1BS/zubrwJ/R+knZW0dfkCbd0IBqhtcci4ZiDXRCNxxYow0MysweG sbZE0QY4T2u40ffOLs9m/ENiDebUxknTyAg8/Jim9aBdEDgurCc7HCX+iwCghfLh 1POMWQRkXB4zUmXQfp+u+0MD/j5SUN6ct6fH4ex3L/WeIHRA+PZXBEpQv5HCwcYO 9VAtS0KYTtrBePXuhabjmiyhWIVsPHa8A+5RW3ONkK4gQ71E7sh2nu44p0rOSVkz 9/ZQiHVCjxZJNhvCsabIFT2/G8OFo2XPnJ0+8Gfluueb5a/HKArUWHIvkws82kQ5 75RJBACJp436/Bvk/CpKDkIG8v/4dQkyNKhv5AEAbx3jNjdOAxNSK0tBaQAulgCk GFNkk+wpv6OWaawgQzFh71KvmEswSLObXk+S6WZgC+Epy4XmfzzDG/gIHD0VuBQ+ 2D8JzFT/TiDMu6wdYu4kgDg5sO4a5Yzn7xoYMF5YWzXnPKhXi7QacmluZ28gPHJp bmdvQGhhY2tibG9jLm9yZz6IZgQTEQIAJgUCSeJQogIbIwUJAeEzgAYLCQgHAwIE FQIIAwQWAgMBAh4BAheAAAoJEFUc7QiIWsvrdtkAn3KtPdxxC/qWmmIFZ4Nc4cFE as42AJoDwdk/N9I3sPvc91wTTlbsKhoHLrkEDQRJ4lCiEBAAs2JYGr1k1Dgi3DMy h0ziX+22tIWWyIJoGKWKFspA7nGeniOBodLBvR+POtqqGCh+bkm9I0X/YMF9oVcP xXBql7H6E4JSgtCk7xtohDpLlfcCpsddVxcJdXYLynTUMcmJtCER0bCNIkTmYoV7 uNXAqmUNAp4zaI70yWsidpAVHme0+sBUYNinfBdlcaMddzslbDtRV7yGKgvW3E5e hPNTJ0pWF6WJg4VsEOFoP7pldtQ4YWScskvuCk957K4t4Of3QZs13Nn9sQZleFJU E2L1bxEHuSqY/f1F/pbKmc7in8qkoBBAyhUbzCNxxELdof3uJpBy0pw0468GvSyb Z4jyh2XFvxFFAcelzc453y9GOylIC0OQczkrzOa6QrIWQSmeCzn/byjLoi+TRFve usRmJn5H9MJg+k+mG5LJM2mcyQJU2UOPDvSurKmk50vByBED6Qn5CvhXJp18H6Uk 2r+PICG4h8aN9KZpSrMAqYggyKgAxHTlCaQzGCwvJGiX6lx6iIm2GLoqeHdRHZZX 9XognVcbTwUWJkL0LR9nhm5U0GhFGM9eRdLw89C/Z/s1/Q/QLjoDh60qXcYo+vFS 5bJtiT52HnlA002opyi+Zn5mk9aXQiksOJruIdNw1rvJSe+uAIYQeBv+rinxzAyL 4f/p/+vvgnfgkEc2G1hLuGTvWMsAAwYP+gIhIgQ6UwQ0Bu1gyRN88Gs9H0fnQ74Z RmFXDgUtpn1YrFzFfTNegQh8vvgo1pXV4ZDPc0w9Cs8QHrspnkYrvSymAEmwYtGd nvnAVVROIJfN5d140Z1FJXCgFp/3m2SAX1omYyN3/5WX9ef1uaYWub48kSdqfHlr xe8Z15nXQ9E6WMgDtP5jXpfCkAnweW6/WSGRrHlRyBUevCTyRSZ4dwtim0GHsls9 VbfDYWJVxiKWdgjtjg+PfsXrdQG2KICEHXprS9/tYCheWaHP4couXVHDPUNMGK/w HSYXbr0/xA0i0JHpRzVCDweKZ32hgbYkTXp0U7ArBYLtbfpWlB8uWHFFAIS5yJQL YMwc8/qFCgl5fUGMk4ZLTgbftQo/sfcOAIPQl2nVjhnvzucj8PgBBaJgH9ORTpW6 89zIzOtfXfju0dq4LC6Xj4h6SA/duh8dEiBzewNJ1FwnlrywvaQjsVdx5+5RolAk gZKcT4hHCj+s2vCAyF5R70rfKkZkKhMuUzEWc4R4AzbkmI1eTtEl/FJVCzBsJRan HC+YMgCdf2ujTxvBltytpWrs0nvzFVY6+RyihQsqlV6KeOtDBTv38a8Q5gdARK0j 5og+X3SWHW0p29PSKk6a3NeSB08J0wlXsrNOJ/JXlYw/yIifZdgl6fO8V7rPBoQt xIQB5UKSXj8YiE8EGBECAA8FAkniUKICGwwFCQHhM4AACgkQVRztCIhay+vXkQCf beWbtPmJOWbXn+9LEaJTqcN73REAn2MmtesdDs24QjWfZeTfc8dyEZ2n =O0oE -END PGP PUBLIC KEY BLOCK- _ Get free photo software from Windows Live http://www.windowslive.com/online/photos?ocid=PID23393::T:WLMTAGL:ON:WL:en-US:SI_PH_software:082009
RE: Tor packages for OS X powerpc and 10.3.9 uploaded
Thank you Andrew and the anonymous donor! I regret to report that this still crashes on 10.3.9 without 'export EVENT_NOKQUEUE=1' in the starting script. I didn't have to wait long today; just half an hour. GD Date: Fri, 24 Jul 2009 01:38:00 -0400 From: and...@torproject.org To: or-talk@freehaven.net Subject: Tor packages for OS X powerpc and 10.3.9 uploaded Thanks to an anonymous donor for the working powerpc hardware, I was able to make packages on OS X 10.3.9 (Panther) this evening. They are available in the usual places, such as https://torproject.org/download Thanks for your patience. -- Andrew Lewman The Tor Project pgp 0x31B0974B Website: https://torproject.org/ Blog: https://blog.torproject.org/ Identica/Twitter: torproject _ Windows Live™ Hotmail®: Celebrate the moment with your favorite sports pics. Check it out. http://www.windowslive.com/Online/Hotmail/Campaign/QuickAdd?ocid=TXT_TAGLM_WL_QA_HM_sports_photos_072009cat=sports
RE: Tor packages for OS X powerpc and 10.3.9 uploaded
Date: Sun, 26 Jul 2009 20:39:36 -0400 From: and...@torproject.org To: or-talk@freehaven.net Subject: Re: Tor packages for OS X powerpc and 10.3.9 uploaded Do you get a crashlog you could upload to bugs.torproject.org? I ran a client for a day without an issue. I had curl pull a file over tor repeatedly without issue. yes, it seems to be a relay issue only. I have an entry in panic.log which I will add to Flyspray. GD _ Windows Live™ Hotmail®: Search, add, and share the web’s latest sports videos. Check it out. http://www.windowslive.com/Online/Hotmail/Campaign/QuickAdd?ocid=TXT_TAGLM_WL_QA_HM_sports_videos_072009cat=sports
New option DirPortFrontPage
Hi, is DirPortFrontPage only available to Directory Mirror operators? If so, what is the additional overhead of mirroring the Directory? And finally, what is the option syntax? Thanks, GD _ Windows Live™ Hotmail®: Celebrate the moment with your favorite sports pics. Check it out. http://www.windowslive.com/Online/Hotmail/Campaign/QuickAdd?ocid=TXT_TAGLM_WL_QA_HM_sports_photos_072009cat=sports
Torbutton logs URLs (OSX)
Torbutton logs URLs to console.log in some circumstances. I've raised a bug about this, no replies yet. https://bugs.torproject.org/flyspray/index.php?do=detailsid=1040 Has anyone else noticed this? GD _ Windows Live™ SkyDrive™: Store, access, and share your photos. See how. http://windowslive.com/Online/SkyDrive?ocid=TXT_TAGLM_WL_CS_SD_photos_072009
RE: My tor exit node is STILL gone from the node list
Moria now thinks you are at 89.248.169.109 Traceroute and Netcat both fail from AS13285 in the UK: ... 8 openhosting-pp-1-thn.as13285.net (78.144.3.17) 34.393 ms 33.99 ms 63.96 ms 9 xe-2-3-0.bb1.ams1.nl.gbxs.net (193.27.64.81) 343.545 ms 73.367 ms 72.335 ms 10 * * * nc -v -w10 89.248.169.108 8080 89.248.169.108: inverse host lookup failed: Unknown server error (UNKNOWN) [89.248.169.108] 8080 (http-alt) : Operation timed out GD To: or-talk@freehaven.net Subject: My tor exit node is STILL gone from the node list From: t...@ze.ro Date: Mon, 20 Jul 2009 18:46:03 +0300 Hi list, I am still struggling to get my server back on the list of Tor nodes. For several months it was among the top 5 nodes, pumping 15TB a month. I am paying a lot of money for that machine, and I don't see why it just doesn't work any more. Let me reiterate what's happening: Since April, the node disappears from the node list after a few hours of running. I have tried to change exit policies, node name, node keys, ports and IP (within the same subnet). After the IP change the node was listed (and used) for several hours before it vanished. There's nothing about in the log file. It seems as if the node is unreachable from some of the authority servers, but I have no idea what to do about that. My ISP says that routing is fine and everything should work as expected. I don't understand why the node stays listed for a few hours before disappearing. Can someone please help me get this 100EUR/mnth node up again? Information about the node: Current IP 89.248.169.109 (previously 89.248.169.108) Nickname kyirong2 (previously kyirong) Fingerprint D3EB 3132 99A0 082A 4A4E 10E0 EB75 8E4F 0163 F4F0 (Old fp: A8BD 32A9 C2F2 0C4F 8ED2 C26C E477 0A24 85E3 CD22) Tor 0.2.1.17-rc Debian DirPort 80, ORPort 8080 -- Alexandru -- - www.posta.ro - Romanias first free webmail since 1998! _ - powered by www.posta.ro _ NEW mobile Hotmail. Optimized for YOUR phone. Click here. http://windowslive.com/Mobile?ocid=TXT_TAGLM_WL_CS_MB_new_hotmail_072009
RE: My tor exit node is STILL gone from the node list
