Re: [tor-relays] Sanity check on NumCPUs
Hi, for relays with connection faster than 100Mbit I suggest to use minimum 4 cores and 6-8GB Ram. Cheers Dlugasny Wysłano z bezpiecznej poczty e-mail Proton Mail. --- Original Message --- środa, 25 maja 2022 8:31 PM, Thoughts napisał(a): > For a non-exit relay, is "NumCPUs 2" still the recommended maximum? > Running on a quad core and recently saw a message indicating I had > insufficient CPU power to support the desired number of connections... > > Thanks, > > Kevin > > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] tor relay - vps maintenance - what to do ?
Hi,
in the next three days, my VPS provider planning to shutdown ("maintenanance")
for 6 hours my VPS where tor relay is running (with some services). What should
I do ?
I suspect that my VPS will be copied and reviewed (by not authorized persons)
afterwards. How do You react in such a situations ?
I appreciate any advice.
Cheers
Dlugasny
Sent with [ProtonMail](https://protonmail.com) Secure Email.___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] tor relay warning - what is mean ?
Hi,
today I have found this. If You need more informations please let me know.
16:48:56 [WARN] {BUG} Bug: 0x1076f25 <_start+0xa5> at /usr/local/bin/tor (on
Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x1077119 at /usr/local/bin/tor (on
Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x107727c at /usr/local/bin/tor
(on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x107bfe9 at
/usr/local/bin/tor (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x107a221 at
/usr/local/bin/tor (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x801b4de1f at
/usr/local/lib/libevent-2.1.so.6 (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x801b51cd2
at /usr/local/lib/libevent-2.1.so.6 (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x107fc3e at
/usr/local/bin/tor (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x107e55b at
/usr/local/bin/tor (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x11caf6a at
/usr/local/bin/tor (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: 0x11aff98 at
/usr/local/bin/tor (on Tor 0.3.4.9 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} Bug: Non-fatal assertion
!(connection_is_reading(conn)) failed in conn_close_if_marked at
src/or/main.c:1047. Stack trace: (on Tor 0.3.4.9
│ 4ac3ccf2863b86e7)
│ 16:48:56 [WARN] {BUG} tor_bug_occurred_: Bug: src/or/main.c:1047:
conn_close_if_marked: Non-fatal assertion !(connection_is_reading(conn))
failed. (on Tor 0.3.4.9
│ 4ac3ccf2863b86e7)
Cheers
Dlugasny
Sent with ProtonMail Secure Email.
‐‐‐ Original Message ‐‐‐
On Wednesday, November 28, 2018 5:02 AM, teor wrote:
> Hi,
>
> Thanks for reporting this bug.
>
> > On 28 Nov 2018, at 04:10, dluga...@protonmail.com wrote:
> > does any could tell me what is mean that Warn ?
> > 16:32:33 [WARN] {BUG} Bug: 0x1076f25 <_start+0xa5> at /usr/local/bin/tor
> > (on Tor 0.3.4.9 4ec3ccf2863b86e7)
> > │ 16:32:33 [WARN] {BUG} Bug: 0x1077119 at /usr/local/bin/tor
> > (on Tor 0.3.4.9 4ec3ccf2863b86e7)
> > │ 16:32:33 [WARN] {BUG} Bug: 0x107727c at
> > /usr/local/bin/tor (on Tor 0.3.4.9 4ec3ccf2863b86e7)
> > │ 16:32:33 [WARN] {BUG} Bug: 0x107bfe9 at
> > /usr/local/bin/tor (on Tor 0.3.4.9 4ec3ccf2863b86e7)
> > │ 16:32:33 [WARN] {BUG} Bug: 0x107a221 at
> > /usr/local/bin/tor (on Tor 0.3.4.9 4ec3ccf2863b86e7)
> > ─┘ 16:32:33 [WARN] {BUG} Bug: 0x801b4de1f at
> > /usr/local/lib/libevent-2.1.so.6 (on Tor 0.3.4.9 4ec3ccf2863b86e7)
>
> Tor bugs come with a log message that tells us the assertion that failed.
