Re: [tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th @ 1900 UTC
Hi, Thank you for attending the Sysadmin 101 workshop! You can find the workshop slides here: https://nycbug1.nycbug.org/sysadmin101/ And below the workshop notes. Gus # Sysadmin 101 notes - June 4th 2022 ~67 people in the workshop ### Resources Join the relay operator community: - IRC channel: #tor-relays on irc.oftc.net - Matrix channel: #tor-relays:matrix.org - Having issues to get in touch? Check this page: https://support.torproject.org/get-in-touch/irc-help/ - Mailing lists: - Tor-relays: https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays - Tor-announce: https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-announce - Tor Relay documentation: - Documentation: https://community.torproject.org/relay/ - Support: https://support.torproject.org/relay-operators/ - Training: https://community.torproject.org/training/resources/tor-relay-workshop/ - Expectations: https://gitlab.torproject.org/tpo/community/team/-/wikis/Expectations-for-Relay-Operators - Social contract and code of conduct: https://gitweb.torproject.org/community/policies.git/tree/ https://support.torproject.org https://community.torproject.org https://forum.torproject.org - Other resources - slides: https://nycbug1.nycbug.org/ - survey stats https://gitlab.torproject.org/tpo/community/relays/-/issues/36#note_2810037 - Running a relay isn't for everyone. If you're not comfortable running your own relay, consider running a Snowflake or Donating - Here to one of the many non-profits that run exit relays: https://community.torproject.org/relay/community-resources/relay-associations/ - NSA "Tor stinks" url from the Guardian https://commons.wikimedia.org/wiki/File:Tor_Stinks.pdf - Metrics https://metrics.torproject.org/ ### Q/A - How many people signed up? - 100+. With 60-70 attendees in practice. - Tor log: there have been x users in the last 6 hours... What's the algorithm for what a distinct tor user is? (torix) - I believe bridges count it by IP address, rounded up to the next multiple of 8. Your bridge also publishes these stats plus more in its "extrainfo" descriptor, which you can find in https://collector.torproject.org/recent/bridge-descriptors/extra-infos/ and maybe also in the stats/ directory in your DataDirectory. - How much time (per week or month) and how many times, should you plan to invest? - Depends on what you're doing and how you're doing it. - "My eyeballs are the first line of defense." Watching the Tor logs, watching the system logs, can help you get more comfortable with how things are going (and what they look like when things are going fine). - What are the regular monitoring or upkeep activities we should be performing to not "set it and forget it" - Log in regularly. Check for updates and if your box needs to be rebooted. (Set an alarm or calendar event to log in and check.) If using Debian/Ubuntu, enable UnattendedUpgrades. - prometheus: https://forum.torproject.net/t/suggestion-a-summary-page-of-relay-bridge-install-guides-in-one-place/2425/4?u=gus - george is into "agentless monitoring" - What are acceptable domains or communications approaches for listing in ContactInfo? E.g. what about a duck address. - Use any domain that you use for normal communication. Don't use an address that you never check. - Any contact info that you regularly check. - DO NOT obfuscate your contact information! Maintainers already burn a lot of time trying to decipher obfuscated contact info! - (Some people are concerned about spam, and that's why they try to obfuscate the address. But actually, spam isn't so bad these days; or if it is for you, consider using a separate email address for your contact info.) - Is a relay that allows exits to port 53 but routes those queries to a pihole considered a bad node that is tampering with traffic? - Please no! Don't mess with exit traffic. Redirecting outgoing tcp port 53 connections to somewhere else is going to break things. - There have been cases where a DNS on a distinct machine increased performance - What is the best way to figure out if a bridge/IP got burned (i.e. blocked in certain countries)? What should be rotation intervals? - At the beginning of 2022, we added a new feature where we're measuring reachability of bridges from inside Russia, and annotating relay-search with the results. - Check metrics.torproject.org, there will be indicators if your bridge is blocked or not - This "your bridge is blocked in Russia" feature is in-progress: the user experience at the end is not intended to be "you have to watch your metrics page and then go cycle your IP address manually". So don't worry too much about reacting to the relay-search page
Re: [tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi Gus, can you please share the slides with us ? Thanks, Regards Daniel --- Original Message --- On Friday, May 27th, 2022 at 9:06 PM, gus wrote: > Hi Isaac, > > The sysadmin 101 workshop for relays operators won't be recorded, but > the presentation slides and notes will be shared here in the mailing > list. We're planning to do more of these workshops in the future and we > can try doing it on week days. > > Gus > > On Tue, May 24, 2022 at 01:09:17PM +, Isaac Grover, Aileron I.T. wrote: > > > Good morning Gus, > > > > For those of us with families and other weekend commitments, will an > > on-demand replay be made available afterwards? > > > > Make your day great, > > Isaac Grover > > ___ > > tor-relays mailing list > > tor-relays@lists.torproject.org > > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > > > -- > The Tor Project > Community Team Lead > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays -BEGIN PGP SIGNATURE- Version: ProtonMail wsBzBAEBCAAGBQJin1S1ACEJEAutNI6WgEWAFiEE/jRLdx96gF2z0p05C600 jpaARYCfqAf/bEImAZtZbAIubJXSkPmAxfAR5hIP+Nv3Bf2EUhIQWJqoy/yA 5QNvznFqWbK2+EEmfj/2ibNb2hp9H29YeuYF88vWsxPHbAZsWpqPQboFmuyS lk+v7WUsU3u5Pucqmd/I6yCizEGqi0XsgUMIw40q0RZU2JRUAogwanHaen0e rIGjtqyhNzbGmaGIspD7tUOHrdz1hGPiy5FCwP29Y7JtLvc85senMDFogulZ IbMOeqUiY3C7weVVk/7Yue5MxP/ws07GkC8jp2ezE0Fldxk6R3IH3krN9F1+ OErO2BW1AKAs6TbLdxaC8Y/aAnRrJnvNsOXB3tiFmLBZEpOpIPggCw== =9n7s -END PGP SIGNATURE- publickey - nikoloskid@pm.me - 0xFE344B77.asc Description: application/pgp-keys publickey - nikoloskid@pm.me - 0xFE344B77.asc.sig Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th
