Re: [tor-relays] Please enable IPv6 on your relay!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 05/12/2015 06:09 PM, Moritz Bartl wrote: > Hi! > > We still have a depressingly low number of relays that support IPv6 > (currently only ~120 of ~1900 relays). If your host supports IPv6, > please enable it, especially if you run an exit! This ha

Re: [tor-relays] Please enable IPv6 on your relay!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 05/14/2015 05:09 AM, Sharif Olorin wrote: > Hi Michael, > > From [0]: > >> > There is currently no support for running a DIR port on IPv6. Leave any >> > DirPort option as is. > HTH, > Sharif > > [0]

[tor-relays] Tor relay is restarting every minute

My Tor relay interrupts and restarts every minute (without my involvement), so it isn't usable by anyone. Nothing new in my obfsproxy log. My relay was running fine until I moved and changed to a new ISP (AT&T). Jun 19 06:10:28.717 [notice] Tor v0.2.6.9 (git-145b2587d1269af4) running on Linux wit

Re: [tor-relays] Any security tips on running a TOR relay?

Andrew wrote: > I've got a spare server for two (freebsd) and I'd like to start > running TOR relays on them. > > Is there any security concerns I need to deal with, or is the ports > compile + updates good enough to keep my systems decently secure. > > I actively monitor the machines, but as you

Re: [tor-relays] experiences with debian tor 0.2.8.6 package from deb.torproject.org

n/listinfo/tor-relays > I really don't understand the problem here... Why don't you just move one of your multi-instances to the default instance? Then you have the tor@default.service and the tor@whatever.service and you are good to go with whatever you wanted to achieve. Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] experiences with debian tor 0.2.8.6 package from deb.torproject.org

ot; instead, with a colon, not a slash. The slash is there to block a specific address *range*. You can read more about subnets and the calculation for a bitmask here: https://en.wikipedia.org/wiki/Subnetwork Best, Michael On 2016-08-06 at 13:30, pa011 wrote: > I am inexperienced an have probably

Re: [tor-relays] High speed Tor relay advice

binary prefixes give a more "accurate" representation of the size than the SI prefixes. https://en.wikipedia.org/wiki/Mebibyte Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relay

Re: [tor-relays] Tiny computers (RPi-like) for exit nodes?

Zack Weinberg wrote: > Has anyone had any experience running *exit* nodes on Raspberry > Pi-grade hardware, or slightly beefier? We are thinking of replacing > the old, bulky, power-hungry machine currently running exit > 78C7C299DB4C4BD119A22B87B57D5AF5F3741A79 with something on that level. > It

Re: [tor-relays] Tiny computers (RPi-like) for exit nodes?

Roman Mamedov wrote: > On Thu, 18 Aug 2016 10:40:00 -0600 > Michael McConville wrote: > > > Zack Weinberg wrote: > > > Has anyone had any experience running *exit* nodes on Raspberry > > > Pi-grade hardware, or slightly beefier? We are thinking of > > &

Re: [tor-relays] Tiny computers (RPi-like) for exit nodes?

Michael McConville wrote: > Roman Mamedov wrote: > > On Thu, 18 Aug 2016 10:40:00 -0600 > > Michael McConville wrote: > > > > > Zack Weinberg wrote: > > > > Has anyone had any experience running *exit* nodes on Raspberry > > > > Pi-gr

Re: [tor-relays] Tiny computers (RPi-like) for exit nodes?

Yawning Angel wrote: > Michael McConville wrote: > > I forgot to mention all the crypto required, too. These boards don't > > have crypto accelerators, so that's a big cost. > > What? I forgot to mention all the crypto required, too. These boards don't have

Re: [tor-relays] relay on a vps not exclusively used for tor?

Anything other than Tor running on the server is a liability. I'd be particularly concerned about things like Owncloud (not to mention web servers), which has a history of security vulnerabilities. I think it's best to restrict Tor relays to dedicated installs. Petrusko wrote: > Hey! > Thx for add

Re: [tor-relays] Tiny computers (RPi-like) for exit nodes?

Torsdag den 18. august 2016 12:35:11 skrev Zack Weinberg: > Has anyone had any experience running *exit* nodes on Raspberry Pi-grade > hardware, or slightly beefier? We are thinking of replacing the old, > bulky, power-hungry machine currently running exit > 78C7C299DB4C4BD119A22B87B57D5AF5F3741A7

Re: [tor-relays] HALP!

using the user "tor" (which should be the default)? Currently, no other user but "bunny" can read from or write to those files and it's the only user that can look into the current directory. Best, Michael signature.asc Description: OpenPGP digital signature ___

Re: [tor-relays] Cheapest HW to get 20Mbit?

hitecture of the Pi, you could always (try to) compile the package for yourself. Best, Michael [1] https://archlinuxarm.org/ signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] tor 0.2.8.x did not make it into OpenBSD 6.0?

nusenu wrote: > did I understand it correctly that tor 0.2.8.x did not make it into > OpenBSD 6.0 because tor 0.2.8.x has been released to recently? Correct, it's at 0.2.7.6p1. There are ways of checking this, such as simply looking at a mirror's package list: http://openbsd.mirrors.pair.com/6.0

Re: [tor-relays] total relay bandwidth

always good to have even more relays or exit nodes, as more "hop points" for connections means more diversity throughout the network which increases anonymity for all users. And it's like with donations, every bit counts ;) Best, Michael signature.asc Description

Re: [tor-relays] DigitalOcean pricing (Re: tomhek - the (new) biggest guard relay operator)

I love using the Debian-to-Arch scripts to convert a DO Debian instance to Arch Linux. Works great and without any hassle (you could try several times if anything goes wrong :D). https://github.com/gh2o/digitalocean-debian-to-arch Best, Michael

Re: [tor-relays] DigitalOcean pricing

> tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > You all did read my message that Debian can be converted to Arch Linux on DigitalOcean, right? That would leave you with bleed

Re: [tor-relays] Dealing with OVH Abuse Complaints

(Netboot in your customer interface btw) to normal HDD boot and blocked port 22 via exit policy, but this time I didn't sent an email to them, as they didn't answer my first one. Abuse complaints from other companies or individuals were never sent to me though if there were any on

Re: [tor-relays] Relay uptime after restarting Tor service

whining but patiently waiting. Take me as an example. Didn't mention it until now for quite some time and I have no problem waiting some more months :) Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor

Re: [tor-relays] Stats not updated for several days?

On 2016-11-01 at 10:34, Pascal Terjan wrote: > For example > https://atlas.torproject.org/#details/20462CBA5DA4C2D963567D17D0B7249718114A68 > says uptime is 12 days and current version is 0.2.6.10 but I upgraded > the machine and updated tor to 0.2.8.9 over a day ago: > I currently have problems

Re: [tor-relays] Stats not updated for several days?

ld be resolved by now. Please > try again. > > Sorry for the trouble. :( > > All the best, > Karsten > Looks good on my end :) Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays mailing

Re: [tor-relays] Blocking Domains

lbox IWEB--72-55-186-0-24 (NET-72-55-186-0-1) 72.55.186.0 - 72.55.186.255 iWeb Technologies Inc. IWEB-BLK-03 (NET-72-55-128-0-1) 72.55.128.0 - 72.55.191.255 Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays mailing

Re: [tor-relays] Tor bandwith question

e same, so it's ok :) Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Questions regarding arm on Debian

behind it: > > Nickname "Iridium" (Iridium) > RelayBandwidthBurst 1.5 MB (1572864) > > Should i file a bug report? Try using the changes I mentioned and if it still has problems, I would definitely file a bug report. Best, Michael signature.asc Description: OpenPGP d

Re: [tor-relays] network diversity with freeBSD

today to find the mistake - what is wrong please? > > Is there a good instruction elsewhere? > > Is it possible to install arm on freeBSD and if so could somebody help me > with the implementation please? > > Thanks > > Paul > Best, Michael signature.asc De

Re: [tor-relays] Outgoing Connections to middle nodes?

ions to so-called rendezvous points. Have a look at this sentence here from [1]: "In general, the complete connection between client and hidden service consists of 6 relays: 3 of them were picked by the client with the third being the rendezvous point and the other 3 were picked by the hidden se

Re: [tor-relays] Exit Node Geographical Location

st a Tor exit node, you could add them to the ISP list in the wiki (though the spam filter has problems right now), or at least mention them here if you want to :) Best, Michael signature.asc Description: OpenPGP digital signature ___ tor-relays maili

Re: [tor-relays] The t-shirt organization thingy (was: Network scan results for CVE-2016-5696 / RFC5961)

Everybody has to give his work and support, so we can stand for free Internet (free as in freedom, not as in free beer). This was not meant to be against you, it was only in response to your mail because you got to this topic :) Best, Michael signature.asc Description: OpenPGP digital si

Re: [tor-relays] All I want for Chrismas is a bloody t-shirt

ud to show this tshirt ! (but have to wait for higher > temperature...) > > Thx all for this gift ! > Happy new year, > Cheers :) Still waiting for an answer to my mail at all, but I will remain patient. It's just a gift, after all :) Have fun with your shirt and also Happ

Re: [tor-relays] All I want for Chrismas is a bloody t-shirt

On 2017-01-10 at 21:24, I wrote: > Michael, > > Jon Selon seems to be the Shirt Commander > > He didn't muck around sending mine. > > Rob Thank you, Rob! I will contact him :) Best, Michael signature.asc Description:

Re: [tor-relays] Provider Suggestion, Scaleway -- Online SAS: not so good for diversity

On 2017-02-24 at 12:32, Mattia wrote: > Hi, > for the diversity where i can take one at nearly the same price? Well, you can search for small providers in small countries. I have a Tor relay in Moldavia, for example (MivoCloud). Best, Michael signature.asc Description: OpenPGP d

Re: [tor-relays] Provider Suggestion, Scaleway -- Online SAS: not so good for diversity

On 2017-02-24 at 13:50, mick wrote: > On Fri, 24 Feb 2017 12:43:20 +0100 > Michael Armbruster allegedly wrote: > >> On 2017-02-24 at 12:32, Mattia wrote: >>> Hi, >>> for the diversity where i can take one at nearly the same price? >> >> Well, you can

Re: [tor-relays] MivoCloud

On 2017-02-24 at 14:02, nusenu wrote: > Michael Armbruster: >> I do know at least 2 exit nodes from that AS, >> though. > > There are no exits in AS39798 as of 2017-02-24 09:00 according to > onionoo data, do they operate on more than one AS? > You are right, there ar

Re: [tor-relays] lets increase Tor's IPv6 exit capacity: list of IPv6 exits that do not allow IPv6 exiting (outdated tor or missing torrc option)

us is published). Feel free to shoot me a message again if that's not the case. I used the opportunity to change my contact details to a longer PGP key id to not rely on those unsecure 32-bit ids anymore. Best, Michael signature.asc Description: OpenPGP digital signature _

Re: [tor-relays] Relay traffic went to ~zero

t; > Cheers, Hi Jan, you can use the Arch Build System [1] on Arch Linux to retreive the PKGBUILD files of testing packages without using the testing repository for pacman. That's how I am using 0.2.9.10 on my exit with Arch Linux without switching to the testing packages complete

[tor-relays] Testing Golang relay implementation

All, I am working on a pure Golang relay implementation. https://github.com/mmcloughlin/pearl/ I have thus far been testing locally with chutney ( https://gitweb.torproject.org/chutney.git). The project is not complete by any stretch, but I believe I am close to the point where it can handle Tor

Re: [tor-relays] Testing Golang relay implementation

> lessons learnt. > > > > On Tue, Oct 24, 2017 at 5:18 AM, Michael McLoughlin > wrote: > > All, > > > > I am working on a pure Golang relay implementation. > > > > https://github.com/mmcloughlin/pearl/ > > > > I have thus far been test

Re: [tor-relays] Testing Golang relay implementation

Is the bug in my descriptor or the parser? In testing it took a little bit of finagling to get chutney to accept a non-Tor "platform" item in the descriptor. Turned out adding a "proto" line as well is enough. But it did occur to me that other code may assume the "platform" line takes a certain fo

Re: [tor-relays] Testing Golang relay implementation

erested in collaborating, but I didn't get a response. It's unclear to me what their plans are. However Filippo Valsorda has a strong reputation so it's worth keeping an eye on. Mike On Thu, Oct 26, 2017 at 12:07 AM, Karsten Loesing wrote: > On 2017-10-26 00:09, teor wrote: > >

Re: [tor-relays] Testing Golang relay implementation

Missed a link from my last email: https://github.com/go-tor/gotor On Thu, Oct 26, 2017 at 2:56 PM, Michael McLoughlin wrote: > After another look at the spec, I still believe the descriptor I'm > publishing conforms, as was my intention. Sorry to have caused all these > problems :

[tor-relays] Relay conf

Relay configure and started, stops abruptly. Any advice would be appreciated /var/log/tor/log Last three lines: Tor has successfully opened a circuit. Looks like client is functionality is working Bootstrap 100%: Done Interrupt: Exiting cleanly _

Re: [tor-relays] Updating relay using killall -hup command

You pretty much need language support to make that work. Erlang has had in-process upgrade capability for ages. I'm not aware of another language which does it. Functional languages have an advantage since the top-level loop is typically a function calling itself. --mkb > On Jul 19, 2018, at

[tor-relays] NTP and tor

I brought up my first relay over the weekend and I am waiting for traffic to ramp up. In a few places I've read the suggestion to use NTP to keep the relay's clock in sync. Fair enough, but now there is a problem... I've been reading up on NTP a bit and using ntpdate to occasionally update the

[tor-relays] DirCache on low-memory hosts

Those of you running relays on low-RAM hosts, what do you do about DirCache? When I first brought up my relay I noticed this message in the logs: [warn] Being a directory cache (default) with less than DIRCACHE_MIN_MEM_MB MB of memory is not recommended and may consume most of the available reso

Re: [tor-relays] NTP and tor

Which of these do you use on your relays? --mkb > On Jul 30, 2018, at 3:49 PM, grarpamp wrote: > > ntpd runs fine without listener or with it blocked > > https://www.ntpsec.org/ > http://openntpd.org/ > https://wikipedia.org/wiki/Ntpd > > https://github.com/ioerror/tlsdate/ > > You can get

Re: [tor-relays] new fingerprint

Yes, that is correct. Conversely, if you're setting up a new host and want to keep the fingerprint, copy those files to the new host before launching Tor. --mkb > On Aug 1, 2018, at 1:14 PM, TorGate > wrote: > > Ok i have found it :-), > 1. i have stopped tor an

Re: [tor-relays] Question regarding variables in torrc

I found this templating tool really easy to use for my torrc: https://github.com/tests-always-included/mo Invocation is like so: NICKNAME=$NICKNAME mo /tmp/host-config/torrc.mo > /tor/etc/torrc And the corresponding torrc line is: Nickname {{NICKN

Re: [tor-relays] Congrats to Nullvoid

Egads. I had no idea HTTPS wasn't the default for pkg. I've just updated my relays to fix that. --mkb > On Aug 26, 2018, at 10:43 AM, grarpamp > wrote: > > Switch over to https and latest... > > /etc/pkg/FreeBSD.conf: > > url: "pkg+https://pkg.FreeBSD.org/${ABI}/l

Re: [tor-relays] Limiting open port RST response from N to M packets/sec (FreeBSD)

I've got pf installed but it's not doing anything other than helping SSHGuard block ssh attempts. I've got five of those lines within the same minute starting at Aug 28 07:25:29. --mkb > On Aug 29, 2018, at 3:27 PM, nusenu wrote: > > Hi, > > I'm curious as to how frequent FreeBSD relay opera

Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada

Meltdown and Spectre are interesting intellectually but real world breaches tend to be more prosaic. It's the boring stuff that gets us: social engineering, shitty passwords, out-of-date software. We see it over and over in the news and in overviews like the DBIR. I'm not saying we should ignor

Re: [tor-relays] Multi node management programs/platforms?

My relay VMs are provisioned with Terraform. Once the VMs are up, Terraform copies over a shell script which installs and configures everything. Relay keys, configs, etc live on a separate volume so that relays keep the same identities even when I rebuild the VMs from scratch. I can destroy all

Re: [tor-relays] SSH login attempts

FWIW I found sshguard easier to deal with on FreeBSD than fail2ban. Turn off password logins and take good care of your ssh keys. Moving sshd to a different port is a waste of time but harmless if you’re the only administrator. —mkb > On Sep 4, 2018, at 5:35 AM, Marcus Wahle wrote: > > Dea

[tor-relays] Fallback Directory Mirror

Hi, i run 17 Entrys and one bridge at the moment. I dont plan to change the IP adresses or the ports and most of them are already paid for nearly two years and i dont see a reason to switch them off after that time so if more fallback directory mirrors are needed then feel free to add them: D379A1

[tor-relays] Shutdown of fallback directory mirror armbrust: E781F4EC69671B3F1864AE2753E0890351506329

any further notice, so I wanted to ask how to further proceed. Kind regards, Michael Armbruster ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

[tor-relays] tor_bug_occured_(): This line should not have been reached

Hey guys, my relay 79E683340B80676DCEB029E48FBD36BC66EBDA1E told me: Jul 06 15:22:34.000 [notice] DoS mitigation since startup: 0 circuits killed with too many cells. 150515 circuits rejected, 16 marked addresses. 0 connections closed. 104 single hop clients refused. Jul 06 16:23:25.000 [warn]

Re: [tor-relays] Call for setting up new obfs4 bridges

Hi, i wanted to run my bridge on 443 too but i had the same problem on Raspbian Buster with Tor 0.4.0.5 I asked Google but choosing a port above 1024 was the only thing that made it working for me. Am Fr., 19. Juli 2019 um 11:52 Uhr schrieb : > > On July 19, 2019 at 6:36 AM Ben Riley wrote: > >

Re: [tor-relays] Measuring the Accuracy of Tor Relays' Advertised Bandwidths

Hi! Good to hear that you guys try to solve the problem of slow measured relays. For example when i measure my relay 40108FDFA40EDB013F7291F3B4DA3D412ED3A5EF with the speedtest from tele2 i get about 90 MiB download and about 50 MiB upload but Tor measures it with about 15 MiB. Some of my relays

[tor-relays] AvoidDiskWrites

Hi Torproject, i think about enabling AvoidDiskWrites 1 on all my relays and not only on my Pi because the prices for the VPS are anyway cheap as f*ck so i think saving the provider a few disk writes is a nice deal. In the manual it is described as: *AvoidDiskWrites* *0*|*1* If non-zero, try to w

[tor-relays] Fast flag - wrong speed in dir-spec.txt?

Hi Torproject, as far as i can see my relay currently can advertise 560 KiB/s. That are 573,44 KB/s. 43C7BC2E17FB26B204EC0BD9AA784E4736979087 Following your dir-specs it should get the "Fast" flag if it can provide more than 100KB/s. https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt#n25

Re: [tor-relays] Fast flag - wrong speed in dir-spec.txt?

Yep makes sense now. Thanks for clearing this Roger:) Am Fr., 30. Aug. 2019 um 10:31 Uhr schrieb Roger Dingledine < a...@torproject.org>: > On Fri, Aug 30, 2019 at 05:52:22PM +1000, teor wrote: > > The default value for AuthDirFastGuarantee is still 100 KB. > >[...] > > 6/9 authorities use measur

Re: [tor-relays] Operator straw poll: Reasons why you use Tor LTS versions?

Hi Am Do., 5. Sept. 2019 um 04:12 Uhr schrieb Mike Perry < mikepe...@torproject.org>: > How can we fix that for you, or at least, how can we make it easier to > run the very latest stable series Tor on your relay? > When i started my first relay i had zero knowledge about Linux so i can describe

[tor-relays] Questions about Fallbacks

Hi, when i setted up my relays i choosed 443 as the ORPort. My thought behind it was that 443 is most likely not blocked and less likely observed because the ISP could expect to anyway only see encrypted data so a Tor connection will more likely slip through it. I let the DirPort on 9030 because

[tor-relays] MyFamily line commented out but stays valid?

Hi, when i comment out the MyFamily line with an # in the torrc on one relay it seems to be still handled like before. Hitting x in nyx or waiting a few days or rebooting does not make any change. Is this expected? I expected that relay to show as part of no family now and listed as "Alleged Fa

Re: [tor-relays] MyFamily line commented out but stays valid?

Am Di., 22. Okt. 2019 um 19:04 Uhr schrieb : > On 22.10.2019 18:53, Michael Gerstacker wrote: > > > when i comment out the MyFamily line with an # in the torrc on one > > relay it > > seems to be still handled like before. > > > > Hitting x in nyx or waiting a

Re: [tor-relays] MyFamily line commented out but stays valid?

> > Can you send us a link to your relay on Relay Search, and a copy of your > torrc? > > It's hard to debug without detailed information. > > I already filled a ticket and included my torrc there like requested from nick: https://trac.torproject.org/projects/tor/ticket/32541 Yesterday i checked t

[tor-relays] A relays primary entry guards

Hi, from time to time i see that message in the logs of my guard relay: 21:09:06 [NOTICE] I learned some more directory information, but not enough to build a circuit: We're missing descriptors for 1/2 of our primary entry guards (total microdescriptors: 6270/6294). That's ok. We will try to fetc

[tor-relays] 100% CPU load on Windows Server 2019

Hi, for diversity purposes and curiosity i decided to choose Windows Server 2019 together with TheOnionPack for my first exit relay. But before it even started to process any user traffic the CPU from time to time gets maxed out for several minutes what makes it ugly to operate a relay on Windows.

Re: [tor-relays] Would you place your secrets or in worst case make your life

> > I hope more people do come on board of this discussion now! > I dont think that there should be a fixed percentage about how much one person is allowed to add. "We need more relays ... but not from you! We don't reject your fingerprints because we don't think that you are malicious but we don

Re: [tor-relays] 100% CPU load on Windows Server 2019

0.4.4 stable or earlier so that i can decide if i want to buy a Windows license key or rather shut it down. Greetz Michael ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] 100% CPU load on Windows Server 2019

Hi teor, > > On 18 Feb 2020, at 06:10, Michael Gerstacker < > michael.gerstac...@googlemail.com> wrote: > > > > Once the consensus diffs are processed the load drops to normal. > > After some time without anything noticeable for me in the debug logs the >

[tor-relays] Why MyFamily?

Last week i got an email with a warning that some of my relays are missing the correct MyFamily setup and that i am a risk to do end-to-end correlation attacks together with a list of all relays i operate plus one relay which uses the same name than i use but is not operated by me. I already knew

Re: [tor-relays] Why MyFamily?

 Hi nusenu Am Fr., 21. Feb. 2020 um 22:24 Uhr schrieb nusenu : > Hi Michael, > > > Last week i got an email with a warning that some of my relays are > > missing the correct MyFamily setup and that i am a risk to do > > end-to-end correlation attacks together wit

Re: [tor-relays] Why MyFamily?

Am Sa., 22. Feb. 2020 um 15:17 Uhr schrieb nusenu : > >> - risk reduction for tor users > >> MyFamily declarations allow the tor client software to automatically > >> detect relay families when creating circuits to > >> avoid using multiple relays from the same operator in a single circuit. > >> >

Re: [tor-relays] Why MyFamily?

Am Sa., 22. Feb. 2020 um 17:11 Uhr schrieb nusenu : > Michael Gerstacker: > >>> But as long as my family is still a small > >> It is rather hard, time consuming and error prone > >> to asses group sizes without proper MyFamily declarations. > >> >

Re: [tor-relays] Why MyFamily?

gt; Relay operators take some risks, but we do our best to > reduce those risks. > > MyFamily is about user and operator safety. We pay more > attention to arguments based on safety. > > On 22 Feb 2020, at 23:02, Michael Gerstacker < > michael.gerstac...@googlemail.com>

Re: [tor-relays] Why MyFamily?

Am So., 23. Feb. 2020 um 11:51 Uhr schrieb Moritz Bartl < mor...@torservers.net>: > On 22.02.20 15:51, Michael Gerstacker wrote: > > I am the operator of my relays so if i for whatever reason decide to not > > publish that i run a bigger family then this should be my own

Re: [tor-relays] Why MyFamily?

I just found out that i can have more than one MyFamily line specified in the torrc. nusenu could you please check with your tool that everything is correct now? Greatz Michael ___ tor-relays mailing list tor-relays@lists.torproject.org https

Re: [tor-relays] Why does my relay often appears offline in Metrics and should I be worry?

Am Do., 9. Apr. 2020 um 15:39 Uhr schrieb Clément Février < clem...@forumanalogue.fr>: > Hello, > > I often check my relay trough Metrics, but it often appears as offline > after some time, from couple of hours to few days. I think it has this > behavior since December 20. However, my relay seems

Re: [tor-relays] Got my first abuse

Am Fr., 17. Apr. 2020 um 10:20 Uhr schrieb NOC : > I said most not 100%. My exits were in a Datacenter yet they showed up at > my home. Actually it depends who it is. The local police here was very > friendly and send me a invitation to visit them in cases with computer > fraud that were made over

Re: [tor-relays] Ubuntu Focal

I have a relay on Focal Fossa and it required some research for me too but this is the repository you need to add. deb https://deb.torproject.org/torproject.org focal main deb-src https://deb.torproject.org/torproject.org focal main Am Mo., 1. Juni 2020 um 10:36 Uhr schrieb Pac-Man : > When wil

Re: [tor-relays] Authority Nodes

Am Mo., 22. Juni 2020 um 22:28 Uhr schrieb nusenu : > I would assume that operators running relays in an end-to-end correlation > position [1] due to incomplete MyFamily configuration are not considered > eligible to run a directory authority. > > [1] https://nusenu.github.io/OrNetStats/endtoend-c

Re: [tor-relays] >23% Tor exit relay capacity found to be malicious - call for support for proposal to limit large scale attacks

Am So., 5. Juli 2020 um 18:36 Uhr schrieb nusenu : > Hi, > > I'm currently writing a follow-up blog post to [1] about a large scale > malicious tor exit relay operator > that did run more than 23% of the Tor network's exit capacity (May 2020) > before (some) of it got reported to the bad-relays te

Re: [tor-relays] Become a Fallback Directory Mirror (deadline: July 23)

Am Mi., 8. Juli 2020 um 19:37 Uhr schrieb gus : > > Will it have the same address and port for the next 2 years? > > Search [2] and [3] for your relay fingerprint or IP address and port. > > Keep the same IP address, keys, and ports. > > We need fast relays that will be on the same IP address and

Re: [tor-relays] Become a Fallback Directory Mirror (deadline: July 23)

Am Fr., 24. Juli 2020 um 19:36 Uhr schrieb David Goulet < dgou...@torproject.org>: > > In tor binary: > > > https://gitlab.torproject.org/tpo/core/tor/-/blob/master/src/app/config/fallback_dirs.inc > > The generated list that ended up in the binary. Thus this list needs to be > reviewed for accura

Re: [tor-relays] Blog: How Malicious Tor Relays are Exploiting Users in 2020 (Part I)

> > > https://medium.com/@nusenu/how-malicious-tor-relays-are-exploiting-users-in-2020-part-i-1097575c0cac > > So in other words when the destination website does not really care about their users safety and the user sends unencrypted exit traffic through Tor then an exit relay operator could do th

Re: [tor-relays] Become a Fallback Directory Mirror (deadline: July 23)

Am Mo., 27. Juli 2020 um 02:31 Uhr schrieb Nick Mathewson < ni...@torproject.org>: > On Fri, Jul 24, 2020 at 1:36 PM David Goulet > wrote: > > > > On 24 Jul (13:30:31), David Goulet wrote: > > > > > > The new list has been generated and can be found here: > > > > Apology, clarification needs to b

Re: [tor-relays] Become a Fallback Directory Mirror (deadline: July 23)

Am Do., 17. Sept. 2020 um 20:51 Uhr schrieb Toralf Förster < toralf.foers...@gmx.de>: > On 9/16/20 1:05 AM, Michael Gerstacker wrote: > > the only relay i don't want to be a fallback anymore is a fallback now > > Maybe OT but I'm just curious about the rea

Re: [tor-relays] Exit node on Contabo

I had a very similar experience with them half a year ago. Before i bought the service i asked them if exits are allowed and how they act in case of abuses. Their answer was that exits are allowed and they will find a solution together with me in case of abuses. Three months later the second abus

Re: [tor-relays] Relay down, "rejected", help

On 4/19/2014 4:16 PM, Roger Dingledine wrote: > On Sat, Apr 19, 2014 at 09:19:26AM -0700, kbesig wrote: >> Install of tor-arm went well enough, no error msg's. >> >> ~$ sudo -u debian-tor arm > > You're using arm dangerously. See item #14 on > https://www.torproject.org/docs/tor-relay-debian > for

Re: [tor-relays] Running tor-arm under restricted user [WAS: Relay down, "rejected", help]

On 4/19/2014 4:50 PM, Michael Wolf wrote: > It's worth noting that, under Debian (Jessie, others?), arm will be > unable to read tor's logs if you run it as your user. The default group > for /var/log/tor is 'adm'. You'll have to: > > $ sudo chgrp -R deb

Re: [tor-relays] SSH scans from Tor exit

On 4/28/2014 10:04 PM, Zack Weinberg wrote: > For what it's worth, after complaints from campus IT we also wound up > blocking SSH in the CMU Tor exit's policy. It's a shame we can't help > people do sysadmin stuff and whatnot anonymously, but the port scans > do seem to happen quite often. > > z

Re: [tor-relays] can the old compromised keys be invalidated, "named" be recovered

On 4/29/2014 6:06 PM, starlight.201...@binnacle.cx wrote: > I just read that the relay can't get its > old name back for six months now that > the keys have been changed due to > Heartbleed. The "Named" flag is being done away with. Use your old nickname, or whichever nickname you want... it won'

Re: [tor-relays] suspicious exit?

On 6/6/2014 7:39 PM, JB wrote: > I just setup my relay node today, and am keeping a hawkish(ish) eye on > traffic And noticed a flurry of activity from SSH port (22) at > 5.104.224.5 - which is listed as an exit. That exit node uses port 22 as its ORPort (where other relays send Tor traffic).

[tor-relays] UK Exit Node

Any tips for UK Exit Node operators on a Residential ISP (BT)? Running a reduced exit policy, informed various teams at the ISP, running PeerGuardian on the server in question (blocking P2P/kiddyporn/hacking related IPs), have a hostname setup tor-relay.itschip.com, planning to leave the thing

Re: [tor-relays] UK Exit Node

node. I have tor-relay.itschip.com set in torrc.. guess I have to fiddle with more things? Anyone with Debian experience who can help in that field? On 06/07/2014 07:24, Jeroen Massar wrote: On 2014-07-06 07:06, Michael Banks wrote: Any tips for UK Exit Node operators on a Residential ISP (BT

Re: [tor-relays] UK Exit Node

 From: Sanjeev GuptaSent: Sunday, 6 July 2014 08:36To: tor-relays@lists.torproject.orgReply To: tor-relays@lists.torproject.orgSubject: Re: [tor-relays] UK Exit NodeOn Sun, Jul 6, 2014 at 3:14 PM, Michael

Re: [tor-relays] UK Exit Node

"Moritz Bartl" À: tor-relays@lists.torproject.org Envoyé: Dimanche 6 Juillet 2014 14:41:23 Objet: Re: [tor-relays] UK Exit Node On 07/06/2014 09:39 AM, Michael Banks wrote: ‎The block lists are very limited, i.e P2P, lists of known blackhats/paedophiles, unallocated IP ranges and most

Re: [tor-relays] UK Exit Node

ions to those known addresses. The broadband security team at my ISP is sorting the DNS records out. They even offered a SWIP. ~Chip On 06/07/2014 10:28, Jeroen Massar wrote: On 2014-07-06 09:14, Michael Banks wrote: Advice taken I was debating to switch over to relay-only or not. I must note, the Tor

  1   2   >