Re: [tor-talk] [tor-assistants] Fwd: can you do an EV certificate for a .onion domain?
On Thu, Jan 21, 2016 at 5:45 PM, Virgil Griffith <i...@virgil.gr> wrote: > Fun fact. https://certsimple.com now supports doing Extended > Validation TLS certificates for .onion. You can even get wildcard > certs, ooo! so fancy! > > For some hidden service operators struggling with people cloning your > site this can be a solution. A little surprised that > facebookcorewwwi.onion isn't already doing this. At the very least > this seems like a fine thing for users of the upcoming > single-onion-services. Facebook has had a wildcard EV cert for its .onion site for over a year now (thanks to DigiCert). -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] TorBirdy 0.1.4 released - Our fifth beta release!
On Thu, Mar 12, 2015 at 4:11 PM, Jacob Appelbaum ja...@appelbaum.net wrote: We're looking for assistance with Translations - if you'd like to translate TorBirdy, we'd gladly accept a patch that prepares TorBirdy for translation work. We now have an amazing number of translations! Even if you can't help translate, we'd love to know what languages matter to you or your friends - please let us know? We're especially looking for translations of TorBirdy into Persian - if you'd like to help us translate, please contact us! Please note that this will likely also require you to translate Thunderbird into Persian as well. Are you pulling translations for TorBirdy from Transifex [1] at all? The translation of TorBirdy into Persian was completed a year ago [2]. [1]: https://www.transifex.com/projects/p/torproject/ [2]: https://www.transifex.com/projects/p/torproject/language/fa/ -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Warning: Do NOT use my mirrors/services until I have reviewed the situation
On Sun, Dec 21, 2014 at 8:44 PM, Thomas White thomaswh...@riseup.net wrote: I don't want to blacklist it right away. If it does need blacklisting I will send it to the relevant list. If we are to tell users not to use these relays, we need to take them out of the consensus. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Blockchain.info Tor Hidden Service + Signed Certificate
On Wed, Dec 3, 2014 at 4:17 PM, Nik Cubrilovic nik...@gmail.com wrote: Blockchain.info has become the second site after Facebook to roll out a Tor hidden service with a CA signed SSL certificate. You can find it here: https://blockchainbdgpzk.onion/ My blog post explaining some of the background and implementation details is here: https://www.nikcub.com/posts/securing-blockchain-users-with-tor-and-ssl/ Can you elaborate on why Blockchain wanted an SSL certificate on its .onion site? -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] What was the academic paper in which
On Sun, Oct 19, 2014 at 11:02 PM, Virgil Griffith i...@virgil.gr wrote: researchers setup an exit node and then recorded what sites people were going to? I believe you are referring to http://homes.cs.washington.edu/~yoshi/papers/Tor/PETS2008_37.pdf -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] New GPG key for Runa: 0x5E4857BFBF407CB0
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi everyone, As of Tue Jul 8 23:26:17 UTC 2014, I have a new GPG key: pub 4096R/BF407CB0 2014-07-08 Key fingerprint = FE06 6D8C A2E2 6305 6B28 0CF6 5E48 57BF BF40 7CB0 uid Runa A. Sandvik runa.sand...@gmail.com uid Runa A. Sandvik r...@pressfreedomfoundation.org uid Runa A. Sandvik r...@torproject.org sub 3072R/00D9F808 2014-07-08 [expires: 2015-07-08] sub 3072R/C8EE7CFF 2014-07-08 [expires: 2015-07-08] The new key, which has been signed with my old key, is attached and is also available on [1]. My old key should not be used, so please download and import my new key. [1]: http://pgp.mit.edu/pks/lookup?op=vindexsearch=0x5E4857BFBF407CB0 - -- Runa A. Sandvik -BEGIN PGP SIGNATURE- iQGcBAEBAgAGBQJTvIABAAoJENeu9G0A2fgIdScL/2fbkVuor7d86nx9/3rAd07W 8d6FfaI2VJcPCbhZD//03sqhQKm8x06k02vJb3bKC+Mdot4A3IKac+Ido7uGkGQn m7XI6hyZC697k76nSa7cZn1iJElRBWD/HXxFeyBVOTJcpCcgsfXFN0NaIHy7HbX2 LnhO8+WjzmjCMXHR2BoqGf/FVK5yCnQeRFgZtDIhUlq5sdW9sDxCr2oLDEoIAsdc Pwlb33ChDn7wUV0ZEAciHTgYycbdpvHkPP8aQN49L8u4x5Y6XeYxggUsiBaeA6Df f39ZwkNpn9lVlZxjm4wXJfL88B+p1X1/rwkfR1GFGjsjYdXuQjj7Ao+xqI+GD71F G3Abx1ilNXk7cqSODxnYhWCkUs7iPGIqW+OibqK6LH8Ej0OdbkrXPZXSBv8r/9am E1rr0xpwBBSYXJCfpUR8ojaAnqzpYQAajVNn4yJJElqKRxGCnXgnH8WahyBXflTf ENaxULwpJZj+21vMdPAPCaRwCd1RCPpm5PlxBiGG/Q== =jQPd -END PGP SIGNATURE- -BEGIN PGP PUBLIC KEY BLOCK- Version: SKS 1.1.4 Comment: Hostname: pgp.mit.edu mQINBFO8cooBEADyqeOH57Bzu+8QERLYBV7Pz4g/3fskBtcMq+nLdtWM+i+ZZPRKxgn9Jyki iKofADMGqnFpnagqTdku1k/l5EsX/iOffCE0PSVzcfHVbcDbMHANTZX0WGxgZj5LDlualLmI LkWZAPewmj6NXO5kU3lJQzTb3bp+f5mR+o5ZhOVYM7cxXE1acSCoipyfaXSPQZ2w7RoNNamV Mj3PlPIwLxs0Xe8iXLhobVbEF4kZm0k7tVngdNcYqRJ/tupx0Rhcgq9qMm9VP2XbX9I96k1z tjb2uibf29plJpIx+vfmgdVpnr2BQ0iVupm4dDvyXyPlN7G78dc7fFw++kKMv9C0TKTw5R7u 0v8lonk2GTGs5kE1ZXYeywPVH1iHy2GITYQqQJQcQio/yjehIo6LMO41tclcBeLaOsu5qKcP YC+1VgnO2y/PJx+KPD4MuVglqjQGCwtq8sAV8KPkDzD+8f8nhK2nlM+EwRCz/DyD+Pjynjj7 IlHJsSAgu1rFW1LQqOfktK+O6m1pc8ZAgxuu4JNzj9/0xnSMCze14zU/9Xvbw/0lNbE/ZALh eKnx0q1+vHnYoLI3w1U0/MrmtmYbmFsdNZ0InEpHA+NQ54nAS6S1FQO2Ws/ZVauZ27vL6+5w acOxj0ZRatACFFWQhbOer2f01fTx/MwQk3aZMvjtXRjiUzrPgwARAQABtCVSdW5hIEEuIFNh bmR2aWsgPHJ1bmFAdG9ycHJvamVjdC5vcmc+iQIcBBABAgAGBQJTvHuTAAoJEAlNRuKJjbbV 7BMP/2NLR96R1SclRbX6/hP3cwPVAcR9eLsE4uIvhgbOMzUTU0x/Ip4+P3E9j9iqT1NSVhke /ZpSOtd8nYC+BIFSf2uD/hukyAuaifSp3EUczcj5KBtsQ/fcJxLKoQ8/mGQs6KDtbfSWn0d9 CTQx+P4oX3aKODsBiENU9D6pj74Kmlq1KR+20NMqZVqETzCagqNbTSc8xD1CIxFcSgpkU73E fMfyzovBW3QdVvF6OvEWRbW1Ubj7f+VOGZiFYaR2CBr0m4Pb3QUhYFm4eRMRm0iBDaFK7HAi xEYTOyBoSuUDr5zsdFnU8LogEkJIWtRh/58pdWIzxdwLFnvLv29j+W1EYnh9G0SNp6alCL8S sgz5nbhCUrfTsQshiPmDSpcahZgJSJH+cDwsuajjZdrOQi96pxXS+nRf4DwfO/qBdoROJKFp H6L/QlD2pZIwebMMqQDcVCOh3aP5HAJVYt1eUT+2kKGRRadssYsdsWpHM6qAnXLNtrzeeAy0 pHYcQx7ehNWCrycUBTgVr9GW/J+G5fJiTqlPSN2xXQvWttrjLzJnEPDg5cDChsy/TnXUAEvB 0A2EKR2e2zJRrfv0G2kp1/fqa2UzqLxrcUnr0cEDINVFyO4LioKkYI2TfScbhERyyftL82f+ OV+oAm70q3vq/ZU8DcVSbt4KEt3HRBdMM7sFAFYDiQI3BBMBCgAhBQJTvHMfAhsDBQsJCAcD BRUKCQgLBRYCAwEAAh4BAheAAAoJEF5IV7+/QHywv7wQAM3avSu568BhU8gbb+Fz7ofMpTJO gXNXmJZV7PdrfE/QJHVrsg6jqvLgDR4F19LdqdT2xgZ4VkIt35JXVkcI3I1gBpg1VNwiOREF 4L4sIy3nHcGW/rSGiMpoYODHEuYPJJOLrZoU0kNox4HWhldh1FTcGE7Eog2wo72PaSVtjI+e g1/Ig7XniIjCTEni1ARbr3i50PCmYi7qZ47FbhqlQZHe1fUBMDHWn828Jx7ZDXlNk7uU+dKW WcZIPuB0ubwGWK1WkClOsHv/UNfVvgRUujbkrCt0TbM5AifsWwKRpcS8veiJ8gR/VOYD3mPg R/0y+A38GhMgDs3y6zTEdoeTAmXW1Sksz+/jLiGmFEcRyZCI2YE/4bZxMY1e8X9woiFM6cMa jqCrKU4qlgOBLphbUogZrb5WIMc0g1nPSf+E6ZRrIz4QWahyxxGQ7I94WU2v99RL21xJXyEs tSeq8MowWLAGcLp5P4+lhcotbyvXBISyQg41Iy+8DhI1l/dmhcboRBNji6tUN7SNuNGU4CDq 8zKVCKDW7nrGYqVvt6xxZcWbQ75lfuc1lshd2pjNnVr9p1iXkGKmsEUqvmm6lgeBM5CGSFaJ VUZJ+jhfYJ89VlwN8LMWDi8/dpeVDnn6stzj4hEAkEZwBRCeRWycSM8SAzQ3q0jLvrNA/fLm SmlcXK2DtChSdW5hIEEuIFNhbmR2aWsgPHJ1bmEuc2FuZHZpa0BnbWFpbC5jb20+iQIcBBAB AgAGBQJTvHuTAAoJEAlNRuKJjbbVjqIQAJuu/ETIRq1Xp14PGvD/bxBiHcuvhSX95c6HifUQ kRF76IuVlvtJvPWyMF2ZqzqdLGaJCBQmCly7BRGjHuqvG8N2f8RmRBrnXX3Z4yz0pkhyYf5y U/M+2OaOmKfEmfSwwhU5h99CTAWnPk4b3s7YKfy1tzLfpuMhp+frBHbJ0/HloKocl5eSvxeK 2B4c+uW1Fj0MbdPZ+occ8FKJyGrEuBPMmTd7vtaD/kc+JmpwnvvHGU9CcMWP9XezJzX1QhVk VSS1i1bq5mYb1wJNjdfBTkoryXzrmO089M7bDqsL9Syz9d1vPtet98C0GYcbepKczxJhAZy3 i3+aIlPcPzyMebnSCEckjIT5vuPRycsPMpXeN03kiS20TMLQDVxRx8kkEnVM2xDzO4meyE16 VU1hbMrl60znkn5t/B1X0UnIaeS5gUt+hgjLo/HQr92ztw2ZDWtw1VSf52qgCUTD7uVwLvui 4mrZ3nsGvvIG3DaMTTYCiCIn9ajBsVXYSqFoJUp+Gkc7Eqb/9pTJLSGbEu1+5kzkjQ+Mv7ap YIxa22a2Upk88DVZ4Dm/9Bf3OYUn/AuPQi5rD8NvP6oSrSasmxUsFhF3iEucXGXoWATNe1Nq qzBiQ2miErooyVzucH+E4Iq2fQc7o+PQVNn6Xp2kcgVCSC3ED8WBzLVqG605X2qdOXGyiQI3 BBMBCgAhBQJTvHKKAhsDBQsJCAcDBRUKCQgLBRYCAwEAAh4BAheAAAoJEF5IV7+/QHywKRcP /0NXD1DxfxYVfFP9kld7iKNQwBy8BNePpAqJ0BOft4pHPW4O338IcszcxyJWPj9sNV10GS4U MprT3SAM5snZe1z4o+72AjeYfogzflnNKviDarU9CV/hJZDOA53CYrltp+NpgUUqQL5TRn6b TfKYnj3hQAoZ4Ai381iz2tzeUNw/8YyIlb3zVExIOelY7Xhsup+5mf+Jbqo2FidxRz0iqvoZ 0gx8h6XH7si1Z/qnffGz3uVOgiA2PTEG/DFpLooT/X3mjM+l+Ca8VIXJmEriluKcgjADjV2E +k6eYds9t9eTg/DxL9z
Re: [tor-talk] Satori (this crazy app thing I've been working on)
