tor-project

tor-project@lists.torproject.org

16 participants
2324 discussions

PieroV's Monthly Status Report, November 2023
by Pier Angelo Vendrame 01 Dec '23

01 Dec '23

Hi everyone! Here is my status report for November 2023. During most of the month, I've worked on experimenting with porting the tor integration refactors I wrote last Summer and the connection assist to Android. In particular, I experimented with the plumbing mechanisms between our JS code and the Java code of the Android parts of Firefox Android. I've had promising results, and I've opened a MR [0] to merge them to our main codebase, even though they will be initially gated in the nightly channel. On the second week of November, at Tor, we had a hack week about writing documentation. My proposal [1] was to create a graphical visualization of the dependencies between the various projects in tor-browser-build and to add a readme file to each project. I also contributed to some wiki pages created by other members of the applications team. In addition to that, I worked on smaller issues, such as enabling portable mode for the DLL blocklist [2], updating our build containers to Debian bookworm [3], fixing a warning on our .dmgs [4], rebasing our alphas to Firefox 115.5.0esr and more. Finally, I realized I'd written a few scripts on several occasions, and I scattered them through various GitLab comments. Therefore, I gathered them in a personal repository [5]. They're not refined, but maybe some might be useful again in the future. Cheers, Pier [0] https://gitlab.torproject.org/tpo/applications/tor-browser/-/merge_requests… [1] https://gitlab.torproject.org/tpo/community/hackweek/-/issues/25 [2] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42163 [3] https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/issues/4… [4] https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/issues/4… [5] https://gitlab.torproject.org/pierov/lazy-scripts

1 0

Anti-censorship team meeting notes, 2023-11-30
by meskio 30 Nov '23

30 Nov '23

Hey everyone! Here are our meeting logs: http://meetbot.debian.net/tor-meeting/2023/tor-meeting.2023-11-30-15.57.html And our meeting pad: Anti-censorship -------------------------------- Next meeting: Thursday, Dec 7 16:00 UTC Facilitator: onyinyang Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: meskio == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from sponsors, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Sponsor 96 <-- meskio, shell, onyinyang, cohosh * https://gitlab.torproject.org/groups/tpo/-/milestones/24 * Sponsor 150 <-- meskio working on it * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/issues/?label_na… == Announcements == == Discussion == * as expected snowflake ampcache is not working in china * the domain used for domain front is blocked, maybe other domains will fix the problem * shelikhoo is running experiments on kcp performance with packet loss * https://jsfiddle.net/Sheilkhoo/s9kx4h8m/1/ * x=packetloss, y=delay, z=speed * tcp seems to be faster then udp here * wondering if there is some tunning possible to improve that * previous discussions on kcp tunning: * https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… * https://lists.torproject.org/pipermail/anti-censorship-team/2021-July/00017… will wait for cohosh to be around: * manifest v3 deprecation in browsers and snowflake webextension * https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… * https://developer.chrome.com/blog/resuming-the-transition-to-mv3/ * google chrome will stop supporting mv2 June 2024 * will the snowflake webextension stop working? do we want to do something? or just recommend firefox? == Actions == == Interesting links == * https://www.cs-pk.com/papers/3/ "NetShuffle: Circumventing Censorship with Shuffle Proxies at the Edge" S&P 2024 * https://petsymposium.org/popets/2024/popets-2024-0027.php "Communication Breakdown: Modularizing Application Tunneling for Signaling Around Censorship" PETS 2024 * https://splintercon.net/ "the first conference dedicated to identifying and beginning to challenge connectivity restrictions of the splinternet." * https://bitwarden.com/open-source-security-summit/ meskio giving a talk: "Bypassing Online Censorship: Open-Source Tools as a Critical Lifeline" == Reading group == * We will discuss "NetShuffle: Circumventing Censorship with Shuffle Proxies at the Edge" on December 14 * https://www.cs-pk.com/papers/3/ * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * Is there future work that we want to call out in hopes that others will pick it up? == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2023-11-09 Last week: - conjure bridge maintenance - caught a bug in safelog library - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - caught problem with domain front in conjure - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… This week: - lox tor browser UX integration - lox distributor testing - look into alternative domain fronting providers Needs help with: dcf: 2023-11-30 Last week: - did some review of SQS rendezvous merge request https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - answered a question about AMP cache rendezvous in China https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… Next week: - open issue to have snowflake-client log whenever KCPInErrors is nonzero https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - parent: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - open issue to disable /debug endpoint on snowflake broker Before EOY 2023: - move snowflake-02 to new VM Help with: meskio: 2023-11-30 Last week: - deploy rdsys with secret config params separated (rdsys#92) - setup rdsys staging server (rdsys#170) - make rdsys release Next week: - prepare settings anti-listing logic to be reused by HTTP distributor (rdsys#181) - setup rdsys staging server (rdsys#170) Shelikhoo: 2023-11-30 Last Week: - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… A first glance of what a performance comparsion would look like: https://jsfiddle.net/Sheilkhoo/s9kx4h8m/1/ is it not great and udp like transport looks like slower than tcp. Maybe KCP settings need to be updated? - Updated probeobserver to support both snowflake bridges and updated communication system between China's vantage point and log collector https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/… - Merge request reviews Next Week/TODO: - Write Tor Spec for Armored URL (continue) - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Merge request reviews onyinyang: 2023-11-30 Last week(s): - Finished up remaining docs tasks for crates.io publishing -published all relevant Lox crates to crates.io - SOTO anti-censorship team presentation preparation - looked into Telegram bot - attempted hyper upgrade, many breaking changes so this will take some work This week: - continue Telegram bot dev - attempt hyper upgrade again - Splintercon (long term things were discussed at the meeting!): https://pad.riseup.net/p/tor-ac-community-azaleas-room-keep - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan.

