Re: [tor-relays] Throughput changes?
On 01/13/2014 11:40 PM, I wrote: > The question is from an ab initio in Linux, servers and Tor guts and > Tor's security integrity. > I am asking from the point of view of running more than one Tor thingy > on one server at one ip address. > It has been said it is bad to run a Tails torrent and a relay or > exit on the one VPS. > Plus I don't know the actual steps to setting most things up on a > server by command line. You can run up to 2 Tor processes per IP address. Apart from obvious resource restrictions, you can run as many Tor processes on any machine as you like. I don't see a problem with seeding Tails and running a Tor relay on the same VPS. > The second part was asking if there is anyway to control the cpu or whatever > load draws attention to Tor. Only indirectly, by limiting its bandwidth. -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Tor listenes to UDP ports?
Quoth Wollomatic , on 2014-01-14 00:29:39 +0100: > Since I thought Tor only uses TCP may this be a security problem with my > server? Since UDP is a connectionless datagram protocol, there is no distinguished "listening" state. It seems more likely that those are sockets for outgoing DNS requests. Have you monitored the traffic on those ports to see what it is? ---> Drake Wilson ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Tor listenes to UDP ports?
Dear all, i run a tor relay (version 0.2.4.20) on debian wheezy. Today I noticed Tor uses some UDP ports: # netstat -tulpen tcp0 0 0.0.0.0:90300.0.0.0:* LISTEN 0 4669231126643/tor tcp0 0 0.0.0.0:90010.0.0.0:* LISTEN 0 4669231026643/tor [...] udp0 0 0.0.0.0:33915 0.0.0.0:* 1044669231526643/tor udp0 0 0.0.0.0:56554 0.0.0.0:* 1044669231626643/tor udp0 0 0.0.0.0:34821 0.0.0.0:* 1044669231726643/tor udp0 0 0.0.0.0:49463 0.0.0.0:* 1044669231426643/tor Since I thought Tor only uses TCP may this be a security problem with my server? Best regards, Wollomatic -- PGP 0xC1BF1482 signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Throughput changes?
Moritz, Inarticulate I may be... but my intention is to expand Tor's contribution to people power. The question is from an ab initio in Linux, servers and Tor guts and Tor's security integrity. I am asking from the point of view of running more than one Tor thingy on one server at one ip address. It has been said it is bad to run a Tails torrent and a relay or exit on the one VPS. Plus I don't know the actual steps to setting most things up on a server by command line. The second part was asking if there is anyway to control the cpu or whatever load draws attention to Tor. It seems Tor would be more acceptable on more VPSs if it reliably did not cause the operators problems. After being suspended for resource abuse I asked an operator to help me meet their requirements to which they said they could only do so much about it but not prevent it. Robert >> How would I know that it is alright to run more than one instance of >> Tor? > > VPS providers usually don't restrict how many processes you run. Some > don't like if you use too many resources, as overselling is part of > their business model. But how would I know? When in doubt, ask. In > general, don't push it too hard. You get what you pay for, and you can't > expect to get unlimited resources for the price of a donut. > > -- > Moritz Bartl ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Throughput changes?
On 01/13/2014 08:19 PM, I wrote: > How would I know that it is alright to run more than one instance of Tor? VPS providers usually don't restrict how many processes you run. Some don't like if you use too many resources, as overselling is part of their business model. But how would I know? When in doubt, ask. In general, don't push it too hard. You get what you pay for, and you can't expect to get unlimited resources for the price of a donut. -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Throughput changes?
On 01/13/2014 08:48 PM, Thomas Themel wrote: > Still, any theories on how that would reduce > my per-bandwidth CPU consumption? No clue. Magic is happening inside Tor. :) -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Throughput changes?
Hi Moritz, Excerpts from Moritz Bartl's message of Mon Jan 13 19:30:05 +0100 2014: > First of all, if you don't limit your relay bandwidth and hit CPU > limits, this will have a negative impact for Tor users. So you should > always make sure that CPU (single core!) usage stays well below 100%. An > indicator of a CPU-bound problem are log entries like Ah, thanks, I wasn't aware of that. I'll have to slow things down to stay within bandwidth limits now, anyway. > "Failed to hand off onionskin. Closing. Your computer is too slow to > handle this many circuit creation requests!" None of these recently, though apparently there were some in autumn. I was probably not really overle > > Judging from Atlas, your relay might have just gotten the Stable flag. > For details, see https://blog.torproject.org/blog/lifecycle-of-a-new-relay That may well have happened, the machine running was quite crash prone and recently had a rare stable spell. Still, any theories on how that would reduce my per-bandwidth CPU consumption? ciao, -- [*Thomas Themel*] As an admin I use the Reagan Rule: [Albulastrasse 52] I Just Say No. [ CH-8048 Zürich ] [*+41 78 9070988*]--yossarian on full-disclousre ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Throughput changes?