> Is there any more log output around this bug?
>
> > I extracted that from Nyx.
> > FreeBSD 11.1
>
> We recently fixed a FreeBSD bug with a similar stacktrace.
> We're testing the fix in 0.3.5 before we backport it.
>
> https://trac.torproject.org/projects/tor/ticket/27750
>
> T
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] tor relay warning - what is mean ?
Hi,
does any could tell me what is mean that Warn ?
16:32:33 [WARN] {BUG} Bug: 0x1076f25 <_start+0xa5> at /usr/local/bin/tor (on
Tor 0.3.4.9 4ec3ccf2863b86e7)
│ 16:32:33 [WARN] {BUG} Bug: 0x1077119 at /usr/local/bin/tor (on
Tor 0.3.4.9 4ec3ccf2863b86e7)
│ 16:32:33 [WARN] {BUG} Bug: 0x107727c at /usr/local/bin/tor
(on Tor 0.3.4.9 4ec3ccf2863b86e7)
│ 16:32:33 [WARN] {BUG} Bug: 0x107bfe9 at
/usr/local/bin/tor (on Tor 0.3.4.9 4ec3ccf2863b86e7)
│ 16:32:33 [WARN] {BUG} Bug: 0x107a221 at
/usr/local/bin/tor (on Tor 0.3.4.9 4ec3ccf2863b86e7)
─┘ 16:32:33 [WARN] {BUG} Bug: 0x801b4de1f at
/usr/local/lib/libevent-2.1.so.6 (on Tor 0.3.4.9 4ec3ccf2863b86e7)
I extracted that from Nyx.
FreeBSD 11.1
Cheers
Dlugasny
Sent with [ProtonMail](https://protonmail.com) Secure Email.___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] tor relay - impact on e-mail system reputation
We are talking about about communication between two e-mail service providers where one of them hosting also tor relay using public mail exchange IPs. Netflix ;) I would say could be completly ignored in that case - they has nothing to do with an e-mail communication (except spamming with newsletters and notifications ;) ). For me it will be much helpful to have a list of RBLs which also include IPs of tor relays (exit and non exit). Till now I have found only some small private RBLs with list of tor relay ips, but they are not commonly used. If some one of You knows RBLS with tor relay ips please publish it. Thanks in advance for any support. Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Monday, November 26, 2018 4:10 PM, niftybunny wrote: > Yup, a few years ago Netflix blocked all VPN Provider IPs and all Tor IPs > including middle and guards … they completely ignored that guards / middle > could not send traffic to Netflix. > After all someone at Netflix read the TLDR about Tor and changed it. > > > On 26. Nov 2018, at 21:55, ronqtorrel...@risley.net wrote: > > > > > On Nov 25, 2018, at 10:10, starlight.201...@binnacle.cx wrote: > > > If an IP is not on Spamhaus and not on Barracuda it > > > should have no problem obtaining a decent reputation. > > > > Not too many years back, I had a non-exit relay on the same IP address I > > use for my general home WiFi network. Mail reputation didn't seem to be > > affected, but I found that I was blacklisted by a number of media > > companies. I don't remember which ones, exactly, but services like Hulu and > > Netflix started giving me error messages to the effect that I was in a > > geographic region they didn't support (California, US). When I'd call > > customer support, they'd just deny that there was any problem and blame my > > ISP. It took quite a bit of sleuthing to figure out that the companies > > simply block any Tor-associated IP addresses. > > The impression I get is that it's deliberate and purely punitive. They see > > Tor as a service that might affect their bottom line (by facilitating > > piracy and/or getting around geographic restrictions), so they do anything > > they can to punish people who support it. They know perfectly well that a > > non-exit relay can't be used to bypass geographic restrictions, but they > > block them anyway out of arrogance. > > I moved my relay to a different IP and over the span of a month or two the > > blocking stopped. > > All of which is to say that there are certainly companies out there that > > will attack you for running a middle node. > > --Ron > > > > tor-relays mailing list > > tor-relays@lists.torproject.org > > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] tor relay - impact on e-mail system reputation
When I`m building new system usually I`m trying to utilize all resources which I have - I mean CPU/MEM net bandwith etc. Thats why I`m installing many different services on one host. I know that from the security point of view for some people it is not the proper way. I`m green IT activist and I`m really focus on the resources which my system is using and consuming - my target is not to create as many systems as possible with single service (this could be to easy and to expensive), but to let many services running smoothly on the single host. Tor network is growing every month - include power and resource consumption. I do not see here any reason to buy next VPS with separate IP only for tor if I have a lot of free resources on the e-mail server. I think that we should start to force RBL Services to let people use IPs also for tor and do not let them to block IPs only because tor relay is running on it. Some example: One of my e-mail hosts is using IP from the IP range, where is also running tor relay (from some other person). Complete subnet is blacklisted by RAT RBL and I`m not able even to react and say - "Hey RAT RBL! - My system is not part of the tor, so why You are blocking complete subnet ? ". My e-mail system is 100% compatible with RFC (I have implemented everything ... reverse dns, SPF, DKIM,DMARC, S/MIME ... and so on) but even with this 30% of wrong configured services marking my e-mails as potential spam... because of that RAT RBL... If e-mail system doesnt sent spam - why its blocked ? Thats why I`m searching for some solution which will help me to connect two e-mail worlds: internet with Tor. The one thing which is coming to my mind is to write some article in the internet about RBL Services - that some of them are against privacy or they do not understand what they are doing and how big stupid impact they generate on the communication in the internet. I decided that I will build tor relay on my e-mail server. We will see what will happend. I will write article about it. If some of You have similar experiences, please let me know. Cheers Dlugasny Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Saturday, November 24, 2018 5:24 PM, wrote: > If you have a good deal on a powerful VPS you wish to run > as a relay, suggest you rent a second dirt-cheap low resource > VPS for email. MTA softwares tolerate flaky connectivity > and system performance well. > > RBLs are a fact of life. I use them to great benefit on > my MTAs. Reason no-port-25 exits are blacklisted is that > web-form spammers use them. > > Here are two excellent resources for viewing the blacklist status > of IP addresses (helpful to check IPs, when known, before > purchase): > > http://multirbl.valli.org/lookup/x.x.x.x.html # single IP > https://www.senderbase.org/lookup/?search_string=x.x.x.x/24 # block, directs > to Talos > > The lists which matter most are Spamhaus, CBL and Barracuda. > > Good luck with it! > > On 2Thu Nov 22 13:08:55 UTC 2018, Artem Dziubenko wrote: > > > Hi, > > no its not possible. This is powerful VPS with single IP. I simply do not > > want to have blacklisted IP because tor relay is running on it. > > In the past many times IP was blaclisted and afterwards I had > > several problems with email delivery. > > I do not understand why rbls blocking tor non exit relay ip's... It > > stupid... > > Cheers > > Dlugasny > > Sent from ProtonMail mobile > > Original Message > > On 22 Nov 2018, 08:30, Artem Dziubenko wrote: > > > > > Is it possible to get a second IP address for that server from your ISP? > > > -- Original Message -- > > > > > > > Hi, > > > > I haven an e-mail server which has a lot of not consumed > > > > resources (CPU/Traffic etc.). Base on my practice I know that my > > > > E-mail server will loose reputation if Tor relay will run on the same > > > > IP. > > > > Is there any other way to utilize resources of that machine without > > > > > > > > > any reputation impact on the IP. > > > > > > > > Thanks in advance for any feedback. > > > > Cheers > > > > Dlugasny > > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] tor relay - impact on e-mail system reputation
Hi, no its not possible. This is powerful VPS with single IP. I simply do not want to have blacklisted IP because tor relay is running on it. In the past many times IP was blaclisted and afterwards I had several problems with email delivery. I do not understand why rbls blocking tor non exit relay ip's... It stupid... Cheers Dlugasny Sent from ProtonMail mobile Original Message On 22 Nov 2018, 08:30, Artem Dziubenko wrote: > Is it possible to get a second IP address for that server from your ISP? > > ‐‐‐ Original Message ‐‐‐ > среда, ноябрь 21, 2018 7:08 вечера, пишет: > >> Hi, >> >> I haven an e-mail server which has a lot of not consumed resources >> (CPU/Traffic etc.). >> Base on my practice I know that my E-mail server will loose reputation if >> Tor relay will run on the same IP. >> >> Is there any other way to utilize resources of that machine without any >> reputation impact on the IP. >> >> Thanks in advance for any feedback. >> >> Cheers >> Dlugasny >> >> Sent with [ProtonMail](https://protonmail.com) Secure Email.___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] tor relay - impact on e-mail system reputation
Hi, I haven an e-mail server which has a lot of not consumed resources (CPU/Traffic etc.). Base on my practice I know that my E-mail server will loose reputation if Tor relay will run on the same IP. Is there any other way to utilize resources of that machine without any reputation impact on the IP. Thanks in advance for any feedback. Cheers Dlugasny Sent with [ProtonMail](https://protonmail.com) Secure Email.___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] tor relay on freebsd - how to upgrade it
Thank You for Your support. Tor relay has been patched :). Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Wednesday, November 21, 2018 5:43 PM, nusenu wrote: > dluga...@protonmail.com wrote: > > > since few days nyx showing that my Tor relay is outdated. (Tor 0.3.4.8) > > This relay is running on Freebsd. I have not so big expirience with BSD > > systems... > > Does any one could help me to update my tor relay ? > > Thanks in advance for any support. > > If you use the latest repo as described here: > https://trac.torproject.org/projects/tor/wiki/TorRelayGuide/FreeBSD > > you will get Tor version 0.3.4.9 > > -- > > https://twitter.com/nusenu_ > https://mastodon.social/@nusenu ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] tor relay on freebsd - how to upgrade it
Hi, since few days nyx showing that my Tor relay is outdated. (Tor 0.3.4.8) This relay is running on Freebsd. I have not so big expirience with BSD systems... Does any one could help me to update my tor relay ? Thanks in advance for any support. Cheers Dlugasny Sent with [ProtonMail](https://protonmail.com) Secure Email.___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Running relay on vmware ? is it secure to use Tor on virtual systems ?
No, I`m not hosting any Tor exits in my apartment. Only Relay without exit. I have some pool of vmware systems with public ips, they are running doing nothing... so I have decided to put some non exit tor traffic to them. Thats why I`m asking. Sent with [ProtonMail](https://protonmail.com) Secure Email. ‐‐‐ Original Message ‐‐‐ On Friday, November 2, 2018 8:05 PM, Nathaniel Suchy wrote: > In most cases, there’s not an additional risk by using a VM. If your > adversary has a VM escape they could potentially exploit the host OS. If > you’re that important QubesOS may be a better option for you. That said > you’re harming performance without many security gains. > > As for a relay, can you be more specific. Are you hosting a Tor Exit in your > home? > > Cordially, > Nathaniel Suchy > > On Fri, Nov 2, 2018 at 2:52 PM wrote: > >> Sorry Nathaniel, my english is not so well. >> >> General I`m using Virtual operating system + Tor Web Browser to browse the >> internet. >> My question is, is it secure ? >> >> Second question, is it make sense to run relay on the virtual system ? >> >> Cheers >> Dlugasny >> >> Sent with [ProtonMail](https://protonmail.com) Secure Email. >> >> ‐‐‐ Original Message ‐‐‐ >> On Friday, November 2, 2018 7:43 PM, Nathaniel Suchy >> wrote: >> >>> A bit confused. Are you running a Tor Exit or the Tor Browser Bundle? >>> >>> Cordially, >>> Nathaniel Suchy >>> >>> On Fri, Nov 2, 2018 at 2:32 PM wrote: >>> >>>> Hi, >>>> >>>> is it secure to run Tor Relay / Tor browser on Vmware ? >>>> On my Windows 10 desktop I have installed VMware Player where is running >>>> Ubuntu. I`m using that system to browse internet using Tor Browser. >>>> Is it secure to use Tor browser on virtual systems ? >>>> >>>> Cheers >>>> DLugasny >>>> >>>> ___ >>>> tor-relays mailing list >>>> tor-relays@lists.torproject.org >>>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays >> >> ___ >> tor-relays mailing list >> tor-relays@lists.torproject.org >> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Running relay on vmware ? is it secure to use Tor on virtual systems ?
Sorry Nathaniel, my english is not so well. General I`m using Virtual operating system + Tor Web Browser to browse the internet. My question is, is it secure ? Second question, is it make sense to run relay on the virtual system ? Cheers Dlugasny Sent with [ProtonMail](https://protonmail.com) Secure Email. ‐‐‐ Original Message ‐‐‐ On Friday, November 2, 2018 7:43 PM, Nathaniel Suchy wrote: > A bit confused. Are you running a Tor Exit or the Tor Browser Bundle? > > Cordially, > Nathaniel Suchy > > On Fri, Nov 2, 2018 at 2:32 PM wrote: > >> Hi, >> >> is it secure to run Tor Relay / Tor browser on Vmware ? >> On my Windows 10 desktop I have installed VMware Player where is running >> Ubuntu. I`m using that system to browse internet using Tor Browser. >> Is it secure to use Tor browser on virtual systems ? >> >> Cheers >> DLugasny >> >> ___ >> tor-relays mailing list >> tor-relays@lists.torproject.org >> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Running relay on vmware ? is it secure to use Tor on virtual systems ?
Hi, is it secure to run Tor Relay / Tor browser on Vmware ? On my Windows 10 desktop I have installed VMware Player where is running Ubuntu. I`m using that system to browse internet using Tor Browser. Is it secure to use Tor browser on virtual systems ? Cheers DLugasny___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] freebsd relay doesnt receive any traffic (after 1 month)
HI, thanks for Your hint. In did... "Publish... 0". I just commented it out. I hope that now it will work. I will wait for some traffic now :). Greetings to all and thanks for Your help. Cheers Dlugasny Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Friday, October 26, 2018 12:21 AM, s7r wrote: > Hello, > > You seam to have quite some config here. There is one obvious mistake > that jumped in my eyes without even reading clearly. How do you expect > it to receive traffic if you set PublishServerDescriptor 0 in the torrc > config file? This means that the relay is not known to the directory > authorities, thus not in the consensus which clients use to pick relays > and connect to them, so it can't possibly work, if would have been a bug > if it worked ;) > > PublishServerDescriptor 0 is when you want to test stuff, etc. > > I hope you understand all those other parameters in the config file and > that you need them as stated. > > dluga...@protonmail.com wrote: > > > In did, I have to read more carefully attached documentation. > > After small changes torrc looks like this: > > Does any one of You see any wrong parameters ? > > ## > > SocksPort 0 > > Log notice file /var/log/tor/notices.log > > ControlPort 9051 > > HashedControlPassword (for nyx) > > ORPort 9001 > > RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) > > RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) > > ContactInfo Dlugas-ny > > DirPort 9030 # what port to advertise for directory connections > > ExitRelay 0 > > ExitPolicy reject : # no exits allowed > > PublishServerDescriptor 0 > > CellStatistics 1 > > ExtraInfoStatistics 1 > > ConnDirectionStatistics 1 > > EntryStatistics 1 > > LogMessageDomains 1 > > AvoidDiskWrites 1 > > WarnPlaintextPorts > > HeartbeatPeriod 1hours > > DisableDebuggerAttachment 0 ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] freebsd relay doesnt receive any traffic (after 1 month)
Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Thursday, October 25, 2018 7:24 PM, wrote: > Dmitrii thanks for Your hints. > > Sent with ProtonMail Secure Email. > > ‐‐‐ Original Message ‐‐‐ > On Thursday, October 25, 2018 7:02 PM, Dmitrii Tcvetkov demfl...@demfloro.ru > wrote: > > > On Thu, 25 Oct 2018 17:48:09 + > > dluga...@protonmail.com wrote: > > > > > In did, I have to read more carefully attached documentation. > > > After small changes torrc looks like this: > > > Does any one of You see any wrong parameters ? > > > ## > > > SocksPort 0 > > > Log notice file /var/log/tor/notices.log > > > ControlPort 9051 > > > HashedControlPassword (for nyx) > > > ORPort 9001 > > > RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) > > > RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) > > > ContactInfo Dlugas-ny > > > DirPort 9030 # what port to advertise for directory connections > > > ExitRelay 0 > > > ExitPolicy reject : # no exits allowed > > > PublishServerDescriptor 0 > > > CellStatistics 1 > > > ExtraInfoStatistics 1 > > > ConnDirectionStatistics 1 > > > EntryStatistics 1 > > > LogMessageDomains 1 > > > AvoidDiskWrites 1 > > > WarnPlaintextPorts > > > HeartbeatPeriod 1hours > > > DisableDebuggerAttachment 0 > > > > These are enough to run a relay: > > SocksPort 0 > > ORPort 9001 > > RelayBandwidthRate 400 KBytes > > RelayBandwidthBurst 600 KBytes > > Log notice file /var/log/tor/notices.log > > ContactInfo Dlugas-ny > > DirPort 9030 > > MyFamily "fingerprints go here" > > ExitRelay 0 > > ExitPolicy reject : > > MyFamily should contain comma separated list of fingerprints of all your > > guard, middle, exit relays if you have any. Each fingerprint should be > > prefixed with '$' symbol. It shouldn't contain fingerprints of your > > bridges. > > If you want to use Nyx then you can enable: > > ControlPort 9051 > > HashedControlPassword > > Nyx I`m using, because I can observe traffic. "socket -4l" doesnt provide > informations about connections. > > > Option > > DisableDebuggerAttachment 0 > > is for debugging and should be set to 1 during normal operation. Yes, > > it allows to snoop on Tor circuits in Nyx, but is that really needed? > > Its active because I would like to see if its really working. > > > BTW you can use bits in bandwidth settings, > > e.g. "RelayBandwidthRate 4 Mbits" > > Other options are optional and should be evaluated each separately. For > > example I don't know why you don't want to publish server descriptor, > > what is the point of unpublished middle relay? > > I just commented out "PublishServerDescriptor" > > > Why avoid disk writes? Modern hardware won't be worn out just by Tor > > relay disc activity. Why WarnPlaintextPorts? It's a relay, not a > > client, as SocksPort is 0. > > I just commented out AvoidDiskWriters and WarnPlaintextPorts. > > > In general it's better to start with software defaults and alter the > > settings only if you need them altered. > > I know. I have simply blindly copied example torrc from one of the "best > practise FreeBsd tor tutorials". > > Thanks for Your hints. > > I hope that in the next days my first BSD relay will start relaying :). ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] freebsd relay doesnt receive any traffic (after 1 month)
In did, I have to read more carefully attached documentation. After small changes torrc looks like this: Does any one of You see any wrong parameters ? ## SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 HashedControlPassword (for nyx) ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny DirPort 9030 # what port to advertise for directory connections ExitRelay 0 ExitPolicy reject *:* # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours DisableDebuggerAttachment 0 Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Thursday, October 25, 2018 5:34 PM, nusenu wrote: > dluga...@protonmail.com: > > > Hi Matt, > > thanks for Your hints. To build my BSD relay, I used some of the available > > in the internet BSD tutorials. It seems that I have copied some parameters > > without understanding what for they are. > > I would like to run non-exit tor relay. > > Which parameters should I commented out ? > > Matt pointed you already to the guide, which contains simple step > by step instructions with the entire torrc file that you can simply copy from > there. > > https://trac.torproject.org/projects/tor/wiki/TorRelayGuide/FreeBSD > > -- > > https://twitter.com/nusenu_ > https://mastodon.social/@nusenu ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] freebsd relay doesnt receive any traffic (after 1 month)
Hi Matt, thanks for Your hints. To build my BSD relay, I used some of the available in the internet BSD tutorials. It seems that I have copied some parameters without understanding what for they are. I would like to run non-exit tor relay. Which parameters should I commented out ? Documentation, in did I have to read it, but it would be much easier (much faster) to have some example which user can copy with some small modifications. Cheers Dlugasny Sent with ProtonMail Secure Email. ‐‐‐ Original Message ‐‐‐ On Thursday, October 25, 2018 5:11 PM, Matt Traudt wrote: > On 10/25/18 13:05, dluga...@protonmail.com wrote: > > > Hi, > > few weeks ago ( more than 4) I have installed Freebsd with Tor relay > > service. > > System is connected to Tor network since more than one month but I see > > only 1-2 connections per day. > > I had Tor relay service on my Debian server for many years and I havent > > got any problems. With Freebsd its pain, nothing is working as expected. > > Any how I would like to build more BSD instances in few different > > countries, but first I need to know why its not working. > > Does any one could help me to do some troubleshooting ? > > Maybe some of the parameters in the torrc are blocking traffic ? > > My torrc without Hashedpassword, Nickname: > > ### > > SocksPort 0 > > Log notice file /var/log/tor/notices.log > > ControlPort 9051 > > ORPort 9001 > > RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) > > RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) > > ContactInfo Dlugas-ny > > DirPort 9030 # what port to advertise for directory connections > > ExitPolicy reject : # no exits allowed > > PublishServerDescriptor 0 > > CellStatistics 1 > > ExtraInfoStatistics 1 > > ConnDirectionStatistics 1 > > EntryStatistics 1 > > LogMessageDomains 1 > > AvoidDiskWrites 1 > > WarnPlaintextPorts > > HeartbeatPeriod 1hours > > ServerTransportPlugin obfs2,obfs3 exec /usr/local/bin/obfsproxy managed > > ServerTransportPlugin obfs4 exec /usr/local/bin/obfsproxy managed > > ExtORPort auto > > > > Thanks in advance for any support > > This is a very confused torrc. What are you trying to accomplish with it? > > There's lines indicating you want to run a bridge > (ServerTransportPlugin, ExtORPort) > > There's a line indicating you don't want your bridge to be one > distrubted via BridgeDB (PublishServerDescriptor 0), yet you wonder why > no one is using your bride/relay. > > Please read > > https://trac.torproject.org/projects/tor/wiki/TorRelayGuide > > And don't set any options that it doesn't tell you to set. And don't set > options you don't understand. `man tor` can help you understand what > you're setting > > Matt ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] freebsd relay doesnt receive any traffic (after 1 month)
Hi, few weeks ago ( more than 4) I have installed Freebsd with Tor relay service. System is connected to Tor network since more than one month but I see only 1-2 connections per day. I had Tor relay service on my Debian server for many years and I havent got any problems. With Freebsd its pain, nothing is working as expected. Any how I would like to build more BSD instances in few different countries, but first I need to know why its not working. Does any one could help me to do some troubleshooting ? Maybe some of the parameters in the torrc are blocking traffic ? My torrc without Hashedpassword, Nickname: ### SocksPort 0 Log notice file /var/log/tor/notices.log ControlPort 9051 ORPort 9001 RelayBandwidthRate 400 KBytes # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 600 KBytes # But allow bursts up to 200KB (1600Kb) ContactInfo Dlugas-ny DirPort 9030 # what port to advertise for directory connections ExitPolicy reject *:* # no exits allowed PublishServerDescriptor 0 CellStatistics 1 ExtraInfoStatistics 1 ConnDirectionStatistics 1 EntryStatistics 1 LogMessageDomains 1 AvoidDiskWrites 1 WarnPlaintextPorts HeartbeatPeriod 1hours ServerTransportPlugin obfs2,obfs3 exec /usr/local/bin/obfsproxy managed ServerTransportPlugin obfs4 exec /usr/local/bin/obfsproxy managed ExtORPort auto Thanks in advance for any support Cheers Dlugasny Sent with [ProtonMail](https://protonmail.com) Secure Email.___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
