[translation/support-portal] https://gitweb.torproject.org/translation.git/commit/?h=support-portal - tor-commits

1 Sep 2021

commit 1220b0151f0c882a7cec61a31021e10f73106a54
Author: Translation commit bot translation@torproject.org
Date:   Wed Sep 1 13:18:50 2021 +0000
https://gitweb.torproject.org/translation.git/commit/?h=support-portal
---
 contents+ar.po    | 1281 +++++++++++++++++++++++++++++++++++++++----
 contents+bn.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+ca.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+cs.po    | 1249 +++++++++++++++++++++++++++++++++++++++---
 contents+de.po    | 1294 ++++++++++++++++++++++++++++++++++++++-----
 contents+el.po    | 1252 ++++++++++++++++++++++++++++++++++++++----
 contents+es.po    | 1287 ++++++++++++++++++++++++++++++++++++++-----
 contents+fa.po    | 1275 ++++++++++++++++++++++++++++++++++++++----
 contents+fr.po    | 1258 ++++++++++++++++++++++++++++++++++++++----
 contents+ga.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+he.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+hr.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+hu.po    | 1266 ++++++++++++++++++++++++++++++++++++++----
 contents+id.po    | 1268 ++++++++++++++++++++++++++++++++++++++----
 contents+is.po    | 1249 +++++++++++++++++++++++++++++++++++++++---
 contents+it.po    | 1279 +++++++++++++++++++++++++++++++++++++++----
 contents+ja.po    | 1260 ++++++++++++++++++++++++++++++++++++++----
 contents+ka.po    | 1288 ++++++++++++++++++++++++++++++++++++++-----
 contents+ko.po    | 1252 ++++++++++++++++++++++++++++++++++++++----
 contents+lt.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+mk.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+ml.po    | 1273 ++++++++++++++++++++++++++++++++++++++----
 contents+ms.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+my.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+nb.po    | 1250 +++++++++++++++++++++++++++++++++++++++---
 contents+nl.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+pl.po    | 1285 ++++++++++++++++++++++++++++++++++++++-----
 contents+pt-BR.po | 1286 +++++++++++++++++++++++++++++++++++++++----
 contents+pt-PT.po | 1251 +++++++++++++++++++++++++++++++++++++++---
 contents+ro.po    | 1273 ++++++++++++++++++++++++++++++++++++++----
 contents+ru.po    | 1280 +++++++++++++++++++++++++++++++++++++++----
 contents+sq.po    | 1246 ++++++++++++++++++++++++++++++++++++++---
 contents+sr.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+sv.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+sw.po    | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents+tr.po    | 1285 +++++++++++++++++++++++++++++++++++++++----
 contents+uk.po    | 1244 ++++++++++++++++++++++++++++++++++++++---
 contents+zh-CN.po | 1271 ++++++++++++++++++++++++++++++++++++++----
 contents+zh-TW.po | 1248 ++++++++++++++++++++++++++++++++++++++---
 contents.pot      | 1583 +++++++++++++++++++++++++++++++++++++++++++++++++----
 40 files changed, 46758 insertions(+), 3975 deletions(-)

diff --git a/contents+ar.po b/contents+ar.po
index ee76ee49aa..93b22be9bf 100644
--- a/contents+ar.po
+++ b/contents+ar.po
@@ -22,7 +22,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: NASI₿ nomadweb@protonmail.ch, 2021\n"
 "Language-Team: Arabic (https://www.transifex.com/otf/teams/1519/ar/)%5Cn"
@@ -155,6 +155,11 @@ msgstr "الأسئلة المتكررة عن إساءة الاستخدام"
 msgid "Tor Metrics"
 msgstr "إحصائيات تور"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2443,6 +2448,61 @@ msgstr ""
 "الويكي الخاصّة "
 "بنا](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN). "
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "يديرهم أناس لطفاء هم جزء من مجتمع Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2802,6 +2862,61 @@ msgstr ""
 "قائمة المخاطر هذه ليست كاملة ، ونحتاج إلى مساعدتك [تحديد جميع المشكلات وتوثيقها\n"
 "(https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2963,6 +3078,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr "استخدام Tor مع متصفّحات أخرى [خطر ولا ينصح به](/ar/tbb/tbb-9/)"
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3077,6 +3229,133 @@ msgstr ""
 "انظر إلى [الأسئلة الشائعة عن العلامة "
 "المسجلة](https://www.torproject.org/about/trademark/) للتفاصيل."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3274,6 +3553,162 @@ msgstr ""
 "انظر إلى هذا الشكل الذى يوضح العلاقة بين [Tor و HTTPS](/https/https-1/) "
 "لتفهم كيف يتفاعل Tor وHTTPS."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3312,6 +3747,151 @@ msgstr ""
 "ولكن متصفح Tor لا يمكنه فعل شىء يخصوص النصوص التى تكتيها فى النماذج "
 "الالكترونية."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5937,14 +6517,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"اقرأ أيضًا خيارات HTTPProxyAuthenticator و HTTPSProxyAuthenticator إذا كان "
-"وكيلك يتطلب مصادقة. نحن ندعم المصادقة الأساسية فقط حاليًا ، ولكن إذا كنت "
-"بحاجة إلى مصادقة NTLM ، فقد تجد [هذا المنشور في "
-"الأرشيف](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) مفيدًا."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6213,6 +6791,219 @@ msgstr ""
 "تذكر أن جميع الأسطر التي تبدأ بـ `` # '' في torrc يتم التعامل معها كتعليقات "
 "وليس لها أي تأثير على تكوين Tor."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7968,6 +8759,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8155,21 +9070,6 @@ msgstr ""
 "وبالتالي قد تجد أنك غير قادر على التصفح بمجرد دخول إصبع قدمك في وضع السبات ،"
 " الذي يشير إليه هذا الإدخال في السجل:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10870,6 +11770,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11557,64 +12582,21 @@ msgstr "### كيفية تفعيل اسم المستخدم"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"بعد ذلك ، لإكمال التسجيل والوصول في النهاية إلى قناة # tor-project ، يجب أن "
-"يكون اسمك المستعار ** متحقق منه **."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-"1. للتحقق من نكك ، افتح نافذة متصفح جديدة وانتقل إلى "
-"https://webchat.oftc.net/%D8%9Fchannels=tor."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"2. قم بتسجيل الدخول باستخدام الاسم المستعار وكلمة المرور الخاصين بك على IRC."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"3. ابحث عن كلمة ** تحقق ** وقم بتسجيل الدخول هناك. قد يبدو أنه لم يحدث شيء. "
-"انظر إلى أعلى الصفحة ، وسيكون هناك عمود يسمى ** الحساب **."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. انقر فوق ** الحساب **."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr "5. انقر على الجملة الصغيرة في أسفل المربع الذي يقول: تحقق من الحساب."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. املأ كلمة التحقق التي تنبثق ، وانقر فوق موافق."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr "7. ستظهر لك رسالة صغيرة تخبرك: "حسابك قد تم تفعيله"."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. قم بالرجوع مجددًا إلى صفحة الدردشة التي قد سجلت دخول إليها واكتب:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11623,13 +12605,13 @@ msgstr "`/msg اسم المستخدم تحقق`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. اضغط إدخال."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. إذا كان كل شيء صحيح، ستصلك رسالة تخبرك أن:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11788,21 +12770,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. قم بإضافة المدخلات التالية إلى `/etc/apt/sources.list`  أو إلى مجلد "
-"جديد في `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11818,20 +12802,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11841,20 +12823,18 @@ msgstr "أو يبني ليلا:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11878,16 +12858,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11909,28 +12889,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. ثم أضف مفتاح gpg المستخدم لتوقيع الحزم عن طريق تشغيل الأوامر التالية"
-" في موجه الأوامر"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -13869,6 +14838,82 @@ msgstr ""
 "لا ، لأن هذا المستخدم يقوم بتحديث قائمة المرحلات الخاصة به كثيرًا مثل مستخدم"
 " لا يغير عنوان IP على مدار اليوم."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13899,8 +14944,8 @@ msgid "DONATE NOW"
 msgstr "تبرع الآن"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "تنزيل متصفح تور"
diff --git a/contents+bn.po b/contents+bn.po
index 9898451fcb..f7b0ac0bc6 100644
--- a/contents+bn.po
+++ b/contents+bn.po
@@ -14,7 +14,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Foxom Toto foxomot957@coalamails.com, 2021\n"
 "Language-Team: Bengali (https://www.transifex.com/otf/teams/1519/bn/)%5Cn"
@@ -147,6 +147,11 @@ msgstr "অপব্যবহার প্রাজিপ্র"
 msgid "Tor Metrics"
 msgstr "টর পরিসংখ্যান"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2042,6 +2047,61 @@ msgstr ""
 "[ভিপিএন](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN) "
 "সম্পর্কে আরো বিস্তারিত তথ্য পেতে পারেন।"
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2345,6 +2405,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2480,6 +2595,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2575,6 +2727,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2745,6 +3024,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2777,6 +3212,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5107,9 +5687,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5340,6 +5922,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6909,6 +7704,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7056,21 +7975,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9344,6 +10248,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9985,56 +11014,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10044,12 +11037,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10190,18 +11183,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10215,14 +11212,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10234,15 +11233,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10263,13 +11264,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10289,26 +11292,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11915,6 +12909,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11945,8 +13015,8 @@ msgid "DONATE NOW"
 msgstr "এখনি দান করো"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "টর ব্রাউজার ডাউনলোড করুন"
diff --git a/contents+ca.po b/contents+ca.po
index 360c60b848..b62e5b55e9 100644
--- a/contents+ca.po
+++ b/contents+ca.po
@@ -15,7 +15,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Catalan (https://www.transifex.com/otf/teams/1519/ca/)%5Cn"
@@ -148,6 +148,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2042,6 +2047,61 @@ msgstr ""
 "Podeu trobar informació més detallada sobre Tor + VPN al [nostre "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2344,6 +2404,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2508,6 +2623,43 @@ msgstr ""
 "Utilitzar el Tor amb altres navegadors és [perillós i no "
 "recomanable](/ca/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2623,6 +2775,133 @@ msgstr ""
 "Mireu les nostres [PMF sobre la "
 "marca](https://www.torproject.org/about/trademark/) per a més detalls."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2824,6 +3103,162 @@ msgstr ""
 "Mireu aquesta visualització del [Tor i l'HTTPS](/ca/https/https-1/) per a "
 "entendre com interactuen entre ells."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2861,6 +3296,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5226,9 +5806,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5458,6 +6040,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7025,6 +7820,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7172,21 +8091,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9471,6 +10375,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10117,56 +11146,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10176,12 +11169,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10322,18 +11315,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10347,14 +11344,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10366,15 +11365,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10395,13 +11396,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10421,26 +11424,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12046,6 +13040,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -12076,8 +13146,8 @@ msgid "DONATE NOW"
 msgstr "FES UNA DONACIÓ"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Baixeu el navegador Tor"
diff --git a/contents+cs.po b/contents+cs.po
index d5c5932987..c5bb8a43e1 100644
--- a/contents+cs.po
+++ b/contents+cs.po
@@ -18,7 +18,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Pavel Borecki pavel.borecki@gmail.com, 2021\n"
 "Language-Team: Czech (https://www.transifex.com/otf/teams/1519/cs/)%5Cn"
@@ -151,6 +151,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "Tor metriky"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2054,6 +2059,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2354,6 +2414,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2489,6 +2604,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2584,6 +2736,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2754,6 +3033,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2786,6 +3221,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5000,9 +5580,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5219,6 +5801,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6680,6 +7475,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6827,21 +7746,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9079,6 +9983,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9663,56 +10692,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9722,12 +10715,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9868,19 +10861,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -9893,14 +10890,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9912,18 +10911,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -9943,13 +10942,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9969,24 +10970,18 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid "#### 4. Install tor and tor debian keyring"
@@ -11591,6 +12586,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11621,8 +12692,8 @@ msgid "DONATE NOW"
 msgstr ""
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Stáhnout prohlížeč Tor"
diff --git a/contents+de.po b/contents+de.po
index dc553699d6..5005030da0 100644
--- a/contents+de.po
+++ b/contents+de.po
@@ -20,14 +20,15 @@
 # Christian Nelke, 2021
 # kwadronaut kwadronaut@autistici.org, 2021
 # Curtis Baltimore curtisbaltimore@protonmail.com, 2021
+# Philipp . Kuschat@gmx.de, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: Curtis Baltimore curtisbaltimore@protonmail.com, 2021\n"
+"Last-Translator: Philipp . Kuschat@gmx.de, 2021\n"
 "Language-Team: German (https://www.transifex.com/otf/teams/1519/de/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -158,6 +159,11 @@ msgstr "Missbrauchs-FAQ"
 msgid "Tor Metrics"
 msgstr "Tor Metriken"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2572,6 +2578,63 @@ msgstr ""
 "Weitere Informationen über Tor + VPN findest du in [unserem "
 "Wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+"Sie werden von netten Menschen betrieben, welche Teil der Tor Community "
+"sind. "
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2955,6 +3018,61 @@ msgstr ""
 "Hilfe [bei der Identifizierung und Dokumentation aller "
 "Probleme](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3127,6 +3245,43 @@ msgstr ""
 "Die Benutzung von Tor mit anderen Browsern ist [gefährlich und nicht "
 "empfohlen](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3244,6 +3399,133 @@ msgstr ""
 "Siehe unsere [Marken-F&A](https://www.torproject.org/about/trademark/) für "
 "Einzelheiten."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3449,6 +3731,162 @@ msgstr ""
 "Sieh dir diese Visualisierung von [Tor and HTTPS](/https/https-1/) an, um zu"
 " verstehen wie Tor und HTTPS interagieren."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3490,6 +3928,151 @@ msgstr ""
 "Tor Browser kann natürlich nichts für den Text tun, den du in Formulare "
 "eintippst."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6267,16 +6850,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Lies dir auch die HTTPProxyAuthenticator und HTTPSProxyAuthenticator "
-"Optionen durch, wenn dein Proxy eine Authentifikation braucht. Wir "
-"unterstützen momentan nur einfache Auth., aber wenn du NTLM-Authentifikation"
-" brauchst, findest du vielleicht [diesen Post, in den "
-"Archiven,](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
-"nützlich."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6558,6 +7137,219 @@ msgstr ""
 "Denk daran, dass alle Zeilen, die mit `#` beginnen, in der torrc als "
 "Kommentare behandelt werden und keinen Effekt auf Tor's Konfiguration haben."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8415,6 +9207,130 @@ msgstr ""
 "Brücken-[Nachinstallations](https://community.torproject.org/relay/setup/bridge"
 "/post-install/)-Anleitung."
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8612,21 +9528,6 @@ msgstr ""
 "Deshalb kann es sein, dass du nicht mehr surfen kannst sobald dein Tor im "
 "Ruhezustnad ist. Dann steht folgendes im Protokoll:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11475,6 +12376,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -12194,69 +13220,21 @@ msgstr "### Wie du deinen Spitznamen überprüfen kannst"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"Um die Registrierung abzuschließen und schließlich Zugang zum Channel #tor-"
-"project zu erhalten, muss dein Spitzname **überprüft** werden."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. Um deinen Spitznamen zu überprüfen, öffne ein neues Browser-Fenster und "
-"gehe zu https://webchat.oftc.net/?channels=tor."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Melde dich mit deinem IRC-Spitznamen und Passwort an."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"3. Suche nach dem Wort **Prüfen** und melde dich dort an. Es mag den "
-"Anschein haben, dass nichts passiert ist. Schaue oben auf der Seite nach, "
-"und dort wird eine Spalte mit dem Namen **Konto** sein."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Klick auf **Konto**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Klick auf den kleinen Satz am unteren Rand des Quadrats mit der "
-"Aufschrift: Konto überprüfen."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Füll das Captcha aus, das sich öffnet, und klick auf OK."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-"7. Es erscheint eine kleine Nachricht: "Dein NickServ-Konto wurde "
-"überprüft"."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr ""
-"8. Geh zurück zur IRC-Webseite, auf der du angemeldet bist, und gib ein:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12265,14 +13243,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Klick ENTER."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
-"10. Wenn alles in Ordnung ist, erhältst du eine Nachricht, die besagt:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12442,21 +13419,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Füge die folgenden Einträge zu `/etc/apt/sources.list` oder eine "
-"neue Datei in `/etc/apt/sources.list.d/` hinzu"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12472,20 +13451,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12495,20 +13472,18 @@ msgstr "Oder Nightly Builds:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12533,15 +13508,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
-msgstr "deb [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12563,29 +13539,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Füge dann den gpg-Schlüssel hinzu, der zum Signieren der Pakete "
-"verwendet wurde, indem du die folgenden Befehle an deiner "
-"Eingabeaufforderung ausführst"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14666,6 +15630,82 @@ msgstr ""
 "Nein, denn dieser Benutzer aktualisiert seine Liste der Relays so oft wie "
 "ein Benutzer, der seine IP-Adresse im Laufe des Tages nicht ändert."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14696,8 +15736,8 @@ msgid "DONATE NOW"
 msgstr "SPENDE JETZT"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Tor Browser herunterladen"
diff --git a/contents+el.po b/contents+el.po
index 34d9dfb26b..3810ec98e0 100644
--- a/contents+el.po
+++ b/contents+el.po
@@ -19,7 +19,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: anvo fragos.george@hotmail.com, 2021\n"
 "Language-Team: Greek (https://www.transifex.com/otf/teams/1519/el/)%5Cn"
@@ -152,6 +152,11 @@ msgstr "Συχνές ερωτήσεις κατάχρησης"
 msgid "Tor Metrics"
 msgstr "Tor Metrics"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2100,6 +2105,61 @@ msgstr ""
 "Μπορείτε να βρείτε περισσότερες λεπτομερείς πληροφορίες για το Tor + VPN στο"
 " [wiki μας](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2400,6 +2460,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2535,6 +2650,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2630,6 +2782,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2800,6 +3079,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2832,6 +3267,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5159,9 +5739,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5394,6 +5976,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6977,6 +7772,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7124,21 +8043,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9407,6 +10311,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10032,56 +11061,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10091,12 +11084,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10237,19 +11230,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10262,14 +11259,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10281,18 +11280,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10312,13 +11311,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10338,26 +11339,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11963,6 +12955,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11994,8 +13062,8 @@ msgid "DONATE NOW"
 msgstr "ΔΩΡΙΣTΕ ΤΩΡΑ"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Κατεβάστε το Tor Browser"
diff --git a/contents+es.po b/contents+es.po
index 15645b43dd..403bd2cdf3 100644
--- a/contents+es.po
+++ b/contents+es.po
@@ -16,7 +16,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: David Figuera dfb@fastmail.com, 2021\n"
 "Language-Team: Spanish (https://www.transifex.com/otf/teams/1519/es/)%5Cn"
@@ -149,6 +149,11 @@ msgstr "Preguntas Más Frecuentes sobre Abusos"
 msgid "Tor Metrics"
 msgstr "Métricas de Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2549,6 +2554,61 @@ msgstr ""
 "Puedes encontrar más información detallada sobre Tor + VPN en [nuestra "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "Son dirigidas por buena gente que son parte de la comunidad Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2926,6 +2986,61 @@ msgstr ""
 "identificar y documentar todas las "
 "cuestiones](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3096,6 +3211,43 @@ msgstr ""
 "Usar Tor con otros navegadores es [peligroso y no se "
 "recomienda](/es/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3214,6 +3366,133 @@ msgstr ""
 "Consulta nuestras [preguntas frecuentes al "
 "respecto](https://www.torproject.org/about/trademark/) para más detalles."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3415,6 +3694,162 @@ msgstr ""
 "Mira este gráfico de [Tor y HTTPS](/es/https/https-1/) para entender cuál es"
 " la relación entre Tor y HTTPS."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3456,6 +3891,151 @@ msgstr ""
 "No obstante, el Navegador Tor no puede hacer nada con el texto que ingresas "
 "en formularios."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6236,16 +6816,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Si tu proxy requiere del uso de credenciales, puedes leer acerca de las "
-"opciones "HTTPProxyAuthenticator" y "HTTPSProxyAuthenticator". Por ahora"
-" sólo soportamos la acreditación sencilla (basic auth), pero si necesitas "
-"usar una acreditaciónn de tipo NTLM, puedes encontrar [esta entrada "
-"archivada](http://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
-"interesante."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6527,6 +7103,219 @@ msgstr ""
 "Recuerda que las líneas que comienzan por `#` en el archivo torrc se tratan "
 "como comentarios y no tienen efecto en la configuración de Tor."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8354,6 +9143,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8554,21 +9467,6 @@ msgstr ""
 "programa Tor entra en modo hibernación, indicado por esta entrada en el "
 "registro:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11408,6 +12306,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -12125,68 +13148,21 @@ msgstr "### Como verificar tu apodo"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"Ahora, para completar el registro y obtener acceso al canal #tor-project, "
-"debes **verificar** tu apodo."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. Para verificar tu apodo, abre una ventana del navegador y ve a "
-"https://webchat.oftc.net/?channels=tor."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Entra con tu apodo para el IRC y tu contraseña."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"3. Busca la palabra **verify** e ingresa allí. Puede parecer que no ha "
-"pasado nada. Mira en la parte superior de la página, en la columna con el "
-"texto **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Haz clic en **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Haz clic en la frase "Verify account" que aparece debajo del "
-"rectángulo."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Completa el Captcha que aparece, y cliquea "Aceptar"."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-"7. Aparecerá un pequeño mensaje: "Your NickServ account has been "
-"verified.""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Vuelve a la página donde has ingresado y escribe:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12195,13 +13171,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Pulsa ENTER."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Si todo ha ido bien, recibirás un mensaje que dice:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12366,21 +13342,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Añade las siguientes entradas a `/etc/apt/sources.list` o a un nuevo"
-" archivo en `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12396,20 +13374,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12419,20 +13395,18 @@ msgstr "O versiones compiladas diariamente:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12457,16 +13431,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12488,28 +13462,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. A continuación añade la clave PGP usada para firmar digitalmente los"
-" paquetes ejecutando el siguiente comando en un terminal"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14568,6 +15531,82 @@ msgstr ""
 "No, porque ese usuario actualiza su lista de repetidores tan frecuentemente "
 "como un usuario que no cambia la dirección IP a lo largo del día."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14598,8 +15637,8 @@ msgid "DONATE NOW"
 msgstr "DONA AHORA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Bajarse el Navegador Tor"
diff --git a/contents+fa.po b/contents+fa.po
index 79b33b8c70..c057caea9f 100644
--- a/contents+fa.po
+++ b/contents+fa.po
@@ -22,7 +22,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Reza Ghasemi, 2021\n"
 "Language-Team: Persian (https://www.transifex.com/otf/teams/1519/fa/)%5Cn"
@@ -155,6 +155,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "معیار‌های تور"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2434,6 +2439,61 @@ msgstr ""
 "شما میتوانید اطلاعات بیشتری درباره تور + وی پی ان بر [روی "
 "ویکی](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN) ببینید."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "توسط افراد بسیار خوبی که بخشی از انجمن تور هستند گردانده می شود."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2798,6 +2858,61 @@ msgstr ""
 "فهرست مشکلات کامل نیست، ما به کمک شما در [شناسایی و مستند‌سازی "
 "مشکلات](https://community.torproject.org/) نیاز داریم."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2962,6 +3077,43 @@ msgstr ""
 "استفاده از تور همراه سایر مرورگر ها [خطرناک می باشد و توصیه نمی "
 "شود](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3078,6 +3230,133 @@ msgstr ""
 "برای جزییات سوالات متداول [علامت تجاری "
 "ما](https://www.torproject.org/about/trademark/) را ببینید."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3280,6 +3559,162 @@ msgstr ""
 "برای فهم اینکه Tor و HTTPS چگونه با یکدیگر تعامل دارند این تصویر از [Tor و "
 "HTTPS را ببینید](/https/https-1/)."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3319,6 +3754,151 @@ msgid ""
 msgstr ""
 "مرورگر تور اما نمی تواند کاری درباره متنی که وارد فرم ها می کنید انجام دهد."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5895,16 +6475,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"همچنین روی گزینه های HTTPProxyAuthenticator و HTTPSProxyAuthenticator نگاهی "
-"داشته باشید اگر پراکسی شما نیاز به احراز هویت دارد. ما در این لحظه فقط از "
-"احراز هویت ساده پشتیبانی می کنیم اما اگر نیاز به احراز هویت NTLM دارید، ممکن"
-" است [این پست در آرشیو "
-"ها](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) به کار شما "
-"بیاید."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6179,6 +6755,219 @@ msgstr ""
 "به یاد داشته باشید، تمام خطوط در torrc که با `#` شروع می شوند به عنوان کامنت"
 " در نظر گرفته می شوند و هیچ تاثیری روی پیکربندی Tor ندارند."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7859,6 +8648,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8053,21 +8966,6 @@ msgstr ""
 "بنابراین ممکن است زمانی که که Tor به خواب می رود شما متوجه شوید که قادر به "
 "گردش نیستید، سیگنال این وضعیت از طریق این ورودی در لاگ داده می شود:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10615,6 +11513,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11323,67 +12346,21 @@ msgstr "### چگونه نام مستعار خود را تایید کنید"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-"سپس، برای تکمیل ثبت نام و دسترسی داشتن به کانال tor-project#، نام مستعار شما"
-" باید **تایید شده** باشد."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-"1. برای تایید نام مستعار خود، یک پنجره مرورگر جدید را باز کنید و به "
-"https://webchat.oftc.net/?channels=tor بروید."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. نام مستعار و گذرواژه IRC خود را وارد کنید."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"3. به دنبال کلمه **تایید** بگردید و وارد شوید. ممکن است به نظر بیاید که "
-"اتفاقی نیافتده است. به بالای صحفه نگاه کنید، و یک ستون به نام **حساب "
-"کاربری** خواهد بود."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. روی **حساب کاربری** کلیک کنید."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. روی جمله کوتاه در پایین مربع که می گوید: تایید حساب کاربری کلیک کنید."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"7. یک پیام کوتاه پدیدار خواهد شد: "حساب کاربری NickServ شما تایید شده "
-"است.""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. به صفحه وب IRC که وارد شدید برگردید و بنویسید:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11392,14 +12369,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. روی ورود کلیک کنید."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
-"10. اگر همه چیز به درستی پیش برود، شما پیامی دریافت خواهید کرد که می گوید:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11551,21 +12527,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. ورودی های زیر را به `/etc/apt/sources.list` یا یک فایل جدید در "
-"`/etc/apt/sources.list.d/` اضافه کنید."
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11578,14 +12556,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11597,18 +12577,18 @@ msgstr "یا ساخت های شبانه:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11630,13 +12610,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11656,28 +12638,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. سپس کلید gpg استفاده شده را برای امضای بسته ها با اجرای فرمان های "
-"زیر در خط فرمان خود اجرا کنید"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -13634,6 +14605,82 @@ msgstr ""
 "نه، چون آن کاربر فهرست رله‌های خود را به اندازه کاربری که نشانی IP خود را در"
 " طول روز تغییر نمی دهد بروز‌رسانی می‌کند."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13666,8 +14713,8 @@ msgid "DONATE NOW"
 msgstr "اکنون اهداء کنید"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "بارگیری مرورگر تور"
diff --git a/contents+fr.po b/contents+fr.po
index 3cacabaffc..4b2dc5bea6 100644
--- a/contents+fr.po
+++ b/contents+fr.po
@@ -12,16 +12,16 @@
 # Mehdi Djazzi contact@mehdidjazzi.com, 2020
 # Emeric Vallespi evallespi@protonmail.com, 2021
 # Emma Peel, 2021
-# AO ao@localizationlab.org, 2021
 # Matburnx matboury@gmail.com, 2021
+# AO ao@localizationlab.org, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: Matburnx matboury@gmail.com, 2021\n"
+"Last-Translator: AO ao@localizationlab.org, 2021\n"
 "Language-Team: French (https://www.transifex.com/otf/teams/1519/fr/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -152,6 +152,11 @@ msgstr "FAQ sur les abus"
 msgid "Tor Metrics"
 msgstr "mesures de Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2570,6 +2575,63 @@ msgstr ""
 "[wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN) (page "
 "en anglais)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+"Ils sont administrés par des gens sympathiques qui font partie de la "
+"communauté Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2955,6 +3017,61 @@ msgstr ""
 " [pour identifier et documenter tous les "
 "problèmes](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3129,6 +3246,43 @@ msgstr ""
 "Il est [dangereux et non recommandé](/fr/tbb/tbb-9/) d’utiliser Tor avec "
 "d’autres navigateurs."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3250,6 +3404,133 @@ msgstr ""
 "Voir notre [FAQ sur les marques de "
 "commerce](https://www.torproject.org/about/trademark/) pour plus de détails."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3460,6 +3741,162 @@ msgstr ""
 "Voir cette visualisation de [Tor et HTTPS](/https/https-1/) pour comprendre "
 "comment Tor et HTTPS interagissent."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3501,6 +3938,151 @@ msgstr ""
 "Cependant, le Navigateur Tor ne peut rien faire pour le texte que vous tapez"
 " dans les formulaires."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6230,9 +6812,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -6490,6 +7074,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8148,6 +8945,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8297,21 +9218,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10623,6 +11529,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11271,56 +12302,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -11330,12 +12325,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -11476,19 +12471,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11501,14 +12500,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11520,18 +12521,18 @@ msgstr "Ou les versions quotidiennes :"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11551,13 +12552,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11577,26 +12580,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -13202,6 +14196,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13232,8 +14302,8 @@ msgid "DONATE NOW"
 msgstr "FAITES UN DON MAINTENANT"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Télécharger le Navigateur Tor"
diff --git a/contents+ga.po b/contents+ga.po
index 5edf867b4c..17228ce792 100644
--- a/contents+ga.po
+++ b/contents+ga.po
@@ -10,7 +10,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Irish (https://www.transifex.com/otf/teams/1519/ga/)%5Cn"
@@ -143,6 +143,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2033,6 +2038,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2333,6 +2393,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2468,6 +2583,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2563,6 +2715,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2733,6 +3012,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2765,6 +3200,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5069,9 +5649,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5300,6 +5882,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6867,6 +7662,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7014,21 +7933,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9301,6 +10205,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9935,56 +10964,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9994,12 +10987,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10140,18 +11133,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10165,14 +11162,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10184,15 +11183,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10213,13 +11214,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10239,21 +11242,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11860,6 +12858,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11890,8 +12964,8 @@ msgid "DONATE NOW"
 msgstr ""
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Íoslódáil Brabhsálaí Tor"
diff --git a/contents+he.po b/contents+he.po
index 6e87f2cd8c..85079c321b 100644
--- a/contents+he.po
+++ b/contents+he.po
@@ -12,7 +12,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Zeev Shilor zshilor@gmail.com, 2021\n"
 "Language-Team: Hebrew (https://www.transifex.com/otf/teams/1519/he/)%5Cn"
@@ -145,6 +145,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2034,6 +2039,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2334,6 +2394,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2469,6 +2584,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2564,6 +2716,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2734,6 +3013,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2766,6 +3201,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4945,9 +5525,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5168,6 +5750,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6632,6 +7427,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6779,21 +7698,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9033,6 +9937,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9617,56 +10646,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9676,12 +10669,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9822,18 +10815,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9847,14 +10844,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9866,15 +10865,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9895,13 +10896,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9921,21 +10924,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11542,6 +12540,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11572,8 +12646,8 @@ msgid "DONATE NOW"
 msgstr "תרום עכשיו"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "הורד את דפדפן Tor"
diff --git a/contents+hr.po b/contents+hr.po
index 38c1e2de8b..4726aa9796 100644
--- a/contents+hr.po
+++ b/contents+hr.po
@@ -11,7 +11,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: milotype mail@milotype.de, 2021\n"
 "Language-Team: Croatian (https://www.transifex.com/otf/teams/1519/hr/)%5Cn"
@@ -144,6 +144,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "Tor metrika"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2423,6 +2428,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2733,6 +2793,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2868,6 +2983,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2966,6 +3118,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3136,6 +3415,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3168,6 +3603,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5358,9 +5938,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5580,6 +6162,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7033,6 +7828,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7180,21 +8099,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9441,6 +10345,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10025,56 +11054,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10084,12 +11077,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10230,18 +11223,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10255,14 +11252,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10274,15 +11273,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10303,13 +11304,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10329,21 +11332,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11950,6 +12948,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11980,8 +13054,8 @@ msgid "DONATE NOW"
 msgstr "DONIRAJ SADA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Kako preuzeti Tor preglednik"
diff --git a/contents+hu.po b/contents+hu.po
index 90d0e1da49..0369eb631b 100644
--- a/contents+hu.po
+++ b/contents+hu.po
@@ -13,7 +13,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Hungarian (https://www.transifex.com/otf/teams/1519/hu/)%5Cn"
@@ -146,6 +146,11 @@ msgstr "Visszaélések GYIK"
 msgid "Tor Metrics"
 msgstr "Tor metrika"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2144,6 +2149,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2449,6 +2509,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2584,6 +2699,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2688,6 +2840,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2858,6 +3137,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2890,6 +3325,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5135,9 +5715,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5364,6 +5946,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6880,6 +7675,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7027,21 +7946,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9346,6 +10250,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9932,56 +10961,20 @@ msgstr "### Hogy tudja megerősíteni a becenenét"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Jelentkezzen be az IRC-s becenevével és jelszavával."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Töltse ki a a megjelenő Captcha-t, majd kattintson az OK-ra."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9991,13 +10984,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Nyomja meg az Enter gombot."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Ha minden rendben ment, akkor a következő üzenet jelenik meg:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -10137,19 +11130,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10162,20 +11159,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10185,20 +11180,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10218,16 +11211,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10246,26 +11239,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11891,6 +12875,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11923,8 +12983,8 @@ msgid "DONATE NOW"
 msgstr "TÁMOGASSON MOST"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Tor Böngésző letöltése"
diff --git a/contents+id.po b/contents+id.po
index 915dace741..2541bdc72f 100644
--- a/contents+id.po
+++ b/contents+id.po
@@ -13,16 +13,16 @@
 # Joshua P, 2021
 # Sidiq Pangestu sani21bimo@gmail.com, 2021
 # Evanna Audrey evanna.n.audrey@gmail.com, 2021
-# Emma Peel, 2021
 # 9hs saptohadi.1110@gmail.com, 2021
+# Emma Peel, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: 9hs saptohadi.1110@gmail.com, 2021\n"
+"Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Indonesian (https://www.transifex.com/otf/teams/1519/id/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -153,6 +153,11 @@ msgstr "Penyalahgunaan FAQ"
 msgid "Tor Metrics"
 msgstr "Metrik Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -462,8 +467,8 @@ msgid ""
 msgstr ""
 "Cookie [HTTP](../http) (juga disebut cookie web, cookie Internet, cookie "
 "peramban, atau hanya cookie) adalah beberapa data yang dikirim dari situs "
-"web dan disimpan di komputer pengguna oleh [browser web] pengguna ( ../web-"
-"browser) saat pengguna menjelajah."
