Proposal for a New Web App to Configure Tor Nodes
Hello everyone, I have been thinking about creating a web app that generates a script to configure a Tor node based on the settings defined by the user. Let me explain a bit further. This web app could work either entirely on the client side using JavaScript or on the server side. I believe a client-side-only approach is preferable because it avoids handling user data in any way and reduces the risk of man-in-the-middle attacks, although it doesn't completely eliminate it. The main use case would be for a user who wants to contribute by configuring a Tor node. Instead of manually writing all the various configurations — from downloading Tor to following the best practices after configuration — the user would simply need to select a series of options on a user-friendly page (user-friendly = easier setup => more wish to do it, which could realistically lead to more relays), download the auto-generated file, and run it with administrative privileges. I believe that developing such a web app could not only benefit the Tor network by encouraging the deployment of new nodes, but it could also be highly educational. Alongside the script to execute, a standard report could be generated to technically explain the function of each setting. Of course, there would be a standard section allowing for basic relay execution and an "advanced" section that opens up multiple functionalities for the user. I'm not sure if something like this already exists, but I think it could be very helpful. For instance, I often find myself scrolling through the manual to check for the latest updates applicable to the `torrc` file. With this web app, we could also create a "latest updates" section. This is just my rough idea, and if it proves useful not just for me but for the rest of the community as well, we could consider structuring a development project around it. Best regards, Aleff. --- Browse my WebSite: aleff-gitlab.gitlab.io Use my PGP Public Key: pgp.mit.edu/pks/lookup?op=get&search=0x7CFCE404A2168C85 Join to support: - Free Software Foundation! (my.fsf.org/join?referrer=6202114) - Electronic Frontier Foundation! (eff.org) - Tor-Project (torproject.org) - Signal (signal.org)
On Sonntag, 25. August 2024 15:07:48 CEST Alessandro Greco via tor-dev wrote:
I have been thinking about creating a web app that generates a script to configure a Tor node based on the settings defined by the user.
I'm not sure if something like this already exists, but I think it could be very helpful.
If you don't know: https://tor-relay.co/ might be helpful. Oh, I just see that Felix's tor configurator is offline. https://github.com/flxn/tor-relay-configurator Then your development comes at exactly the right time. ;-) -- ╰_╯ Ciao Marco! Debian GNU/Linux It's free software and it gives you freedom!
Hi Allef, For routers with OpenWrt (a FOSS firmware) you can install the Luci admin panel plugin to configure Tor called luci-app-tor. This is probably the only web GUI for Tor. Currently it allows to configure very basic things like onion services so you can access your router without a public IP. There are no any configs for bridge or exit node, just from a client perspective. Not sure if it will be useful for you, but it can be easily extended if needed. You can't install easily the Luci to Ubuntu but you may run the OpenWrt in the virtual machine to try. I made a few PRs to the tor for OpenWrt but the company that created the package (Turris routers) doesn't interestd in this anymore. For a desktop distros loke Ubuntu you may find a similar tool called Webmin that can be used for remote administration. Maybe you can create a plugin for it. 26 авг. 2024 г. 12:56:09 Alessandro Greco via tor-dev <tor-dev@lists.torproject.org>:
Hello everyone,
I have been thinking about creating a web app that generates a script to configure a Tor node based on the settings defined by the user. Let me explain a bit further.
This web app could work either entirely on the client side using JavaScript or on the server side. I believe a client-side-only approach is preferable because it avoids handling user data in any way and reduces the risk of man-in-the-middle attacks, although it doesn't completely eliminate it.
The main use case would be for a user who wants to contribute by configuring a Tor node. Instead of manually writing all the various configurations — from downloading Tor to following the best practices after configuration — the user would simply need to select a series of options on a user-friendly page (user-friendly = easier setup => more wish to do it, which could realistically lead to more relays), download the auto-generated file, and run it with administrative privileges.
I believe that developing such a web app could not only benefit the Tor network by encouraging the deployment of new nodes, but it could also be highly educational. Alongside the script to execute, a standard report could be generated to technically explain the function of each setting.
Of course, there would be a standard section allowing for basic relay execution and an "advanced" section that opens up multiple functionalities for the user.
I'm not sure if something like this already exists, but I think it could be very helpful. For instance, I often find myself scrolling through the manual to check for the latest updates applicable to the `torrc` file. With this web app, we could also create a "latest updates" section.
This is just my rough idea, and if it proves useful not just for me but for the rest of the community as well, we could consider structuring a development project around it.
Best regards,
Aleff.
---
Browse my WebSite: aleff-gitlab.gitlab.io Use my PGP Public Key: pgp.mit.edu/pks/lookup?op=get&search=0x7CFCE404A2168C85 Join to support: - Free Software Foundation! (my.fsf.org/join?referrer=6202114) - Electronic Frontier Foundation! (eff.org) - Tor-Project (torproject.org) - Signal (signal.org)
We want people to be knowledgeable, and these "do it one time and forget about it" websites are not helping. I personally believe, that if you want to host a Tor node: 1. You MUST have read the manual, at least the entries explaining the settings in your Tor configuration file. Please take a look at it here: https://2019.www.torproject.org/docs/tor-manual.html.en 2. You MUST NOT be using a Tor-relay polluted data center or Host (Hetzner, OVH, NetCup). Please look at the current network diversity: https://metrics.torproject.org/bubbles.html 3. You should have a dedicated server, or at least a QEMU KVM, with 25 MBit/s or more of continuous, unlimited traffic. We used to have an official page, to incentivize random people who don't know much about IT in general to host a Tor node. As far as I know, it never did much - the relays do not have a proper configuration, the standard nickname, etc. Owners would abandon their relays or stop paying for the machine altogether. There needs to be targeted "advertising" for privacy conscious people, people who might already use the Tor browser. Maybe add some incentive to the starting page of Tor Browser, reminding users that we still need more relays. Just my 2 cents. Sincerely, George On Wednesday, August 28th, 2024 at 9:30 AM, Sergey Ponomarev <stokito@gmail.com> wrote:
Hi Allef,
For routers with OpenWrt (a FOSS firmware) you can install the Luci admin panel plugin to configure Tor called luci-app-tor. This is probably the only web GUI for Tor. Currently it allows to configure very basic things like onion services so you can access your router without a public IP. There are no any configs for bridge or exit node, just from a client perspective.
Not sure if it will be useful for you, but it can be easily extended if needed. You can't install easily the Luci to Ubuntu but you may run the OpenWrt in the virtual machine to try. I made a few PRs to the tor for OpenWrt but the company that created the package (Turris routers) doesn't interestd in this anymore.
For a desktop distros loke Ubuntu you may find a similar tool called Webmin that can be used for remote administration. Maybe you can create a plugin for it.
26 авг. 2024 г. 12:56:09 Alessandro Greco via tor-dev <tor-dev@lists.torproject.org>:
Hello everyone,
I have been thinking about creating a web app that generates a script to configure a Tor node based on the settings defined by the user. Let me explain a bit further.
This web app could work either entirely on the client side using JavaScript or on the server side. I believe a client-side-only approach is preferable because it avoids handling user data in any way and reduces the risk of man-in-the-middle attacks, although it doesn't completely eliminate it.
The main use case would be for a user who wants to contribute by configuring a Tor node. Instead of manually writing all the various configurations — from downloading Tor to following the best practices after configuration — the user would simply need to select a series of options on a user-friendly page (user-friendly = easier setup => more wish to do it, which could realistically lead to more relays), download the auto-generated file, and run it with administrative privileges.
I believe that developing such a web app could not only benefit the Tor network by encouraging the deployment of new nodes, but it could also be highly educational. Alongside the script to execute, a standard report could be generated to technically explain the function of each setting.
Of course, there would be a standard section allowing for basic relay execution and an "advanced" section that opens up multiple functionalities for the user.
I'm not sure if something like this already exists, but I think it could be very helpful. For instance, I often find myself scrolling through the manual to check for the latest updates applicable to the `torrc` file. With this web app, we could also create a "latest updates" section.
This is just my rough idea, and if it proves useful not just for me but for the rest of the community as well, we could consider structuring a development project around it.
Best regards,
Aleff.
---
Browse my WebSite: aleff-gitlab.gitlab.io Use my PGP Public Key: pgp.mit.edu/pks/lookup?op=get&search=0x7CFCE404A2168C85 Join to support: - Free Software Foundation! (my.fsf.org/join?referrer=6202114) - Electronic Frontier Foundation! (eff.org) - Tor-Project (torproject.org) - Signal (signal.org)
The relays do not have a proper configuration, the standard nickname, etc.
Why not make an image that has an install wizard to set nicknames etc, and keeps other settings up to date to best current practices? Saying that you *must* have digested the inner workings of Tor first is a little elitist at best. ------------------------------ Any statements contained in this email are personal to the author and are not necessarily the statements of the company unless specifically stated. AS207960 Cyfyngedig, having a registered office at 13 Pen-y-lan Terrace, Caerdydd, Cymru, CF23 9EU, trading as Glauca Digital, is a company registered in Wales under № 12417574 <https://find-and-update.company-information.service.gov.uk/company/12417574>, LEI 875500FXNCJPAPF3PD10. ICO register №: ZA782876 <https://ico.org.uk/ESDWebPages/Entry/ZA782876>. UK VAT №: GB378323867. EU VAT №: EU372013983. Turkish VAT №: 0861333524. South Korean VAT №: 522-80-03080. AS207960 Ewrop OÜ, having a registered office at Lääne-Viru maakond, Tapa vald, Porkuni küla, Lossi tn 1, 46001, trading as Glauca Digital, is a company registered in Estonia under № 16755226. Estonian VAT №: EE102625532. Glauca Digital and the Glauca logo are registered trademarks in the UK, under № UK00003718474 and № UK00003718468, respectively. On Fri, 30 Aug 2024 at 11:27, George Hartley via tor-dev < tor-dev@lists.torproject.org> wrote:
We want people to be knowledgeable, and these "do it one time and forget about it" websites are not helping.
I personally believe, that if you want to host a Tor node:
1. You MUST have read the manual, at least the entries explaining the settings in your Tor configuration file. Please take a look at it here: https://e.as207960.net/w4bdyj/8khjJeOgCmmxEx04 2. You MUST NOT be using a Tor-relay polluted data center or Host (Hetzner, OVH, NetCup). Please look at the current network diversity: https://e.as207960.net/w4bdyj/lJHPMqju4IKuHFg7 3. You should have a dedicated server, or at least a QEMU KVM, with 25 MBit/s or more of continuous, unlimited traffic.
We used to have an official page, to incentivize random people who don't know much about IT in general to host a Tor node.
As far as I know, it never did much - the relays do not have a proper configuration, the standard nickname, etc.
Owners would abandon their relays or stop paying for the machine altogether.
There needs to be targeted "advertising" for privacy conscious people, people who might already use the Tor browser.
Maybe add some incentive to the starting page of Tor Browser, reminding users that we still need more relays.
Just my 2 cents.
Sincerely, George
On Wednesday, August 28th, 2024 at 9:30 AM, Sergey Ponomarev < stokito@gmail.com> wrote:
Hi Allef,
For routers with OpenWrt (a FOSS firmware) you can install the Luci admin panel plugin to configure Tor called luci-app-tor. This is probably the only web GUI for Tor. Currently it allows to configure very basic things like onion services so you can access your router without a public IP. There are no any configs for bridge or exit node, just from a client perspective.
Not sure if it will be useful for you, but it can be easily extended if needed. You can't install easily the Luci to Ubuntu but you may run the OpenWrt in the virtual machine to try. I made a few PRs to the tor for OpenWrt but the company that created the package (Turris routers) doesn't interestd in this anymore.
For a desktop distros loke Ubuntu you may find a similar tool called Webmin that can be used for remote administration. Maybe you can create a plugin for it.
26 авг. 2024 г. 12:56:09 Alessandro Greco via tor-dev < tor-dev@lists.torproject.org>:
Hello everyone,
I have been thinking about creating a web app that generates a script to configure a Tor node based on the settings defined by the user. Let me explain a bit further.
This web app could work either entirely on the client side using JavaScript or on the server side. I believe a client-side-only approach is preferable because it avoids handling user data in any way and reduces the risk of man-in-the-middle attacks, although it doesn't completely eliminate it.
The main use case would be for a user who wants to contribute by configuring a Tor node. Instead of manually writing all the various configurations — from downloading Tor to following the best practices after configuration — the user would simply need to select a series of options on a user-friendly page (user-friendly = easier setup => more wish to do it, which could realistically lead to more relays), download the auto-generated file, and run it with administrative privileges.
I believe that developing such a web app could not only benefit the Tor network by encouraging the deployment of new nodes, but it could also be highly educational. Alongside the script to execute, a standard report could be generated to technically explain the function of each setting.
Of course, there would be a standard section allowing for basic relay execution and an "advanced" section that opens up multiple functionalities for the user.
I'm not sure if something like this already exists, but I think it could be very helpful. For instance, I often find myself scrolling through the manual to check for the latest updates applicable to the `torrc` file. With this web app, we could also create a "latest updates" section.
This is just my rough idea, and if it proves useful not just for me but for the rest of the community as well, we could consider structuring a development project around it.
Best regards,
Aleff.
---
Browse my WebSite: aleff-gitlab.gitlab.io Use my PGP Public Key: pgp.mit.edu/pks/lookup?op=get&search=0x7CFCE404A2168C85 Join to support: - Free Software Foundation! (my.fsf.org/join?referrer=6202114) - Electronic Frontier Foundation! (eff.org) - Tor-Project (torproject.org) - Signal (signal.org)
_______________________________________________ tor-dev mailing list tor-dev@lists.torproject.org https://e.as207960.net/w4bdyj/jQLp2YJ1QrwMHbWf
On Donnerstag, 29. August 2024 08:40:08 CEST George Hartley via tor-dev wrote:
1. You MUST have read the manual, at least the entries explaining the settings in your Tor configuration file. Please take a look at it here: https://2019.www.torproject.org/docs/tor-manual.html.en ^^ I also prefer the Classic Tor Project websites for many things, but this man page is over 5 years out of date.
Type 'man tor' or 'man torrc' in the console or use current html pages: https://manpages.debian.org/main/tor/tor.1.en.html or https://manpages.debian.org/main/tor/torrc.5.en.html
As far as I know, it never did much - the relays do not have a proper configuration, the standard nickname, etc.
The Tor Relay Configurator prevented exactly that. A clean torrc was produced, IPv4 or dual stack. Many years ago I produced my first torrc myself using Felix's website and I have recommended tor-relay.co to many people. -- ╰_╯ Ciao Marco! Debian GNU/Linux It's free software and it gives you freedom!
Why not make an image that has an install wizard to set nicknames etc, and keeps other settings up to date to best current practices?
I think this could be a good idea, within the Tor installation panel you could structure a page that firstly contains the question “Do you want to contribute to the Tor network?” and then you could structure it in more detail starting perhaps with a Middle node.
1) You MUST have read the manual...
I also agree with this, but probably if we are talking about a Middle node, so a node that exposes neither the user of the node nor the creator of the node, then some sort of standard setting could be provided. If a user at installation decides they want to contribute it might be a good time to delve into this wonderful world. I often hear some people who think that “Contributing to the Tor network” is complex and “hacker stuff” but maybe they just don't know how to do it (besides not knowing the meaning of hacker) and, therefore, it could not only be useful to the network but would help people educate themselves by putting manuals and guides on display nicely. But the most important thing, for me, is that in addition to manuals and guides they are given the opportunity to contribute, at least for those who think they don't already have that opportunity. Think about Tor Browser, it is obvious that right now Tor Browser does a lot more than just routing traffic, but when it was born it did not have all this functionality. They make it extremely easy to use Tor many people now believe that Tor is only usable through Tor Browser and they don't even know that it is a proxy so probably including this possibility in the installation phase could give this help to all those users who would like to contribute but trivially don't know how to do it... Snowflake also comes to mind... -- Aleff
participants (5)
-
Alessandro Greco -
boldsuck -
George Hartley -
Q Misell -
Sergey Ponomarev