Date: Mon, 20 Jul 2009 14:23:04 -0400 Subject: Re: My tor exit node is STILL gone from the node list From: ler...@gmail.com To: or-talk@freehaven.net On 7/20/09, downie - downgeo...@hotmail.com wrote: Moria now thinks you are at 89.248.169.109 Traceroute and Netcat both fail from AS13285 in the UK: Try netcat with the current address of 89.248.169.109 instead of .108 Oops - I guess I didn't copy the address when I thought I had. I can reach 89.248.169.109 ok. GD _ Windows Live™ Hotmail®: Celebrate the moment with your favorite sports pics. Check it out. http://www.windowslive.com/Online/Hotmail/Campaign/QuickAdd?ocid=TXT_TAGLM_WL_QA_HM_sports_photos_072009cat=sports
RE: Tor 0.2.1.17-rc is out -- final release candidate?
Date: Sun, 12 Jul 2009 22:31:54 -0400 From: a...@mit.edu To: or-talk@freehaven.net Subject: Tor 0.2.1.17-rc is out -- final release candidate? This is a release candidate! That means that we don't know of any remaining show-stopping bugs, and 0.2.1.18 will be the new stable if there are no problems. Please test it, and tell us about any problems that you find. Thanks Roger. I hope the OSX10.3 build is out soon, I want to check if the NOKQUEUE detection is working. GD _ Windows Live™ SkyDrive™: Get 25 GB of free online storage. http://windowslive.com/online/skydrive?ocid=TXT_TAGLM_WL_SD_25GB_062009
.exit handling (was Yahoo Mail and Tor)
Date: Fri, 10 Jul 2009 11:15:25 -0400 From: eril...@gmail.com To: or-talk@freehaven.net Subject: Re: Yahoo Mail and Tor If I'm proxying through Tor and I type this into my browser: www.google.com.example.exit My browser asks the proxy for a connection to www.google.com.example.exit Once my browser receives the connection, it then sends this down it: GET / HTTP/1.1\r\n Host: www.google.com.example.exit\r\n \r\n The problem is that some web servers have multiple websites on the same IP and they decide which website to serve by looking at the HTTP Host header. So you need privoxy/polipo to strip the example.exit from the HTTP Host header before forwarding on the actual HTTP request, so it sends this instead: GET / HTTP/1.1\r\n Host: www.google.com\r\n \r\n -- Erilenz So far so good. A possible problem then arises when the served page contains absolute URLs for resources, links etc which no longer use the .exit notation, and so could be fetched from a different exit. How often that would happen is open to question. Another Privoxy rule could be written to rewrite those page URLs I guess, but how would you pass the name of the required exit to the rule? GD _ Lauren found her dream laptop. Find the PC that’s right for you. http://www.microsoft.com/windows/choosepc/?ocid=ftp_val_wl_290
Hidden services
I don't seem to be able to access any .onion addresses at the moment. Can someone point me to a known working one? Thanks, GD _ Lauren found her dream laptop. Find the PC that’s right for you. http://www.microsoft.com/windows/choosepc/?ocid=ftp_val_wl_290
RE: Yahoo Mail and Tor
Date: Thu, 9 Jul 2009 12:11:06 -0400 From: and...@torproject.org To: or-talk@freehaven.net Subject: Re: Yahoo Mail and Tor On 07/09/2009 11:25 AM, Scott Bennett wrote: Does polipo do all the other good things that privoxy does, including ad blocking and clickjack blocking? No, and this is the point. Polipo is a simple caching http proxy. Polipo does include the ability to filter traffic by regex, but this is disabled in our bundles. Will Polipo be able to filter out .exit notation? GD _ Lauren found her dream laptop. Find the PC that’s right for you. http://www.microsoft.com/windows/choosepc/?ocid=ftp_val_wl_290
[OT] RE:unsubscribe or-talk
The unsubscribe instructions are in the headers of the list emails: you have to send to a different address Date: Tue, 7 Jul 2009 23:58:49 -0500 Subject: unsubscribe or-talk From: nervcomm...@gmail.com To: or-talk@freehaven.net _ Windows Live™: Keep your life in sync. http://windowslive.com/explore?ocid=TXT_TAGLM_WL_BR_life_in_synch_062009
RE: Stealing browser history without JavaScript
Date: Sun, 14 Jun 2009 22:34:32 +0100 From: my.green.lant...@googlemail.com To: or-talk@freehaven.net Subject: Re: Stealing browser history without JavaScript Matej Kovacic wrote: Seems to me it would have to have all websites known to man on the page it loads. If it looks at visited links css on the page it loads it could only look at websites on that page. It would have to store a lot of web pages on that hidden i-frame to really compare. Unless you are looking to see if a particular person visited a particular page doesn't seem like it would do anyone much good. There are 5 URLs used: they are loaded into the Iframe 2000 at a time. e.g. http://www.making-the-web.com/misc/sites-you-visit/nojs/base.php?sess=xfrom=49000 But yes it wuld be more useful for breaking the anonymity of a particular person who you had a known unique URL for. Zinco wrote: In this IFrames exploit the test web page is said to have a css background image embedded in it. I can find no such image (background: #003399;). (See http://www.w3schools.com/css/pr_background.asp.) The links each have their own style statement and a background called from log_base.php e.g. #l49871 a:visited{background:url(log_base.php?id=49871sess=x); _ Windows Live™ SkyDrive™: Get 25 GB of free online storage. http://windowslive.com/online/skydrive?ocid=TXT_TAGLM_WL_SD_25GB_062009
RE: unsubscribe
Answered off list From: g06b08120...@email.nbu.edu.cn To: or-talk@freehaven.net Subject: unsubscribe Date: Tue, 9 Jun 2009 21:08:26 +0800 _ Windows Live™ SkyDrive™: Get 25 GB of free online storage. http://windowslive.com/online/skydrive?ocid=TXT_TAGLM_WL_SD_25GB_062009
OT:RE: unsubscribe
The unsubscribe instructions are in the headers of the list emails Subject: unsubscribe From: tim...@gmail.com To: or-talk@freehaven.net Date: Tue, 9 Jun 2009 16:01:50 +0200 _ Windows Live™: Keep your life in sync. http://windowslive.com/explore?ocid=TXT_TAGLM_WL_BR_life_in_synch_062009
Freedomone turn off filtering please
Would the owner of relay Freedomone please turn off content filtering on their OpenDNS account? BTW where are the contact emails (for those that provide on in their torrc) stored for public view? Thanks, GD PS http://moria.seul.org:9032/tor/status/authority is down - scheduled maintenance I hope. _ Hotmail® has a new way to see what's up with your friends. http://windowslive.com/Tutorial/Hotmail/WhatsNew?ocid=TXT_TAGLM_WL_HM_Tutorial_WhatsNew1_052009
RE: unsubscribe
The unsubscribe instructions are in the headers of the emails from the list. Date: Tue, 12 May 2009 22:11:13 +0200 From: bigst...@gmx.de Subject: unsubscribe To: or-talk@freehaven.net -- Neu: GMX FreeDSL Komplettanschluss mit DSL 6.000 Flatrate + Telefonanschluss für nur 17,95 Euro/mtl.!* http://dslspecial.gmx.de/freedsl-surfflat/?ac=OM.AD.PD003K11308T4569a _ Windows Live™: Keep your life in sync. http://windowslive.com/explore?ocid=TXT_TAGLM_BR_life_in_synch_052009
RE: Tor 0.2.1.14-rc is out
Thanks Roger, has the OSX version detection not been added to this branch? I had a crash after taking the 'NoKqueue' out. GD Date: Tue, 14 Apr 2009 10:27:46 -0400 From: a...@mit.edu To: or-talk@freehaven.net Subject: Tor 0.2.1.14-rc is out Tor 0.2.1.14-rc marks the first release candidate for the 0.2.1.x series. It begins fixing some major performance problems, and also finally addresses the bug that was causing relays on dynamic IP addresses to fall out of the directory. This is a release candidate! That means that we don't know of any remaining show-stopping bugs, and this will become the new stable if there are no problems. Please test it, and tell us about any problems that you find. https://www.torproject.org/download.html.en Changes in version 0.2.1.14-rc - 2009-04-12 o Major features: - Clients replace entry guards that were chosen more than a few months ago. This change should significantly improve client performance, especially once more people upgrade, since relays that have been a guard for a long time are currently overloaded. o Major bugfixes (on 0.2.0): - Finally fix the bug where dynamic-IP relays disappear when their IP address changes: directory mirrors were mistakenly telling them their old address if they asked via begin_dir, so they never got an accurate answer about their new address, so they just vanished after a day. For belt-and-suspenders, relays that don't set Address in their config now avoid using begin_dir for all direct connections. Should fix bugs 827, 883, and 900. - Relays were falling out of the networkstatus consensus for part of a day if they changed their local config but the authorities discarded their new descriptor as not sufficiently different. Now directory authorities accept a descriptor as changed if bandwidthrate or bandwidthburst changed. Partial fix for bug 962; patch by Sebastian. - Avoid crashing in the presence of certain malformed descriptors. Found by lark, and by automated fuzzing. o Minor features: - When generating circuit events with verbose nicknames for controllers, try harder to look up nicknames for routers on a circuit. (Previously, we would look in the router descriptors we had for nicknames, but not in the consensus.) Partial fix for bug 941. - If the bridge config line doesn't specify a port, assume 443. This makes bridge lines a bit smaller and easier for users to understand. - Raise the minimum bandwidth to be a relay from 2 bytes to 20480 bytes (aka 20KB/s), to match our documentation. Also update directory authorities so they always assign the Fast flag to relays with 20KB/s of capacity. Now people running relays won't suddenly find themselves not seeing any use, if the network gets faster on average. - Update to the April 3 2009 ip-to-country file. o Minor bugfixes: - Avoid trying to print raw memory to the logs when we decide to give up on downloading a given relay descriptor. Bugfix on 0.2.1.9-alpha. - In tor-resolve, when the Tor client to use is specified by hostname:port, actually use the specified port rather than defaulting to 9050. Bugfix on 0.2.1.6-alpha. - Make directory usage recording work again. Bugfix on 0.2.1.6-alpha. - When starting with a cache over a few days old, do not leak memory for the obsolete router descriptors in it. Bugfix on 0.2.0.33. - Avoid double-free on list of successfully uploaded hidden service discriptors. Fix for bug 948. Bugfix on 0.2.1.6-alpha. - Change memarea_strndup() implementation to work even when duplicating a string at the end of a page. This bug was harmless for now, but could have meant crashes later. Fix by lark. Bugfix on 0.2.1.1-alpha. - Limit uploaded directory documents to be 16M rather than 500K. The directory authorities were refusing v3 consensus votes from other authorities, since the votes are now 504K. Fixes bug 959; bugfix on 0.0.2pre17 (where we raised it from 50K to 500K ;). - Directory authorities should never send a 503 busy response to requests for votes or keys. Bugfix on 0.2.0.8-alpha; exposed by bug 959. _ Express your personality in color! Preview and select themes for Hotmail®. http://www.windowslive-hotmail.com/LearnMore/personalize.aspx?ocid=TXT_MSGTX_WL_HM_express_032009#colortheme
Where are the Antipodeans?
