commit 56c1bf050f0907b7f70ad959de8cb1505f5a13c2 Author: Colin Childs colin@torproject.org Date: Sun May 14 21:05:13 2017 -0500
Push initial answer for Debian middle / guard operators --- plain/operator.txt | 44 +++++++++++++++++++++++++++++++++++++++++--- 1 file changed, 41 insertions(+), 3 deletions(-)
diff --git a/plain/operator.txt b/plain/operator.txt index 6cf98d6..4a55428 100644 --- a/plain/operator.txt +++ b/plain/operator.txt @@ -1,7 +1,45 @@ -Q. How do I run a middle/guard relay? +Q. How do I run a middle/guard relay on Debian? A. +1. If you're on Debian, start with "apt-get install tor" (as root). +2. Make sure your clock, date, and timezone are set correctly. Intall the ntp or openntpd (or similar) package to keep it that way. +3. Edit /etc/torrc to look like the following: +''' +## The IP address or hostname for incoming connections (leave commented and Tor will guess) +#Address noname.example.com
-Q. How do I run an exit relay? +## Set the nickname of this relay +Nickname ididnteditheconfig + +## Set your own contact info +ContactInfo 0xFFFFFFFF Random Person <nobody AT example dot com> + +## If you control multiple relays, include then in the family +#MyFamily $keyid,$keyid,... + +ORPort 9001 +DirPort 9030 + +## Set your bandwidth rate (leave commented and Tor will run without bandwidth caps) +#RelayBandwidthRate 30 MBytes +#RelayBandwidthBurst 100 MBytes + +SocksPort 0 +SocksPolicy reject * + +ExitPolicy reject *:* + +Log notice file /var/log/tor/log +DataDirectory /var/lib/tor +RunAsDaemon 1 +''' + +4. Run "service tor reload" (as root) +5. Once your relay connects to the network, it will try to determine whether the ports you configured are reachable from the outside. This step is usually fast, but it may take a few minutes. Look for a log entry in your /var/log/tor/log like Self-testing indicates your ORPort is reachable from the outside. Excellent. If you don't see this message, it means that your relay is not reachable from the outside you should re-check your firewalls, check that it's testing the IP and port you think it should be testing, etc. + +When it decides that it's reachable, it will upload a "server descriptor" to the directory authorities, to let clients know what address, ports, keys, etc your relay is using. After a few hours (to give it enough time to propagate), you can query Atlas[https://atlas.torproject.org] to see whether your relay has successfully registered in the network. + + +Q. How do I run an exit relay on Debian? A.
Q. How do I run a vanilla bridge? @@ -17,7 +55,7 @@ Q. How do I run a single onion service? A.
Q. What is the difference between a single and standard onion service? -A. Over the past several years, we've collaborated with many large scale service providers such as Facebook and Riseup, organizations that deployed Onion Services to improve their performance. +A. Over the past several years, we've collaborated with many large scale service providers such as Facebook and Riseup, organizations that deployed Onion Services to improve their performance.
Onion services are great because they offer both anonymity on the service and the client side. However, there are cases where the onion service does not require anonymity. The main example of this is when the service provider does not need to hide the location of its servers.