Moritz, How would I know that it is alright to run more than one instance of Tor? Is it possible to prevent cpu use from causing VPS businesses threatening suspension? Robert > First of all, if you don't limit your relay bandwidth and hit CPU > limits, this will have a negative impact for Tor users. So you should > always make sure that CPU (single core!) usage stays well below 100%. An > indicator of a CPU-bound problem are log entries like > > "Failed to hand off onionskin. Closing. Your computer is too slow to > handle this many circuit creation requests!" > > Judging from Atlas, your relay might have just gotten the Stable flag. > For details, see > https://blog.torproject.org/blog/lifecycle-of-a-new-relay > ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] recent OVH feedback?
Alan, They did nothing about twelve exits without the restricted port list for two months possibly because they were Windows ones through an agent. It was unluckily during the botnet problem and they used to go off daily I think because of the cpu load. OVH must be have able to discern that they are exits yet when a copyright threat came in they just moved to another ip address. I can't say whether the agent got it or whether OVH did. I only stopped them because the agents were not exactly competent and I couldn't juggle twelve stopping so many times. They might have been stopping the VPSs to add customers. OVH seems to be very fast but pricey if you deal with them directly. Mine were $9Aud for unmetered volume. Robert > -Original Message- > From: alantur...@riseup.net > Sent: Mon, 13 Jan 2014 14:19:25 + > To: tor-relays@lists.torproject.org > Subject: [tor-relays] recent OVH feedback? > > Dear all, > I am currently running a fairly large tor relay (no exit, due to OVH's > restrictive policies) and would like to know if other people have made > experiences with running non-exit relays using OVH's services. > Did any contracts get canceled or did you receive any kind of (legal) > threats by OVH for doing so? Have you made positive experience with OVH > regarding non-exit relays? I'd be grateful for information. > regards, > s. > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Throughput changes?
On 01/13/2014 04:37 PM, Thomas Themel wrote: > I've been running two nodes on the same machine for some time because I was > unable to get enough throughput to blow through my bandwidth budget > otherwise. > However, something seems to have changed recently, since right now I'm > blasting > through about double my usual bandwidth (~25 MB/s) with the two tor jobs at > only ~60% CPU usage each while previously it was always CPU limited. This > doesn't seem to correlate with any software updates on the machine. First of all, if you don't limit your relay bandwidth and hit CPU limits, this will have a negative impact for Tor users. So you should always make sure that CPU (single core!) usage stays well below 100%. An indicator of a CPU-bound problem are log entries like "Failed to hand off onionskin. Closing. Your computer is too slow to handle this many circuit creation requests!" Judging from Atlas, your relay might have just gotten the Stable flag. For details, see https://blog.torproject.org/blog/lifecycle-of-a-new-relay -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Throughput changes?
Hi, I've been running two nodes on the same machine for some time because I was unable to get enough throughput to blow through my bandwidth budget otherwise. However, something seems to have changed recently, since right now I'm blasting through about double my usual bandwidth (~25 MB/s) with the two tor jobs at only ~60% CPU usage each while previously it was always CPU limited. This doesn't seem to correlate with any software updates on the machine. Here's atlas: https://atlas.torproject.org/#details/3DD2523F1B241F01D54818F327714CDA7F54238B ciao, -- [*Thomas Themel*] [Albulastrasse 52] To begin with, GNU will be a kernel [...] [ CH-8048 Zürich ] - RMS announcing GNU in 1983 [*+41 78 9070988*] ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] recent OVH feedback?
I ran an non-exit relay on an OVH dedi for months and no one batted an eyelid. good luck On 13 Jan 2014 14:26, "Alan Turing" wrote: > Dear all, > I am currently running a fairly large tor relay (no exit, due to OVH's > restrictive policies) and would like to know if other people have made > experiences with running non-exit relays using OVH's services. > Did any contracts get canceled or did you receive any kind of (legal) > threats by OVH for doing so? Have you made positive experience with OVH > regarding non-exit relays? I'd be grateful for information. > regards, > s. > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] recent OVH feedback?
Dear all, I am currently running a fairly large tor relay (no exit, due to OVH's restrictive policies) and would like to know if other people have made experiences with running non-exit relays using OVH's services. Did any contracts get canceled or did you receive any kind of (legal) threats by OVH for doing so? Have you made positive experience with OVH regarding non-exit relays? I'd be grateful for information. regards, s. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