Hi, I don't see any Australian or New Zealand flags in the relay display in Vidalia - at least not in the place I would expect if they became ordered by name in English. Legal problems? GD _ Windows Live™ SkyDrive: Get 25 GB of free online storage. http://windowslive.com/online/skydrive?ocid=TXT_TAGLM_WL_skydrive_032009
RE: Bridge scanning resistance
Date: Sun, 22 Mar 2009 14:21:49 -0400 From: a...@mit.edu To: or-talk@freehaven.net Subject: Re: Bridge scanning resistance Also, there could be some application to having OR servers respond to HTTP requests with an informational message, etc. Check out DirPortFrontPage in the man page. The online manual doesn't have that - is it available elsewhere? No manpage gets installed in the PPC bundle. GD _ Get quick access to your favorite MSN content with Internet Explorer 8. http://ie8.msn.com/microsoft/internet-explorer-8/en-us/ie8.aspx?ocid=B037MSN55C0701A
RE: Clock problems
This is the clock jump problem that I reported here a number of times last year. It can be triggered by an interruption in transmission of data over your Internet connection for a period exceeding NUM_JUMPED_SECONDS_BEFORE_WARN seconds (see src/or/main.c). Currently, that is 100 seconds. tor interprets this situation as meaning that it is running on a system that has just awakened from suspension/hibernation, so it marks all OR connections (and circuits over them) as having expired. It has been quite a few months since my relay last suffered from this situation, so I don't remember now whether it also results in publication of a new descriptor as if the relay had just been reinitialized. In the short run, you can work around the problem with the patch below, which will reduce broken connections but will not stop the holdups nor their effect upon the tor network. The better, longer-term solution is most likely to fire your ISP and hire a better one, which is what I did at the earliest opportunity. --8 start of clockjump patch to 0.2.1.12-alpha 8-- *** main.c2009/02/10 16:35:05 0.1 --- main.c2009/02/10 16:40:15 *** *** 1200,1206 /** If more than this many seconds have elapsed, probably the clock * jumped: doesn't count. */ ! #define NUM_JUMPED_SECONDS_BEFORE_WARN 100 if (seconds_elapsed -NUM_JUMPED_SECONDS_BEFORE_WARN || seconds_elapsed = NUM_JUMPED_SECONDS_BEFORE_WARN) { circuit_note_clock_jumped(seconds_elapsed); --- 1200,1206 /** If more than this many seconds have elapsed, probably the clock * jumped: doesn't count. */ ! #define NUM_JUMPED_SECONDS_BEFORE_WARN 300 if (seconds_elapsed -NUM_JUMPED_SECONDS_BEFORE_WARN || seconds_elapsed = NUM_JUMPED_SECONDS_BEFORE_WARN) { circuit_note_clock_jumped(seconds_elapsed); --8 end of clockjump patch to 0.2.1.12-alpha 8 I haven't tried this on 0.2.0.34, but this area of the code seems to change fairly infrequently, so patch(1) can usually deal with changes in the line numbers from release to release. Or you can change 100 to 300 by hand, or course. :-) Scott Bennett, Comm. ASMELG, CFIAG Thank you, that makes sense. I don't compile, so I can't apply the patch, but perhaps the developers could add that constant to the torrc options? GD _ Windows Live™: Life without walls. http://windowslive.com/explore?ocid=TXT_TAGLM_WL_allup_1a_explore_032009
RE: Clock problems
No ntpd entries on the dates and times in question (it's system.log.*.gz on my system btw, gzcat works though :) No problems today. Thx GD Date: Mon, 9 Mar 2009 13:25:22 -0700 Subject: Re: Clock problems From: coder...@gmail.com To: or-talk@freehaven.net On Sun, Mar 8, 2009 at 8:20 PM, downie - downgeo...@hotmail.com wrote: ... A few days ago I had some overnight broadband outages. FWIW the clock synchronises to Apple's server, I'm not sure how often, and I haven't had any warnings about being out of sync. you could check /var/log/system.log for things like: Mar 9 01:24:55 imac ntpd[3721]: time reset -0.173970 s Mar 9 01:49:24 imac ntpd[3721]: time reset +0.168392 s (also bzcat /var/log/system.log.*.bz2 | grep ntpd) if ntpd is quiet, you've got something else affecting the clock jumps... best regards, _ Express your personality in color! Preview and select themes for Hotmail®. http://www.windowslive-hotmail.com/LearnMore/personalize.aspx?ocid=TXT_MSGTX_WL_HM_express_032009#colortheme
Clock problems
Hi, I've had the following show up in my logs several times now, but not every time: [warn] Your system clock just jumped 160 seconds forward; assuming established circuits no longer work. There are big blocks of these errors occuring 3 minutes 40 seconds or so apart, for 3 hours. The reported clock jump is always 150-170 seconds, and always forwards. After the warnings there are [notice]Tried for 120 seconds to get a connection to [scrubbed]:80. Giving up. (waiting for circuit) [notice] Tor has successfully opened a circuit. Looks like client functionality is working. If my clock had actually jumped that much it would be wildly incorrect by now! I'm running Tor 0.2.0.34 (r18423) on OSX10.3.9 (kqueue disabled) as a relay. _ Express your personality in color! Preview and select themes for Hotmail®. http://www.windowslive-hotmail.com/LearnMore/personalize.aspx?ocid=TXT_MSGTX_WL_HM_express_032009#colortheme
RE: Clock problems
Date: Sun, 8 Mar 2009 19:56:57 -0700 Subject: Re: Clock problems From: coder...@gmail.com To: or-talk@freehaven.net On Sun, Mar 8, 2009 at 6:16 PM, downie - downgeo...@hotmail.com wrote: ... [warn] Your system clock just jumped 160 seconds forward; assuming established circuits no longer work. There are big blocks of these errors occuring 3 minutes 40 seconds or so apart, for 3 hours. The reported clock jump is always 150-170 seconds, and always forwards. ... this sounds like the expected behavior of ntpd issuing adjtime() calls to slowly bring your clock skew down to current time. this can take hours depending on how large of an adjustment is needed. is the computer off for a longer period of time than usual when such behavior occurs? It had been on for a couple of days before the latest rash of warnings, and Tor had been running for just over an hour after a daily shutdown of an hour. A few days ago I had some overnight broadband outages. FWIW the clock synchronises to Apple's server, I'm not sure how often, and I haven't had any warnings about being out of sync. from OSX adjtime man page: DESCRIPTION Adjtime() makes small adjustments to the system time, as returned by gettimeofday(2), advancing or retarding it by the time specified by the timeval delta. If delta is negative, the clock is slowed down by incrementing it more slowly than normal until the correction is complete. If delta is positive, a larger increment than normal is used. The skew used to perform the correction is generally a fraction of one percent. Thus, the time is always a monotonically increasing function... Hmm, I'll have to take that on trust - I have no manpages for adjtime or gettimeofday. Those commands aren't recognised. also, ntpd / ntpdate may also perform similar incremental adjustment themselves: [ntpd|ntpdate may] step the time using settimeofday(2) if the offset is greater than +-128 ms. Note that, if the offset is much greater than +-128 ms in this case, it can take a long time (hours) to slew the clock to the correct value. During this time, the host should not be used to synchronize clients. best regards, Thank you, GD _ Hotmail® is up to 70% faster. Now good news travels really fast. http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_HM_70faster_032009
RE: Geoip information
Date: Tue, 17 Feb 2009 21:17:03 -0800 Subject: Re: Geoip information From: coder...@gmail.com To: or-talk@freehaven.net ... start Tor from Vidalia, and watch the Connection box in the Network Map, I see a connection opened to geoip.vidalia-project.net:1443 , then closed, good! did you see it actually CONNECT ok before closing? or was the close a gave up or no exit available close? (may have to watch closely) It said Connecting then Open for about 2 seconds... then Closed. depending on how out of date your cached information is, there may be hundreds and hundreds of IP's to get info for. while the request to the geoip service does try to ask about many IPs at a time, it will still break a huge amount into reasonable chunks, and thus multiple GOOD responses are needed to successfully connected requests for some router details to get geo coordinates. There was a geoip-cache file from November, which I guess is the last time it worked. I renamed that in case it was corrupted. A new one hasn't been created, I don't think. _ Get more out of the Web. Learn 10 hidden secrets of Windows Live. http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008
RE: Geoip information
Date: Mon, 16 Feb 2009 23:03:02 -0800 Subject: Re: Geoip information From: coder...@gmail.com To: or-talk@freehaven.net CC: or-t...@seul.org On Mon, Feb 16, 2009 at 10:02 AM, downie - downgeo...@hotmail.com wrote: Hi, Vidalia has not been showing any geographic data for me for a couple of months now the service works, you can verify yourself by making a request to https://geoip.vidalia-project.net:1443/cgi-bin/geoip one thing i have seen is that because this is using port 1443 it can be hit or miss to find a decent exit for requesting all of the desired information. your vidalia log should indicate what is going on in more detail. best regards, Hmm, If I set logging to Info, start Tor from Vidalia, and watch the Connection box in the Network Map, I see a connection opened to geoip.vidalia-project.net:1443 , then closed, but no Geographic data comes up on the map or the list of relays - no flags, no routemap of my connection. There is also no mention of GeoIP in the log. Are we talking about different things here? How does all the geographic information get uploaded into Vidalia? Thanks, GD _ Want to do more with Windows Live? Learn “10 hidden secrets” from Jamie. http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008
Geoip information
Hi, Vidalia has not been showing any geographic data for me for a couple of months now (OSX10.3.9 Tor 0.2.0.34 Vidalia 0.1.10). Last time I asked it was a server problem. Is this still the case? If it's a bug/config issue I will submit a Flyspray ticket. GD _ Get more out of the Web. Learn 10 hidden secrets of Windows Live. http://windowslive.com/connect/post/jamiethomson.spaces.live.com-Blog-cns!550F681DAD532637!5295.entry?ocid=TXT_TAGLM_WL_domore_092008
RE: Bug 924 and Bill of Materials issues on OS X 10.3.9 PowerPC
.34 installed and running. Thanks for your efforts :) GD Date: Sat, 14 Feb 2009 21:16:41 -0500 From: pho...@rootme.org To: or-t...@seul.org Subject: Bug 924 and Bill of Materials issues on OS X 10.3.9 PowerPC I've just published updated vidalia-bundle and tor expert packages for OS X 10.3.9 PowerPC. The build machine has been reloaded, and I've tested these packages on two other 10.3.9 powerpc macs. All three macs used to display the bill of materials error, but now install just fine. Packages, with .asc and .sha1, can be found at: https://torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.0.34-0.1.10-ppc-1.dmg https://torproject.org/dist/vidalia-bundles/vidalia-bundle-0.2.1.12-alpha-0.1.10-ppc-1.dmg Or the general download page, https://torproject.org/download. Please let me know if these packages also have Bill of Materials issues for you. Thanks for your patience. -- Andrew _ Windows Live™: E-mail. Chat. Share. Get more ways to connect. http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_HM_AE_Faster_022009
0.2.0.33 for OSX10.3
Hi, I just downloaded the 0.2.0.33 Tor-Vidalia-Privoxy-Torbutton package for Mac OSX10.3. The Disc Image attaches ok, but trying to open vidalia-bundle-0.2.0.33-0.1.10-ppc.mpkg results in failure with an error: Bill of materials not found. A problem in the back office? GD _ Windows Live™: Keep your life in sync. http://windowslive.com/explore?ocid=TXT_TAGLM_WL_t1_allup_explore_022009
RE: another BADEXIT found $8424E8653469B1EFF87E79E8599933A3BAF8FDB2
Is this warning in my logs Feb 10 03:12:19.847 [warn] Nickname list includes '$8424E8653469B1EFF87E79E8599933A3BAF8FDB2' which isn't a known router. because you've blacklisted it, or because I have the ExcludeNodes syntax wrong? TIA GD Date: Mon, 9 Feb 2009 16:44:14 -0500 From: a...@mit.edu To: or-talk@freehaven.net Subject: Re: another BADEXIT found $8424E8653469B1EFF87E79E8599933A3BAF8FDB2 On Mon, Feb 09, 2009 at 09:36:45AM -0600, Scott Bennett wrote: On Mon, 9 Feb 2009 10:15:32 -0500 pho...@rootme.org wrote: On Mon, Feb 09, 2009 at 09:07:15AM -0600, benn...@cs.niu.edu wrote 1.4K bytes in 26 lines about: : An unnamed exit with fingerprint $8424E8653469B1EFF87E79E8599933A3BAF8FDB2 : is redirecting HTTP port 80 to Ah, 'apple'. Again they try this exact same tactic. Silly people. Peter and I added it as a BadExit, so it should be taken care of. (It's not Running anymore either, so it's no longer in the consensus anyway.) Thanks! I hope that work is still progressing on automated detection and flagging of BADEXITs. It is progressing. You can follow mikeperry's commits on the or-cvs list if you like, too. http://archives.seul.org/or/cvs/ --Roger _ Windows Live™: E-mail. Chat. Share. Get more ways to connect. http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_HM_AE_Faster_022009
GeoIP down?
Hi, I'm getting timeouts with Vidalia trying to connect to geoip.vidalia-project.net (and also with netcat). Is this a scheduled outage? GD _ Send e-mail faster without improving your typing skills. http://windowslive.com/online/hotmail?ocid=TXT_TAGLM_WL_hotmail_acq_speed_122008
Re: Phish filters on exit nodes
I've done as suggested by OtherGeoff and emailed the addresses found in the exit-node descriptions. One was an abuse@ address though, which may or may not get through to the right person. Thanks, GD
Re: Tor Desktop
Would I be right in thinking that these versions of Torbutton beyond 1.0.4.01 (the version on the Firefox addons pages) are just for those who can compile from source? GD