+"web dan disimpan di komputer pengguna oleh [browser web]( ../web-browser) "
+"pengguna saat pengguna menjelajah."
#: https//support.torproject.org/glossary/cookie/
 #: (content/glossary/cookie/contents+en.lrword.definition)
@@ -632,9 +637,9 @@ msgid ""
 "manual.torproject.org/mobile-tor/) if you prefer installing the app through "
 "F-Droid."
 msgstr ""
-"Tor Browser tersedia di F-Droid. Ikuti [langkah-langkah] ini (https://tb-"
-"manual.torproject.org/mobile-tor/) jika Anda lebih suka menginstal aplikasi "
-"melalui F-Droid."
+"Tor Browser tersedia di F-Droid. Ikuti [langkah-langkah](https://tb-"
+"manual.torproject.org/mobile-tor/) ini jika Anda lebih suka menginstal "
+"aplikasi melalui F-Droid."
#: https//support.torproject.org/glossary/firefox/
 #: (content/glossary/firefox/contents+en.lrword.term)
@@ -2102,6 +2107,61 @@ msgstr ""
 "Anda dapat menemukan informasi lebih rinci tentang Tor + VPN di [our "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2402,6 +2462,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2561,6 +2676,43 @@ msgstr ""
 "Menggunakan Tor dengan browser lain itu [dangerous and not "
 "recommended](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2664,6 +2816,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2834,6 +3113,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2866,6 +3301,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5218,9 +5798,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5449,6 +6031,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7029,6 +7824,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7178,21 +8097,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9469,6 +10373,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10105,56 +11134,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10164,12 +11157,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10314,21 +11307,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Tambahkan entri berikut ke `/etc/apt/sources.list` atau sebuah file "
-"baru di `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10341,14 +11336,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10360,18 +11357,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10391,13 +11388,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10417,26 +11416,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12044,6 +13034,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -12074,8 +13140,8 @@ msgid "DONATE NOW"
 msgstr "DONASI SEKARANG"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Unduh Tor Browser"
diff --git a/contents+is.po b/contents+is.po
index 1df124e2f2..d9c19a46c2 100644
--- a/contents+is.po
+++ b/contents+is.po
@@ -9,7 +9,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Sveinn í Felli sv1@fellsnet.is, 2021\n"
 "Language-Team: Icelandic (https://www.transifex.com/otf/teams/1519/is/)%5Cn"
@@ -142,6 +142,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2291,6 +2296,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2594,6 +2654,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2729,6 +2844,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2827,6 +2979,133 @@ msgstr ""
 "FAQ](https://www.torproject.org/about/trademark/) til að sjá nánari "
 "upplýsingar."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2997,6 +3276,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3029,6 +3464,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5363,9 +5943,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5596,6 +6178,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7191,6 +7986,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7338,21 +8257,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9633,6 +10537,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10274,56 +11303,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10333,12 +11326,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10479,19 +11472,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10504,14 +11501,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10523,18 +11522,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10554,13 +11553,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10580,24 +11581,18 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid "#### 4. Install tor and tor debian keyring"
@@ -12202,6 +13197,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -12233,8 +13304,8 @@ msgid "DONATE NOW"
 msgstr "STYRKJA NÚNA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Sæktu Tor-vafrann"
diff --git a/contents+it.po b/contents+it.po
index d44326c33f..affb4fe82a 100644
--- a/contents+it.po
+++ b/contents+it.po
@@ -18,21 +18,21 @@
 # francesco ercolani erco99@live.it, 2020
 # Luke 94lukecatellani@gmail.com, 2020
 # fabio carletti fabiocarlettiryuw@gmail.com, 2020
-# giulio marino iulio.marino@gmail.com, 2020
 # Irene Quadrelli irene.quadrelli@gmail.com, 2020
 # fbd, 2020
 # Alex G alecs@alecs.ga, 2021
 # P P, 2021
 # Emma Peel, 2021
 # Random_R, 2021
+# giulio marino iulio.marino@gmail.com, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: Random_R, 2021\n"
+"Last-Translator: giulio marino iulio.marino@gmail.com, 2021\n"
 "Language-Team: Italian (https://www.transifex.com/otf/teams/1519/it/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -163,6 +163,11 @@ msgstr "Domande frequenti sull'abuso"
 msgid "Tor Metrics"
 msgstr "Metriche di Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2495,6 +2500,61 @@ msgstr ""
 "Puoi trovare informazioni più dettagliate riguardo Tor + VPN sulla [nostra "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "Sono gestite da gente notevole che è parte della community di Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2868,6 +2928,61 @@ msgstr ""
 "Questa lista di vulnerabilità non è completa, e ci serve il tuo aiuto per "
 "[identificare e documentare i problemi](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3036,6 +3151,43 @@ msgid ""
 msgstr ""
 "Usare Tor con altri browser è [pericoloso e non raccomandato](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3150,6 +3302,133 @@ msgstr ""
 "Guarda le nostre [FAQ marchio](https://www.torproject.org/about/trademark/) "
 "per i dettagli."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3353,6 +3632,162 @@ msgstr ""
 "Guarda questa rappresentazione di [Tor e HTTPS](/https/https-1/) per capire "
 "come interagiscono Tor e HTTPS. "
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3393,6 +3828,151 @@ msgstr ""
 "Tor Browser, tuttavia, non può fare nulla per il testo che digiti nei "
 "moduli."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6067,15 +6647,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Altrimenti puoi leggere il HTTPSProxyAuthenticator and "
-"HTTPSProxyAuthenticator opzioni se il tuo proxy richiede l'autenticazione. "
-"Noi supportiamo solo basilari autenticazioni, ma necessiti di un NTLM "
-"autenticazione, potrà esserti utile [qusto post "
-"nell'archivio](https://archives.seul.org/or/talk/Jun-2005/msg00223.html). "
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6355,6 +6932,219 @@ msgstr ""
 "Ricorda, tutte le righe che iniziano con `#` in torrc sono trattate come "
 "commenti e non hanno effetto sulla configurazione di Tor."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8083,6 +8873,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8277,21 +9191,6 @@ msgstr ""
 "Perciò potresti scoprire di non essere in grado di navigare non appena Tor "
 "entra in ibernazione, segnalato da questa voce nel registro:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10881,6 +11780,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11595,65 +12619,21 @@ msgstr "### Come verificare il tuo nickname"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-"Per completare la registrazione e avere accesso al canale #tor-project, il "
-"tuo nickname deve essere **verificato**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Loggati con il nickname e la password IRC."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"3. Cerca la parola **verify** e loggati da lì. Può sembrare che non avvenga "
-"nulla. Guarda in alto e vedrai una colonna chiamata **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Clicca su **Account**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Clicca sulla piccola frase alla base del quadrato che dice: Verifica "
-"account."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"7. Apparirà un piccolo messaggio: "Il tuo account NickServ è stato "
-"verificato"."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Torna sulla pagina IRC in cui ti sei loggato e digita:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11662,13 +12642,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Clicca su INVIO."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Se tutto è ok, riceverai un messaggio con la dicitura:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11816,21 +12796,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Aggiungere le voci seguenti a `/etc/apt/sources.list` oppure creare "
-"un nuovo file in `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb https://deb.torproject.org/torproject.org <DISTRIBUTION> main "
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11843,14 +12825,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11862,18 +12846,18 @@ msgstr "O le nightly build:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11893,13 +12877,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11919,28 +12905,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Poi aggiunti la chiave gpg usata per firmare i pacchetti lanciando i"
-" seguenti comandi dal tuo prompt dei comandi"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -13801,6 +14776,82 @@ msgstr ""
 "No, perché l'utente aggiorna l'elenco dei relays con la stessa frequenza di "
 "un utente che non cambia l'indirizzo IP nel corso della giornata."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13831,8 +14882,8 @@ msgid "DONATE NOW"
 msgstr "DONA ORA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Scarica Tor Browser"
diff --git a/contents+ja.po b/contents+ja.po
index 71ffdbe980..91d1841d9e 100644
--- a/contents+ja.po
+++ b/contents+ja.po
@@ -20,7 +20,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Kaede, 2021\n"
 "Language-Team: Japanese (https://www.transifex.com/otf/teams/1519/ja/)%5Cn"
@@ -153,6 +153,11 @@ msgstr "不正に関する質問"
 msgid "Tor Metrics"
 msgstr "Tor メトリクス"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2078,6 +2083,61 @@ msgstr ""
 "Wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN) "
 "でご確認いただけます。"
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2382,6 +2442,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2517,6 +2632,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2613,6 +2765,133 @@ msgid ""
 msgstr ""
 "[商標に関するFAQ](https://www.torproject.org/about/trademark/)%E3%81%AE%E8%A9%B3%E7%B4%B0%E3%8..."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2783,6 +3062,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2815,6 +3250,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5035,9 +5615,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5256,6 +5838,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6750,6 +7545,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6897,21 +7816,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9156,6 +10060,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9742,56 +10771,20 @@ msgstr "### ニックネームを検証する方法"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. IRC ニックネームとパスワードを使いログインします。"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. **Account** をクリックします。"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9801,12 +10794,12 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. ENTER をクリックします。"
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9950,19 +10943,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <ディストリビューション> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -9975,14 +10972,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9994,20 +10993,18 @@ msgstr "ナイトリービルドの場合:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<ディストリビューション> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10027,16 +11024,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10055,26 +11052,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11686,6 +12674,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11716,8 +12780,8 @@ msgid "DONATE NOW"
 msgstr "今すぐ寄付する"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Tor Browser をダウンロード"
diff --git a/contents+ka.po b/contents+ka.po
index d68e57531d..82f55d3f9f 100644
--- a/contents+ka.po
+++ b/contents+ka.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Georgianization, 2021\n"
 "Language-Team: Georgian (https://www.transifex.com/otf/teams/1519/ka/)%5Cn"
@@ -141,6 +141,11 @@ msgstr "დარღვევების ᲮᲓᲙ"
 msgid "Tor Metrics"
 msgstr "Tor-გაზომვები"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2547,6 +2552,63 @@ msgstr ""
 "დამატებით, Tor-ის VPN-თან გამოყენების შესახებ, შეგიძლიათ იხილოთ [ჩვენს "
 "ვიკიში](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+"მათ მუშაობაში მონაწილეობას იღებენ ადამიანები, რომლებიც Tor-ერთობას "
+"ეკუთვნიან."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2916,6 +2978,61 @@ msgstr ""
 "ეს სია საფრთხეებისა არაა სრული, დაგვეხმარეთ [გამოვავლინოთ და აღვწეროთ ყველა "
 "მათგანი](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3086,6 +3203,43 @@ msgstr ""
 "Tor-ის სხვა ბრაუზერებთან გამოყენება [საფრთხის შემცველი და "
 "არასასურველია](/ka/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3201,6 +3355,133 @@ msgstr ""
 "იხილეთ, ჩვენი [სავაჭრო ნიშნების "
 "ხ.დ.კ.](https://www.torproject.org/ka/about/trademark/) ვრცლად."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3407,6 +3688,162 @@ msgstr ""
 "იხილეთ გამოსახულება [Tor და HTTPS](/ka/https/https-1/), რომ უკეთ გაიგოთ "
 "როგორ ურთიერთქმედებს Tor და HTTPS."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3446,6 +3883,151 @@ msgstr ""
 "თუმცა, Tor-ბრაუზერი ვერაფერს გააწყობს ველებში თქვენ მიერ შეყვანილ "
 "მონაცემებთან."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6175,15 +6757,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"აგრეთვე, გადახედეთ HTTPProxyAuthenticator და HTTPSProxyAuthenticator "
-"პარამეტრებს, თუ თქვენი პროქსი საჭიროებს ანგარიშზე შესვლას. ჩვენთან, "
-"მხარდაჭერილია მხოლოდ მარტივი შესვლის შესაძლებლობა, მაგრამ თუ NTLM-დამოწმება "
-"გესაჭიროებათ, შეიძლება გამოგადგეთ [ეს პოსტი "
-"არქივიდან](https://archives.seul.org/or/talk/Jun-2005/msg00223.html)."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6463,6 +7042,219 @@ msgstr ""
 "დაიხსომეთ, ხაზი რომელიც იწყება `#` ნიშნით torrc ფაილში წარმოადგენს მხოლოდ "
 "შენიშვნას და არ აქვს გავლენა Tor-ის კონფიგურაციაზე."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8283,6 +9075,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8484,21 +9400,6 @@ msgstr ""
 " დროს, როცა თქვენი Tor გადადის უქმ რეჟიმში, რაც აღინიშნება ჩანაწერში "
 "შემდეგნაირად:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11293,6 +12194,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -12005,68 +13031,21 @@ msgstr "### როგორ უნდა დაამოწმოთ თქვ
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"შემდეგ დაასრულეთ რეგისტრაცია და მიიღეთ სრული წვდომა #tor-project-არხთან, "
-"თქვენი მეტსახელი უნდა იყოს **verified**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. მეტსახელის დასამოწმებლად, გახსენით ბრაუზერის ახალი ფანჯარა და გადადით "
-"ბმულზე https://webchat.oftc.net/?channels=tor."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. შედით თქვენი IRC-მეტსახელითა და პაროლით."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"3. მონახეთ სიტყვა **verify** და შედით იქიდან. შეიძლება ისე გამოჩნდეს, თითქოს"
-" არაფერი მოხდა. ახედეთ გვერდის ზედა არეს და იქ იქნება სვეტი სახელწოდებით "
-"**Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. დაწკაპეთ **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. დაწკაპეთ მცირე წინადადება კვადრატის ქვემოთ, რომელიც ამბობს: Verify "
-"account (დაამოწმეთ ანგარიში)."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. გაიარეთ Captcha, რომელიც ამოვარდება და დაწკაპეთ ok."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-"7. პატარა შეტყობინება გამოჩნდება: „Your NickServ account has been verified“ "
-"(ანგარიში დამოწმებულია)."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. დაბრუნდით თქვენს IRC ვებგვერდზე სადაც შესული ხართ და აკრიფეთ:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12075,13 +13054,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. დაწკაპეთ ENTER."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. თუ ყველაფერი კარგადაა, მიიღებთ შეტყობინებას:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12246,21 +13225,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. დაამატეთ შემდეგი ჩანაწერები ფაილში `/etc/apt/sources.list` ან ახალი "
-"ხაზი ფაილში `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12275,20 +13256,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12298,20 +13277,18 @@ msgstr "ან nightly-ანაწყობები:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12335,16 +13312,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12366,28 +13343,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. შემდეგ დაამატეთ გასაღები gpg, რომელიც გამოყენებულია კრებულის "
-"ხელმოსაწერად, თქვენს ბრძანებათა ველიდან შემდეგი ბრძანების გაშვებით"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14430,6 +15396,82 @@ msgstr ""
 "არა, ვინაიდან ეს მომხმარებელი აახლებს გადამცემების სიას იმდენჯერვე დღეში, "
 "რამდენჯერაც ის მომხმარებელი, რომელიც არ ცვლის IP-მისამართს."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14462,8 +15504,8 @@ msgid "DONATE NOW"
 msgstr "გაიღეთ თანხა"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "ჩამოტვირთეთ Tor-ბრაუზერი"
diff --git a/contents+ko.po b/contents+ko.po
index 734cb358ab..c366c96e8a 100644
--- a/contents+ko.po
+++ b/contents+ko.po
@@ -14,7 +14,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: 장민준, 2021\n"
 "Language-Team: Korean (https://www.transifex.com/otf/teams/1519/ko/)%5Cn"
@@ -147,6 +147,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2034,6 +2039,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "Tor 커뮤니티에 속한 친절한 사람들이 운영합니다."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2334,6 +2394,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2469,6 +2584,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2564,6 +2716,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2734,6 +3013,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2766,6 +3201,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4946,9 +5526,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5167,6 +5749,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6622,6 +7417,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6769,21 +7688,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9027,6 +9931,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9615,56 +10644,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9674,12 +10667,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9820,19 +10813,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -9845,14 +10842,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9864,18 +10863,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -9895,13 +10894,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9921,26 +10922,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11546,6 +12538,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11576,8 +12644,8 @@ msgid "DONATE NOW"
 msgstr "기부하기"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Tor 브라우저 다운로드"
diff --git a/contents+lt.po b/contents+lt.po
index 7d510230ff..a61a9c1adc 100644
--- a/contents+lt.po
+++ b/contents+lt.po
@@ -11,7 +11,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Tautvydas Ž., 2021\n"
 "Language-Team: Lithuanian (https://www.transifex.com/otf/teams/1519/lt/)%5Cn"
@@ -144,6 +144,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2038,6 +2043,61 @@ msgstr ""
 "Išsamesnę informaciją apie Tor + VPN galite rasti [mūsų "
 "vikyje](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2338,6 +2398,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2475,6 +2590,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2572,6 +2724,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2742,6 +3021,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2774,6 +3209,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4957,9 +5537,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5180,6 +5762,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6618,6 +7413,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6765,21 +7684,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9017,6 +9921,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9601,56 +10630,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9660,12 +10653,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9806,18 +10799,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9831,14 +10828,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9850,15 +10849,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9879,13 +10880,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9905,21 +10908,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11526,6 +12524,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11556,8 +12630,8 @@ msgid "DONATE NOW"
 msgstr "PAAUKOKITE DABAR"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Parsisiųsti Tor Naršyklę"
diff --git a/contents+mk.po b/contents+mk.po
index 05ae0cce99..7095bf9a4f 100644
--- a/contents+mk.po
+++ b/contents+mk.po
@@ -11,7 +11,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Macedonian (https://www.transifex.com/otf/teams/1519/mk/)%5Cn"
@@ -144,6 +144,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2031,6 +2036,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2331,6 +2391,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2466,6 +2581,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2561,6 +2713,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2731,6 +3010,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2763,6 +3198,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4934,9 +5514,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5153,6 +5735,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6587,6 +7382,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6734,21 +7653,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -8986,6 +9890,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9570,56 +10599,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9629,12 +10622,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9775,18 +10768,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9800,14 +10797,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9819,15 +10818,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9848,13 +10849,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9874,26 +10877,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11499,6 +12493,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11529,8 +12599,8 @@ msgid "DONATE NOW"
 msgstr "ДОНИРАЈТЕ СЕГА"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Превземи Tor Прелистувач"
diff --git a/contents+ml.po b/contents+ml.po
index cfdaee6f85..92f9692603 100644
--- a/contents+ml.po
+++ b/contents+ml.po
@@ -10,7 +10,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Malayalam (https://www.transifex.com/otf/teams/1519/ml/)%5Cn"
@@ -143,6 +143,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2350,6 +2355,61 @@ msgstr ""
 "വിക്കിയിൽ](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN) "
 "കണ്ടെത്താനാകും."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2650,6 +2710,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2815,6 +2930,43 @@ msgstr ""
 "മറ്റ് ബ്രൗസറുകളിൽ ടോർ ഉപയോഗിക്കുന്നത് [അപകടകരമാണ്, ശുപാർശ "
 "ചെയ്യുന്നില്ല](/ml/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2934,6 +3086,133 @@ msgstr ""
 "വിശദാംശങ്ങൾക്ക് ഞങ്ങളുടെ [വ്യാപാരമുദ്ര "
 "പതിവുചോദ്യങ്ങൾ](https://www.torproject.org/about/trademark/) കാണുക."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3146,6 +3425,162 @@ msgstr ""
 "ടോറും എച്ച്ടിടിപിഎസും എങ്ങനെ ഇടപഴകുന്നുവെന്ന് മനസിലാക്കാൻ [ടോർ, "
 "എച്ച്ടിടിപിഎസ്](/ml/https/https-1/) ന്റെ ഈ ദൃശ്യവൽക്കരണം കാണുക."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3187,6 +3622,151 @@ msgstr ""
 "ടോർ ബ്രൗസറിന് നിങ്ങൾ‌ ഫോമുകളിൽ‌ ടൈപ്പുചെയ്യുന്ന വാചകത്തെക്കുറിച്ച് ഒന്നും "
 "ചെയ്യാൻ‌ കഴിയില്ല."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5785,16 +6365,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"കൂടാതെ, നിങ്ങളുടെ പ്രോക്സിക്ക് പ്രാമാണീകരണം ആവശ്യമെങ്കിൽ "
-"HTTPProxyAuthenticator, HTTPSProxyAuthenticator ഓപ്ഷനുകൾ വായിക്കുക. ഞങ്ങൾ "
-"നിലവിൽ അടിസ്ഥാന പ്രാമാണീകരണത്തെ മാത്രമേ പിന്തുണയ്ക്കൂ, പക്ഷേ നിങ്ങൾക്ക് "
-"എൻ‌ടി‌എൽ‌എം പ്രാമാണീകരണം ആവശ്യമുണ്ടെങ്കിൽ, നിങ്ങൾക്ക് [ആർക്കൈവുകളിലെ ഈ "
-"കുറിപ്പ്](https://archives.seul.org/or/talk/Jun-2005/msg00223.html)%C2%A0 "
-"കണ്ടെത്താം."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6075,6 +6651,219 @@ msgstr ""
 "ടോർക്കിലെ `#` എന്ന് ആരംഭിക്കുന്ന എല്ലാ വരികളും അഭിപ്രായങ്ങളായി "
 "കണക്കാക്കുന്നുവെന്നും ടോർ കോൺഫിഗറേഷനെ ബാധിക്കില്ലെന്നും ഓർമ്മിക്കുക."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7808,6 +8597,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8001,21 +8914,6 @@ msgstr ""
 "കഴിയില്ലെന്ന് നിങ്ങൾ‌ കണ്ടെത്തിയേക്കാം, ഇത് ലോഗിലെ ഈ എൻ‌ട്രി "
 "സൂചിപ്പിക്കുന്നു:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10608,6 +11506,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11336,68 +12359,21 @@ msgstr "### How to verify your nickname"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-"തുടർന്ന്, രജിസ്ട്രേഷൻ പൂർത്തിയാക്കി #tor-project ചാനലിലേക്ക് ആക്സസ് "
-"നേടുന്നതിന്, നിങ്ങളുടെ വിളിപ്പേര് ** പരിശോധിച്ചുറപ്പിക്കണം **."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. നിങ്ങളുടെ ഐആർ‌സി വിളിപ്പേരും പാസ്‌വേഡും ഉപയോഗിച്ച് പ്രവേശിക്കുക."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-"3.  **verify** എന്ന വാക്ക് നോക്കി അവിടെ പ്രവേശിക്കുക. ഒന്നും "
-"സംഭവിച്ചിട്ടില്ലെന്ന് തോന്നാം. പേജിന്റെ മുകളിൽ നോക്കുക, **Account** എന്ന ഒരു"
-" നിര ഉണ്ടാകും."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. **Account** ക്ലിക്കുചെയ്യുക."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. ചതുരത്തിന്റെ ചുവടെയുള്ള ചെറിയ വാക്യത്തിൽ ക്ലിക്കുചെയ്യുക: അക്കൗണ്ട് "
-"പരിശോധിക്കുക."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"7. ഒരു ചെറിയ സന്ദേശം ദൃശ്യമാകും: "Your NickServ account has been "
-"verified.""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"8. നിങ്ങൾ ലോഗിൻ ചെയ്തിട്ടുള്ള ഐആർ‌സി വെബ്‌പേജിലേക്ക് തിരികെ പോയി ടൈപ്പ് "
-"ചെയ്യുക:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11406,14 +12382,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. ENTER ക്ലിക്കുചെയ്യുക."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
-"10. എല്ലാം ശരിയാണെങ്കിൽ, ഇനിപ്പറയുന്ന ഒരു സന്ദേശം നിങ്ങൾക്ക് ലഭിക്കും:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11564,21 +12539,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. ഇനിപ്പറയുന്ന എൻ‌ട്രികൾ‌ `/etc/apt/sources.list` അല്ലെങ്കിൽ‌ "
-"`/etc/apt/sources.list.d/`  എന്നതിലെ ഒരു പുതിയ ഫയൽ‌ ചേർ‌ക്കുക."
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11591,14 +12568,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11610,18 +12589,18 @@ msgstr "അല്ലെങ്കിൽ രാത്രി ബിൽഡുകൾ:
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11641,13 +12620,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11667,26 +12648,18 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. തുടർന്ന് നിങ്ങളുടെ കമാൻഡ് പ്രോംപ്റ്റിൽ ഇനിപ്പറയുന്ന കമാൻഡുകൾ "
-"പ്രവർത്തിപ്പിച്ച് പാക്കേജുകളിൽ ഒപ്പിടാൻ ഉപയോഗിക്കുന്ന gpg കീ ചേർക്കുക"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid "#### 4. Install tor and tor debian keyring"
@@ -13295,6 +14268,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13325,8 +14374,8 @@ msgid "DONATE NOW"
 msgstr "ഇപ്പോൾ ദാനം ചെയ്യൂ"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "ടോർ ബ്രൗസർ ഡൗൺലോഡുചെയ്യുക"
diff --git a/contents+ms.po b/contents+ms.po
index c924aa56bf..d430a8e115 100644
--- a/contents+ms.po
+++ b/contents+ms.po
@@ -10,7 +10,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Malay (Malaysia) (https://www.transifex.com/otf/teams/1519/ms_MY/)%5Cn"
@@ -143,6 +143,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2030,6 +2035,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2333,6 +2393,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2468,6 +2583,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2563,6 +2715,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2733,6 +3012,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2765,6 +3200,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4936,9 +5516,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5158,6 +5740,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6601,6 +7396,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6748,21 +7667,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9004,6 +9908,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9588,56 +10617,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9647,12 +10640,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9793,18 +10786,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9818,14 +10815,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9837,15 +10836,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9866,13 +10867,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9892,26 +10895,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11517,6 +12511,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11547,8 +12617,8 @@ msgid "DONATE NOW"
 msgstr "BERI DERMA SEKARANG"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Muat Turun Pelayar Tor"
diff --git a/contents+my.po b/contents+my.po
index 93e3dc7ade..87c774a7c1 100644
--- a/contents+my.po
+++ b/contents+my.po
@@ -13,7 +13,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Christine Ivy christineivy19@gmail.com, 2021\n"
 "Language-Team: Burmese (https://www.transifex.com/otf/teams/1519/my/)%5Cn"
@@ -146,6 +146,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2033,6 +2038,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2333,6 +2393,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2468,6 +2583,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2563,6 +2715,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2733,6 +3012,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2765,6 +3200,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4939,9 +5519,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5158,6 +5740,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6607,6 +7402,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6754,21 +7673,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9006,6 +9910,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9590,56 +10619,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9649,12 +10642,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9795,18 +10788,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9820,14 +10817,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9839,15 +10838,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9868,13 +10869,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9894,26 +10897,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11519,6 +12513,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11551,8 +12621,8 @@ msgid "DONATE NOW"
 msgstr "ယခု လှူရန်"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Tor Browser ဒေါင်းလုဒ်လုပ်ရန်"
diff --git a/contents+nb.po b/contents+nb.po
index 4e43428ea7..ac4400c2a4 100644
--- a/contents+nb.po
+++ b/contents+nb.po
@@ -11,7 +11,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Norwegian Bokmål (https://www.transifex.com/otf/teams/1519/nb/)%5Cn"
@@ -144,6 +144,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "Tor-metrisk"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2036,6 +2041,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2338,6 +2398,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2473,6 +2588,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2568,6 +2720,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2738,6 +3017,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2770,6 +3205,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4975,9 +5555,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5194,6 +5776,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6669,6 +7464,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6816,21 +7735,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9068,6 +9972,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9660,56 +10689,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9719,12 +10712,12 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9865,18 +10858,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9890,14 +10887,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9909,18 +10908,18 @@ msgstr "Eller nattlige bygg:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -9940,13 +10939,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9966,26 +10967,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11593,6 +12585,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11623,8 +12691,8 @@ msgid "DONATE NOW"
 msgstr "DONÉR NÅ"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Last ned Tor-nettleseren"
diff --git a/contents+nl.po b/contents+nl.po
index 4052f67084..1d635a8593 100644
--- a/contents+nl.po
+++ b/contents+nl.po
@@ -17,7 +17,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: kwadronaut kwadronaut@autistici.org, 2021\n"
 "Language-Team: Dutch (https://www.transifex.com/otf/teams/1519/nl/)%5Cn"
@@ -150,6 +150,11 @@ msgstr "Misbruik FAQ"
 msgid "Tor Metrics"
 msgstr "Tor statistieken"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2198,6 +2203,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2501,6 +2561,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2636,6 +2751,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2731,6 +2883,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2901,6 +3180,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2933,6 +3368,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5136,9 +5716,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5358,6 +5940,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6816,6 +7611,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6963,21 +7882,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9222,6 +10126,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9813,56 +10842,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9872,12 +10865,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10018,18 +11011,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10043,14 +11040,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10062,15 +11061,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10091,13 +11092,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10117,26 +11120,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11742,6 +12736,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11772,8 +12842,8 @@ msgid "DONATE NOW"
 msgstr "DONEER NU"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Download Tor Browser"
diff --git a/contents+pl.po b/contents+pl.po
index ccd7b1e1bb..8402ba5cb8 100644
--- a/contents+pl.po
+++ b/contents+pl.po
@@ -21,7 +21,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Waldemar Stoczkowski, 2021\n"
 "Language-Team: Polish (https://www.transifex.com/otf/teams/1519/pl/)%5Cn"
@@ -154,6 +154,11 @@ msgstr "Często zadawane pytania dotyczące nadużyć"
 msgid "Tor Metrics"
 msgstr "Wskaźniki Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2554,6 +2559,61 @@ msgstr ""
 "Możesz znaleźć bardziej szczegółowe informacje jak używać Tor + VPN na "
 "[naszej wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2934,6 +2994,61 @@ msgstr ""
 "[identyfikowaniu i dokumentowaniu wszystkich "
 "problemów](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3104,6 +3219,43 @@ msgstr ""
 "Używanie Tora wraz z innymi przeglądarkami jest [niebezpiecznie i "
 "nierekomendowane](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3222,6 +3374,133 @@ msgstr ""
 "towarowych](https://www.torproject.org/about/trademark/), aby uzyskać więcej"
 " szczegółów."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3424,6 +3703,162 @@ msgstr ""
 "Zobacz wizualizację [Tora wraz z HTTPS](/https/https-1/), aby zrozumieć jak "
 "Tor zachowuje się z HTTPS."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3464,6 +3899,151 @@ msgstr ""
 "Przeglądarka Tor nie może zrobić nic odnośnie tekstu który wpisujesz w "
 "formularze internetowe."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6222,14 +6802,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Sprawdź również czy opcje HTTPProxyAuthenticator oraz "
-"HTTPSProxyAuthenticator wymagają autoryzacji. Wspieramy jedynie podstawowe "
-"metody autoryzacji, jeśli potrzebujesz autoryzacji NTLM, sprawdź [ten post w"
-" archiwum](https://archives.seul.org/or/talk/Jun-2005/msg00223.html)."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6509,6 +7087,219 @@ msgstr ""
 "Pamiętaj, wszystkie linie zaczynające się znakiem '#' w torrc są traktowane "
 "jako komentarz, i nie mają wpływu na konfigurację Tora."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8343,6 +9134,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8542,21 +9457,6 @@ msgstr ""
 "tylko Tor przejdzie w stan hibernacji, zostanie to zasygnalizowane takim "
 "wpisem w dzienniku zdarzeń:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11376,6 +12276,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -12099,68 +13124,21 @@ msgstr "### Jak zweryfikować nazwę użytkownika"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"Następnie, aby dokończyć proces rejestracji i ostatecznie uzyskać dostęp do "
-"kanału #tor-project, Twoja nazwa użytkownika musi być **zweryfikowana**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. Aby zweryfikować nazwę użytkownika, otwórz nowe okno przeglądarki i "
-"przejdź do https://webchat.oftc.net/?channels=tor."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Zaloguj się na IRC nazwą użytkownika i hasłem."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"3. Znajdź słowo **zweryfikuj (en: verify)**, i zaloguj się. Może się "
-"wydawać, że nic się nie stało. Sprawdź górę strony, powinna pojawić się "
-"kolumna o nazwie **Konto (en: Account)**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Kliknij na **Konto (en: Account)**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Kliknij na krótkie zdanie na dole kwadraciku, które mówi: Zweryfikuj "
-"konto (en: Verify account)."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Wypełnij Captcha które się pojawi, i kliknij ok."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-"7. Pojawi się mała wiadomość: "Twoje konto NickServ zostało zweryfikowane "
-"(en: Your NickServ account has been verified).""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Wróć do strony IRC gdzie jesteś zalogowany i wpisz:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12169,13 +13147,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Kliknij ENTER."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Jeśli proces się powiedzie, otrzymasz wiadomość mówiącą:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12339,21 +13317,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Dodaj następujące wpisy do `/etc/apt/sources.list` lub w nowym pliku"
-" `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12369,20 +13349,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12392,20 +13370,18 @@ msgstr "Lub wersje nightly:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12429,16 +13405,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12460,28 +13436,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Następnie dodaj klucz gpg używany do podpisywania pakietów, wpisując"
-" następujące polecenia w terminalu:"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14515,6 +15480,82 @@ msgstr ""
 "Nie, ponieważ ten użytkownik aktualizuje swoją listę przekaźników tak "
 "często, jak użytkownik, który nie zmienia adresu IP w ciągu dnia."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14547,8 +15588,8 @@ msgid "DONATE NOW"
 msgstr "ZRÓB DOTACJE"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Pobierz Przeglądarkę Tor"
diff --git a/contents+pt-BR.po b/contents+pt-BR.po
index b990a63d5e..b511ebd64a 100644
--- a/contents+pt-BR.po
+++ b/contents+pt-BR.po
@@ -23,16 +23,16 @@
 # Daniel, 2021
 # Eduardo Addad de Oliveira eduardoaddad@hotmail.com, 2021
 # José Ricardo dos Santos Júnior hricardo2007@yandex.com, 2021
-# Igor Bk 13, 2021
 # Emma Peel, 2021
+# Igor Bk 13, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: Emma Peel, 2021\n"
+"Last-Translator: Igor Bk 13, 2021\n"
 "Language-Team: Portuguese (Brazil) (https://www.transifex.com/otf/teams/1519/pt_BR/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -163,6 +163,11 @@ msgstr "FAQ sobre abuso"
 msgid "Tor Metrics"
 msgstr "Métricas do Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2518,6 +2523,61 @@ msgstr ""
 "Você pode encontrar informações mais detalhadas sobre Tor + VPN na [nossa "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "Elas são mantidas por boas pessoas que fazer parte da comunidade Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2895,6 +2955,61 @@ msgstr ""
 "[identificando e documentando todos os "
 "problemas](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3064,6 +3179,43 @@ msgstr ""
 "O uso do Tor com outros navegadores é [perigoso e não recomendado](/pt-"
 "BR/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3179,6 +3331,133 @@ msgstr ""
 "Veja nosso [FAQ da marca](https://www.torproject.org/about/trademark/) para "
 "mais detalhes."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3381,6 +3660,162 @@ msgstr ""
 "Acesse esta visualização do [Tor e do HTTPS](/pt-BR/https/https-1/) para "
 "entender como eles se interagem."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3419,6 +3854,151 @@ msgstr ""
 "O Navegador Tor, porém, não consegue fazer nada em relação ao texto que você"
 " digita nos formulários."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6150,15 +6730,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Também, leia sobre as opções HTTPProxyAuthenticator e "
-"HTTPSProxyAuthenticator se suas solicitações de proxy exigirem autenticação."
-" Nós apenas suportamos atualmente autenticação básica, porém se você precisa"
-" de autenticação NTLM, você pode achar [este post nos "
-"arquivos](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) útil."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6437,6 +7014,219 @@ msgstr ""
 "Lembre, todas as linhas iniciadas com '#' no torrc são tratadas como "
 "comentários e não surtem efeito na configuração do Tor."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8216,6 +9006,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8418,21 +9332,6 @@ msgstr ""
 "Portanto você pode achar que não está apto a navegar assim que seu Tor entra"
 " em hibernação, sinalizado por esta entrada no log:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11093,6 +11992,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11818,68 +12842,21 @@ msgstr "### Como verificar seu codinome"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"Então, para completar o registro e efetivamente obter acesso ao canal #tor-"
-"project, seu codinome deve ser **verificado**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. Para verificar seu apelido, abra uma nova janela no navegador e vá para "
-"https://webchat.oftc.net/?channels=tor."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Faça o log in com seu codinome IRC e senha."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-"3. Busque pela palavra **verificar** e faça log in. Pode ser que nada "
-"aconteça. Olhe para o topo da página e você verá um espaço chamado "
-"**Conta**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Clique em **Conta**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Clique na frase pequena na parte inferior do quadrado que diz: Verificar "
-"conta."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Preencha o Captcha que aparece, e clique em ok."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"7. Uma pequena mensagem irá aparecer: "Sua conta NickServ foi verificada.""
-" "
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Volte para a página IRC em que você está logado e digite:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11888,13 +12865,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Pressione Enter."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Se tudo correr bem, você receberá uma mensagem que dirá:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12060,21 +13037,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Adicione as seguintes linhas em `/etc/apt/sources.list` ou um novo "
-"arquivo em  `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12087,14 +13066,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -12106,20 +13087,18 @@ msgstr "Ou compilações noturnas:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12144,16 +13123,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12175,28 +13154,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Então adicione a chave gpg usada para assinar os pacotes executando "
-"os seguintes comandas em seu prompt de comando"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14222,6 +15190,82 @@ msgstr ""
 "Não, porque aquele usuário atualiza sua lista de retransmissores com a mesma"
 " frequência que um usuário que não muda seu endereço de IP durante o dia."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14253,8 +15297,8 @@ msgid "DONATE NOW"
 msgstr "DOE AGORA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Baixar o Navegador Tor"
diff --git a/contents+pt-PT.po b/contents+pt-PT.po
index b4ffd138e7..5a5d157f76 100644
--- a/contents+pt-PT.po
+++ b/contents+pt-PT.po
@@ -6,19 +6,19 @@
 # A Russo quisquiliarum2001-habitica@yahoo.co.uk, 2020
 # fc2d9c36d73e741383fbbf46a4aac49f_013445b, 2020
 # erinm, 2020
-# Manuela Silva mmsrs@sky.com, 2020
 # Mário Furtado furmario@aol.com, 2020
 # Emma Peel, 2021
 # Rui xymarior@yandex.com, 2021
 # Hugo Costa hugoncosta@gmail.com, 2021
+# Manuela Silva mmsrs@sky.com, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: Hugo Costa hugoncosta@gmail.com, 2021\n"
+"Last-Translator: Manuela Silva mmsrs@sky.com, 2021\n"
 "Language-Team: Portuguese (Portugal) (https://www.transifex.com/otf/teams/1519/pt_PT/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -149,6 +149,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "Medições do Tor"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2480,6 +2485,62 @@ msgstr ""
 "Pode encontrar mais informação detalhada sobre Tor + VPN na [nossa "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+"Elas são administradas por boas pessoas que fazem parte da comunidade Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2793,6 +2854,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2962,6 +3078,43 @@ msgid ""
 msgstr ""
 "Usar o Tor com outros browsers é [perigroso e não recomendado](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3077,6 +3230,133 @@ msgstr ""
 "Consulte as nossas [Perguntas Mais Frequentes sobre a marca "
 "registada](https://www.torproject.org/about/trademark/) para detalhes."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3277,6 +3557,162 @@ msgstr ""
 "Veja esta visualização de [Tor e HTTPS](/https/https-1/) para perceber como "
 "é que o Tor e HTTPS interagem."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3317,6 +3753,151 @@ msgstr ""
 "O Tor Browser não pode, no entanto, fazer nada em relação ao texto que você "
 "escreva em formulários."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5861,9 +6442,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -6096,6 +6679,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7699,6 +8495,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7846,21 +8766,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10146,6 +11051,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10796,56 +11826,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Clique em **Conta**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -10855,12 +11849,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Clique em "Enter""
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -11001,18 +11995,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11026,14 +12024,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11045,15 +12045,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11074,13 +12076,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11100,21 +12104,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -12721,6 +13720,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -12751,8 +13826,8 @@ msgid "DONATE NOW"
 msgstr "DOAR AGORA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Transferir o Tor Browser"
diff --git a/contents+ro.po b/contents+ro.po
index 6bb5f3cd79..b6173c822e 100644
--- a/contents+ro.po
+++ b/contents+ro.po
@@ -16,7 +16,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: eduard pintilie eduard.pintilie@gmail.com, 2021\n"
 "Language-Team: Romanian (https://www.transifex.com/otf/teams/1519/ro/)%5Cn"
@@ -149,6 +149,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "Tor Metrics"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2416,6 +2421,61 @@ msgstr ""
 "Puteți găsi informații mai detaliate despre Tor + VPN pe [wiki-ul "
 "nostru](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "Sunt conduse de oameni simpli care fac parte din comunitatea Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2726,6 +2786,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2898,6 +3013,43 @@ msgstr ""
 "Folosirea Tor cu alte browsere este [periculoasă și nu este "
 "recomandată](/ro/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3015,6 +3167,133 @@ msgstr ""
 "Consultați [întrebările noastre referitoare la mărcile "
 "comerciale](https://www.torproject.org/about/trademark/) pentru detalii."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3214,6 +3493,162 @@ msgstr ""
 "Vedeți această vizualizare a [Tor și HTTPS](/ro/https/https-1/) pentru a "
 "înțelege cum interacționează Tor și HTTPS."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3254,6 +3689,151 @@ msgstr ""
 "Tor Browser nu poate face nimic cu privire la textul pe care îl introduceți "
 "în formulare."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5847,15 +6427,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"De asemenea, citiți opțiunile HTTPProxyAuthenticator și "
-"HTTPSProxyAuthenticator dacă proxy-ul dvs. necesită autentificare. În "
-"prezent acceptăm numai autentificarea de bază, dar dacă aveți nevoie de "
-"autentificare NTLM, puteți găsi utilă [această postare în "
-"arhive](https://archives.seul.org/or/talk/Jun-2005/msg00223.html)."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6139,6 +6716,219 @@ msgstr ""
 "Nu uitați, toate liniile care încep cu `#` în torrc sunt tratate ca și "
 "comentarii și nu au niciun efect asupra configurației lui Tor."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7845,6 +8635,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8031,21 +8945,6 @@ msgstr ""
 "Astfel, este posibil să descoperiți că nu puteți naviga imediat ce Tor trece"
 " în hibernare, lucru semnalat de această intrare din jurnal:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10607,6 +11506,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11323,65 +12347,21 @@ msgstr "### Cum să vă verificați pseudonimul"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-"Apoi, pentru a finaliza înregistrarea și a obține în final acces la canalul "
-"#tor-project, pseudonimul dvs. trebuie să fie **verified**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Conectați-vă cu pseudonimul și parola IRC."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"3. Căutați cuvântul **verify** și conectați-vă acolo. Se pare că nu s-a "
-"întâmplat nimic. Uitați-vă în partea de sus a paginii, unde există o coloană"
-" numită **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Clic pe **Account**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Faceți clic pe propoziția mică din partea de jos a pătratului care spune:"
-" Verificați contul."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"7. Va apărea un mesaj minuscul: „Contul dvs. NickServ a fost verificat.”"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Reveniți la pagina web IRC unde sunteți conectat și tastați:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11390,13 +12370,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Clic pe tasta Enter."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Dacă totul este bine, veți primi un mesaj care spune:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11543,21 +12523,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Adăugați următoarele intrări la `/etc/apt/sources.list` or a new "
-"file in `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11570,14 +12552,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11589,18 +12573,18 @@ msgstr "Sau versiuni nocturne:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11620,13 +12604,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11646,28 +12632,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Apoi adăugați cheia gpg folosită pentru a semna pachetele rulând "
-"următoarele comenzi la promptul dvs. de comandă"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -13281,6 +14256,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13311,8 +14362,8 @@ msgid "DONATE NOW"
 msgstr "DONAȚI ACUM"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Descărcare Tor Browser"
diff --git a/contents+ru.po b/contents+ru.po
index efce6203e3..e8fa514d0f 100644
--- a/contents+ru.po
+++ b/contents+ru.po
@@ -24,7 +24,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Russian (https://www.transifex.com/otf/teams/1519/ru/)%5Cn"
@@ -157,6 +157,11 @@ msgstr "FAQ по злоупотреблениям"
 msgid "Tor Metrics"
 msgstr "Tor Metrics"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2446,6 +2451,61 @@ msgstr ""
 "Подробнее об использовании Tor вместе с VPN можно прочитать у нас в "
 "[wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2811,6 +2871,61 @@ msgstr ""
 "Этот список неполный. Будет хорошо, если вы поможете нам [определить и "
 "документировать все такие моменты](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2986,6 +3101,43 @@ msgstr ""
 "Использовать Tor с другими браузерами [опасно и не "
 "рекомендуется](/ru/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3101,6 +3253,133 @@ msgstr ""
 "У нас также есть [FAQ по торговым "
 "маркам](https://www.torproject.org/ru/about/trademark/)."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3300,6 +3579,162 @@ msgstr ""
 "[Эта иллюстрация](/ru/https/https-1/) поможет понять, как вместе "
 "используются Tor и HTTPS."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3339,6 +3774,151 @@ msgstr ""
 "При этом Tor Browser ничего не может поделать, например, с данными, которые "
 "сам пользователь вписывает в поля форм на сайтах."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5988,15 +6568,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Если ваш прокси требует аутентификацию, обратите внимание на опции "
-"HTTPProxyAuthenticator и HTTPSProxyAuthenticator. В настоящее время мы "
-"поддерживаем только базовую аутентификацию. Если вам нужна NTLM-"
-"аутентификация, советуем обратиться к [этому "
-"материалу](https://archives.seul.org/or/talk/Jun-2005/msg00223.html)."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6266,6 +6843,219 @@ msgstr ""
 "Обратите внимание: все строки, которые начинаются с `#`, считаются "
 "комментариями. Они не влияют на настройки Tor."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -7960,6 +8750,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8151,21 +9065,6 @@ msgstr ""
 "Как только Tor впадет в спячку (гибернацию), вы можете остаться с "
 "неработающим браузером. В журнале появится такая запись:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -10803,6 +11702,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11507,66 +12531,21 @@ msgstr "### Как подтвердить никнейм"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-"Чтобы завершить регистрацию и получить доступ к каналу #tor-project, никнейм"
-" должен быть **подтверждён**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"1. Чтобы проверить свой никнейм, откройте новое окно браузера и зайдите на "
-"сайт https://webchat.oftc.net/?channels=tor."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Войдите с вашими никнеймом и паролем IRC."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"3. Найдите на странице гиперссылку **verify**, нажмите и залогиньтесь. "
-"Иногда бывает, что ничего не меняется. Обратите внимание на верхнюю часть "
-"страницы. Там есть столбец **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Нажмите **Account**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"5. Найдите маленькую гиперссылку в конце таблицы. Она называется "Verify "
-"account". Нажмите."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Решите капчу во всплывающем окне и нажмите "Ок"."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr "7. Вы увидите сообщение: "Your NickServ account has been verified.""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Вернитесь на страницу IRC, где вы залогинены, и наберите:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11575,13 +12554,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Нажмите Enter."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Если всё в порядке, вы увидите такое сообщение:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11732,21 +12711,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Добавьте следующие данные в `/etc/apt/sources.list` или в новый файл"
-" в `/etc/apt/sources.list.d/`"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11759,14 +12740,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -11778,20 +12761,18 @@ msgstr "Или "ночные сборки":"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11816,16 +12797,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11847,28 +12828,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Теперь добавьте gpg-ключ, который был использован для подписывания "
-"пакетов. Выполните следующие команды в командной строке"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -13845,6 +14815,82 @@ msgstr ""
 "Нет, поскольку такой пользователь обновляет свой список узлов так же часто, "
 "как и пользователь, который не меняет IP-адрес в течение дня."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -13875,8 +14921,8 @@ msgid "DONATE NOW"
 msgstr "ПОЖЕРТВОВАТЬ"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Скачать Tor Browser"
diff --git a/contents+sq.po b/contents+sq.po
index 5b301f2328..17f1132b66 100644
--- a/contents+sq.po
+++ b/contents+sq.po
@@ -10,7 +10,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Besnik Bleta besnik@programeshqip.org, 2021\n"
 "Language-Team: Albanian (https://www.transifex.com/otf/teams/1519/sq/)%5Cn"
@@ -143,6 +143,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr "Statistika Tor-i"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2134,6 +2139,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "Ato mbahen në punë nga njerëz të mirë që janë pjesë e bashkësisë Tor."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2437,6 +2497,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2572,6 +2687,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2667,6 +2819,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2837,6 +3116,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2869,6 +3304,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5057,9 +5637,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5281,6 +5863,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6740,6 +7535,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6887,21 +7806,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9154,6 +10058,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9740,56 +10769,20 @@ msgstr "### Si të verifikoni nofkën tuaj"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Klikoni mbi **Llogari**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9799,12 +10792,12 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Klikoni mbi ENTER."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9945,18 +10938,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9970,14 +10967,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9989,15 +10988,17 @@ msgstr "Ose montime të përnatshme:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10018,13 +11019,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10044,21 +11047,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11665,6 +12663,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11697,8 +12771,8 @@ msgid "DONATE NOW"
 msgstr "DHURONI TANI"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Shkarkoni Shfletuesin Tor"
diff --git a/contents+sr.po b/contents+sr.po
index 1c0b10dbb2..4f41b718b1 100644
--- a/contents+sr.po
+++ b/contents+sr.po
@@ -9,7 +9,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Aleksa Ristić, 2020\n"
 "Language-Team: Serbian (https://www.transifex.com/otf/teams/1519/sr/)%5Cn"
@@ -142,6 +142,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2029,6 +2034,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2331,6 +2391,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2466,6 +2581,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2561,6 +2713,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2731,6 +3010,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2763,6 +3198,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4943,9 +5523,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5162,6 +5744,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6613,6 +7408,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6760,21 +7679,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9009,6 +9913,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9593,56 +10622,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9652,12 +10645,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9798,18 +10791,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9823,14 +10820,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9842,15 +10841,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9871,13 +10872,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9897,21 +10900,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11518,6 +12516,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11548,8 +12622,8 @@ msgid "DONATE NOW"
 msgstr "DONIRAJ SADA"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Preuzmi Tor pregledač"
diff --git a/contents+sv.po b/contents+sv.po
index eee14588bd..42a16e6e26 100644
--- a/contents+sv.po
+++ b/contents+sv.po
@@ -10,7 +10,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: erinm, 2021\n"
 "Language-Team: Swedish (https://www.transifex.com/otf/teams/1519/sv/)%5Cn"
@@ -143,6 +143,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2033,6 +2038,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2333,6 +2393,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2468,6 +2583,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2563,6 +2715,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2733,6 +3012,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2765,6 +3200,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4972,9 +5552,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5194,6 +5776,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6653,6 +7448,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6800,21 +7719,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9057,6 +9961,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9658,56 +10687,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9717,12 +10710,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9863,18 +10856,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9888,14 +10885,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9907,15 +10906,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9936,13 +10937,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9962,21 +10965,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11583,6 +12581,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11613,8 +12687,8 @@ msgid "DONATE NOW"
 msgstr "DONERA NU"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Hämta Tor Browser"
diff --git a/contents+sw.po b/contents+sw.po
index d25d51ff7b..e73564713d 100644
--- a/contents+sw.po
+++ b/contents+sw.po
@@ -10,7 +10,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Swahili (https://www.transifex.com/otf/teams/1519/sw/)%5Cn"
@@ -143,6 +143,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2030,6 +2035,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2330,6 +2390,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2465,6 +2580,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2560,6 +2712,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2730,6 +3009,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2762,6 +3197,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4931,9 +5511,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5155,6 +5737,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6593,6 +7388,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6740,21 +7659,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -8992,6 +9896,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9576,56 +10605,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9635,12 +10628,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9781,18 +10774,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9806,14 +10803,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9825,15 +10824,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9854,13 +10855,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9880,26 +10883,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11505,6 +12499,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11535,8 +12605,8 @@ msgid "DONATE NOW"
 msgstr ""
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Pakua kivinjari cha Tor"
diff --git a/contents+tr.po b/contents+tr.po
index 9f323da846..5ca4186be5 100644
--- a/contents+tr.po
+++ b/contents+tr.po
@@ -12,7 +12,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Kaya Zeren kayazeren@gmail.com, 2021\n"
 "Language-Team: Turkish (https://www.transifex.com/otf/teams/1519/tr/)%5Cn"
@@ -145,6 +145,11 @@ msgstr "Kötüye Kullanım SSS"
 msgid "Tor Metrics"
 msgstr "Tor Metrics"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2531,6 +2536,62 @@ msgstr ""
 "Tor + VPN hakkında ayrıntılı bilgi almak için [wiki "
 "sayfamıza](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+"Tor topluluğunun bir parçası olan iyi insanlar tarafından yöneitliyorlar."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2908,6 +2969,61 @@ msgstr ""
 "belgelemek](https://community.torproject.org/) için yardımınıza gerek "
 "duyuyoruz."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3079,6 +3195,43 @@ msgstr ""
 "Tor uygulamasını diğer tarayıcılar ile kullanmak [tehlikeli olabilir ve "
 "önerilmez](/tr/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3197,6 +3350,133 @@ msgstr ""
 "Ayrıntılı bilgi almak için [marka "
 "SSS](https://www.torproject.org/about/trademark/) bölümüne bakabilirsiniz."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3402,6 +3682,162 @@ msgstr ""
 "Buradaki [Tor ve HTTPS](/tr/https/https-1/) görselleştirmesine bakarak Tor "
 "ile HTTPS etkileşimini anlayabilirsiniz."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3443,6 +3879,151 @@ msgstr ""
 "Tor Browser formlara yazdığınız metinler ile ilgili herhangi bir şey "
 "yapamaz."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6204,16 +6785,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"Vekil sunucunuz için kimlik doğrulaması gerekiyorsa, HTTPProxyAuthenticator "
-"ve HTTPSProxyAuthenticator ayarlarının ne olduğuna da bakın. Şu anda yalnız "
-"temel kimlik doğrulama yöntemini destekliyoruz. Bununla birlikte NTLM kimlik"
-" doğrulama yöntemini kullanmanız gerekiyorsa [bu arşiv "
-"yazısı](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) işinize "
-"yarayabilir."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6501,6 +7078,219 @@ msgstr ""
 "torrc dosyasında `#` karakteri ile başlayan tüm satırların açıklama olarak "
 "değerlendirileceğini ve Tor yapılandırmasını etkilemeyeceğini unutmayın."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8344,6 +9134,130 @@ msgstr ""
 "sonrası](https://community.torproject.org/relay/setup/bridge/post-install/) "
 "rehberine bakabilirsiniz."
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8542,21 +9456,6 @@ msgstr ""
 "Bu nedenle Tor uygulamanız uykuya daldığında gezinemeyebilirsiniz. Bu durumu"
 " günlük içindeki şu kayıtlardan anlayabilirsiniz:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11406,6 +12305,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -12120,65 +13144,21 @@ msgstr "### Takma adınızı nasıl doğrularsınız"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"Kayıt işlemini tamamlamak ve #tor-project kanalına erişebilmek için takma "
-"adınızın **doğrulanmış** olması gerekir."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. Takma adınızı doğrulamak için yeni bir tarayıcı penceresi açın ve "
-"https://webchat.oftc.net/?channels=tor adresine gidin."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "IRC takma adınız ve parolanız ile oturum açın."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-"3. **verify** sözcüğünü arayın ve oraya oturum açın. Hiç bir şey olmamış "
-"gibi görünecek. Sayfanın üst bölümüne baktığınızda **Account** adında bir "
-"sütun göreceksiniz."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. **Account** üzerine tıklayın."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr "5. Karenin altında Hesabı doğrula üzerine tıklayın."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Açılan güvenlik denetimini geçip tamam üzerine tıklayın."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr "7. Şu bildirim görüntülenir: "Your NickServ account has been verified.""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
-"8. Daha önce oturum açmış olduğunuz IRC web sayfasına geçip şunu yazın:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12187,13 +13167,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. ENTER üzerine tıklayın."
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. Her şey yolunda ise şöyle bir ileti alırsınız:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12360,21 +13340,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. `/etc/apt/sources.list` dosyasına ya da yeni "
-"`/etc/apt/sources.list.d/` dosyasına şu kayıtları ekleyin"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12390,20 +13372,18 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
-"experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12413,20 +13393,18 @@ msgstr "Gecelik yapımları denemek isterseniz:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12450,16 +13428,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12481,28 +13459,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
-"#### 3. Ardından, komut satırından aşağıdaki komutları yürüterek paketleri "
-"imzalamak için kullanılan gpg anahtarını ekleyin."
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14542,6 +15509,82 @@ msgstr ""
 "Hayır, çünkü bu kullanıcı da aktarıcı listesini, IP adresini gün içinde "
 "değiştirmeyen bir kullanıcı ile aynı sıklıkta günceller."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14574,8 +15617,8 @@ msgid "DONATE NOW"
 msgstr "BAĞIŞ YAPIN"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Tor Browser indirin"
diff --git a/contents+uk.po b/contents+uk.po
index c82bed0c15..e9c99dcac8 100644
--- a/contents+uk.po
+++ b/contents+uk.po
@@ -17,7 +17,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: CuAl40qp, 2021\n"
 "Language-Team: Ukrainian (https://www.transifex.com/otf/teams/1519/uk/)%5Cn"
@@ -150,6 +150,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2037,6 +2042,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2337,6 +2397,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2472,6 +2587,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2567,6 +2719,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2737,6 +3016,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2769,6 +3204,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4937,9 +5517,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5156,6 +5738,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6605,6 +7400,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6752,21 +7671,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr ""
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9003,6 +9907,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9594,56 +10623,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9653,12 +10646,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9799,18 +10792,22 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9824,14 +10821,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9843,15 +10842,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9872,13 +10873,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9898,21 +10901,16 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-msgstr ""
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -11519,6 +12517,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11549,8 +12623,8 @@ msgid "DONATE NOW"
 msgstr "ПІДТРИМАТИ ЗАРАЗ"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Завантажити Tor Browser"
diff --git a/contents+zh-CN.po b/contents+zh-CN.po
index f6de61d415..a73b1b2d8c 100644
--- a/contents+zh-CN.po
+++ b/contents+zh-CN.po
@@ -16,19 +16,19 @@
 # 忻然 李 2544304894@qq.com, 2020
 # Runzhe Liang 18051080098@163.com, 2020
 # Feng Zi admin@fengzi.ga, 2021
-# ff98sha, 2021
 # MD Rights psychi2009@gmail.com, 2021
 # 狂男风 CrazyBoyFeng@Live.Com, 2021
 # Emma Peel, 2021
 # Scott Rhodes starring169@gmail.com, 2021
+# ff98sha, 2021
 # 
 msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
-"Last-Translator: Scott Rhodes starring169@gmail.com, 2021\n"
+"Last-Translator: ff98sha, 2021\n"
 "Language-Team: Chinese (China) (https://www.transifex.com/otf/teams/1519/zh_CN/)%5Cn"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -159,6 +159,11 @@ msgstr "有关滥用的常见问题"
 msgid "Tor Metrics"
 msgstr "Tor 指数"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2172,6 +2177,61 @@ msgstr ""
 "上](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)%E6%89%BE%E5%88... Tor 与"
 " VPN 一起使用时的信息。"
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "他们被一些同样来自 Tor 大家庭的优秀人才运营着。"
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2472,6 +2532,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2610,6 +2725,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr "将 Tor 和其他浏览器一起使用是[危险且不推荐的](/zh-CN/tbb/tbb-9/)。"
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2711,6 +2863,133 @@ msgid ""
 "details."
 msgstr "查看我们的[商标常见问题](https://www.torproject.org/about/trademark/)%E6%9D%A5%E8%8E%B7%E5%8F%96%E8%A..."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2882,6 +3161,162 @@ msgid ""
 msgstr ""
 "查看关于 [Tor 与 HTTPS](/zh-CN/https/https-1/) 的可视化内容来理解 Tor 是如何与 HTTPS 交互的。"
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2914,6 +3349,151 @@ msgid ""
 "though."
 msgstr "但是，Tor 浏览器无法对您输入到表单中的文本做任何更改。"
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -5165,13 +5745,12 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
-"此外，如果您的代理服务器需要auth的话，请查看 HTTP 代理服务器认证器和 HTTPS "
-"代理服务器认证器选项。我们目前只支持基础的auth，但如果您需要 NTLM "
-"认证，您会觉得[档案里的这篇文章](https://archives.seul.org/or/talk/Jun-2005/msg00223.html)%E5%BE%88%E6%9C%89%..."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -5397,6 +5976,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr "记住，在torrc中所有以“#”开头的行都会被视为注释并且不会影响Tor的配置。"
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6924,6 +7716,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -7082,21 +7998,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr "因此您可能会发现，一旦您的 Tor 进入休眠，您就不能进行浏览了，而且在日志里会出现这样一条记录："
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9412,6 +10313,131 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -10020,57 +11046,21 @@ msgstr "### 如何验证您的昵称"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr "然后，您必须“验证”您的昵称，以完成注册并最终得到 #tor-project频道的访问权限。"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. 使用您的IRC昵称和密码来登入。"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr "3. 找到**验证**字样，并在该处登陆。有可能看上去什么都没发生。请看页面的顶部，会出现一栏叫做**账户**。"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. 点击**账户**。"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr "5. 点击正方形底部的那句话：验证账户"
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. 填入弹出的CAPTCHA验证，然后点击确定。"
-
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr "7. 一则信息会出现：“您的昵称服务账号已经通过验证。”"
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. 返回您已登录的IRC网页并输入："
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -10079,13 +11069,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. 点击确定。"
+msgid "3. Click ENTER."
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. 如果一切顺利，您将会收到一条消息，写着："
+msgid "4. If all is well, you will receive a message that says:"
+msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -10225,21 +11215,23 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. 将以下条目加到 "/etc/apt/sources.list" 后，或者 “/etc/apt/sources.list.d/” "
-"中的一个新文件中。"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10252,14 +11244,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -10271,18 +11265,18 @@ msgstr "或是每晚构建："
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -10302,13 +11296,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -10328,26 +11324,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
-msgstr "#### 3. 然后，在命令窗口中运行下面的命令来添加用于签名软件包的 gpg 公钥："
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+"following command at your command prompt:"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+"# wget -O- "
+"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11954,6 +12941,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11984,8 +13047,8 @@ msgid "DONATE NOW"
 msgstr "立即捐助"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "下载 Tor 浏览器"
diff --git a/contents+zh-TW.po b/contents+zh-TW.po
index fa0e0260cf..d52d403c2e 100644
--- a/contents+zh-TW.po
+++ b/contents+zh-TW.po
@@ -18,7 +18,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: 2018-10-02 22:41+0000\n"
 "Last-Translator: Emma Peel, 2021\n"
 "Language-Team: Chinese (Taiwan) (https://www.transifex.com/otf/teams/1519/zh_TW/)%5Cn"
@@ -151,6 +151,11 @@ msgstr ""
 msgid "Tor Metrics"
 msgstr ""
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr ""
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2054,6 +2059,61 @@ msgid ""
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
 msgstr ""
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2355,6 +2415,61 @@ msgid ""
 " documenting all the issues](https://community.torproject.org/)."
 msgstr ""
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr ""
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -2490,6 +2605,43 @@ msgid ""
 "recommended](/tbb/tbb-9/)."
 msgstr ""
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr ""
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -2585,6 +2737,133 @@ msgid ""
 "details."
 msgstr ""
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -2755,6 +3034,162 @@ msgid ""
 " Tor and HTTPS interact."
 msgstr ""
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -2787,6 +3222,151 @@ msgid ""
 "though."
 msgstr ""
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -4959,9 +5539,11 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
#: https//support.torproject.org/tbb/tbb-47/
@@ -5178,6 +5760,219 @@ msgid ""
 "have no effect on Tor's configuration."
 msgstr ""
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -6671,6 +7466,130 @@ msgid ""
 "guide."
 msgstr ""
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr ""
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -6818,21 +7737,6 @@ msgid ""
 "into hibernation, signaled by this entry in the log:"
 msgstr ""
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -9071,6 +9975,131 @@ msgstr ""
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr ""
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -9657,56 +10686,20 @@ msgstr ""
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9716,12 +10709,12 @@ msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
+msgid "3. Click ENTER."
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
 msgstr ""
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
@@ -9862,18 +10855,22 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9887,14 +10884,16 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
@@ -9906,15 +10905,17 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9935,13 +10936,15 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -9961,26 +10964,17 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
-"https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -11586,6 +12580,82 @@ msgid ""
 "doesn't change IP address over the day."
 msgstr ""
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr ""
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -11616,8 +12686,8 @@ msgid "DONATE NOW"
 msgstr "立刻捐款"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "下載 Tor 瀏覽器"
diff --git a/contents.pot b/contents.pot
index 268759270a..354f80c1c8 100644
--- a/contents.pot
+++ b/contents.pot
@@ -3,7 +3,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: PACKAGE VERSION\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2021-08-25 11:14+CET\n"
+"POT-Creation-Date: 2021-09-01 12:20+CET\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: FULL NAME EMAIL@ADDRESS\n"
 "Language-Team: en LL@li.org\n"
@@ -135,6 +135,11 @@ msgstr "Abuse FAQ"
 msgid "Tor Metrics"
 msgstr "Tor Metrics"
+#: https//support.torproject.org/alternate-designs/
+#: (content/alternate-designs/contents+en.lrtopic.title)
+msgid "Alternate Designs We Don't Do (Yet)"
+msgstr "Alternate Designs We Don't Do (Yet)"
+
 #: https//support.torproject.org/glossary/add-on-extension-or-plugin/
 #: (content/glossary/add-on-extension-or-plugin/contents+en.lrword.term)
 msgid "add-on, extension, or plugin"
@@ -2493,6 +2498,76 @@ msgstr ""
 "You can find more detailed information about Tor + VPN at [our "
 "wiki](https://trac.torproject.org/projects/tor/wiki/doc/TorPlusVPN)."
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.title)
+msgid "Can I donate for a relay rather than run my own?"
+msgstr "Can I donate for a relay rather than run my own?"
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+msgstr ""
+"Sure! We have a [list of organizations that run Tor "
+"relays](https://community.torproject.org/relay/community-resources/relay-"
+"associations/) that are happy to turn your donations into better speed and "
+"anonymity for the Tor network."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+msgstr ""
+"These organizations are not the same as [The Tor Project, "
+"Inc](https://donate.torproject.org/), but we consider that a good thing."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid "They're run by nice people who are part of the Tor community."
+msgstr "They're run by nice people who are part of the Tor community."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Note that there can be a tradeoff here between anonymity and performance."
+msgstr ""
+"Note that there can be a tradeoff here between anonymity and performance."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+msgstr ""
+"The Tor network's anonymity comes in part from diversity, so if you are in a"
+" position to run your own relay, you will be improving Tor's anonymity more "
+"than by donating."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+msgstr ""
+"At the same time though, economies of scale for bandwidth mean that "
+"combining many small donations into several larger relays is more efficient "
+"at improving network performance."
+
+#: https//support.torproject.org/faq/relay-donations/
+#: (content/faq/relay-donations/contents+en.lrquestion.description)
+msgid ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+msgstr ""
+"Improving anonymity and improving performance are both worthwhile goals, so "
+"however you can help is great!"
+
 #: https//support.torproject.org/faq/staying-anonymous/
 #: (content/faq/staying-anonymous/contents+en.lrquestion.title)
 msgid "Am I totally anonymous if I use Tor?"
@@ -2863,6 +2938,76 @@ msgstr ""
 "This list of pitfalls isn't complete, and we need your help [identifying and"
 " documenting all the issues](https://community.torproject.org/)."
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.title)
+msgid "What attacks remain against onion routing?"
+msgstr "What attacks remain against onion routing?"
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+msgstr ""
+"As mentioned above, it is possible for an observer who can view both you and"
+" either the destination website or your Tor exit node to correlate timings "
+"of your traffic as it enters the Tor network and also as it exits."
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Tor does not defend against such a threat model."
+msgstr "Tor does not defend against such a threat model."
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+msgstr ""
+"In a more limited sense, note that if a censor or law enforcement agency has"
+" the ability to obtain specific observation of parts of the network, it is "
+"possible for them to verify a suspicion that you talk regularly to your "
+"friend by observing traffic at both ends and correlating the timing of only "
+"that traffic."
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+msgstr ""
+"Again, this is only useful to verify that parties already suspected of "
+"communicating with one another are doing so."
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+msgstr ""
+"In most countries, the suspicion required to obtain a warrant already "
+"carries more weight than timing correlation would provide."
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+msgstr ""
+"Furthermore, since Tor reuses circuits for multiple TCP connections, it is "
+"possible to associate non anonymous and anonymous traffic at a given exit "
+"node, so be careful about what applications you run concurrently over Tor."
+
+#: https//support.torproject.org/about/attacks-on-onion-routing/
+#: (content/about/attacks-on-onion-routing/contents+en.lrquestion.description)
+msgid "Perhaps even run separate Tor clients for these applications."
+msgstr "Perhaps even run separate Tor clients for these applications."
+
 #: https//support.torproject.org/about/backdoor/
 #: (content/about/backdoor/contents+en.lrquestion.title)
 msgid "Is there a backdoor in Tor?"
@@ -3028,6 +3173,50 @@ msgstr ""
 "Using Tor with other browsers is [dangerous and not "
 "recommended](/tbb/tbb-9/)."
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.title)
+msgid "How often does Tor change its paths?"
+msgstr "How often does Tor change its paths?"
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+msgstr ""
+"Tor will reuse the same circuit for new TCP streams for 10 minutes, as long "
+"as the circuit is working fine."
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+msgstr "(If the circuit fails, Tor will switch to a new circuit immediately.)"
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+msgstr ""
+"But note that a single TCP stream (e.g. a long IRC connection) will stay on "
+"the same circuit forever."
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid "We don't rotate individual streams from one circuit to the next."
+msgstr "We don't rotate individual streams from one circuit to the next."
+
+#: https//support.torproject.org/about/change-paths/
+#: (content/about/change-paths/contents+en.lrquestion.description)
+msgid ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+msgstr ""
+"Otherwise, an adversary with a partial view of the network would be given "
+"many chances over time to link you to your destination, rather than just one"
+" chance."
+
 #: https//support.torproject.org/about/distribute-tor/
 #: (content/about/distribute-tor/contents+en.lrquestion.title)
 msgid "Can I distribute Tor?"
@@ -3143,6 +3332,170 @@ msgstr ""
 "See our [trademark FAQ](https://www.torproject.org/about/trademark/) for "
 "details."
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.title)
+msgid "What are Entry Guards?"
+msgstr "What are Entry Guards?"
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+msgstr ""
+"Tor (like all current practical low-latency anonymity designs) fails when "
+"the attacker can see both ends of the communications channel."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+msgstr ""
+"For example, suppose the attacker controls or watches the Tor relay you "
+"choose to enter the network, and also controls or watches the website you "
+"visit."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+msgstr ""
+"In this case, the research community knows no practical low-latency design "
+"that can reliably stop the attacker from correlating volume and timing "
+"information on the two sides."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "So, what should we do?"
+msgstr "So, what should we do?"
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose the attacker controls, or can observe, C relays."
+msgstr "Suppose the attacker controls, or can observe, C relays."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid "Suppose there are N relays total."
+msgstr "Suppose there are N relays total."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+msgstr ""
+"If you select new entry and exit relays each time you use the network, the "
+"attacker will be able to correlate all traffic you send with probability "
+"around (c/n)2."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+msgstr ""
+"But profiling is, for most users, as bad as being traced all the time: they "
+"want to do something often without an attacker noticing, and the attacker "
+"noticing once is as bad as the attacker noticing more often."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+msgstr ""
+"Thus, choosing many random entries and exits gives the user no chance of "
+"escaping profiling by this kind of attacker."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+msgstr ""
+"The solution is "entry guards": each Tor client selects a few relays at "
+"random to use as entry points, and uses only those relays for their first "
+"hop."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+msgstr ""
+"If those relays are not controlled or observed, the attacker can't win, "
+"ever, and the user is secure."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+msgstr ""
+"If those relays are observed or controlled by the attacker, the attacker "
+"sees a larger fraction of the user's traffic - but still the user is no more"
+" profiled than before."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+msgstr ""
+"Thus, the user has some chance (on the order of (n-c)/n) of avoiding "
+"profiling, whereas they had none before."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+msgstr ""
+"You can read more at [An Analysis of the Degradation of Anonymous "
+"Protocols](http://freehaven.net/anonbib/#wright02), [Defending Anonymous "
+"Communication Against Passive Logging "
+"Attacks](http://freehaven.net/anonbib/#wright03), and especially [Locating "
+"Hidden Servers](http://freehaven.net/anonbib/#hs-attack06)."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+msgstr ""
+"Restricting your entry nodes may also help against attackers who want to run"
+" a few Tor nodes and easily enumerate all of the Tor user IP addresses."
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+msgstr ""
+"(Even though they can't learn what destinations the users are talking to, "
+"they still might be able to do bad things with just a list of users.)"
+
+#: https//support.torproject.org/about/entry-guards/
+#: (content/about/entry-guards/contents+en.lrquestion.description)
+msgid ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+msgstr ""
+"However, that feature won't really become useful until we move to a "
+""directory guard" design as well."
+
 #: https//support.torproject.org/about/how-is-tor-different-from-other-proxies/
 #: (content/about/how-is-tor-different-from-other-proxies/contents+en.lrquestion.title)
 msgid "How is Tor different from other proxies?"
@@ -3343,6 +3696,209 @@ msgstr ""
 "See this visualization of [Tor and HTTPS](/https/https-1/) to understand how"
 " Tor and HTTPS interact."
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.title)
+msgid "Tell me about all the keys Tor uses"
+msgstr "Tell me about all the keys Tor uses"
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+msgstr ""
+"Tor uses a variety of different keys, with three goals in mind: 1) "
+"encryption to ensure privacy of data within the Tor network, 2) "
+"authentication so clients know they're talking to the relays they meant to "
+"talk to, and 3) signatures to make sure all clients know the same set of "
+"relays."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+msgstr ""
+"**Encryption**: first, all connections in Tor use TLS link encryption, so "
+"observers can't look inside to see which circuit a given cell is intended "
+"for."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+msgstr ""
+"Further, the Tor client establishes an ephemeral encryption key with each "
+"relay in the circuit; these extra layers of encryption mean that only the "
+"exit relay can read the cells."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+msgstr ""
+"Both sides discard the circuit key when the circuit ends, so logging traffic"
+" and then breaking into the relay to discover the key won't work."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+msgstr ""
+"**Authentication**: Every Tor relay has a public decryption key called the "
+""onion key"."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay rotates its onion key once a week."
+msgstr "Each relay rotates its onion key once a week."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+msgstr ""
+"When the Tor client establishes circuits, at each step it [demands that the "
+"Tor relay prove knowledge of its onion key](https://svn-"
+"archive.torproject.org/svn/projects/design-paper/tor-"
+"design.html#subsec:circuits)."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"That way the first node in the path can't just spoof the rest of the path."
+msgstr ""
+"That way the first node in the path can't just spoof the rest of the path."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+msgstr ""
+"Because the Tor client chooses the path, it can make sure to get Tor's "
+""distributed trust" property: no single relay in the path can know about "
+"both the client and what the client is doing."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+msgstr ""
+"**Coordination**: How do clients know what the relays are, and how do they "
+"know that they have the right keys for them?"
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each relay has a long-term public signing key called the "identity key"."
+msgstr ""
+"Each relay has a long-term public signing key called the "identity key"."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "Each directory authority additionally has a "directory signing key"."
+msgstr "Each directory authority additionally has a "directory signing key"."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+msgstr ""
+"The directory authorities [provide a signed "
+"list](https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt) of all "
+"the known relays, and in that list are a set of certificates from each relay"
+" (self-signed by their identity key) specifying their keys, locations, exit "
+"policies, and so on."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+msgstr ""
+"So unless the adversary can control a majority of the directory authorities "
+"(as of 2021 there are 10 directory authorities), they can't trick the Tor "
+"client into using other Tor relays."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do clients know what the directory authorities are?"
+msgstr "How do clients know what the directory authorities are?"
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+msgstr ""
+"The Tor software comes with a built-in list of location and public key for "
+"each directory authority."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+msgstr ""
+"So the only way to trick users into using a fake Tor network is to give them"
+" a specially modified version of the software."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid "How do users know they've got the right software?"
+msgstr "How do users know they've got the right software?"
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+msgstr ""
+"When we distribute the source code or a package, we digitally sign it with "
+"[GNU Privacy Guard](http://www.gnupg.org/). See the [instructions on how to "
+"check Tor Browser's signature](https://support.torproject.org/tbb/how-to-"
+"verify-signature/)."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+msgstr ""
+"In order to be certain that it's really signed by us, you need to have met "
+"us in person and gotten a copy of our GPG key fingerprint, or you need to "
+"know somebody who has."
+
+#: https//support.torproject.org/about/key-management/
+#: (content/about/key-management/contents+en.lrquestion.description)
+msgid ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+msgstr ""
+"If you're concerned about an attack on this level, we recommend you get "
+"involved with the security community and start meeting people."
+
 #: https//support.torproject.org/about/no-data-scrubbing/
 #: (content/about/no-data-scrubbing/contents+en.lrquestion.title)
 msgid ""
@@ -3382,6 +3938,196 @@ msgstr ""
 "Tor Browser can't do anything about the text that you type into forms, "
 "though."
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.title)
+msgid "What protections does Tor provide?"
+msgstr "What protections does Tor provide?"
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+msgstr ""
+"Internet communication is based on a store-and-forward model that can be "
+"understood in analogy to postal mail: Data is transmitted in blocks called "
+"IP datagrams or packets."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+msgstr ""
+"Every packet includes a source IP address (of the sender) and a destination "
+"IP address (of the receiver), just as ordinary letters contain postal "
+"addresses of sender and receiver."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+msgstr ""
+"The way from sender to receiver involves multiple hops of routers, where "
+"each router inspects the destination IP address and forwards the packet "
+"closer to its destination."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+msgstr ""
+"Thus, every router between sender and receiver learns that the sender is "
+"communicating with the receiver."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+msgstr ""
+"In particular, your local ISP is in the position to build a complete profile"
+" of your Internet usage."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+msgstr ""
+"In addition, every server in the Internet that can see any of the packets "
+"can profile your behavior."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+msgstr ""
+"The aim of Tor is to improve your privacy by sending your traffic through a "
+"series of proxies."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+msgstr ""
+"Your communication is encrypted in multiple layers and routed via multiple "
+"hops through the Tor network to the final receiver."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+msgstr ""
+"More details on this process can be found in this "
+"[visualization](https://support.torproject.org/https/https-1/)."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+msgstr ""
+"Note that all your local ISP can observe now is that you are communicating "
+"with Tor nodes."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+msgstr ""
+"Similarly, servers in the Internet just see that they are being contacted by"
+" Tor nodes."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid "Generally speaking, Tor aims to solve three privacy problems:"
+msgstr "Generally speaking, Tor aims to solve three privacy problems:"
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+msgstr ""
+"First, Tor prevents websites and other services from learning your location,"
+" which they can use to build databases about your habits and interests."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+msgstr ""
+"With Tor, your Internet connections don't give you away by default -- now "
+"you can have the ability to choose, for each connection, how much "
+"information to reveal."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+msgstr ""
+"Second, Tor prevents people watching your traffic locally (such as your ISP "
+"or someone with access to your home wifi or router) from learning what "
+"information you're fetching and where you're fetching it from."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+msgstr ""
+"It also stops them from deciding what you're allowed to learn and publish --"
+" if you can get to any part of the Tor network, you can reach any site on "
+"the Internet."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+msgstr ""
+"Third, Tor routes your connection through more than one Tor relay so no "
+"single relay can learn what you're up to."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+msgstr ""
+"Because these relays are run by different individuals or organizations, "
+"distributing trust provides more security than the old [one hop "
+"proxy](https://support.torproject.org/about/#how-is-tor-different-from-"
+"other-proxies) approach."
+
+#: https//support.torproject.org/about/protections/
+#: (content/about/protections/contents+en.lrquestion.description)
+msgid ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+msgstr ""
+"Note, however, that there are situations where Tor fails to solve these "
+"privacy problems entirely: see the entry below on [remaining "
+"attacks](https://support.torproject.org/about/#attacks-on-onion-routing)."
+
 #: https//support.torproject.org/about/what-is-tor/
 #: (content/about/what-is-tor/contents+en.lrquestion.title)
 msgid "What is Tor?"
@@ -6078,14 +6824,18 @@ msgstr ""
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
 msgid ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
 msgstr ""
 "Also, read up on the HTTPProxyAuthenticator and HTTPSProxyAuthenticator "
-"options if your proxy requires auth. We only support basic auth currently, "
-"but if you need NTLM authentication, you may find [this post in the "
-"archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) useful."
+"options if your [proxy requires auth.](https://developer.mozilla.org/en-"
+"US/docs/Web/HTTP/Headers/Proxy-Authenticate) We only support basic auth "
+"currently, but if you need NTLM authentication, you may find [this post in "
+"the archives](https://archives.seul.org/or/talk/Jun-2005/msg00223.html) "
+"useful."
#: https//support.torproject.org/tbb/tbb-47/
 #: (content/tbb/tbb-47/contents+en.lrquestion.description)
@@ -6361,6 +7111,261 @@ msgstr ""
 "Remember, all lines beginning with `#` in torrc are treated as comments and "
 "have no effect on Tor's configuration."
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.title)
+msgid "My firewall only allows a few outgoing ports"
+msgstr "My firewall only allows a few outgoing ports"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+msgstr ""
+"If your firewall works by blocking ports, then you can tell Tor to only use "
+"the ports when you start your Tor Browser."
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+msgstr ""
+"Or you can add the ports that your firewall permits by adding "
+""FascistFirewall 1" to your torrc configuration file."
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+msgstr ""
+"By default, when you set this Tor assumes that your firewall allows only "
+"port 80 and port 443 (HTTP and HTTPS respectively)."
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+msgstr ""
+"You can select a different set of ports with the FirewallPorts torrc option."
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+msgstr ""
+"If you want to be more fine-grained with your controls, you can also use the"
+" ReachableAddresses config options, e.g.:"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/hibernation/
+#: (content/operators/hibernation/contents+en.lrquestion.description)
+#: https//support.torproject.org/operators/limit-total-bandwidth/
+#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
+#: https//support.torproject.org/misc/bug-or-feedback/
+#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
+#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
+#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/tor-deb-repo/
+#: (content/apt/apt-1/contents+en.lrquestion.description)
+#: https//support.torproject.org/apt/apt-over-tor/
+#: (content/apt/apt-3/contents+en.lrquestion.description)
+msgid "```"
+msgstr "```"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableDirAddresses *:80"
+msgstr "ReachableDirAddresses *:80"
+
+#: https//support.torproject.org/tbb/tbb-firewall-ports/
+#: (content/tbb/tbb-firewall-ports/contents+en.lrquestion.description)
+msgid "ReachableORAddresses *:443"
+msgstr "ReachableORAddresses *:443"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.title)
+msgid ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+msgstr ""
+"Can I install Tor on a central server, and have my clients connect to it?"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+msgstr ""
+"Yes. Tor can be configured as a client or a relay on another machine, and "
+"allow other machines to be able to connect to it for anonymity."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+msgstr ""
+"This is most useful in an environment where many computers want a gateway of"
+" anonymity to the rest of the world."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+msgstr ""
+"However, be forewarned that with this configuration, anyone within your "
+"private network (existing between you and the Tor client/relay) can see what"
+" traffic you are sending in clear text."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "The anonymity doesn't start until you get to the Tor relay."
+msgstr "The anonymity doesn't start until you get to the Tor relay."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+msgstr ""
+"Because of this, if you are the controller of your domain and you know "
+"everything's locked down, you will be OK, but this configuration may not be "
+"suitable for large private networks where security is key all around."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+msgstr ""
+"Configuration is simple, editing your torrc file's SocksListenAddress "
+"according to the following examples:"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 127.0.0.1"
+msgstr "SocksListenAddress 127.0.0.1"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100"
+msgstr "SocksListenAddress 192.168.x.x:9100"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 0.0.0.0:9100"
+msgstr "SocksListenAddress 0.0.0.0:9100"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+msgstr ""
+"You can state multiple listen addresses, in the case that you are part of "
+"several networks or subnets."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 192.168.x.x:9100 #eth0"
+msgstr "SocksListenAddress 192.168.x.x:9100 #eth0"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid "SocksListenAddress 10.x.x.x:9100 #eth1"
+msgstr "SocksListenAddress 10.x.x.x:9100 #eth1"
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+msgstr ""
+"After this, your clients on their respective networks/subnets would specify "
+"a socks proxy with the address and port you specified SocksListenAddress to "
+"be."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+msgstr ""
+"Please note that the SocksPort configuration option gives the port ONLY for "
+"localhost (127.0.0.1)."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+msgstr ""
+"When setting up your SocksListenAddress(es), you need to give the port with "
+"the address, as shown above."
+
+#: https//support.torproject.org/tbb/tbb-install-tor-central-server/
+#: (content/tbb/tbb-install-tor-central-server/contents+en.lrquestion.description)
+msgid ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+msgstr ""
+"If you are interested in forcing all outgoing data through the central Tor "
+"client/relay, instead of the server only being an optional proxy, you may "
+"find the program iptables (for *nix) useful."
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.title)
+msgid ""
+"I want to run my Tor client on a different computer than my applications"
+msgstr ""
+"I want to run my Tor client on a different computer than my applications"
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+msgstr ""
+"By default, your Tor client only listens for applications that connect from "
+"localhost."
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid "Connections from other computers are refused."
+msgstr "Connections from other computers are refused."
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+msgstr ""
+"If you want to torify applications on different computers than the Tor "
+"client, you should edit your torrc to define `SocksListenAddress 0.0.0.0` "
+"and then restart (or hup) Tor."
+
+#: https//support.torproject.org/tbb/tbb-run-client-different-computer/
+#: (content/tbb/tbb-run-client-different-computer/contents+en.lrquestion.description)
+msgid ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+msgstr ""
+"If you want to get more advanced, you can configure your Tor client on a "
+"firewall to bind to your internal IP but not your external IP."
+
 #: https//support.torproject.org/tbb/website-blocking-tor/
 #: (content/tbb/website-blocking-tor/contents+en.lrquestion.title)
 msgid "A website I am trying to reach is blocking access over Tor."
@@ -8167,6 +9172,139 @@ msgstr ""
 "install](https://community.torproject.org/relay/setup/bridge/post-install/) "
 "guide."
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.title)
+msgid "Is there a list of default exit ports?"
+msgstr "Is there a list of default exit ports?"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+msgstr ""
+"The default open ports are listed below but keep in mind that, any port or "
+"ports can be opened by the relay operator by configuring it in torrc or "
+"modifying the source code."
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+msgstr ""
+"The default according to src/or/policies.c ([line 85][1] and [line 1901][2])"
+" from the source code release [release-0.4.6][3]:"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 0.0.0.0/8"
+msgstr "reject 0.0.0.0/8"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 169.254.0.0/16"
+msgstr "reject 169.254.0.0/16"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 127.0.0.0/8"
+msgstr "reject 127.0.0.0/8"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 192.168.0.0/16"
+msgstr "reject 192.168.0.0/16"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 10.0.0.0/8"
+msgstr "reject 10.0.0.0/8"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject 172.16.0.0/12"
+msgstr "reject 172.16.0.0/12"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:25"
+msgstr "reject *:25"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:119"
+msgstr "reject *:119"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:135-139"
+msgstr "reject *:135-139"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:445"
+msgstr "reject *:445"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:563"
+msgstr "reject *:563"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:1214"
+msgstr "reject *:1214"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:4661-4666"
+msgstr "reject *:4661-4666"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6346-6429"
+msgstr "reject *:6346-6429"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6699"
+msgstr "reject *:6699"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "reject *:6881-6999"
+msgstr "reject *:6881-6999"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "accept *:*"
+msgstr "accept *:*"
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+"[1]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+msgstr ""
+"[2]: "
+"https://gitlab.torproject.org/tpo/core/tor/-/blob/release-0.4.6/src/core/or/..."
+
+#: https//support.torproject.org/operators/default-exit-ports/
+#: (content/operators/default-exit-ports/contents+en.lrquestion.description)
+msgid "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+msgstr "[3]: https://gitlab.torproject.org/tpo/core/tor/-/tree/release-0.4.6/"
+
 #: https//support.torproject.org/operators/dynamic-ip/
 #: (content/operators/dynamic-ip/contents+en.lrquestion.title)
 msgid "Can I run a Tor relay using a dynamic IP address?"
@@ -8357,21 +9495,6 @@ msgstr ""
 "Thus you may find that you are unable to browse as soon as your Tor goes "
 "into hibernation, signaled by this entry in the log:"
-#: https//support.torproject.org/operators/hibernation/
-#: (content/operators/hibernation/contents+en.lrquestion.description)
-#: https//support.torproject.org/operators/limit-total-bandwidth/
-#: (content/operators/limit-total-bandwidth/contents+en.lrquestion.description)
-#: https//support.torproject.org/misc/bug-or-feedback/
-#: (content/misc/bug-or-feedback/contents+en.lrquestion.description)
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-#: https//support.torproject.org/apt/apt-over-tor/
-#: (content/apt/apt-3/contents+en.lrquestion.description)
-msgid "```"
-msgstr "```"
-
 #: https//support.torproject.org/operators/hibernation/
 #: (content/operators/hibernation/contents+en.lrquestion.description)
 msgid "Bandwidth soft limit reached; commencing hibernation."
@@ -11124,6 +12247,166 @@ msgstr "uid tor-security@lists.torproject.org"
 msgid "sub 4096R/C00942E4 2017-03-13"
 msgstr "sub 4096R/C00942E4 2017-03-13"
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.title)
+msgid ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+msgstr ""
+"How do I check if my application that uses SOCKS is leaking DNS requests?"
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+msgstr ""
+"Even if your application is using the correct variant of the SOCKS protocol,"
+" there is still a risk that it could be leaking DNS queries."
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+msgstr ""
+"This problem happens in Firefox extensions that resolve the destination "
+"hostname themselves, for example to show you its IP address, what country "
+"it's in, etc."
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+msgstr ""
+"If you suspect your application might behave like this, follow the "
+"instructions below to check."
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+msgstr ""
+"1. Add `TestSocks 1` to your [torrc file](https://support.torproject.org/tbb"
+"/tbb-editing-torrc/)."
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+msgstr ""
+"1. Start Tor, and point your program's SOCKS proxy settings to Tor's SOCKS5 "
+"server (`socks5://127.0.0.1:9050` by default)."
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+msgstr ""
+"1. Watch your logs as you use your application. For each socks connection, "
+"Tor will log a `notice` for safe connections, and a `warn` for connections "
+"leaking DNS requests."
+
+#: https//support.torproject.org/misc/check-socks-dns-leaks/
+#: (content/misc/check-socks-dns-leaks/contents+en.lrquestion.description)
+msgid ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+msgstr ""
+"If you want to automatically disable all connections leaking DNS requests, "
+"set `SafeSocks 1` in your torrc file."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.title)
+msgid ""
+"You should hide the list of Tor relays, so people can't block the exits."
+msgstr ""
+"You should hide the list of Tor relays, so people can't block the exits."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "There are a few reasons we don't:"
+msgstr "There are a few reasons we don't:"
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+msgstr ""
+"1. We can't help but make the information available, since Tor clients need "
+"to use it to pick their paths."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid "So if the "blockers" want it, they can get it anyway."
+msgstr "So if the "blockers" want it, they can get it anyway."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+msgstr ""
+"Further, even if we didn't tell clients about the list of relays directly, "
+"somebody could still make a lot of connections through Tor to a test site "
+"and build a list of the addresses they see."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+msgstr ""
+"1. If people want to block us, we believe that they should be allowed to do "
+"so."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+msgstr ""
+"Obviously, we would prefer for everybody to allow Tor users to connect to "
+"them, but people have the right to decide who their services should allow "
+"connections from, and if they want to block anonymous users, they can."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+msgstr ""
+"1. Being blockable also has tactical advantages: it may be a persuasive "
+"response to website maintainers who feel threatened by Tor."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+msgstr ""
+"Giving them the option may inspire them to stop and think about whether they"
+" really want to eliminate private access to their system, and if not, what "
+"other options they might have."
+
+#: https//support.torproject.org/misc/hide-exits/
+#: (content/misc/hide-exits/contents+en.lrquestion.description)
+msgid ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+msgstr ""
+"The time they might otherwise have spent blocking Tor, they may instead "
+"spend rethinking their overall approach to privacy and anonymity."
+
 #: https//support.torproject.org/misc/menu/
 #: (content/misc/menu/contents+en.lrquestion.description)
 msgid "About"
@@ -11821,67 +13104,25 @@ msgstr "### How to verify your nickname"
 #: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
 msgstr ""
-"Then, to complete the registration and ultimately gain access to the #tor-"
-"project channel, your nickname must be **verified**."
+"After registering your nickname, to gain access to the #tor-project and "
+"other protected channels, your nickname must be **verified**."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
 msgid ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
 msgstr ""
-"1. To verify your nick, open a new browser window and go to "
-"https://webchat.oftc.net/?channels=tor."
+"1. Go to https://services.oftc.net/ and follow the steps in the '*To verify "
+"your account*' section"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "2. Log in with your IRC nickname and password."
-msgstr "2. Log in with your IRC nickname and password."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-msgstr ""
-"3. Look for the word **verify** and log in there. It may appear that nothing"
-" has happened. Look at the top of the page, and there will be a column "
-"called **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "4. Click on **Account**."
-msgstr "4. Click on **Account**."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-msgstr ""
-"5. Click on the small sentence at the bottom of the square that says: Verify"
-" account."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "6. Fill out the Captcha that pops up, and click ok."
-msgstr "6. Fill out the Captcha that pops up, and click ok."
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-msgstr ""
-"7. A tiny message will appear: "Your NickServ account has been verified.""
-
-#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
-#: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "8. Go back to the IRC webpage where you are logged in and type:"
-msgstr "8. Go back to the IRC webpage where you are logged in and type:"
+msgid "2. Go back to the IRC webpage where you are logged in and type:"
+msgstr "2. Go back to the IRC webpage where you are logged in and type:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -11890,13 +13131,13 @@ msgstr "`/msg nickserv checkverify`"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "9. Click ENTER."
-msgstr "9. Click ENTER."
+msgid "3. Click ENTER."
+msgstr "3. Click ENTER."
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
-msgid "10. If all is well, you will receive a message that says:"
-msgstr "10. If all is well, you will receive a message that says:"
+msgid "4. If all is well, you will receive a message that says:"
+msgstr "4. If all is well, you will receive a message that says:"
#: https//support.torproject.org/get-in-touch/why-i-cant-join-tor-channels/
 #: (content/get-in-touch/why-i-cant-join-tor-channels/contents+en.lrquestion.description)
@@ -12059,21 +13300,29 @@ msgstr "# apt install apt-transport-https"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
 msgstr ""
-"#### 2. Add the following entries to `/etc/apt/sources.list` or a new file "
-"in `/etc/apt/sources.list.d/`"
+"#### 2. Create a new file in `/etc/apt/sources.list.d/` named `tor.list`. "
+"Add the following entries:"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb     https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
-msgstr "deb-src https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgid ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
+msgstr ""
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org <DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12089,19 +13338,23 @@ msgstr ""
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-"
 "experimental-0.4.6.x-<DISTRIBUTION> main"
#: https//support.torproject.org/apt/tor-deb-repo/
@@ -12112,20 +13365,24 @@ msgstr "Or nightly builds:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb     https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb     [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
 msgstr ""
-"deb-src https://deb.torproject.org/torproject.org tor-nightly-"
-"master-<DISTRIBUTION> main"
+"deb-src [signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org tor-nightly-master-<DISTRIBUTION> "
+"main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12148,16 +13405,20 @@ msgstr "**Note:** Ubuntu Focal dropped support for 32-bit, so instead use:"
 #: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb     [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb     [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
 msgstr ""
-"deb-src [arch=amd64] https://deb.torproject.org/torproject.org focal main"
+"deb-src [arch=amd64 signed-by=/usr/share/keyrings/tor-archive-keyring.gpg] "
+"https://deb.torproject.org/torproject.org focal main"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -12179,28 +13440,23 @@ msgstr ""
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
 msgstr ""
 "#### 3. Then add the gpg key used to sign the packages by running the "
-"following commands at your command prompt"
+"following command at your command prompt:"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
 msgid ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
 msgstr ""
-"# wget -qO- "
+"# wget -O- "
 "https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88..."
-" | gpg --import"
-
-#: https//support.torproject.org/apt/tor-deb-repo/
-#: (content/apt/apt-1/contents+en.lrquestion.description)
-msgid ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
-msgstr ""
-"# gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -"
+" | gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg "
+">/dev/null"
#: https//support.torproject.org/apt/tor-deb-repo/
 #: (content/apt/apt-1/contents+en.lrquestion.description)
@@ -14199,6 +15455,99 @@ msgstr ""
 "No, because that user updates their list of relays as often as a user that "
 "doesn't change IP address over the day."
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.title)
+msgid "Exit policies should be able to block websites, not just IP addresses."
+msgstr ""
+"Exit policies should be able to block websites, not just IP addresses."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+msgstr ""
+"It would be nice to let relay operators say things like `reject "
+"www.slashdot.org` in their exit policies, rather than requiring them to "
+"learn all the IP address space that could be covered by the site (and then "
+"also blocking other sites at those IP addresses)."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "There are two problems, though."
+msgstr "There are two problems, though."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid "First, users could still get around these blocks."
+msgstr "First, users could still get around these blocks."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+msgstr ""
+"For example, they could request the IP address rather than the hostname when"
+" they exit from the Tor network."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+msgstr ""
+"This means operators would still need to learn all the IP addresses for the "
+"destinations in question."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+msgstr ""
+"The second problem is that it would allow remote attackers to censor "
+"arbitrary sites."
+
+#: https//support.torproject.org/alternate-designs/block-websites/
+#: (content/alternate-designs/block-websites/contents+en.lrquestion.description)
+msgid ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+msgstr ""
+"For example, if a Tor operator blocks www1.slashdot.org, and then some "
+"attacker poisons the Tor relay's DNS or otherwise changes that hostname to "
+"resolve to the IP address for a major news site, then suddenly that Tor "
+"relay is blocking the news site."
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.title)
+msgid "You should let the network pick the path, not the client."
+msgstr "You should let the network pick the path, not the client."
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "No, you cannot trust the network to pick the path."
+msgstr "No, you cannot trust the network to pick the path."
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid "Malicious relays could route you through their colluding friends."
+msgstr "Malicious relays could route you through their colluding friends."
+
+#: https//support.torproject.org/alternate-designs/let-the-network-pick-the-path/
+#: (content/alternate-designs/let-the-network-pick-the-path/contents+en.lrquestion.description)
+msgid ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+msgstr ""
+"This would give an adversary the ability to watch all of your traffic end to"
+" end."
+
 #: lego/templates/banner.html:3 lego/templates/banner.html:5
 #: templates/banner.html:3 templates/banner.html:5
 msgid "Close banner"
@@ -14229,8 +15578,8 @@ msgid "DONATE NOW"
 msgstr "DONATE NOW"
#: lego/templates/footer.html:13 lego/templates/footer.html:22
-#: lego/templates/navbar.html:83 templates/footer.html:13
-#: templates/footer.html:22 templates/navbar.html:83
+#: lego/templates/navbar.html:95 templates/footer.html:13
+#: templates/footer.html:22 templates/navbar.html:95
 msgid "Download Tor Browser"
 msgstr "Download Tor Browser"

    