Hi Isaac, The sysadmin 101 workshop for relays operators won't be recorded, but the presentation slides and notes will be shared here in the mailing list. We're planning to do more of these workshops in the future and we can try doing it on week days. Gus On Tue, May 24, 2022 at 01:09:17PM +, Isaac Grover, Aileron I.T. wrote: > Good morning Gus, > > For those of us with families and other weekend commitments, will an > on-demand replay be made available afterwards? > > Make your day great, > Isaac Grover > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays -- The Tor Project Community Team Lead signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th
Good morning Gus, For those of us with families and other weekend commitments, will an on-demand replay be made available afterwards? Make your day great, Isaac Grover ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th @ 1900 UTC
Hi Alex, On Mon, May 23, 2022 at 09:37:27PM -0400, Alex Xu (Hello71) via tor-relays wrote: > Excerpts from gus's message of May 23, 2022 3:42 pm: > > ## How to join the workshop > > > > The workshop is entirely free, and participants need to fill out this > > registration form. The event will take place on BigBlueButton, an online > > video conference platform, on June 4th at 1900 - 2030 UTC. > > > > You can register here: > > https://nc.torproject.net/apps/forms/cDLPxryHJcP5kMeW > > Can you explain why it is necessary to register in order to attend? Sure. Unfortunately the internet has a troll problem and sharing the room link outside of our community could turn the workshop in an unpleasant space. We would also like to have an estimation of how many people will join the event. > Additionally, the URL to the Code of Conduct is neither clickable nor > selectable, making it rather difficult to navigate to. > Here is: https://gitweb.torproject.org/community/policies.git/tree/code_of_conduct.txt > Thanks, > Alex. > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays -- The Tor Project Community Team Lead signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th @ 1900 UTC
Excerpts from gus's message of May 23, 2022 3:42 pm: > ## How to join the workshop > > The workshop is entirely free, and participants need to fill out this > registration form. The event will take place on BigBlueButton, an online > video conference platform, on June 4th at 1900 - 2030 UTC. > > You can register here: > https://nc.torproject.net/apps/forms/cDLPxryHJcP5kMeW Can you explain why it is necessary to register in order to attend? Additionally, the URL to the Code of Conduct is neither clickable nor selectable, making it rather difficult to navigate to. Thanks, Alex. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] [Workshop] Sysadmin 101 for (new) relay operators - June 4th @ 1900 UTC
Join us June 4th at 1900 UTC for new and prospective Tor relay and bridge operators on the basic "sysadmin foo" required to contribute to the network! ## Sysadmin 101 for new relay operators So you want to contribute to the open-source Tor network by running a relay or maybe a bridge? The Tor network is the most important tool for evading surveillance and bypassing internet censorship. And Tor relays and bridges are vital to the health and integrity of the Tor network. Millions of users rely on relays and bridges to stay safe, and how you configure and maintain that relay or bridge is critical. Volunteers aren't a nice enhancement. They are a core feature. Running a relay or a bridge raises frequent questions: * Should I run a relay or a bridge? * Should I run a relay or a bridge from a residential/home internet connection? * Which operating system should I run for my Tor node (hint: the one you are most comfortable with securing and maintaining) * More generally, what does it take to keep that relay or bridge operating safely, but both you and Tor users? This workshop will start with a presentation approaching some of the core issues that arise when running a Tor node. The session will move into an "ask me anything" discussion to approach other common and less common questions. The 90-minute event will be geared towards current and prospective Tor bridge and relay operators, particularly those relatively new to running public internet services. Seasoned Linux and BSD Tor operators will be attending the event ready to address the discussion. ## How to join the workshop The workshop is entirely free, and participants need to fill out this registration form. The event will take place on BigBlueButton, an online video conference platform, on June 4th at 1900 - 2030 UTC. You can register here: https://nc.torproject.net/apps/forms/cDLPxryHJcP5kMeW ## Facilitators The workshop will be facilitated by: * George (@gman999) - Tor *BSD Diversity Project member, Serge bridge directory authority maintainer, long-time relay operator and a wide variety of other contributions. * Kushal Das (@kushal) - RPM Tor maintainer and member of the Tor Community team. -- The Tor Project Community Team Lead signature.asc Description: PGP signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays