Re: [tor-relays] Tor plugin for Nagios
r...@goodvikings.com: I've recently started on developing a nagios plugin for tor, since a cursory google search didn't come up with anything I would describe as 'comprehensive.' Please have a look at check_tor.py: http://anonscm.debian.org/gitweb/?p=users/lunar/check_tor.git;a=blob;f=README;hb=HEAD It looks quite complementary with your probe. -- Lunar lu...@torproject.org signature.asc Description: Digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] ScrambleSuit maintenance question
Delton Barnes delton.bar...@mail.ru writes: Inexperienced Debian administrator here with a question about how to maintain the new obfsproxy/Tor for ScrambleSuit. I installed as follows: 1. Updated /etc/apt/sources.list (new lines prefixed with *): deb http://server.name.redacted/debian wheezy main contrib non-free *deb http://server.name.redacted/debian unstable main contrib non-free deb http://server.name.redacted/debian-security wheezy/updates main contrib non-free deb http://deb.torproject.org/torproject.org wheezy main *deb http://deb.torproject.org/torproject.org tor-nightly-master-wheezy main 2. Created apt.conf to prevent all packages from being pulled from unstable by default: echo 'APT::Default-Release stable;' /etc/apt/apt.conf 3. Edited torrc with following: ServerTransportPlugin obfs3,scramblesuit exec /usr/bin/obfsproxy managed 4. Installed the new packages: apt-get update apt-get -t unstable install obfsproxy apt-get upgrade -- Installed Tor nightly. 5. service restart tor My question: Is there a way to configure things so obfsproxy and Tor will later automatically be upgraded to a *stable* release that includes ScrambleSuit? And how to know when I need to upgrade obfsproxy and Tor? Hello Delton, you will need to wait till tor-0.2.5.1 becomes stable if you want to use scramblesuit with a stable Tor. Till then, please keep on using Tor nightlies. As far as your second question goes, unfortunately we don't have good upgrade processes yet. I suggest you do 'apt-get upgrade' every once in a while to get the latest nightlies of obfsproxy/tor. If there are any urgent upgrades that you need to perform I will send an email to tor-relays. Feel free to ask any other questions you have. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] New tor relay, some questions
Hi, I've been running a new tor relay for about a week now and I've got some questions. 1) I plan on running other services than tor on my server, including a (private) mail system. Other than the general possibility of tor having security holes and my server (and its IP address) being public and thus possibly target of attacks, are there security implications I should consider? 2) I would be interested to eventually run a directory/bandwith authority, so I read about them in [1] and [2], but the places seemed a bit odd (hidserv-perf branch in tor svn/torflow repo) so I thought I better ask here: Would I really just have to follow the steps in [1] to become a dirauth? Is there currently a need for auths, would contribution be welcomed? Thanks for your answers! Regards Tobias [1] https://svn.torproject.org/svn/tor/branches/hidserv-perf/doc/v3-authority-howto.txt [2] https://gitweb.torproject.org/torflow.git/blob/HEAD:/NetworkScanners/BwAuthority/README.BwAuthorities ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] New tor relay, some questions
On 03/02/2014 04:06 PM, Tobias Markus wrote: I've been running a new tor relay for about a week now Great. Thank you! 1) I plan on running other services than tor on my server, including a (private) mail system. Other than the general possibility of tor having security holes and my server (and its IP address) being public and thus possibly target of attacks, are there security implications I should consider? Unfortunately, many sites block Tor relay IPs regardless of their exit policy. So, if you share one IP between the relay and other services, your might be impacted. This is especially true for exit relays. 2) I would be interested to eventually run a directory/bandwith authority, so I read about them in [1] and [2], but the places seemed a bit odd (hidserv-perf branch in tor svn/torflow repo) so I thought I better ask here: Would I really just have to follow the steps in [1] to become a dirauth? Is there currently a need for auths, would contribution be welcomed? The offer is well appreciated. In the current design, directory authorities and bandwidth authorities play a very special role. There are several ideas on how to improve the situation and then open participation to the broader community, but for the time being, authorities can only be run by people very close to the core dev team. -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] TTTT
Dear list members, The next big data review regarding the Trying Trusted Tor Traceroutes project was initiated this week. It will probably take a while (weeks) before we have solid conclusions. We are very close to 100 complete runs from different IP's, in fact 99 right now. I hope that we will reach this goal very soon :-) We are not sure yet if we gathered enough data, but time will tell. We want to thank you for your support and if you want to make sure that we have more data in case the amount we collected turns out to be insufficient, then join us or keep running multiple rounds. Project: http://web.engr.illinois.edu/~das17/tor-traceroute_v1.html Results: http://datarepo.cs.illinois.edu/relay_scoreboard.html I make sure that this list is getting the results from the data review before anyone else. -- Mit freundlichen Grüssen / Sincerely yours Sebastian Urbach -- Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. -- Benjamin Franklin (1706 - 1790), Inventor, journalist, printer, diplomat and statesman ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] TTTT
Is it necessary to run it by scripts or is it possible to create a exe or dmg file -Original Message- From: tor-relays [mailto:tor-relays-boun...@lists.torproject.org] On Behalf Of Sebastian Urbach Sent: Sunday, March 2, 2014 2:10 PM To: tor-relays@lists.torproject.org Subject: [tor-relays] Dear list members, The next big data review regarding the Trying Trusted Tor Traceroutes project was initiated this week. It will probably take a while (weeks) before we have solid conclusions. We are very close to 100 complete runs from different IP's, in fact 99 right now. I hope that we will reach this goal very soon :-) We are not sure yet if we gathered enough data, but time will tell. We want to thank you for your support and if you want to make sure that we have more data in case the amount we collected turns out to be insufficient, then join us or keep running multiple rounds. Project: http://web.engr.illinois.edu/~das17/tor-traceroute_v1.html Results: http://datarepo.cs.illinois.edu/relay_scoreboard.html I make sure that this list is getting the results from the data review before anyone else. -- Mit freundlichen Grüssen / Sincerely yours Sebastian Urbach -- Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. -- Benjamin Franklin (1706 - 1790), Inventor, journalist, printer, diplomat and statesman ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] TTTT
Hi, I'm sorry but there is no Windows executable available or planned due to the insignificant number of Windows relays. Is it necessary to run it by scripts or is it possible to create a exe or dmg file -Original Message- From: tor-relays [mailto:tor-relays-boun...@lists.torproject.org] On Behalf Of Sebastian Urbach Sent: Sunday, March 2, 2014 2:10 PM To: tor-relays@lists.torproject.org Subject: [tor-relays] Dear list members, The next big data review regarding the Trying Trusted Tor Traceroutes project was initiated this week. It will probably take a while (weeks) before we have solid conclusions. We are very close to 100 complete runs from different IP's, in fact 99 right now. I hope that we will reach this goal very soon :-) We are not sure yet if we gathered enough data, but time will tell. We want to thank you for your support and if you want to make sure that we have more data in case the amount we collected turns out to be insufficient, then join us or keep running multiple rounds. Project: http://web.engr.illinois.edu/~das17/tor-traceroute_v1.html Results: http://datarepo.cs.illinois.edu/relay_scoreboard.html I make sure that this list is getting the results from the data review before anyone else. -- Mit freundlichen Grüssen / Sincerely yours Sebastian Urbach -- Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. -- Benjamin Franklin (1706 - 1790), Inventor, journalist, printer, diplomat and statesman ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] TTTT
On Mon, Mar 3, 2014 at 6:10 AM, Sebastian Urbach sebast...@urbach.orgwrote: We are very close to 100 complete runs from different IP's, in fact 99 right now. I hope that we will reach this goal very soon :-) Decided to run it on another 3 servers today, at different data centres. All show similar to below. (summary: https not working to retrieve archive). root@aqserver:~/TorTraceroute# wget https://web.engr.illinois.edu/~das17/traceroute-from-tor-relays-4493e7c21199.tar.bz2 --2014-03-03 09:35:06-- https://web.engr.illinois.edu/~das17/traceroute-from-tor-relays-4493e7c21199.tar.bz2 Resolving web.engr.illinois.edu (web.engr.illinois.edu)... 130.126.112.112, 130.126.112.114 Connecting to web.engr.illinois.edu (web.engr.illinois.edu)|130.126.112.112|:443... connected. HTTP request sent, awaiting response... 403 Forbidden 2014-03-03 09:35:14 ERROR 403: Forbidden. root@aqserver:~/TorTraceroute# wget https://web.engr.illinois.edu/~das17/traceroute-from-tor-relays-4493e7c21199.tar.bz2 --2014-03-03 09:35:21-- https://web.engr.illinois.edu/~das17/traceroute-from-tor-relays-4493e7c21199.tar.bz2 Resolving web.engr.illinois.edu (web.engr.illinois.edu)... 130.126.112.114, 130.126.112.112 Connecting to web.engr.illinois.edu (web.engr.illinois.edu)|130.126.112.114|:443... connected. HTTP request sent, awaiting response... 403 Forbidden 2014-03-03 09:35:32 ERROR 403: Forbidden. root@aqserver:~/TorTraceroute# wget http://web.engr.illinois.edu/~das17/traceroute-from-tor-relays-4493e7c21199.tar.bz2 --2014-03-03 09:35:37-- http://web.engr.illinois.edu/~das17/traceroute-from-tor-relays-4493e7c21199.tar.bz2 Resolving web.engr.illinois.edu (web.engr.illinois.edu)... 130.126.112.114 Connecting to web.engr.illinois.edu (web.engr.illinois.edu)|130.126.112.114|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 3900916 (3.7M) [application/x-tar] Saving to: `traceroute-from-tor-relays-4493e7c21199.tar.bz2' 100%[==] 3,900,916288K/s in 15s 2014-03-03 09:35:59 (261 KB/s) - `traceroute-from-tor-relays-4493e7c21199.tar.bz2' saved [3900916/3900916] -- Sanjeev Gupta +65 98551208 http://www.linkedin.com/in/ghane ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