On Mon, May 5, 2014 at 12:14 AM, Griffin Boyce grif...@cryptolab.net wrote: Hey all, Hey! So Satori is this app for Google Chrome that distributes circumvention software in a difficult-to-block way and makes it easy for users to check if it's been tampered with in-transit. I've been kind of obsessive about it, and now that it's been released, I'd love to see what the Tor community thinks. :D It's basically *just* been released, so I'm seriously looking for critical feedback and bugs to squish. People seem to like it, but Satori is far from perfect. Sounds interesting! Could you say a bit more about how it distributes software? -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] fresh TBB is damaged and can't be opened on Mac OS X
On Mon, Mar 31, 2014 at 5:09 PM, lee colleton l...@colleton.net wrote: Additionally, a popup appears during the debug launch which says Profile Missing: Your Firefox profile cannot be loaded. It may be missing or inaccessible. That message doesn't appear with the launch via GUI and also the message about TBB being damaged isn't present with the --debug flag set. I have no problems running TBB on OS X 10.9.2. Please open a ticket about this on https://bugs.torproject.org/. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] fresh TBB is damaged and can't be opened on Mac OS X
On Mon, Mar 31, 2014 at 3:28 PM, lee colleton l...@colleton.net wrote: When I found that it didn't run I deleted it (move to trash, empty trash) then downloaded new version and observed same results. Re-downloaded and checked signature to be sure. It's a weird problem that I've not seen before. This behaviour doesn't affect any other applications on the system. Which version of OS X are you running? How do you open TBB after downloading (point and click or using the terminal)? -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] fresh TBB is damaged and can't be opened on Mac OS X
On Mon, Mar 31, 2014 at 1:24 AM, lee colleton l...@colleton.net wrote: I've checked the signature on TBB and it's good. The security setting allows all binaries to be run but it's still a no-go. Any other ideas? Try deleting your current copy and download a new one? -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Newbie with a bunch of questions for Tor Cloud
On Thu, Mar 20, 2014 at 3:32 AM, Soul Plane soulplan...@gmail.com wrote: On Wed, Mar 19, 2014 at 6:01 PM, Runa A. Sandvik runa.sand...@gmail.comwrote: On Wed, Mar 19, 2014 at 9:05 PM, Soul Plane soulplan...@gmail.com wrote: More questions: Why is the only region available for the Tor images us-east virginia? I thought I could use the free tier in other places. Wouldn't it be better to vary the regions instead of sticking them all in one place? We initially had images in all regions, but due to a bug/issue (see https://trac.torproject.org/projects/tor/ticket/10318) I decided to temporarily remove all images except the ones in us-east-1. The goal is to bring back images for the other regions at some point. Thanks, I read the bug and the AWS thread and it looks like there is something wrong with the image copy process. If I wanted to setup in a location other than Virginia would I be able to use your build script to do that or would I run into the same image copy problem? The copy problem may have been fixed, but I have yet to try it out myself. If you want to set up a bridge in a location other than Virginia, spin up an Ubuntu instance and go through the steps in ec2-prep.sh. Also I noticed in ec2-prep.sh you have: curl -m 5 http://169.254.169.254/latest/meta-data/reservation-id That address is invalid, what is the reservation id for? I read in Tor Weekly News today that the obfs3 protocol is vulnerable to active probing attacks and there is a replacement ScrambleSuit. If I setup the AWS Obfsproxy image now does that mean the Chinese can detect it and block it? Is that image obfs2 or 3 or both? Should I just wait until ScrambleSuit is supported, or can I modify the config file to only use ScrambleSuit, or is that not a good idea at this point? I don't want to run something that nobody is going to be able to use because governments can just detect it and block it. The current image is a standard bridge, an obfs2 bridge, and an obfs3 bridge. ScrambleSuit is not included. If you create an SSH key when setting up the instance, you can log on and change whatever you want. The Great Firewall of China blocks standard bridges and obfs2, but I believe it has yet to block obfs3. Ok so after I do a build if I want scramblesuit I change this line: ServerTransportPlugin obfs2,obfs3 exec /usr/bin/obfsproxy --managed to this: ServerTransportPlugin scramblesuit exec /usr/bin/obfsproxy --managed If you want your bridge to just support the scramblesuit transport, yes. According to this here I need to update obfsproxy first? Is that relevant here? https://lists.torproject.org/pipermail/tor-relays/2014-February/003886.html Yes. The ec2-prep.sh script will only pull packages from the Ubuntu repository. Is Tor obfuscation specifically more likely to come under attack from repressive governments? More likely than what? Than regular tor bridges. Are obfs3 bridges special bridges that users in repressive countries are more likely to use because other bridges are blocked? Maybe I don't understand. Yes. How is security handled. For example suppose there's a known vulnerability in Tor or Ubuntu does the server shut down until it's fixed and an update is available or does the server stay up and risk being hacked? Is there any notification sent to the AWS administrator in these cases? I would imagine even a small window is gold for some state run group to break in. The server stays up and checks for regular package updates from Ubuntu. If someone were to break in, they would not learn anything more than if they had set up a bridge themselves. Ok. Let's say there was a security vulnerability being exploited in Tor bridges. Is there any warning from Tor staff? Like when there is one in Flash or Microsoft etc I will get a CERT or a security advisory saying xxx is being actively exploited, view such and such a page for more information. In those cases I will just turn off flash or run the fix it. There will be emails on the tor-talk mailing list and posts on the blog. How can I determine the integrity of the server and do I have any responsibility to do that? Do you guys who are running these instances in the Tor Cloud just set it and forget it or is there some oversight required? The Ubuntu image the Tor Cloud image is based off of is verified when the image is built. The Tor package is verified as it is installed (which happens within the first five minutes you boot the server for the very first time). Thanks I took a look at the script. I would take an active role in securing the instance if necessary but I need to know what to do. What do you guys do? The image has been configured to automatically check for package updates. In addition, it is recommended that you only open certain ports in the firewall (22 for SSH, plus 443, 40872 and 52176 for Tor). Is there any obfuscation benefit to using random
Re: [tor-talk] Newbie with a bunch of questions for Tor Cloud
On Wed, Mar 19, 2014 at 9:05 PM, Soul Plane soulplan...@gmail.com wrote: I would like to set up a Tor bridge in the Amazon cloud. I have read the project page at cloud.torproject.org and I think I can do this at little to no cost based on what I've read. Amazon just sent me a $50 credit because I signed up to AWS but never used it so maybe I can use that to cover any overages. Did anyone else get one of those coupons? I'm glad you're considering contributing to the network! More questions: Why is the only region available for the Tor images us-east virginia? I thought I could use the free tier in other places. Wouldn't it be better to vary the regions instead of sticking them all in one place? We initially had images in all regions, but due to a bug/issue (see https://trac.torproject.org/projects/tor/ticket/10318) I decided to temporarily remove all images except the ones in us-east-1. The goal is to bring back images for the other regions at some point. And also wouldn't it be better to vary the OS and images in case there is a vulnerability in one, the rest of the ecosystem using different OSs are ok? The operating systems would all be Linux based, so I'm not sure this would make much of a difference. I read in Tor Weekly News today that the obfs3 protocol is vulnerable to active probing attacks and there is a