Re: [tor-relays] oniontip.com
* on the Thu, Aug 28, 2014 at 08:31:36PM -0700, Mike Perry wrote: > 1. It should allow me to select if I want to donate only to nodes that > have the Exit flag. Running an exit is way more involved (and often more > expensive) than running a normal node, and I think it would be good to > give folks the option to target their donation in this way. And perhaps > encourage it as the default donation mode. > > 2. It also already seems to have GeoIP information, at least on the > country level. There are all sorts of interesting selectors that could > be done with this. You could donate to relays in countries in inverse > proportion to the number of relays they have, to encourage > jurisdictional diversity, for example. Or more simply, just pick a > country. This one is admittedly less cool and more complicated to figure > out than just the Exit vs non-exit thing, though. (Do you also weight > countries per-capita? Per internet user? Per Tor user? etc). You already seem able to do stuff like, filter based on country and Exit status, and then donate only to those nodes that are listed. -- Mike Cardwell https://grepular.com https://emailprivacytester.com OpenPGP Key35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F XMPP OTR Key 8924 B06A 7917 AAF3 DBB1 BF1B 295C 3C78 3EF1 46B4 signature.asc Description: Digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] oniontip.com
Thanks everyone for all the feedback I've received about OnionTip. It was originally created in a rush during a hackathon so there is definitely room for improvement. Mike Perry, as Mike Cardwell has said, it is currently possible to select a subset of relays to receive donations by using the filters (Country, Exit flag, Guard flag) at the the top of the OnionTip page. I'd like to expand these filters and maybe tweak the defaults to provide a greater share to exits. Exit bandwidth is more valuable to the network, and I believe it should be incentivised accordingly. I completely agree that it's important the service and its payments are externally auditable. From an implementation point of view, when a user filters a particular set of relays and clicks the donate button, a new bitcoin keypair and address is derived and stored in the database along with the list of relays they've selected. Creating a new address for each donation is the simplest way of ensuring a users donation goes to the correct set of relays they select. Forwarding the donation directly from that one-time-use address to the receiving relay operators also allows the user to easily and immediately confirm on the blockchain that their donation was forwarded correctly. From an external point of view, next week I'll add a page to the site where anyone can view all previously sent transactions. I'll also publish the master public key which corresponds to the addresses I'm generating along with a script to confirm they are being generated without any tricks. There's a few other issues in the current implementation which I have outlined on the Github repo (https://github.com/DonnchaC/oniontip/issues). I'll send a post to the list early next week with my proposed solutions and and look for some feedback before I implement them. Thanks again to everyone for the feedback and of course for donating to and supporting Tor relay operators. Donncha On Fri, 2014-08-29 at 10:02 +0100, Mike Cardwell wrote: > * on the Thu, Aug 28, 2014 at 08:31:36PM -0700, Mike Perry wrote: > > > 1. It should allow me to select if I want to donate only to nodes that > > have the Exit flag. Running an exit is way more involved (and often more > > expensive) than running a normal node, and I think it would be good to > > give folks the option to target their donation in this way. And perhaps > > encourage it as the default donation mode. > > > > 2. It also already seems to have GeoIP information, at least on the > > country level. There are all sorts of interesting selectors that could > > be done with this. You could donate to relays in countries in inverse > > proportion to the number of relays they have, to encourage > > jurisdictional diversity, for example. Or more simply, just pick a > > country. This one is admittedly less cool and more complicated to figure > > out than just the Exit vs non-exit thing, though. (Do you also weight > > countries per-capita? Per internet user? Per Tor user? etc). > > You already seem able to do stuff like, filter based on country and > Exit status, and then donate only to those nodes that are listed. > > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays -- PGP: 7EFB DDE8 FD21 11AE A7BE 1AA6 3B0D 706A 7FBF ED86 This e-mail should be PGP signed, which allows you to verify its authenticity. If it isn't, it may be fake. Check with me! Feel free to encrypt anything you send to me using my key. signature.asc Description: This is a digitally signed message part ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Key expired problem - Ubuntu 12.04 LTS
I'm experiencing difficulties running apt-get update as it complaints that the repository's key is out of date. Here's the error: W: A error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://deb.torproject.org precise Release: The following signatures were invalid: KEYEXPIRED 1409325681 KEYEXPIRED 1409325681 KEYEXPIRED 1409325681 KEYEXPIRED 1409325681 W: Failed to fetch http://deb.torproject.org/torproject.org/dists/precise/Release W: Some index files failed to download. They have been ignored, or old ones used instead. When I set the relay up, I used Option Two on this page https://www.torproject.org/docs/debian to install tor and deb.torproject.org-keyring . Updates worked for 10 weeks or so and now don't. I've tried going through the same processes again, to no avail. Any assistance very gratefully received. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Key expired problem - Ubuntu 12.04 LTS
Sounds like... https://trac.torproject.org/projects/tor/ticket/12994 On Fri, Aug 29, 2014 at 12:23 PM, kingqueen wrote: > I'm experiencing difficulties running apt-get update as it complaints > that the repository's key is out of date. Here's the error: > > W: A error occurred during the signature verification. The repository is not > updated and the previous index files will be used. GPG error: > http://deb.torproject.org precise Release: The following signatures were > invalid: KEYEXPIRED 1409325681 KEYEXPIRED 1409325681 KEYEXPIRED 1409325681 > KEYEXPIRED 1409325681 > > W: Failed to fetch > http://deb.torproject.org/torproject.org/dists/precise/Release > > W: Some index files failed to download. They have been ignored, or old ones > used instead. > > When I set the relay up, I used Option Two on this page > https://www.torproject.org/docs/debian to install tor and > deb.torproject.org-keyring . Updates worked for 10 weeks or so and now > don't. I've tried going through the same processes again, to no avail. > > Any assistance very gratefully received. > > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Authdir is rejecting routers in this range
Hi all, I rented a dedicated server to run a tor relay (100Mbit/s) to contribute to the network. On this machine, tor gives messages like these on startup: http status 400 ("Authdir is rejecting routers in this range.") response from dirserver '<...>'. Please correct. The server is hosted with https://fdcservers.net/. Did I just get unlucky in picking a provider? Is there a way to check these things before spending money on setup + monthly fees? Best regards, Davíð signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Authdir is rejecting routers in this range
Yes, it's very likely that that FDCservers is getting rejected, because they have been doing a lot of bad things too tor the last months (the relay early attack was hosted in an ip range at them, and yesterday i heard something else on this mailing list about FDCservers doing weird pings to a server On 2014-08-29 23:51, Davíð Steinn Geirsson wrote: Hi all, I rented a dedicated server to run a tor relay (100Mbit/s) to contribute to the network. On this machine, tor gives messages like these on startup: http status 400 ("Authdir is rejecting routers in this range.") response from dirserver '<...>'. Please correct. The server is hosted with https://fdcservers.net/. Did I just get unlucky in picking a provider? Is there a way to check these things before spending money on setup + monthly fees? Best regards, Davíð ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Authdir is rejecting routers in this range
On Fri, Aug 29, 2014 at 09:51:33PM +, Davíð Steinn Geirsson wrote: > I rented a dedicated server to run a tor relay (100Mbit/s) to > contribute to the network. On this machine, tor gives messages like > these on startup: > > http status 400 ("Authdir is rejecting routers in this range.") > response from dirserver '<...>'. Please correct. > > The server is hosted with https://fdcservers.net/. > > Did I just get unlucky in picking a provider? Is there a way to check > these things before spending money on setup + monthly fees? Yeah, 50.7/16 and 204.45/16 were where the Sybil relays came from: https://blog.torproject.org/blog/tor-security-advisory-relay-early-traffic-confirmation-attack We were rejecting all relays from these subnets for a while. But then I removed that config from moria1 and asked some of the other directory authority operators to re-allow them too, since the attacking relays are long gone. Looks like not enough of them have done so. I'll ask them again. Thanks, --Roger ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Authdir is rejecting routers in this range
Why only one relay on a whole server? I was thinking of doing the same but because on a dedicated server mulitple relays and exits would be more economical than the same number of VPSs. Robert ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Authdir is rejecting routers in this range
On Fri, 29 Aug 2014 14:29:48 -0800 I wrote: > Why only one relay on a whole server? > > I was thinking of doing the same but because on a dedicated server > mulitple relays and exits would be more economical than the same > number of VPSs. What benefit would there be in running more than one relay, if the bottleneck is network speed instead of CPU? > > Robert > > > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] one dedicated server v numerous VPSs
> I wrote: > >> Why only one relay on a whole server? >> >> I was thinking of doing the same but because on a dedicated server >> mulitple relays and exits would be more economical than the same >> number of VPSs. > >> Robert David wrote: > What benefit would there be in running more than one relay, if the > bottleneck is network speed instead of CPU? True. I presumed the speed and volume of data came with it. What is the most useful way to spend for Tor is my question. Robert ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays