Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
Quoting Toralf Förster (2023-06-27 10:27:18) > On 6/26/23 23:44, gus wrote: > > - Recommendation: Do not run snowflake proxy on the same IP as a > > relay/bridge. It's a good call to run it on a machine with public > > dynamic IP address. > > I setup 6 snowflakes as VPS with a fixed IP. > After which time those IPs should be changed ? Rotating the IP often will not affect the functionality of snowflake. But AFAIK censors are not blocking snowflake proxies (yet) by they IP address. So you don't need to bother to rotate it often, and I expect your proxy to keep being useful even if you don't rotate it. But if you have the possibility to do it once every few months might be handy if censors start catching up with stable proxies. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
On 6/26/23 23:44, gus wrote: - Recommendation: Do not run snowflake proxy on the same IP as a relay/bridge. It's a good call to run it on a machine with public dynamic IP address. I setup 6 snowflakes as VPS with a fixed IP. After which time those IPs should be changed ? -- Toralf OpenPGP_signature Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
Hi, Thanks all for joining the Tor Relay Operator Meetup! You can find the meetup notes below. The next Tor Relay Operator online meetup is July 29, 2023 @ 18 UTC. cheers, Gus ## Tor Relay Operator Meetup - 2023-06-24 ### Before we start Tor operators are recommended to read the Tor Code of Conduct and Expectations of Tor Operators. Tor Code of Conduct: https://gitlab.torproject.org/tpo/community/policies/-/blob/master/code_of_conduct.txt Expectations for Relay Operators: https://gitlab.torproject.org/tpo/community/team/-/wikis/Expectations-for-Relay-Operators ### 1. Announcements 1.1. In-person activities - Tor Relay Operators meetup @ Bornhack (https://bornhack.dk/bornhack-2023/) in August (Denmark). Ping Alex (ahf) for more information. - Tor Relay Operators meetup @ CCCamp 2023. CCCamp (https://events.ccc.de/camp/2023/infos/) is taking place near Berlin, Germany, in August. Ping gus or other tor people if you want to help. 1.2. More unrestricted snowflake proxies are needed - Context: Snowflake is very popular in Iran and China. See the Tor metrics graphs: - https://metrics.torproject.org/userstats-bridge-combined.html?start=2023-03-26=2023-06-24=ir - https://metrics.torproject.org/userstats-bridge-combined.html?start=2023-03-26=2023-06-24=cn - But there is an issue: many snowflake proxies (volunteers) are behind "restricted connections," including NAT and packet filtering. 'Unrestricted' snowflake proxies will work with all snowflake clients, even those with the most restrictive symmetric NATs and filtering behaviour. - Current stats: snowflake-ips-nat-restricted 72006 snowflake-ips-nat-unrestricted 2447 <- We need your help to increase this pool! snowflake-ips-nat-unknown 47623 - To understand Snowflake NAT matching behavior, please check out this documentation: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/wikis/NAT-matching - Maybe there should be a guide on how to go from being restricted to unrestricted for standalone snowflake proxy from home and/or from a server with a firewall (i.e. limit the range used by snowflake, and "find how to open a range of port on your router"). - Recommendation: Do not run snowflake proxy on the same IP as a relay/bridge. It's a good call to run it on a machine with public dynamic IP address. 1.3. Relays EOL (0.4.5.x) removal - Only public relays running 0.4.5.x are affected; bridges are unaffected. - If your relay was blocked because was running tor 0.4.5.x version, please reach out to bad-relays at lists.torproject.org and ask them to unblock your relay. - Issue: https://gitlab.torproject.org/tpo/network-health/team/-/issues/291 1.4. IPv4 limit proposal (bumped limit from 2 to 4, and soon 4 to 8!) - Proposal: https://gitlab.torproject.org/tpo/core/tor/-/issues/40744 - Currently we're allowing 4 relays per IPv4 address. This new max allowed relays per IP address was analyzed here: https://gitlab.torproject.org/tpo/network-health/analysis/-/issues/51 - We're considering to bump the limit to 8 relays per IPv4 address. 1.5. Tor Forum is now self-hosted by Tor Project - The Tor Forum migration was completed last week: https://forum.torproject.org/ - tor-talk will be deactivated next week. The mailing list archive will be publicly available. Other mailing lists aren't affected. - The Tor Forum Privacy policy will be updated. ### 2. Presentation about Webtunnel bridges with Tor Anti-censorship Team Tor Anti-censorship Team is soft-releasing Webtunnel, a new pluggable transport based on HTTP Upgrade (HTTPT). It is designed to hide behind HTTPS servers to resist against active probing attacks and to effectively blend in with Internet traffic. Bridge operators can deploy this new pluggable transport on the same IP/machine if they are already running obsf4. Please don't expect a lot of users at the moment, bceause webtunnel is only available on Tor Browser Alpha. Slides: https://nc.torproject.net/s/PP98BXDMk8nwtrn Webtunnel requirements for operators: - A self-hosted HTTPS website - Handle traffic with configurable reverse proxy - Environment to run Tor bridge - (Optional) Container runtime like Docker You can find instructions on how to deploy webtunnel here: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/webtunnel/-/blob/main/README.md A Dockerfile is available for use with a Debian container and a package for FreeBSD has been created. Q: What is the distribution mechanism? A: At the moment webtunnel is being distributed only via "HTTPS" (https://bridges.torproject.org). Q: Are the regular traffic patterns of webtunnel-transported traffic similar to tor traffic? Are they usually bi-directional No, the traffic looks like HTTPS. ### 3. Tor Network Health proposals discussion - Meta proposal discussion:
Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
On Samstag, 24. Juni 2023 18:03:47 CEST li...@for-privacy.net wrote: > On Dienstag, 20. Juni 2023 23:01:23 CEST gus wrote: > > Just a friendly reminder that the Relay Operator meetup will happen this > > Saturday, June 24 at 18 UTC. > > > > ## Agenda > > > > 1. Announcements > > > > - Tor Relay Operators meetup @ CCCamp 2023! > > - More unrestricted snowflake proxies are needed > > - Relays EOL (0.4.5.x) removal > > - IPv4 limit proposal > > > > 2. Presentation about Webtunnel bridges with Tor Anti-censorship Team > > > > 3. Tor Network Health proposals discussion > > > > - Meta proposal discussion > > - contactinfo proposal discussion > > > > 4. Q > > > > https://pad.riseup.net/p/tor-relay-op-meetup-june-keep > > https://pad.riseup.net/ is down :-( > As an alternative, the 'German riseup' systemli could be taken. systemli.org > is hosted on its own servers at Community-IX. > > https://pad.systemli.org/p/tor-relay-op-meetup-june-keep I think gus copied the pad. Thanks. Hidden service link is: http://mjrkrqnlf26etelsi7zpkqc3dzlrzyurvmd3jksmndarzzbugz5xctid.onion/p/tor-relay-op-meetup-june-keep -- ╰_╯ Ciao Marco! Debian GNU/Linux It's free software and it gives you freedom! signature.asc Description: This is a digitally signed message part. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
On Dienstag, 20. Juni 2023 23:01:23 CEST gus wrote: > Just a friendly reminder that the Relay Operator meetup will happen this > Saturday, June 24 at 18 UTC. > > ## Agenda > > 1. Announcements > - Tor Relay Operators meetup @ CCCamp 2023! > - More unrestricted snowflake proxies are needed > - Relays EOL (0.4.5.x) removal > - IPv4 limit proposal > > 2. Presentation about Webtunnel bridges with Tor Anti-censorship Team > > 3. Tor Network Health proposals discussion > - Meta proposal discussion > - contactinfo proposal discussion > > 4. Q > > https://pad.riseup.net/p/tor-relay-op-meetup-june-keep https://pad.riseup.net/ is down :-( As an alternative, the 'German riseup' systemli could be taken. systemli.org is hosted on its own servers at Community-IX. https://pad.systemli.org/p/tor-relay-op-meetup-june-keep -- ╰_╯ Ciao Marco! Debian GNU/Linux It's free software and it gives you freedom! signature.asc Description: This is a digitally signed message part. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
Hello, Just a friendly reminder that the Relay Operator meetup will happen this Saturday, June 24 at 18 UTC. ## Agenda 1. Announcements - Tor Relay Operators meetup @ CCCamp 2023! - More unrestricted snowflake proxies are needed - Relays EOL (0.4.5.x) removal - IPv4 limit proposal 2. Presentation about Webtunnel bridges with Tor Anti-censorship Team 3. Tor Network Health proposals discussion - Meta proposal discussion - contactinfo proposal discussion 4. Q https://pad.riseup.net/p/tor-relay-op-meetup-june-keep best, Gus On Tue, May 30, 2023 at 05:36:42AM -0300, gus wrote: > Hello, > > The next Tor Relay Operator Meetup will happen on June 24, 2023, at > 18.00 UTC. > > We're working on the agenda here: > https://pad.riseup.net/p/tor-relay-op-meetup-june-keep > onionsite: > http://kfahv6wfkbezjyg4r6mlhpmieydbebr5vkok5r34ya464gqz6c44bnyd.onion/p/tor-relay-op-meetup-june-keep > Feel free to add other topics to the agenda. > > WHERE > Room link: https://tor.meet.coop/gus-og0-x74-dzn > > Registration > > No need for a registration or anything else, just use the room-link > above. We will open the room 10 minutes before so you can test your mic > setup. > > Please share with your friends, social media and other mailing lists! > > cheers, > Gus > -- > The Tor Project > Community Team Lead -- The Tor Project Community Team Lead signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC
Hello, The next Tor Relay Operator Meetup will happen on June 24, 2023, at 18.00 UTC. We're working on the agenda here: https://pad.riseup.net/p/tor-relay-op-meetup-june-keep onionsite: http://kfahv6wfkbezjyg4r6mlhpmieydbebr5vkok5r34ya464gqz6c44bnyd.onion/p/tor-relay-op-meetup-june-keep Feel free to add other topics to the agenda. WHERE Room link: https://tor.meet.coop/gus-og0-x74-dzn Registration No need for a registration or anything else, just use the room-link above. We will open the room 10 minutes before so you can test your mic setup. Please share with your friends, social media and other mailing lists! cheers, Gus -- The Tor Project Community Team Lead signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays