Re: [tor-relays] which browser for BSD systems?
and...@torproject.is wrote:
On Fri, Jan 24, 2014 at 09:43:04AM -0600, benn...@sdf.org wrote 1.8K bytes in
0 lines about:
: and a couple of other add-ons. The tor project's web site still has no
: browser available for the {Dragonfly,Free,Net,Open}BSD, so what I'd like to
: know is which browser and security add-ons can the tor community recommend
: for use with tor?
Tor Browser works fine in FreeBSD 9 and 10.
Thanks, Andrew. However, looking through the choices in
https://www.torproject.org/dist/torbrowser/3.5.1/
the only BSD-type versions I see as the Mac OS X versions. My past
experiences with attempting to build Mac OS X programs under FreeBSD have
been uniformly bad. Would you please direct me to a version that builds
correctly under FreeBSD 9.2? Which version have you seen work fine under
FreeBSD 9 and/or 10?
Scott Bennett, Comm. ASMELG, CFIAG
**
* Internet: bennett at sdf.org *or* bennett at freeshell.org *
**
* A well regulated and disciplined militia, is at all times a good *
* objection to the introduction of that bane of all free governments *
* -- a standing army. *
*-- Gov. John Hancock, New York Journal, 28 January 1790 *
**
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] 0.2.4.20 logging duplicate messages
Along with my recent OS upgrade I have also updated my tor relay from 0.2.4.3-alpha to 0.2.4.20. The latter version write two identical copies of every message to the log file. I have only one uncommented Log line in my torrc, which is Log notice file /var/log/tor/notices.log but every single message is getting written to the file twice. Jan 27 19:31:58.213 [notice] Tor 0.2.4.20 (git-3cb5c70beec5bf46) opening log file. Jan 27 19:31:58.214 [notice] Tor 0.2.4.20 (git-3cb5c70beec5bf46) opening log file. Jan 27 19:31:58.220 [notice] Parsing GEOIP IPv4 file /usr/local/share/tor/geoip. Jan 27 19:31:58.220 [notice] Parsing GEOIP IPv4 file /usr/local/share/tor/geoip. Jan 27 19:31:58.325 [notice] Parsing GEOIP IPv6 file /usr/local/share/tor/geoip6. Jan 27 19:31:58.325 [notice] Parsing GEOIP IPv6 file /usr/local/share/tor/geoip6. Jan 27 19:31:58.360 [notice] Configured to measure statistics. Look for the *-stats files that will first be written to the data directory in 24 hours from now. Jan 27 19:31:58.360 [notice] Configured to measure statistics. Look for the *-stats files that will first be written to the data directory in 24 hours from now. Jan 27 19:31:58.513 [notice] Your Tor server's identity key fingerprint is 'MYCROFTsOtherChild 023220505A550D6FDF0C20FF7C48E66BA06A49A6' Jan 27 19:31:58.513 [notice] Your Tor server's identity key fingerprint is 'MYCROFTsOtherChild 023220505A550D6FDF0C20FF7C48E66BA06A49A6' Jan 27 19:32:00.387 [notice] We now have enough directory information to build circuits. Jan 27 19:32:00.387 [notice] We now have enough directory information to build circuits. Jan 27 19:32:00.388 [notice] Bootstrapped 80%: Connecting to the Tor network. Jan 27 19:32:00.388 [notice] Bootstrapped 80%: Connecting to the Tor network. Jan 27 19:32:01.399 [notice] Circuit handshake stats since last time: 0/0 TAP, 0/0 NTor. Jan 27 19:32:01.399 [notice] Circuit handshake stats since last time: 0/0 TAP, 0/0 NTor. Jan 27 19:32:01.815 [notice] Bootstrapped 85%: Finishing handshake with first hop. Jan 27 19:32:01.815 [notice] Bootstrapped 85%: Finishing handshake with first hop. Jan 27 19:32:02.287 [notice] Bootstrapped 90%: Establishing a Tor circuit. Jan 27 19:32:02.287 [notice] Bootstrapped 90%: Establishing a Tor circuit. Jan 27 19:32:03.671 [notice] Tor has successfully opened a circuit. Looks like client functionality is working. Jan 27 19:32:03.671 [notice] Tor has successfully opened a circuit. Looks like client functionality is working. Jan 27 19:32:03.672 [notice] Bootstrapped 100%: Done. Jan 27 19:32:03.672 [notice] Bootstrapped 100%: Done. Jan 27 19:32:03.672 [notice] Now checking whether ORPort 67.175.219.175:32323 and DirPort 67.175.219.175:32326 are reachable... (this may take up to 20 minutes -- look for log messages indicating success) Jan 27 19:32:03.672 [notice] Now checking whether ORPort 67.175.219.175:32323 and DirPort 67.175.219.175:32326 are reachable... (this may take up to 20 minutes -- look for log messages indicating success) Jan 27 19:32:06.509 [notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor. Jan 27 19:32:06.509 [notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor. Jan 27 19:32:07.093 [notice] Self-testing indicates your DirPort is reachable from the outside. Excellent. Jan 27 19:32:07.093 [notice] Self-testing indicates your DirPort is reachable from the outside. Excellent. Jan 27 19:32:25.752 [notice] Performing bandwidth self-test...done. Jan 27 19:32:25.752 [notice] Performing bandwidth self-test...done. Jan 27 19:33:02.567 [notice] We'd like to launch a circuit to handle a connection, but we already have 32 general-purpose client circuits pending. Waiting until some finish. Jan 27 19:33:02.567 [notice] We'd like to launch a circuit to handle a connection, but we already have 32 general-purpose client circuits pending. Waiting until some finish. Jan 27 20:32:01.397 [notice] Heartbeat: Tor's uptime is 1:00 hours, with 7 circuits open. I've sent 2.93 MB and received 7.98 MB. Jan 27 20:32:01.397 [notice] Heartbeat: Tor's uptime is 1:00 hours, with 7 circuits open. I've sent 2.93 MB and received 7.98 MB. Jan 27 20:32:01.397 [notice] Average packaged cell fullness: 87.404% Jan 27 20:32:01.397 [notice] Average packaged cell fullness: 87.404% Jan 27 20:32:01.397 [notice] TLS write overhead: 9% Jan 27 20:32:01.397 [notice] TLS write overhead: 9% Jan 27 20:32:02.394 [notice] Circuit handshake stats since last time: 25/25 TAP, 13/13 NTor. Jan 27 20:32:02.394 [notice] Circuit handshake stats since last time: 25/25 TAP, 13/13 NTor. ...and so on. Is there some way to stop this behavior and get only a single copy of each message? Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at sdf.org *or* bennett at
Re: [tor-relays] 0.2.4.20 logging duplicate messages
On Tue, Jan 28, 2014 at 03:10:57AM -0600, Scott Bennett wrote: Along with my recent OS upgrade I have also updated my tor relay from 0.2.4.3-alpha to 0.2.4.20. The latter version write two identical copies of every message to the log file. I have only one uncommented Log line in my torrc, which is Log notice file /var/log/tor/notices.log but every single message is getting written to the file twice. Which package did you install? If it was the deb, look at /usr/share/tor/tor-service-defaults-torrc (these are the default defaults, if you will). --Roger ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] which browser for BSD systems?
On Tue, Jan 28, 2014 at 02:20:46AM -0600, benn...@sdf.org wrote 1.6K bytes in 0 lines about: : the only BSD-type versions I see as the Mac OS X versions. My past : experiences with attempting to build Mac OS X programs under FreeBSD have : been uniformly bad. Would you please direct me to a version that builds : correctly under FreeBSD 9.2? Which version have you seen work fine under : FreeBSD 9 and/or 10? I don't build it. I just download the linux 64-bit version and run it. -- Andrew http://tpo.is/contact pgp 0x6B4D6475 ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] which browser for BSD systems?
and...@torproject.is wrote: On Tue, Jan 28, 2014 at 02:20:46AM -0600, benn...@sdf.org wrote 1.6K bytes in 0 lines about: : the only BSD-type versions I see as the Mac OS X versions. My past : experiences with attempting to build Mac OS X programs under FreeBSD have : been uniformly bad. Would you please direct me to a version that builds : correctly under FreeBSD 9.2? Which version have you seen work fine under : FreeBSD 9 and/or 10? I don't build it. I just download the linux 64-bit version and run it. Do you have to tag it with brandelf(1)? BTW, I forgot to mention I'm running i386, not amd64, although I plan to (try to) switch to amd64 in the near future. Assuming that the tor browser is still a fork off of firefox from a few years ago, then I'd still like to build it using local tuning. firefox is such a CPU hog that I'd really like to get the most out of compiler optimization of it. Scott Bennett, Comm. ASMELG, CFIAG ** * Internet: bennett at sdf.org *or* bennett at freeshell.org * ** * A well regulated and disciplined militia, is at all times a good * * objection to the introduction of that bane of all free governments * * -- a standing army. * *-- Gov. John Hancock, New York Journal, 28 January 1790 * ** ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] which browser for BSD systems?
On Tue, Jan 28, 2014 at 06:34:49AM -0600, Scott Bennett wrote: Assuming that the tor browser is still a fork off of firefox from a few years ago, then I'd still like to build it using local tuning. firefox is such a CPU hog that I'd really like to get the most out of compiler optimization of it. https://gitweb.torproject.org/builders/tor-browser-bundle.git https://gitweb.torproject.org/builders/tor-browser-bundle.git/blob/HEAD:/gitian/README.build You are in for some fun. :) But before you get too angry at Mike, read through https://blog.torproject.org/category/tags/cyberpeace to see why it's the way it is. (Also, why is this thread on tor-relays? It seems to have nothing to do with running relays.) --Roger ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Using syslog for monitoring bridges
i found this how to. No talk about Tor, but is a north. https://blog.logentries.com/2014/01/how-to-send-log-data-via-a-proxy-server-using-rsyslog/ share your experiences with us. =] On Thu, Jan 23, 2014 at 5:34 PM, Andreas Fritzel andreasfritzel1...@yahoo.com wrote: Hey all, In two different countries I run 3 Tor bridges for a while now. For monitoring, I want to quit using the local filesystem for storing files, filled by syslog and be able to store the syslog info on a remote system. This is done easily with rsyslog[1], but I want to store it at home without the link between the three bridges and my home IP. So, I was thinking about sending it with rsyslog over TCP to a Tor Hidden Service. Is there anyone who can help me out with this? I was thinking about using SOCKS, but it didn't work out :(. Andreas [1] http://www.rsyslog.com/doc/manual.html ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays -- Noilson Caio Teixeira de Araújo https://ncaio.wordpress http://ncaio.ithub.com.br.comhttp://ncaio.ithub.com.br https://br.linkedin.com/in/ncaio http://br.linkedin.com/in/ncaio https://twitter.com/noilsoncaio ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Problems with domestic ISP blocking publicly listed relays
Hi all Wondered if anybody could help out/advise as to what’s happened here… I’m based in UK and have domestic internet with Virgin Media. This service is fibre optic based - config: 30Mbps d/l 2Mbps u/l [mine is the SLOWEST package!] Last year I finally configured a Dell server (running Debian 7.3 - wheezy) to run a Tor relay (0.2.3.25) Everything has been running fine except for the last few weeks I’ve noticed a few irregularities. The first one has been Tor itself where I have noticed (using Arm to monitor) that it has been downloading far more data than uploading. A ratio of say 5:1 — it hasn’t always been this way! The other is my general difficulty in accessing certain web sites online (that once worked) e.g. Access to lovefim.com this weekend has now resulted in no longer able to stream and watch films. I can log onto system but if I try and stream I get the error message “INVALID LOCATION. Sorry, but the requested content is not available in your current location.” Opened a service desk ticket but the response was “you are trying to stream from outside the UK” WTF? My IP provided by my ISP has been the same all this time (82.42.215.16) I have spoken with them I would have to switch off for 48hrs and MAY NOT (in fact I was told “probably not”) be assigned a different one! SO… Can using a Tor relay result in your IP getting a “bad” flag? Is there anyway of running a relay where you “hide” your IP? Any advise would be greatly appreciated. Best wishes, Paul ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
Hi Paul The first one has been Tor itself where I have noticed (using Arm to monitor) that it has been downloading far more data than uploading. A ratio of say 5:1 — it hasn’t always been this way! [..] Access to lovefim.com this weekend has now resulted in no longer able to stream and watch films. I can log onto system but if I try and stream I get the error message “INVALID LOCATION. Sorry, but the requested content is not available in your current location.” Opened a service desk ticket but the response was “you are trying to stream from outside the UK” WTF? Did you configure your browser to use your local Tor daemon as SOCKS proxy? Would explain both the upload/download ratio (normal web browsing is async) and a foreign (Tor exit) IP Renke signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
If possible I'd suggest changing the MAC address of your router or swapping router entirely, unless you are using on of their 'super' hubs with a combined modem/router. This will force a new IP address on Virgin Media. On 28 Jan 2014 19:26, renke brausse re...@mobtm.com wrote: Hi Paul The first one has been Tor itself where I have noticed (using Arm to monitor) that it has been downloading far more data than uploading. A ratio of say 5:1 -- it hasn't always been this way! [..] Access to lovefim.com this weekend has now resulted in no longer able to stream and watch films. I can log onto system but if I try and stream I get the error message INVALID LOCATION. Sorry, but the requested content is not available in your current location. Opened a service desk ticket but the response was you are trying to stream from outside the UK WTF? Did you configure your browser to use your local Tor daemon as SOCKS proxy? Would explain both the upload/download ratio (normal web browsing is async) and a foreign (Tor exit) IP Renke ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
On Tue, 28 Jan 2014 19:02:32 + Paul Blakeman blakey...@mac.com allegedly wrote: SO… Can using a Tor relay result in your IP getting a “bad” flag? Yes. Running a Tor node on an IP address you share with your domestic usage can result in you being unable to reach sites which blacklist Tor nodes. This sometimes only happens with exit nodes, but some site operators are even more draconian than others and just block all Tor IPs. This can be particularly unfortunate if the site in question is your bank. Is there anyway of running a relay where you “hide” your IP? No. Tor relay IP addresses have to be visible to be reachable. Mick - Mick Morgan gpg fingerprint: FC23 3338 F664 5E66 876B 72C0 0A1F E60B 5BAD D312 http://baldric.net - signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
Renke It is a standalone server, therefore no browser runs on the machine. On 28 Jan 2014, at 19:22, renke brausse re...@mobtm.com wrote: Hi Paul The first one has been Tor itself where I have noticed (using Arm to monitor) that it has been downloading far more data than uploading. A ratio of say 5:1 — it hasn’t always been this way! [..] Access to lovefim.com this weekend has now resulted in no longer able to stream and watch films. I can log onto system but if I try and stream I get the error message “INVALID LOCATION. Sorry, but the requested content is not available in your current location.” Opened a service desk ticket but the response was “you are trying to stream from outside the UK” WTF? Did you configure your browser to use your local Tor daemon as SOCKS proxy? Would explain both the upload/download ratio (normal web browsing is async) and a foreign (Tor exit) IP Renke ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
It is a standalone server, therefore no browser runs on the machine. Tor can be configured to act as proxy, not restricted to local connections. I'm not sure about the defaults but typically the SOCKS proxy is listening on [torserver]:9050. But as you're not aware of this option my idea in the previous mail was most likely incorrect :) Renke signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] which browser for BSD systems?
On Tue, Jan 28, 2014 at 12:04:53PM +, and...@torproject.is wrote 0.7K bytes in 0 lines about: : I don't build it. I just download the linux 64-bit version and run it. Ok, I tried 3.5 today and it fails, as you said. I opened a ticket and will update progress there, https://trac.torproject.org/projects/tor/ticket/10763 -- Andrew http://tpo.is/contact pgp 0x6B4D6475 ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
mick: On Tue, 28 Jan 2014 19:02:32 + Paul Blakeman blakey...@mac.com allegedly wrote: SO… Can using a Tor relay result in your IP getting a “bad” flag? Yes. Running a Tor node on an IP address you share with your domestic usage can result in you being unable to reach sites which blacklist Tor nodes. This sometimes only happens with exit nodes, but some site operators are even more draconian than others and just block all Tor IPs. This can be particularly unfortunate if the site in question is your bank. This is correct, *if* you are running a Tor relay (even a non-exit). And unfortunate. Is there anyway of running a relay where you “hide” your IP? No. Tor relay IP addresses have to be visible to be reachable. This is not fully correct. You can run your Tor relay as a Tor Bridge, in which case its IP is not visible in the public node directory. We only hand it out to people who solve a captcha on https://bridges.torproject.org/bridges We're also looking for people to run Obfsproxy bridges, which are also unlisted but additionally obscure their traffic so the traffic does not look like a Tor. As far as I know, we don't provide packages for this yet, but if you are technically inclined, you can set one up manually on Linux by following these instructions: https://www.torproject.org/projects/obfsproxy-instructions.html.en#instructions -- Mike Perry signature.asc Description: Digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Problems with domestic ISP blocking publicly listed relays
On Jan 28, 2014, at 20:02 , Paul Blakeman wrote: The first one has been Tor itself where I have noticed (using Arm to monitor) that it has been downloading far more data than uploading. A ratio of say 5:1 — it hasn’t always been this way! I see that too from time to time. At the times that download is much higher than upload, do you also see many more inbound connections, more handshakes (in the log) and high CPU usage? I do. Sometimes it goes on for up to 10 hours. (I run a low end box and it sometimes makes me lose Guard, HSDir or even Stable.) First I thought it was some kind of DoS, but I think it may be caused by people using bittorrent through Tor, and the excess download data is residue of abandoned connections. My IP provided by my ISP has been the same all this time (82.42.215.16) I have spoken with them I would have to switch off for 48hrs and MAY NOT (in fact I was told “probably not”) be assigned a different one! It may help to change the MAC address on the WAN port on your router. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