replacement ScrambleSuit. If I setup the AWS Obfsproxy image now does that mean the Chinese can detect it and block it? Is that image obfs2 or 3 or both? Should I just wait until ScrambleSuit is supported, or can I modify the config file to only use ScrambleSuit, or is that not a good idea at this point? I don't want to run something that nobody is going to be able to use because governments can just detect it and block it. The current image is a standard bridge, an obfs2 bridge, and an obfs3 bridge. ScrambleSuit is not included. If you create an SSH key when setting up the instance, you can log on and change whatever you want. The Great Firewall of China blocks standard bridges and obfs2, but I believe it has yet to block obfs3. Is Tor obfuscation specifically more likely to come under attack from repressive governments? More likely than what? How is security handled. For example suppose there's a known vulnerability in Tor or Ubuntu does the server shut down until it's fixed and an update is available or does the server stay up and risk being hacked? Is there any notification sent to the AWS administrator in these cases? I would imagine even a small window is gold for some state run group to break in. The server stays up and checks for regular package updates from Ubuntu. If someone were to break in, they would not learn anything more than if they had set up a bridge themselves. How can I determine the integrity of the server and do I have any responsibility to do that? Do you guys who are running these instances in the Tor Cloud just set it and forget it or is there some oversight required? The Ubuntu image the Tor Cloud image is based off of is verified when the image is built. The Tor package is verified as it is installed (which happens within the first five minutes you boot the server for the very first time). I would take an active role in securing the instance if necessary but I need to know what to do. What do you guys do? The image has been configured to automatically check for package updates. In addition, it is recommended that you only open certain ports in the firewall (22 for SSH, plus 443, 40872 and 52176 for Tor). -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] New GPG key for Runa A. Sandvik
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi everyone, Tomorrow is my first day as a staff technologist at the Center for Democracy and Technology in Washington, D.C. I will continue to contribute to the Tor Project in one way or another. This new key will be used to sign email from me going forward. The new key is attached and is also available on the keyservers (with a signature from my old key) at: http://pgp.mit.edu/pks/lookup?op=getsearch=0x094D46E2898DB6D5 Here's the fingerprint and current subkey information for reference: pub 4096R/898DB6D5 2014-02-02 Key fingerprint = BEBA DB46 6778 5EF9 B00E D141 094D 46E2 898D B6D5 uid Runa A. Sandvik (offline long term identity key) runa.sand...@gmail.com uid Runa A. Sandvik (offline long term identity key) r...@cdt.org uid Runa A. Sandvik (offline long term identity key) r...@torproject.org sub 3072R/AC8C6CF6 2014-02-02 [expires: 2015-02-02] sub 3072R/FC71640D 2014-02-02 [expires: 2015-02-02] - -- Runa A. Sandvik -BEGIN PGP SIGNATURE- iQGcBAEBCgAGBQJS7qvsAAoJECgKOvb8cWQNT1UL/joI4P1++EIUPmudw179o+j3 4FxEV32snfYNwW9NTaQNwGODglu7EMZRQ4V1UhytXUb9P7taT0eDgiJxPIvC8Okw xZ7jmk5UnV+R37rMLuhcX1Ifwg3Z+tG0qAwJAbFhO/zZX3yTx+ZJoQBjZ4pX5SFQ qE5G7IeLUrWEAIZfm6mLp3M/kh/+8+e5MPsxrdywo9iLi3Y2IB9mO5VVb94qA5Ul l0ETWilusa9PNRD70jtWhQL6EjPS1tkKVbMFk04naDLr+74gwFAta38tJcnZtPId jZXhqpfqcxD0muaEwyvGtV2qfAxbDuDPDxVJofMeK5S5GESOe4AqLyrkMf4MPz4Z ifKFguKpYAiA4Hz9+v4AoZPhX1Zu33AV/4gfE/Q4ZHq3DtqzEkcyzvvEw9kL0pk+ lJC7+R58dJiJ7pGedG9ZCyJugyp6pujiD34RppPL90JxnP5s3V11VkBiv5ZEnB+k kvBq94TkyFD8bUncFhmh4ilkloPDOrqMcfYGl1VjGg== =KZvl -END PGP SIGNATURE- -BEGIN PGP PUBLIC KEY BLOCK- mQINBFLua4YBEAC2nVZbBz60QbtrpcAeTZonnxPOJMY6+jegn63WS1dF2gCJn4AM xuSF3Qf+oSkfwXII+ty6s9SoQwQmB4834hsEoaq5Ff7q0hpupNoSQ8DmLWAlG0Om wCSQn3Lk5PE5ZtYwqpNWrO7iUasGgi1U0hZ8b4ODqrcd52E33Nj4i2HBjgGpBhpO +iruovwStTPnfUhAMJuQCuxleBDN+fGLpe21ITYYdN57ns0OY/UtxYLrmRIRxF8q gPhpwCRMdpWxV7SVywcOZT/SuF3PDs2tFXbRXmrm9KaVolmVN85WOu2MUIlggAJ8 XA83KsIEdPx6lJpfbsW9vle3qdc0ielqipZgRKg8Kl9F3h/QS0vz0R6V/jUoKtNO PSuDpiG/DrFeuct7CQlUnbCR5A2ELTM6j5SzjZpN/M15U0I45t9FzeIfBTO+e1W/ tR7UBdjQMHDYdjVuVGOH9SUakvqHsaOyDf+M/D8OFeVHCNlokd5fpPuxeSKDNgrQ 6UrV/p1s81L0k26Akk/zh37/Rs2tCnLFQfaxM/zju+0Zqj1emg32I69obB+BIcca kA52fRvbU7HdJhwYTqQXsRyeWwkV0UXtcuNJQcJ7imgleaj7D8t/oKs8/GTgUZxn RWlqkcJIZpquPGZrZ+WnK54e46pbAdNnEhHSYJpBK8dR6qDzxTUCJv3iDQARAQAB tD9SdW5hIEEuIFNhbmR2aWsgKG9mZmxpbmUgbG9uZyB0ZXJtIGlkZW50aXR5IGtl eSkgPHJ1bmFAY2R0Lm9yZz6JAjcEEwEKACEFAlLubJkCGwMFCwkIBwMFFQoJCAsF FgIDAQACHgECF4AACgkQCU1G4omNttVzIRAAqydEaS2OyYi2G7K3Tj1bqSGkBBqr 0yTy64DMbkAQEAb1MLgw9Hp2fm71Zr5pjTA1LGQG6WssNu487KRJJbNsz0fR4sRV 1pH04PRIcYF9IpBjuJPA7HU2UfOp7biOwM7il+ZKYg7MuBMG+uYdKIWnHXDKUoPD fm8tlKD9cNy6gPUOzGQ4bVfMIQZQtImuSoSB0+1OSeXJ1j0TcBmIRtldZsXvtoob DXgmXoc10WgRCudx+09RSOaci+UciLutQwg25f9rzReULhQpZTLhdgQUxf8ujLa4 yBJnZL5w0SR6gvisCGSEVMoPdK+SUKUQjGCkQhDrtIA1l7n6DwSRunpUk6Io85+6 6xdWhXRb/UeKgTib+d1ZVTG+rDmsMalpvLwMtD7KSdTgtTiqQsgeIUI/RMcmV+Gv jWDvb+BtxYfruw4blu7lN6TYJzgLaTL0f6ko94bbtvfSC/3JFRvMgojb2npRRh7Z 4AgDczn+yekxEtjONkt448uAJkyr4D0AsPiztBz7eAGohft4lXA2/JEskNCAjYA7 hwnJtsOxbh7Z/Zdgx0bzK62t7IDShlKohWN+8Fp5DTiv0FzBRKu9V3sV4H+L46Tk vcmUeYnh4cPbvIolFFv2CSLeKaDmWc8NpyaTvSeG8gL4vOVw723QJQWfYUH+CbQL 1PfAwLde9n82oo+0SVJ1bmEgQS4gU2FuZHZpayAob2ZmbGluZSBsb25nIHRlcm0g aWRlbnRpdHkga2V5KSA8cnVuYS5zYW5kdmlrQGdtYWlsLmNvbT6JAjcEEwEKACEF AlLua4YCGwMFCwkIBwMFFQoJCAsFFgIDAQACHgECF4AACgkQCU1G4omNttVGLRAA sg5/KSy4mcwVsdgCrXHKbn9cdiKCrpfx316HXYqZoHlG8KZk0XXz1FIu+OIjrxPF ccAx3OG0/JIEEGlqTUfoLtBzAfejTaUIB0uvofoHXI0IZ0hayzmGdCC2+59G5pck QGDDLHz/f135/2QZ52nMxKUVDfTaLkoWYyN89/SGvpqYDVFTjnZnoCVQ4mkXqK10 NCIeHvumZqHH9s834DZLKrdYkvDCcvgSBwC+Jv0dIznFNBOEmQ/IcOAG6e67rkU2 i1hiJSfBxPvGSjtnLIW+Rn/3hEJE7T/0eYIX/WwZGNgusPi/W1zU+QqxGN5Qs+jg PZn3imjWLxz3saQfQHGhJyywzN7WPEy4vOMsfEAXPubuBY7D7WruIKz1Noas5Dvc xmcdmi7XreYMERzf2nIcs0PxKPYp3dbf0JxgHu/T+rdPthp59Wnj3xRG58yjI7T/ sjH/Su+JZM+ckSRT2azawRpgWdvYufs21p1WXn/mU7KmEijnuJXGfbkjtyOM8ily IliBjd3f2B8ZzqEhAeVioSvml/nSR6171rN6FQUB4w+CEQYbJ1D9DqwUd7gaF/OW ES1PGng8bIQg1dP0hIE8cKdiM+oy6e20jMfC+kTuCWubIHTdDGjzUOg75w+QU7qx nuAiprHnII5JcrfnP++xKiIBxOr1JnEj5IXXgpf/BoCJAjoEEwEKACQCGwMFCwkI BwMFFQoJCAsFFgIDAQACHgECF4AFAlLuiGACGQEACgkQCU1G4omNttVK3A/9HwSH Y2ujkqO5oIzOeRAqyyLP78+dApMMDSTOunnx8uQwo/rF1B7fJ1oHa00onVNrjHv8 v17KMzvzotKFO+l0eDhM9a5XtIZh3Q43sQAnRvRcq05M8JpvHzaHxVeX5WyhkLLl nRXPkmoHzXxz3yOV+OBjXToO+jE+KChENhaeu0hLmvjYFsAGYgjv3Zd0rlTy1e2B T9kdPeK8eQ8dvps4Qfdj4C+anF+J8Tep8ykL0rcECUq99QWei8LEeHLvjv0xAjh/ xbGbKqoKe/J+N8cYFQaEoCj8PzTe8DiCpff2T+1YQ4PKFBLOQb7lWsA5hfL8iPAZ HbKikMzDQ+WK4Movz3nwoPoE8J0GV0jYOZTX0QnDugb+vL2DfSSsLqjRvO5UX4Yj Sqnz5zEWRt3SBacuhE3ZqVBkvQX/MYdAdt2nCFL8ANObjZB5zLhGZCyv779zFdlm n8rHl0jxRw3oFNbP41ANCH96N1uDneotKK9JcJai9kAwyBrvUqO+miZcCdBgfrgO fcNI9+kvLFQqPDPtOuvuUjiUjF6AoMc0ZbYzoAB+QM4fDSPgNk7QtM6I4MjI9aJN qOFMUYi4OLZdcFyFmIPJ5wuVOSqG+XKH2oZmFo5ciElDeFLvMW+tCncvBFrju555 G2X8A2TdIGGZ9AL8gOBQoYGSNcib6ctCqUErDfe0RlJ1bmEgQS4gU2FuZHZpayAo b2ZmbGluZSBsb25nIHRlcm0gaWRlbnRpdHkga2V5KSA8cnVuYUB0b3Jwcm9qZWN0
Re: [tor-talk] Harvard student used Tor to send bomb threats, gets caught by old-fashioned policework
On Sat, Jan 4, 2014 at 9:42 PM, Bobby Brewster bobbybrewster...@yahoo.com wrote: Also, am I right to think that if he had used a bridge then the IP logged would have been the bridge IP rather than the Tor entry node IP? Is this traceable? Are bridge addresses public? Correct. Bridge addresses are not public, but it's easy to check if an IP address is a Tor bridge. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Harvard student used Tor to send bomb threats, gets caught by old-fashioned policework
On Sat, Jan 4, 2014 at 10:53 PM, Bobby Brewster bobbybrewster...@yahoo.com wrote: Correct. Bridge addresses are not public, but it's easy to check if an IP address is a Tor bridge. How? Do you just request constant bridges until the IP address the target used shows up? You can try to connect with Tor or you can run 'openssl s_client -connect ip:port'... I'm sure there are other ways. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Is it possible to access healthcare.gov through Tor?
On Tue, Nov 12, 2013 at 3:11 PM, Praedor prae...@yahoo.com wrote: I'm not sure I get the gist or concern. Https everywhere would block all 3rd parties except the NSA from seeing your information but you are giving that information to the govt system as a requirement for signing up so what is the point of going the extra step to hide what you have to provide anyway? The site must know who you are, where you live, your income, number of family members, health state, etc, things that google and other companies already know from all your shopping, web searches, etc. You can get a lot of healthcare-related information on the website without signing up. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] TorBirdy 0.1.2 released - Our third beta release!
On Mon, Nov 4, 2013 at 11:55 AM, Jacob Appelbaum ja...@appelbaum.net wrote: Call for help: We're looking for assistance with Translations - if you'd like to translate TorBirdy, we'd gladly accept a patch that prepares TorBirdy for translation work. We now have an amazing number of translations! Even if you can't help translate, we'd love to know what languages matter to you or your friends - please let us know? If you'd like to translate TorBirdy, please do so on https://www.transifex.com/projects/p/torproject/resource/3-torbirdy-torbirdy-properties/ and https://www.transifex.com/projects/p/torproject/resource/3-torbirdy-torbirdy-dtd/. We're especially looking for translations of TorBirdy into Persian - if you'd like to help us translate, please contact us! The Persian translation on Transifex is almost complete; 100% on torbirdy.properties, 81% on torbirdy.dtd. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] TorBirdy 0.1.2 released - Our third beta release!
On Tue, Nov 5, 2013 at 12:28 AM, Nima n...@redteam.io wrote: We're especially looking for translations of TorBirdy into Persian - if you'd like to help us translate, please contact us! The Persian translation on Transifex is almost complete; 100% on torbirdy.properties, 81% on torbirdy.dtd. It's complete in fact. IIRC, (according to sukhe), there's an string on Transifex which is actually not included in TorBirdy anymore. Sounds like the strings on Transifex should be updated. What is the gitweb.torproject URL to the TorBirdy strings? But there's a bigger problem which I only learned couple weeks ago. There's no Persian (Fa) Thunderbird. So that's no use, even if we have Persian TorBirdy included. Perhaps we should put out a call for translations for Thunderbird? -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Tor page on Stack Exchange now in public beta!
Hi everyone, The Tor page on Stack Exchange is now a public (beta) site! You can ask and answer questions about Tor on http://tor.stackexchange.com/. If you'd like to discuss the Tor Stack Exchange page itself, nominate moderators, and such, check out http://meta.tor.stackexchange.com/. Thanks! -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] A note about the Stack Exchange private beta
Hi everyone, Last week, the proposed Tor page on Stack Exchange [1] reached 100% commitment. Committed users will soon be invited to the private beta. I wanted to clarify a few things regarding this private beta (big thanks to the Stack Exchange team for replying to my email so quickly!): 1. The private beta stage typically lasts for one week. The Stack Exchange team may decide to extend the period to two weeks depending on how it goes. The purpose behind it is to ensure that users who committed to the site's proposal have a chance to start asking and answering questions, as well as help with the initial community building activities that will define and shape the site. 2. The more experts who participate in the private beta, the more certain it is that our page will move on to the next stage (i.e. the public beta). To get in on the private beta, visit the proposal page [1] and click the Commit!-button. Those who commit to the proposal now can invite others to join the beta later. [1]: http://area51.stackexchange.com/proposals/56447/tor-online-anonymity-privacy-and-security -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Help create a QA site for Tor!
On Mon, Sep 16, 2013 at 1:09 PM, Runa A. Sandvik runa.sand...@gmail.com wrote: A couple of months ago, we created a proposal for a Tor QA page on Stack Exchange. The proposal moved into the commitment-phase shortly after, but we need more help to move the page into a live beta. If you would like to see a QA site for Tor, please visit our proposal page and click the Commit!-button: http://area51.stackexchange.com/proposals/56447/tor Our proposal has reached 100% commitment and will launch as a live beta soon. Thanks everyone! -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Help create a QA site for Tor!
Hi everyone, A couple of months ago, we created a proposal for a Tor QA page on Stack Exchange. The proposal moved into the commitment-phase shortly after, but we need more help to move the page into a live beta. If you would like to see a QA site for Tor, please visit our proposal page and click the Commit!-button: http://area51.stackexchange.com/proposals/56447/tor Thanks! -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Help create a QA site for Tor!
On Tue, Sep 17, 2013 at 1:13 AM, adrelanos adrela...@riseup.net wrote: Runa A. Sandvik: Hi everyone, A couple of months ago, we created a proposal for a Tor QA page on Stack Exchange. The proposal moved into the commitment-phase shortly after, but we need more help to move the page into a live beta. If you would like to see a QA site for Tor, please visit our proposal page and click the Commit!-button: http://area51.stackexchange.com/proposals/56447/tor Thanks! Hi Runa, Hey, can you post this please in The Tor Blog as well? Done! See https://blog.torproject.org/blog/help-create-qa-site-tor -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Many more Tor users in the past week?
On Fri, Aug 30, 2013 at 3:59 AM, Collin Anderson col...@averysmallbird.com wrote: Firstly congratulations Tor; secondly this seems pretty solvable with math and what not. I downloaded the direct connecting users csv and created a spreadsheet between the start of the month and the end. It seems that it was the confluence of many states increasing their censorship of the Internet, especially instances like Vietnam and Facebook. Here is the raw data: https://docs.google.com/spreadsheet/ccc?key=0Amq69Ncu9Fp_dDlFYWhDZlNCTkdfWGhFWGlCOWFFNWcusp=sharing Hm, there are high spikes in a lot of different countries (countries you may not expect to see spikes in...), such as Albania, Fiji, Costa Rica, Barbados, Bermuda, the Faroe Islands... the list goes on. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Many more Tor users in the past week?
On Fri, Aug 30, 2013 at 4:37 AM, Roger Dingledine a...@mit.edu wrote: But I am compelled to point out that your table has one data point that will keep the bellies of conspiracy theorists full for months: the only -- only! -- country that didn't gain was Israel. There are more countries without any spikes (or users...), not just Israel. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] How much data does TBB write to disk?
On Fri, Aug 23, 2013 at 8:40 PM, Martin Kepplinger mart...@posteo.de wrote: Gerardo: Hi every one, I use a shared computer, so, to use TBB, y installed it in a encrypted area of the disk; the problem is, is quite an old pc, so is kind of heavy to run it from here. I'm evaluating to run it from a no-encrypted area, I just wonder if TBB (with no modifications from the user) writes *any* thing to the hd. Thanks in advance, Gerardo there is a very recent (and good) paper about exactly this topic somewhere. Maybe search the tor blog or twitter. Here you go: https://research.torproject.org/techreports/tbb-forensic-analysis-2013-06-28.pdf -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Introducing Tor Forums :-)
On Wed, Aug 7, 2013 at 3:52 AM, adrelanos adrela...@riseup.net wrote: (And yes, I mailed runa about it already, but didn't get any response. Therefore half-hearted attempt.) I've been traveling for the past three weeks. I plan on re-advertising the Stack Exchange page next week. -- Runa A. Sandvik -- tor-talk mailing list - tor-talk@lists.torproject.org To unsusbscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] hidden service documentation
On Sat, Jul 20, 2013 at 2:00 PM, GimEEE gim...@lavabit.com wrote: Is there some comprehensive documentation for running a hidden service? I was thinking it was just for a few people who had experience with that for some reason. Yes, see https://www.torproject.org/docs/tor-hidden-service.html.en -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Are non-official projects welcome to Stackexchange Tor QA forum?
On Fri, Jun 21, 2013 at 12:58 PM, Nadim Kobeissi na...@nadim.cc wrote: I disagree with the Tor Project pushing for a StackExchange that is limited to Tor, when a StackExchange for Anonymity Technology doesn't exist as a whole. I would prefer that a SE for Anonymity software is established that includes Tor as well as other solutions such as I2P. As it stands right now, Tor looks like it's trying to monopolize any possible Anonymity SE, and that's not okay. There is a thread here that echoes similar concerns: http://discuss.area51.stackexchange.com/questions/10705/why-limit-this-to-tor Nadim, I said this on Twitter and I will say it here too; the right place for this discussion is on the Stack Exchange proposal page. It is not up to the Tor Project to decide what goes and what does not on this page, it is up to the community. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Are non-official projects welcome to Stackexchange Tor QA forum?
On Fri, Jun 21, 2013 at 2:39 PM, adrelanos adrela...@riseup.net wrote: Runa A. Sandvik: On Fri, Jun 21, 2013 at 12:58 PM, Nadim Kobeissi na...@nadim.cc wrote: I disagree with the Tor Project pushing for a StackExchange that is limited to Tor, when a StackExchange for Anonymity Technology doesn't exist as a whole. I would prefer that a SE for Anonymity software is established that includes Tor as well as other solutions such as I2P. As it stands right now, Tor looks like it's trying to monopolize any possible Anonymity SE, and that's not okay. There is a thread here that echoes similar concerns: http://discuss.area51.stackexchange.com/questions/10705/why-limit-this-to-tor Nadim, I said this on Twitter and I will say it here too; the right place for this discussion is on the Stack Exchange proposal page. It is not up to the Tor Project to decide what goes and what does not on this page, it is up to the community. That contradicts what Nick initially replied (first reply in this thread). Stack Exchange proposals and pages are very much community driven. We need help from the community to make our page a success. There is a discussion on our proposal page about whether we should limit the page to Tor-related questions or not; http://discuss.area51.stackexchange.com/questions/10705/why-limit-this-to-tor. I agree with Nick's statement about seeing how things develop and revisit the question later. I am concerned that including other anonymizing networks and tools, such as Freenet and I2P, will make the site too broad. I would also like to encourage you to comment on the proposal page instead of the tor-talk mailing list. The proposal page is a good place for a discussion about what the page should and should not be. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Translations of manuals in /dist/manual/
On Thu, Jun 20, 2013 at 4:57 PM, Lutz Horn lutz.h...@posteo.de wrote: Hi, Hi, I'd like to improve the German translation of The Short User Manual in /dist/manua. Is there a source for this manual? Where to send the translated page to have it published? Thanks for volunteering! Please see https://trac.torproject.org/projects/tor/wiki/doc/translation/Introduction for information on how to get started. We are working on updating the manual, so you may want to wait with translating until the manual has been updated. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Plans about Askbot?
On Mon, Jun 17, 2013 at 3:09 PM, Lunar lu...@torproject.org wrote: One of the concern that was raised by Moritz is export capabilities of Stack Exchange. How likely are we to switch to a self-hosted application if it means losing data that had taken a lot of energy to assemble in the first place? Who said we will lose data? AskBot supports importing data from Stack Exchange (I have not tested it myself, so I don't know how much work it requires): http://askbot.org/doc/import-data.html -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Plans about Askbot?
On Sun, Jun 16, 2013 at 1:04 PM, Sebastian G. bastik.tor bastik@googlemail.com wrote: Do you plan to use Stackexchange instead? If we can move the page from the proposal stage to the beta stage, yes. If we can't do that, then I don't see why we should spend resources (time, money, people) on setting up our own site. At this point, we still need volunteers to vote on questions on the proposal page. If the page is successful and someone also delivers a secure and functional version of AskBot, then I don't see why we can't move over to something self-hosted later on. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Plans about Askbot?
On Mon, Jun 17, 2013 at 9:34 PM, Lunar lu...@torproject.org wrote: Runa A. Sandvik: On Mon, Jun 17, 2013 at 3:09 PM, Lunar lu...@torproject.org wrote: One of the concern that was raised by Moritz is export capabilities of Stack Exchange. How likely are we to switch to a self-hosted application if it means losing data that had taken a lot of energy to assemble in the first place? Who said we will lose data? AskBot supports importing data from Stack Exchange (I have not tested it myself, so I don't know how much work it requires): http://askbot.org/doc/import-data.html Moritz mentioned that we would not be able to migrate user/reputation. As such QA websites have an important social component (karma, badges, and so on), volunteers who would have invested time and energy to build a good reputation could be turned away by loosing all their stats overnight. We can set karma manually by editing the AskBot database. Doing so would be a bit of a pain if we have a high number of very committed users, though. Overall, I am not afrad of the import part: AskBot is free software. It's getting data out of Stack Exchange that I am wondering about. Looks like at least most data (except user logins, emails and passwords) could be retrieved through http://data.stackexchange.com/, but it looks a bit tedious to get a full export. Also, given there's a CAPTCHA, I am not sure backups could be automated. Yeah, I'll look into it. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Plans about Askbot?
On Mon, Jun 17, 2013 at 10:02 PM, Tom Ritter t...@ritter.vg wrote: On Jun 17, 2013 5:41 PM, Lunar lu...@torproject.org wrote: Runa A. Sandvik: On Mon, Jun 17, 2013 at 3:09 PM, Lunar lu...@torproject.org wrote: One of the concern that was raised by Moritz is export capabilities of Stack Exchange. How likely are we to switch to a self-hosted application if it means losing data that had taken a lot of energy to assemble in the first place? Who said we will lose data? AskBot supports importing data from Stack Exchange (I have not tested it myself, so I don't know how much work it requires): http://askbot.org/doc/import-data.html Moritz mentioned that we would not be able to migrate user/reputation. As such QA websites have an important social component (karma, badges, and so on), volunteers who would have invested time and energy to build a good reputation could be turned away by loosing all their stats overnight. Overall, I am not afrad of the import part: AskBot is free software. It's getting data out of Stack Exchange that I am wondering about. Looks like at least most data (except user logins, emails and passwords) could be retrieved through http://data.stackexchange.com/, but it looks a bit tedious to get a full export. Also, given there's a CAPTCHA, I am not sure backups could be automated. Did they stop doing the database dumps? Looks like they still have it: http://blog.stackoverflow.com/2010/06/introducing-stack-exchange-data-explorer/ -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Please help promote Tor's Stack Exchange page
On Wed, Jun 12, 2013 at 2:58 PM, Runa A. Sandvik runa.sand...@gmail.com wrote: * You will notice that while [3] has SSL enabled login, [1] does not. I have raised this issue with Stack Exchange already and hope to hear back soon. They're working on it. See http://meta.stackoverflow.com/questions/69171/why-doesnt-the-stack-overflow-team-fix-the-firesheep-style-cookie-theft/183034#183034 for details. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Please help promote Tor's Stack Exchange page
Hi everyone, We have been discussing setting up a QA page for a while now. Last night, I proposed a Stack Exchange page for Tor on [1]. The detailed version about how this process works can be found on [2], but here is the tl;dr: A user proposes a new page, other users follow said page, and users create and vote on hypothetical questions. Each user can only ask 5 questions, I am not yet sure if there is a limit to how much you can vote. Once the page reaches enough followers and questions with a high score, the page moves into the Commit phase. A small number of users will need to commit to help building the site. Once that's done, the page goes live and is considered to be in Beta. The proposal is currently in a Definition phase. To move to the next phase, we need (1) a high number of followers of the page, and (2) a collection of good, relevant questions. If you want to help promote our Stack Exchange page, sign up on Stack Exchange [3], visit our proposal page [2], log in*, follow, ask 5 questions, and vote on other questions. Thanks! * You will notice that while [3] has SSL enabled login, [1] does not. I have raised this issue with Stack Exchange already and hope to hear back soon. [1]: http://area51.stackexchange.com/proposals/56447/tor-online-anonymity-privacy-and-security [2]: http://area51.stackexchange.com/faq [3]: https://stackexchange.com -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Amazon Cloud Bridges
On Wed, May 1, 2013 at 3:21 AM, Mysterious Miser mysteriousmi...@yahoo.com wrote: I just set up an Amazon cloud bridge for Tor. I have a simple question. Now that the EC2 Instance is set up and active, do I have to press the Launch Instance button at the top of the page on my Amazon EC2 Dashboard? Do I have to do anything at all? Under Status Check, it says 2/2 checks passed. So does that mean it's live and what not? After selecting an image and clicking through a few screens, you should see a window with Your instances are now launching. You should then be able to see this instance in the main list, with 2/2 checks passed and the state running You do have to make sure that all four required ports (22, 443, 40872, 52176) are open in the firewall (called the security group). Is there a way for me to tell if it is being used? I figure if it's being used, it must be active. I realize it will not get used instantly, but I want to make sure it is usable by the general public. You can connect to the instance with ssh and use arm (with sudo -u debian-tor arm) to look at different stats, such as bandwidth, logs, configurations, connections, etc. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Unable to access Tor website
On Wed, Feb 27, 2013 at 3:52 PM, Nam Su namfree...@gmail.com wrote: Hi, Tor-list! Hi, Recently, I think South Korea government is starting sensoring Tor. A few days ago, I sent the mail to Tor-talk list about website problem. This thread is related to that. I used Tor for a year, and there was no problem using Tor. However, I couldn't use Tor official website. I tried to connect Tor website with SK telecom 3G network. And there is blog post that explaining Tor website error[1]. In that post, a bloger said 프록시 접속을 통해서 잘 우회가 되는 것으로 보아 당국에서 어떤 조치를 취하고 있는게 아닌가 의심스럽습니다(In English, I have a doubt that The government(of south Korea) is taking action about blocking Tor website because when i use proxy, I can access Tor website.). In my opinion, I agree this. Moreover, 실패한 툴(Failed tool):JonDo, Freegate, AdvTor, Ultrasurf, Hotspot shield. is there! In that post, to download Tor, he recommended using hide my ass. My first question, is it dangerous because of unknown sever and non-ssl connection? I can connect Tor network without bridges, Tor wiki, Tor blog, Tor-talk mailing list and Tor git page. Please email h...@rt.torproject.org and I will provide you with the right bundle and bridges. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Community in Orange County - California
On Tue, Feb 19, 2013 at 7:51 PM, SiNA Rabbani s...@redteam.io wrote: I'm wondering if there would be enough interest to hold a Tor hack-fest/training or even a Crypto party in Orange County, California. I would love to host such events in my work space, if you think you maybe interested please reply. I'd be up for it. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] support didn't answer
On Fri, Jan 25, 2013 at 1:31 PM, bobnomnom...@tormail.org wrote: I can't connect. I need support, nobody answer. What I need to do? Connect to Tor or to IRC? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] support didn't answer
On Fri, Jan 25, 2013 at 3:13 PM, bobnomnom...@tormail.org wrote: Connect to Tor or to IRC? Thanks, I found difference of those. But support didn't answer. Except joke posted to rt's #7231 that I can't get. Support is extremely busy and usually takes a day or two before replying. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor browser src.tar.gz missing
On Sun, Jan 6, 2013 at 9:27 PM, john...@hushmail.com wrote: Could somebody please upload the src.tar.gz for the latest tor browser? Looks like somebody forgot to upload it. All the tarballs are available on https://www.torproject.org/download/download.html.en (TBB 32-bit and 64-bit, along with the source tarball). Where are you trying to download the tarball from? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] no
On Mon, Nov 26, 2012 at 3:13 PM, Alessandro Aloisio a.aloisio1...@gmail.com wrote: no you're wrong. this is not a scam but we are a call center volunteers to help on computer products. We respond in Italian, English and French and have a website www.meklick.com which is now being updated. if I could not do advertising to help apologize There are two ways to help Tor users: 1. Answer questions on tor-talk@lists.torproject.org. 2. Join #tor on irc.oftc.net and help users there. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] The Tor Project is looking for support assistants and translators!
Hi everyone, The Tor Project is looking for support assistants and translators. Your job would be to handle support requests via our ticketing system and our new QA website, as well as make sure translations for software and documentation are up to date. This is a part-time contractor position starting in Q4 2012 and renewing quarterly. See https://www.torproject.org/about/jobs-translatorsupport.html.en for more information. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Updated Tor Cloud images
Hi everyone, The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 12.04.1 LTS (Precise Pangolin). These new images are available on the Tor Cloud website. You will not need to start a new instance you are already running a Tor Cloud instance with Ubuntu Precise. [1]: https://cloud.torproject.org/ -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Legitimate list?
On Wed, Oct 10, 2012 at 5:48 AM, eliaz el...@tormail.org wrote: I hope tor-talk is an appropriate place to post this query. I've been invited to a mailing list that is purportedly for bridge runners. The introduction to the list states: This list will be devoted to providing TOR bridges to help people in censored areas reach the free internet. Subscribers to this list can submit ip addresses and once a week, a limited list of bridges will be released to subscribers to help people (such as Syrians, Chinese, Iranian etc reach for these bridges to access the internet. I know and trust the folks who administer the list server software, but have no idea who is managing the particular mailing list. I've posted a query to the list requesting some sort of authentication, but so far have received no reply. Should I trust this list with my bridge details? Can anyone suggest a method of authentication, other than a facemeet, that I can suggest on the list? Finally, if anyone here recognizes the list I'm talking about, please post your experiences. Thanks, eliaz This list is not run by anyone at the Tor Project. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Legitimate list?
On Wed, Oct 10, 2012 at 6:36 PM, eliaz el...@tormail.org wrote: Thanks, it's helpful to know they're not of the Tor Project. Still, they may be people like me, interested in distributing our bridge addressess safely to those who can use them well. The admins at the host have high standards of safety and use for good purposes (or at least purposes that I can agree with). But AFAICT the admins pretty much let anyone set up a list without supplying bona fides (whatever they're worth, on the internet) in advance. I intend to get back to the admins with this question about the list. But before I get ahead of myself aggravate them, I'd like to be a little more confident that this may be a real problem rather than my overactive imagination. I'll be glad to send Runa the hdr info by PM as SiNA suggests. Let me know if that will be a help. - eliaz Please forward me the email and I will have a look. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] News from Iran
On Thu, Oct 4, 2012 at 5:22 AM, and...@torproject.is wrote: On Wed, Oct 03, 2012 at 05:41:05PM -0400, and...@pdqvpn.com wrote 1.0K bytes in 34 lines about: : IPsec is trivially easy to block. Most countries do it at the edge with simple port based firewalls. Yes, but not sure they actually block it. As of 6 months ago, china ignored ipsec. IPSec was blocked in Ethiopia a few months ago, as far as I know. I wouldn't be surprised if China is blocking it as well. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Little Snitch for tor!
On Wed, Oct 3, 2012 at 6:02 PM, Jerzy Łogiewa jerz...@interia.eu wrote: Hello, Hi, Since it dont work with tor, I would like to see app like Little Snitch on Mac for tor connections. It look like this: http://www.filescrunch.com/images/downloads/screenshots/4000/3511-1.jpg Does anyone work on this type of app? What is some not GUI way of doing it now? You mean an app that would automatically allow TCP connections to various ports for known Tor relays? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Hard Google Recaptchas with Tor
On Sun, Sep 30, 2012 at 10:53 AM, grarpamp grarp...@gmail.com wrote: Anyone else notice that Google's 'Recaptcha' service serves up really hard images when you're coming via Tor? They're not even words, just random obscured letters. You can still solve it, but not anywhere near as easily. Expect to hit new image often till you do. And the audio version is completely useless (though both via tor or not). I am not able to trigger reCAPTCHAs that are more difficult to solve than the normal/standard/default ones. Do you have a screenshot of the Tor Browser displaying such a reCAPTCHA? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] TorBirdy 0.0.13 released - New translations desired
On Sat, Sep 29, 2012 at 9:07 AM, Jacob Appelbaum ja...@appelbaum.net wrote: If anyone else wants to translate - basically, just download these two files, translate them and send them back to us: https://github.com/ioerror/torbirdy/blob/master/chrome/locale/en/torbirdy.dtd https://github.com/ioerror/torbirdy/blob/master/chrome/locale/en/torbirdy.properties Want me to add them on https://www.transifex.net/projects/p/torproject/? You will then be able to pull new translations from git.torproject.org/translation.git -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] TorBirdy 0.0.13 released - New translations desired
On Sat, Sep 29, 2012 at 12:02 PM, Jacob Appelbaum ja...@appelbaum.net wrote: Runa A. Sandvik: On Sat, Sep 29, 2012 at 9:07 AM, Jacob Appelbaum ja...@appelbaum.net wrote: If anyone else wants to translate - basically, just download these two files, translate them and send them back to us: https://github.com/ioerror/torbirdy/blob/master/chrome/locale/en/torbirdy.dtd https://github.com/ioerror/torbirdy/blob/master/chrome/locale/en/torbirdy.properties Want me to add them on https://www.transifex.net/projects/p/torproject/? You will then be able to pull new translations from git.torproject.org/translation.git Sure - if you are able to load all the translations that we have in there currently, it would be quite useful! Thanks! Will get to it next week: https://trac.torproject.org/projects/tor/ticket/6994 -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Obfsproxy Bridges in the Amazon Cloud
Hi everyone, The Tor Cloud images [1] for all the seven regions have been updated to fix a bug found in the unattended-upgrades configuration. The normal bridge images have also been updated to include obfsproxy [2], which attempts to help users circumvent censorship by transforming the Tor traffic between the client and the bridge. If you are already running a Tor Cloud bridge, you will need to either manually update your image, or set up a new Tor Cloud bridge and terminate the old one. If you decide not to take action, your image will fail to upgrade Tor correctly and will not be running as a bridge. If you just want to fix the bug in the unattended-upgrades configuration, do the following; log on with SSH and edit /etc/apt/apt.conf.d/50unattended-upgrades to say precise instead of lucid. [1]: https://cloud.torproject.org/ [2]: https://www.torproject.org/projects/obfsproxy -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] News from Iran
On Sun, Sep 23, 2012 at 11:36 PM, SiNA Rabbani s...@redteam.io wrote: Next phase is to do the same with the entire population of Iran. It is hard for me to imagine the Internet getting completely shutdown. I suspect they will make SSL traffic very slow to a point that users would give up and look for other alternatives Isn't this something they have been doing for a while? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Right click download
On Thu, Sep 20, 2012 at 12:45 PM, r...@tormail.org wrote: Is it safe (IP not revealed) to right-click-save-link-as and then download a file? Yes, but please read item d on https://www.torproject.org/download/download.html.en#warning -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] New Tor Cloud images
Hi everyone, The Tor Cloud images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 12.04.1 LTS (Precise Pangolin). These new images are available on the Tor Cloud website [1]. The new images include Tor's new GPG key, uses apt-get instead of aptitude, and also includes the deb.torproject.org-keyring package (#6776 [2]). If you are already running a Tor Cloud bridge, you will need to either manually update your image, or set up a new Tor Cloud bridge and terminate the old one. If you decide not to take action, your image will fail to upgrade Tor correctly and will not be running as a bridge. To manually update your image; log on with SSH, and follow the instructions [3] to add the new GPG key, upgrade Tor, and install the deb.torproject.org-keyring package. [1]: https://cloud.torproject.org/ [2]: https://trac.torproject.org/projects/tor/ticket/6776 [3]: https://www.torproject.org/docs/debian.html.en -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Wget over TBB
On Thu, Sep 20, 2012 at 12:00 AM, Webmaster webmas...@felononline.info wrote: Hello. If this is the wrong place for this question, please let me know where to go. Can wget be used to download from a .onion site? Where could I setup the proxy information for it? I currently use the Tor Browser Bundle, Ubuntu 12.04 64bit. You can use curl with --socks5-hostname. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Security update notice after new install
On Sat, Sep 15, 2012 at 6:59 AM, Katya Titov katti...@yandex.com wrote: Runa A. Sandvik: On Fri, Sep 14, 2012 at 12:42 PM, r...@tormail.org wrote: This notice- There is a security update available for the Tor Browser Bundle appears after a installing Tor 0.2.2.39 Is this a cause for concern? I've noticed the same thing. The notice disappears if you extract the package archive again. Bug, maybe? OK for me, working fine. But wondering: o Any reason why there was no testing via tor-qa? Tor 0.2.2.39 was a security-fix release for a fairly severe bug and we wanted to get a new release out as soon as possible. o Any reason why the release wasn't sent to tor-talk? We announce new Tor Browser Bundle releases on the blog. o What was the reason for disabling random port selection? (I disable it anyway, but just wondering why in this case?) Random port selection was disabled because of https://trac.torproject.org/projects/tor/ticket/6803 -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Cannot connect
On Sat, Sep 8, 2012 at 11:58 AM, Nader Idkeidek idkeid...@gmail.com wrote: My TOR dose not connect to he internet at all, I am in Jordan, and we have been recently filtered by the Gov Please email h...@rt.torproject.org for support and I will reply as soon as I can. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] End-to-end correlation for fun and profit
On Tue, Aug 21, 2012 at 6:21 PM, The Doctor dr...@virtadpt.net wrote: As I understand it, Tor nodes know IP addresses one up and one down in a circuit. I haven't read through the Tor codebase in a while (two or three years), so my question is this: Does Tor apply the same family avoidance check when picking nodes to avoid routing traffic through, say, two nodes on the same /16? In other words, would Tor do this: 192.168.1.23 - 172.16.23.93 - 10.0.61.44 ..or would this be a possible scenario: 192.168.1.23 - 172.16.23.93 - 192.168.88.77 (Reference: https://trac.torproject.org/projects/tor/wiki/doc/TorFAQ, section Which Tor node knows what? (which seems to need a link in the ToC)) From https://gitweb.torproject.org/torspec.git/blob_plain/HEAD:/path-spec.txt: We do not choose more than one router in a given /16 subnet (unless EnforceDistinctSubnets is 0). -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Updated Tor Cloud images, includes fix for Tor package upgrades
Hi everyone, The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 10.04 LTS (Lucid Lynx). These new images are available on the Tor Cloud website. The new images include a fix to allow Tor to upgrade automatically without requiring user intervention (#6511). If you are already running a Tor Cloud bridge, you will need to either manually update your image, or set up a new Tor Cloud bridge and terminate the old one. If you decide not to take action, your image will fail to upgrade Tor correctly and will not be running as a bridge. To manually update your image, do the following: 0. Log on with SSH 1. Open /etc/apt/apt.conf.d/50unattended-upgrades 2. Add the line: Dpkg::Options { --force-confold; } 3. Save and exit [1]: https://cloud.torproject.org/ -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] TBB lags behind as Firefox ESR 10.0.6 is released
On Mon, Jul 23, 2012 at 9:17 AM, Robert Ransom rransom.8...@gmail.com wrote: * How long will you wait for the QA process before making this security-fix release available to users? fwiw; I have not received an email from Erinn about tor-0.2.2.37-2, which means our QA testers haven't heard about it either. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor vs Network administrator
On Thu, Jun 28, 2012 at 7:45 AM, sy00963-...@yahoo.fr sy00963-...@yahoo.fr wrote: When using Tor in a local network, what the network administrator can see if he checks my activity on the network?? She will be able to see that you are connecting to the Tor network, but not what you are doing, which websites you are visiting, and so on. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor blocked
On Mon, Jun 25, 2012 at 2:24 PM, bao song michaelw...@yahoo.com.au wrote: In the part of the MENA where I am, the TBB no longer works, only the TBBobfs which is obsolete. Have you tried using TBB with bridges? TBB was working at 6 am GMT, and not working at 1 pm GMT. However, tor-obfsproxy-browser-bundle-2.3.12-4-en-US IS working. Any chance it will be updated We are working on it, but I'm not sure when we'll have updated bundles available on the website. This place uses a standard US blocking service, so I suspect TBB will soon be blocked throughout the MENA and possibly beyond. Can you name the country? Feel free to email me off-list at r...@torproject.org. Thanks, -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Startpage started to block Tor
On Sun, Jun 17, 2012 at 1:16 PM, ahmed ah...@linuxism.com wrote: Here is a screenshot: http://i.minus.com/ibrPbxW8VvKkWO.png We are talking to Startpage about this. You can follow https://trac.torproject.org/projects/tor/ticket/6151 for the rest of the discussion. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] OT: TorMail Question
On Fri, Jun 8, 2012 at 10:48 AM, Anthony Papillion anth...@papillion.me wrote: Does anyone know of a good/recommended way to contact the admins of TorMail? Try ad...@tormail.org -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor Hidden Service: Non-Existing vs Non-Rechable
On Wed, May 30, 2012 at 6:04 PM, Fabio Pietrosanti (naif) li...@infosecurity.ch wrote: Hi, i would like to know if it's possible to determine if a TorHS is non-existing or if it's non-reachable (exists but there is a connection problem). I believe this turned into https://trac.torproject.org/projects/tor/ticket/6031 -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Vidalia Greys Out.
On Sun, May 27, 2012 at 9:55 PM, Aaron Whiteman aaronwhiteman...@yahoo.com wrote: I am using the Tor Browser Bundle under Ubuntu 10.04. However, Vidalia invariably greys out when running Firefox. This is annoying since I want to see the bandwidth usage and message log. It means I can only kill Vidalia with killall -9. Is there a way to deal with this problem? So Vidalia freezes up whenever you're using the Tor Browser Bundle? Please open a ticket on https://bugs.torproject.org/. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] How to get browser after closing it ?
On Mon, May 28, 2012 at 11:36 AM, J. Bakshi baksh...@gmail.com wrote: Dear list, Hi, How can I start the tor browser after closing it ? villdila is still there but no option to start browser. See https://www.torproject.org/docs/faq.html.en#TBBCloseBrowser -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] No Ident response on IRC when using Tor
On Thu, May 24, 2012 at 3:43 PM, Sebastian G. bastik.tor bastik@googlemail.com wrote: I used to be able to (mis)use the TorBrowserBundle's Tor to connect to OFTC with PChat (Xchat fork). Note: I don't use the hidden-service. It's some time since I visited the IRC channels, I don't know which TBB worked. It fails with tor-browser-2.2.35-12_en-US and with tor-browser-2.2.35-7.1_en-US. I also tried 0.2.3.15 alpha. I always get: * Connected. Now logging in... * *** Looking up your hostname... * *** Checking Ident * *** No Ident response * *** Found your hostname That's not related to OFTC, since I get No Ident response on other IRC services as well. Some even let me in. OFTC however does not: * Closing Link: [any exit name] (No more connections permitted from your host) * Disconnected (Remote host closed socket). I got and tried different exits as well. Without Tor (any proxy) I can connect and get an Ident response. Therefor I guess it is not the firewall. I'm on Windows 7 (64bit) and PChat has not changed since I was able to connect. tor-browser-2.2.35-7.1_en-US is from February 2012 and I was only after that date. I use SSL but did so before. I'm not sure if it's the right place, but I don't know what's wrong. Someone (connecting over Tor) was spamming in #tor on OFTC earlier, might be related. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor relay denial of service
On Sun, May 20, 2012 at 9:56 PM, HardKor hardkor.i...@gmail.com wrote: Strange that nobody can reproduce that ... The 100 % CPU usage may come from the SSL uncompression. I tested on an other computer (always runing the poc on the same host than the relay) and it works. My version of Tor on this computer is : --- May 20 22:55:19.829 [notice] Tor v0.2.2.35 (git-73ff13ab3cc9570d). This is experimental software. Do not rely on it for strong anonymity. (Running on Linux i686) Tor version 0.2.2.35 (git-73ff13ab3cc9570d). --- Please update https://trac.torproject.org/projects/tor/ticket/5934 if you have more information about this. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor relay denial of service
On Sun, May 20, 2012 at 7:34 PM, HardKor hardkor.i...@gmail.com wrote: Hello, Hi, I found a strange behavior in Tor relays that allow me to make a remote Tor relay crash or at least have a 100 % CPU usage. It crashes only if it is possible to send more data than RAM (and swap) can store in 300 s (5 minutes) to the relay. I attach a proof of concept. Please open a ticket on https://bugs.torproject.org/ with details and the proof of concept. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor relay denial of service
On Sun, May 20, 2012 at 8:01 PM, HardKor hardkor.i...@gmail.com wrote: It was sent with the mail ... http://pastebin.com/xwp2S7wA Created https://trac.torproject.org/projects/tor/ticket/5934 -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Bridges and AWS...how stable/accessible are they?
On Thu, May 17, 2012 at 7:06 PM, ed1vel1 ed1v...@riseup.net wrote: I have been running a non exit relay for over a year. I have found that my ISP and/or blacklisting services seem to block my dynamic IP on some sites, and that this increases over time, after the IP is reset. I decided to try running the Amazon Web Services Bridge relay instead, using the free tier. The management console indicates it is live, and the monitoring suggests traffic. However, it doesn't seem to reliably support a Tor client connection at my own site. I have tested other bridges, obtained in the usual way, and several seem quite stable, even used on their own. However, I can't obtain a stable connection using the AWS bridge I set up recently. Any thoughts? You are the first to report an issue with the AWS bridge being unstable. Please email me the IP address so that I can test it? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tor 0.2.3.14-alpha is out
On Thu, Apr 26, 2012 at 4:57 PM, Joe Btfsplk joebtfs...@gmx.com wrote: On 4/23/2012 2:38 AM, Roger Dingledine wrote: Tor 0.2.3.14-alpha fixes yet more bugs to get us closer to a release candidate. It also dramatically speeds up AES: fast relays should consider switching to the newer OpenSSL library. https://www.torproject.org/download/download Where is v0.2.3.14-alpha? All I see from your link also searching d/l site blog is v0.2.3.12a. (Packages coming eventually.). -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] wget - secure?
On Tue, Apr 17, 2012 at 7:27 PM, torsi...@tormail.net wrote: Hi, Hi, I saw a conversation about wget and I'm wondering if wget is save to use. I know about DNS leaking but could there be another privacy concern? Can wget put the real IP in a header for example? I guess it can't but does someone know for sure? According to a table on https://code.google.com/p/torsocks/, wget is not 100% safe to use with Tor and it does leak DNS. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Unable to launch amazon TOR cloud instances
On Wed, Apr 18, 2012 at 3:05 AM, bordergu...@riseup.net wrote: Hello, Hi, While I was managing my Amazon account I was doing some routine terminations of bridges in preparation to launch fresh instances from the https://cloud.torproject.org/ website. Now for some reason whenever on click on any of the public bridges buttons, for some reason it will not load the AMI local to any of the regions. I also cannot locate the instances manually. Did Amazon yank the pre-built instances, or am I just having issues? I was updating all 14 images, and that takes a while. I have now updated the website to point to the new AMI IDs. I will send out another email announcing the new images in a little while. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Updated Tor Cloud images, and action required
Hi everyone, The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 10.04 LTS (Lucid Lynx). These new images are available on the Tor Cloud website. If you are already running a Tor Cloud bridge, you will need to either manually update your image, or set up a new Tor Cloud bridge and terminate the old one. If you decide not to take action, your image may fail to download package updates correctly. What follows is an important message from the ubuntu-cloud mailing list [2]: In an effort to improve on reliability of the Ubuntu archive mirrors for EC2 instances, Canonical is replacing the existing EC2 archive mirrors with mirrors backed by Amazon S3. This change itself will be done via modification of DNS entries and will be transparent to users. However, due to a bug in the http pipelining implementation in S3 a change to apt configuration needs to be made to avoid download errors. We have chosen to deliver this change via a package upgrade in cloud-init. The *action required* is one of the following: a). upgrade cloud-init: $ sudo apt-get update ; sudo apt-get install -y cloud-init b). launch official AMI's released after 2012-04-01, which will have the fix included. c). manually disable http pipeline use in apt: $ echo 'Acquire::http::Pipeline-Depth 0;' | sudo tee /etc/apt/apt.conf.d/99-no-pipelining Should you choose not to take appropriate action, you will likely experience transient apt downloading errors after the change is implemented. In order to give appropriate time to apply the change, this transition will not occur before April 18, 2012. [1]: https://cloud.torproject.org/ [2]: https://lists.ubuntu.com/archives/ubuntu-cloud/2012-April/000752.html -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] access sites
On Tue, Apr 3, 2012 at 9:09 PM, frank kearns fxk1...@yahoo.com wrote: I have TOR icon installed on my desktop. After clicking it, the onion goes from yellow to green and a popup says 'Welcome to the TOR. Now I need help getting to sites like Silk Road. The isn't a spot to type it in like Google or other browsers. Thanks for any advice. Sorry, no one on this list is going to help you get access to Silk Road. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] websites
On Wed, Apr 4, 2012 at 4:20 PM, frank kearns fxk1...@yahoo.com wrote: I installed TOR on my computer and got the green onion . The screen says I'm connected to TOR but I don't see where to enter websites I want to access. Can anyone help? Many thanks See https://www.torproject.org/dist/manual/short-user-manual_en.xhtml for instructions on how to use the Tor Browser Bundle. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Trusted source?
On Wed, Mar 14, 2012 at 2:29 PM, Geoff Down geoffd...@fastmail.net wrote: http://anonymous-os.tumblr.com/about Would you use Tor supplied by these people? Depends how Tor is installed. Is it installed from the official deb.torproject.org repository? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Can't access Tor network
On Sun, Mar 11, 2012 at 2:25 AM, andr...@fastmail.fm wrote: I am using a Tor bridge with the following in the Torc file- ExcludeExitNodes {US} Take 'ExcludeExitNodes {US}' out and try again. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Refreshed Tor Cloud Images
On Mon, Feb 27, 2012 at 8:54 PM, Runa A. Sandvik runa.sand...@gmail.com wrote: The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 10.04.4 LTS (Lucid Lynx). These new images are available on the Tor Cloud website. And I just updated the website to include private bridge images as well. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Refreshed Tor Cloud Images
On Wed, Feb 29, 2012 at 12:32 AM, ix4...@gmail.com wrote: On 27 February 2012 20:54, Runa A. Sandvik runa.sand...@gmail.com wrote: Hi everyone, The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 10.04.4 LTS (Lucid Lynx). These new images are available on the Tor Cloud website. Great idea - thanks for providing these images. Deployment of new instances is a breeze. One question on the included configuration: It seems to currently cap bandwidth at 10GB/week. But AWS Free Usage Tier gives us 15GB/month. Wouldn't AccountingStart month 1 10:00 AccountingMax 15 GB be a more sensible default for people trying this out? Making this as cost-free as possible should help with Tor Cloud adoption. Does this config limit the usefulness of the relay? It does, unfortunately. A bridge pushing 15 GB per month is not nearly as useful as a bridge pushing 40 GB per month (which seems to be the average for bridges). With the free tier, and 40 GB per month, you still end up paying less than $3 a month. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
[tor-talk] Refreshed Tor Cloud Images
Hi everyone, The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 10.04.4 LTS (Lucid Lynx). These new images are available on the Tor Cloud website. Users who wish to update their existing installations can do so with: 'apt-get update apt-get dist-upgrade reboot'. [1]: https://cloud.torproject.org/ -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Refreshed Tor Cloud Images
On Mon, Feb 27, 2012 at 11:11 PM, Grant Olson k...@grant-olson.net wrote: On 2/27/12 3:54 PM, Runa A. Sandvik wrote: Hi everyone, The Tor Cloud [1] images for all the seven regions have been updated to include the latest cloud image for stable Ubuntu release 10.04.4 LTS (Lucid Lynx). These new images are available on the Tor Cloud website. Users who wish to update their existing installations can do so with: 'apt-get update apt-get dist-upgrade reboot'. [1]: https://cloud.torproject.org/ Does this just include minor fixes, or important new features like obfuscated bridges as well? Just minor fixes and things related to Ubuntu. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Vidalia Obsfproxy Bundle?
On Tue, Feb 21, 2012 at 1:33 AM, Low-Key² cryptic...@yahoo.com wrote: Does anyone know if such a bundle exists or if there are plans to make one? The reason I ask is because I know a number of people who would be down to run an Obfuscated Tor Bridge, but are a bit wary of installing Linux as they've either never used it, or are still dependent on a number of programs they use in either Windows or OS X. I managed to get such a set up working just fine via tweaking the Tor Browser Bundle that comes packaged with Obsfproxy. I was thinking about writing up a quick how to guide for that approach on either Windows or OS X. But, if such a standalone Vidalia bundle exists, it would weed out a couple steps (pretty much editing some text and repointing Vidalia to various programs and config files) that would make the instructions simpler for someone who isn't necessarily 100% comfortable with Tor or setting up something like it. We don't yet have a Vidalia obfsproxy bridge-by-default bundle. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] What is the new signature of new TBB?
On Mon, Feb 20, 2012 at 4:55 PM, James Brown jbrownfi...@gmail.com wrote: Hello, friends! Hi, I have got a new TBB file tor-browser-gnu-linux-x86_64-2.2.35-7.2-dev-en-US.tar.gz for the site of the Torproject and have tried to verify it. I have had the next result: $ gpg --verify tor-browser-gnu-linux-x86_64-2.2.35-7.2-dev-en-US.tar.gz.asc tor-browser-gnu-linux-x86_64-2.2.35-7.2-dev-en-US.tar.gz gpg: Signature made Mon Feb 20 12:45:15 2012 UTC using RSA key ID 140C961B gpg: Can't check signature: public key not found As I can the the previous version was signed by Erinn Clark: gpg --verify tor-browser-gnu-linux-x86_64-2.2.35-7-dev-en-US.tar.gz.asc tor-browser-gnu-linux-x86_64-2.2.35-7-dev-en-US.tar.gz gpg: Signature made Sat Feb 18 19:53:24 2012 UTC using RSA key ID 63FEE659 gpg: Good signature from Erinn Clark er...@torproject.org gpg: aka Erinn Clark er...@debian.org gpg: aka Erinn Clark er...@double-helix.org Is the sign of tor-browser-gnu-linux-x86_64-2.2.35-7.2-dev-en-US.tar.gz right sing? Sebastian made and signed the bundles this time, as explained on https://blog.torproject.org/blog/new-tor-browser-bundles-linux -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Tails and a way to permanently install it on a removable media
On Mon, Feb 20, 2012 at 8:44 AM, KRZS kro...@tormail.net wrote: I found Tails perfect for tor onion networking but it's impossible to use it on different pcs .A permanent install would allow me to carry on it my gpg and ssh keys , install programs , personalize it, customize it... i find it useless this way ... IMHO ,next releases, it MUST have at first boot on the desktop an icon giving me the freedom to choose where to permanently install the os and a a mandatory procedure to encrypt the filesystem where it will be installed . Have a nice day Disappointing : Please see https://tails.boum.org/download/index.en.html#index4h1 for instructions on installing Tails onto a USB stick. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Added a tor node
On Sun, Feb 12, 2012 at 3:30 AM, Michael Van Veen mich...@mvanveen.net wrote: Hello! Hi, I just followed the directions on this page: https://lists.torproject.org/pipermail/tor-talk/2012-February/023070.html, having first picked up the link on hacker news. I had to tweak things a little bit to work, but the ticket here has helped tremendously: https://trac.torproject.org/projects/tor/ticket/5009#comment:17 I believe my tor node is up and running, but I have no way to verify. Is there an easy way to determine if I have configured my tor bridge correctly? Thanks for running a bridge! Please email the ip:port to tor-assista...@torproject.org and we'll confirm and add it to our list. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Increasing obfsproxies with the cloud
On Sun, Feb 12, 2012 at 4:12 AM, Michael J.J. Tiffany michael.tiff...@gmail.com wrote: Would a tremendous number of new nodes with the obfsproxy code, running on EC2/Rackspace/random-cloud-provider, be helpful at this point? If so, how much is too much? Hi, We have a lot of obfsproxy bridges running at the moment. We need stable, high-bandwidth bridges. I don't think setting up a tremendous number of bridges in the cloud will help much at this point. When obfsproxy is more stable and maintaining an obfsproxy bridge does not require too much manual intervention, I will build obfsproxy bridge images for cloud.torproject.org. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Help users in Iran reach the internet
On Sun, Feb 12, 2012 at 6:22 PM, Low-Key² cryptic...@yahoo.com wrote: I'm running into an issue involving obfsproxy. I've followed the instructions provided by Jacob. From a friend's machine at a different IP address, if I use Vidalia and point the bridge and the ORPort at 9001, it works without any issues. However, if I point the bridge to the port setup by obfsproxy, I run into the following problem with Vidalia: Establishing an encrypted directory connection failed (done). When running Tor with the logging set to debug on my bridge, I've come across the following which I believe to be the culprit: Feb 12 13:06:36.000 [debug] tor_tls_handshake(): About to call SSL_accept on 0x7f51fda2ca80 (unknown state) Feb 12 13:06:36.000 [info] TLS error: unexpected close while handshaking (unknown state) Feb 12 13:06:36.000 [info] connection_tls_continue_handshake(): tls error [unexpected close]. breaking connection. Am I missing a particular package? Has anyone else run into this problem? Have you tried the client instructions (Step 2a) on https://www.torproject.org/projects/obfsproxy-instructions.html.en ? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Need a tester with a Buffalo WZR-HP-G300NH2 for the torouter project?
2012/2/11 Irmgard Pflützbaatz spamspamsausages...@gmx.de: Hi, Hi, I would like to ask if you need help by testing the software on this piece of hardware. I believe we dropped the Buffalo due to lack of memory / storage space. If you want to help with the Torouter project, see https://trac.torproject.org/projects/tor/wiki/doc/Torouter -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] obfsproxy firewall settings?
On Sat, Feb 11, 2012 at 6:04 PM, Charlie DeTar c...@media.mit.edu wrote: Hi, Hi, When running obfsproxy, Tor registers the obfs2 server transport at a different port from the port on which OR is listening. Which ports need to be accessible through a firewall on the bridge node? Both. And which ports do tor-assistants need to be aware of? Just the port obfsproxy is using. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] new obfs proxy
On Sat, Feb 11, 2012 at 9:23 PM, garulf gar...@autistici.org wrote: I setup an obfs proxy at 95.245.167.122:56299 What about if my ip changes? I've to post again to this list? Yes, and you want to send it to the non-public list tor-assista...@torproject.org. -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] UK block TOR
2012/1/25 Rock Neurotiko miguelglafue...@gmail.com: The mobile operators block Tor. If any ISP can block Tor, maybe, in the future, the goberments will create a law to block Tor. http://www.zdnet.co.uk/blogs/tech-tech-boom-10017860/mobile-operators-confirm-tor-block-10025282/ They block the HTTP version of the Tor Project website for PAYG customers. If you have a contract, or you have verified your age and had the filter removed, you will be able to access the HTTP version of the page as normal. See: https://blog.torproject.org/blog/tale-new-censors-vodafone-uk-t-mobile-uk-o2-uk-and-t-mobile-usa -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] How to stick with an IP ?
On Sun, Jan 15, 2012 at 4:11 PM, J. Bakshi baksh...@gmail.com wrote: Hello, Hi, sometimes to check the geolocation functionality of a site under development, we need to use proxy for other countries. Can we stick to a specific IP in tor to use it as a proxy ? Have a look at https://www.torproject.org/docs/faq.html.en#ChooseEntryExit -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] How to make 100.000 bridge?
On Fri, Jan 13, 2012 at 4:48 PM, Fabio Pietrosanti (naif) li...@infosecurity.ch wrote: You need: - someone with technical skills to install a bridge - an internet exposed server where you can install your own software that run in background Or just https://cloud.torproject.org/ -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
Re: [tor-talk] Why can't I hide/minimize to tray anymore?
On Fri, Dec 30, 2011 at 3:00 PM, M Robinson mr.m.robin...@gmail.com wrote: Why can't I hide/minimize to tray anymore? Related to https://trac.torproject.org/projects/tor/ticket/4795, maybe? -- Runa A. Sandvik ___ tor-talk mailing list tor-talk@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk