<html><head></head><body><div class="ydp16328287yahoo-style-wrap" style="font-family:Helvetica Neue, Helvetica, Arial, sans-serif;font-size:16px;"><div><div><span style="color: rgb(38, 40, 42); font-size: 13px;">On Friday, December 16, 2022, 8:07:46 AM PST, meskio <meskio@torproject.org> wrote:</span><br></div></div><div id="ydp16328287yahoo_quoted_1684040363" class="ydp16328287yahoo_quoted"><div style="font-family:'Helvetica Neue', Helvetica, Arial, sans-serif;font-size:13px;color:#26282a;">
<div><br></div>
<div>Quoting Gary C. New via tor-relays (2022-12-10 04:20:48)<br></div><div><div dir="ltr">>> What is the status of Bug #7349 - Obfsbridges should be able to "disable" <br></div><div dir="ltr">>> their ORPort?<br></div><div dir="ltr">>> <a href="https://bugs.torproject.org/tpo/core/tor/7349" rel="nofollow" target="_blank">https://bugs.torproject.org/tpo/core/tor/7349</a><br></div><div dir="ltr">>> I recently setup a loadbalanced OBFS4 bridge and would prefer not to expose the ORPort to the World.<br></div><div dir="ltr">>> I've noticed that some of the tasks to make this possible have been implemented, but it isn't clear whether everything needed is in place as I receive a bridge/relay down status on metrics.torproject.org when the ORPort isn't exposed to the World.<br></div><div dir="ltr"><br></div><div dir="ltr">> We do still need the ORPort reachable. The bridge authority does use that port<br></div><div dir="ltr">> to check if the bridge is running (marking the 'running' flag to it). We are<br></div><div dir="ltr">> still using that flag to decide what bridges are distributed, we'll like to<br></div><div dir="ltr">> revisit that in the future. But for now, please expose the ORPort to the world.<br></div><div dir="ltr"><br></div><div dir="ltr"></div>meskio,</div><div><br></div><div>Presently, it sounds like security through obscurity (hide the Tor listener on a publicly-facing port, not within nmap's default top-1000 most scanned ports, and among a number of publicly-facing, non-Tor ports with a touch of Snort or Suricata IPS is the best solution for now)?</div><div><br></div><div>Hopefully, it won't take another 10 years to implement this security request and improve Tor Bridge survival rates.</div><div><br></div><div><span>I appreciate the status update of Bug #7349.</span><br></div><div><span><br></span></div><div><span>BTW... My bridge has been running for about a week. I am able to successfully connect to it manually. When should I expect to see stats for my bridge? Currently, I continue to receive the message "</span><span style="color: rgb(0, 0, 0);">no resources for the given id."</span></div><div><span style="color: rgb(0, 0, 0);"><br></span></div><div><span style="color: rgb(0, 0, 0);">Thank you for your assistance.</span></div><div><span style="color: rgb(0, 0, 0);"><br></span></div><div><span style="color: rgb(0, 0, 0);">Respectfully,</span></div><div><span style="color: rgb(0, 0, 0);"><br></span></div><div><span style="color: rgb(0, 0, 0);"><br></span></div><div><span style="color: rgb(0, 0, 0);">Gary</span></div><div><span style="color: rgb(29, 34, 40); font-size: 16px;">—</span><br style="color: rgb(29, 34, 40); font-size: 16px;"><span style="color: rgb(29, 34, 40); font-size: 16px;">This Message Originated by the Sun.</span><br style="color: rgb(29, 34, 40); font-size: 16px;"><span style="color: rgb(29, 34, 40); font-size: 16px;">iBigBlue 63W Solar Array (~12 Hour Charge)</span><br style="color: rgb(29, 34, 40); font-size: 16px;"><span style="color: rgb(29, 34, 40); font-size: 16px;">+ 2 x Charmast 26800mAh Power Banks</span><br style="color: rgb(29, 34, 40); font-size: 16px;"><span style="color: rgb(29, 34, 40); font-size: 16px;">= iPhone XS Max 512GB (~2 Weeks Charged)</span><br></div>
</div>
</div></div></body></html>