1 0

Friends of Tor match gift launched
by Al Smith 28 Nov '23

28 Nov '23

Hello Tor world, *I'm very happy to share that starting today through December 31, your donation to the Tor Project will be matched 1:1.* That means that every donation, up to $75,000, will be doubled. Please spread the word! :) Blog announcement: https://blog.torproject.org/friends-of-tor-match-2023/ Twitter post: https://x.com/torproject/status/1729238115263652330 Mastodon post: https://mastodon.social/@torproject/111484468818648276 Thank you, Al -- Al Smith (they/them) Fundraising Director The Tor Project My working hours may not be your working hours. If I message you outside of your working hours, know that I do not expect an immediate response and that I support your right to disconnect.

1 1

Anti-censorship team meeting notes, 2023-11-23
by Shelikhoo 23 Nov '23

23 Nov '23

Hey everyone! Here are our meeting logs: http://meetbot.debian.net/tor-meeting/2023/tor-meeting.2023-11-23-15.58.html And our meeting pad: Anti-censorship work meeting pad -------------------------------- Anti-censorship -------------------------------- Next meeting: Thursday, Nov 30 16:00 UTC Facilitator: cohosh Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: shelikhoo == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from sponsors, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Sponsor 96 <-- meskio, shell, onyinyang, cohosh * https://gitlab.torproject.org/groups/tpo/-/milestones/24 * Sponsor 150 <-- meskio working on it * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/issues/?label_na… == Announcements == == Discussion == * manifest v3 deprecation in browsers and snowflake webextension * https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… * https://developer.chrome.com/blog/resuming-the-transition-to-mv3/ * google chrome will stop supporting mv2 June 2024 * will the snowflake webextension stop working? do we want to do something? or just reommend firefox? * BridgeStatus format change * Introduced in https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/… * Example: https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/… == Actions == == Interesting links == * https://www.rfc-editor.org/info/rfc9505 A Survey of Worldwide Censorship Techniques == Reading group == * We will discuss "" on * * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * Is there future work that we want to call out in hopes that others will pick it up? == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2023-11-09 Last week: - conjure bridge maintenance - caught a bug in safelog library - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - caught problem with domain front in conjure - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… This week: - lox tor browser UX integration - lox distributor testing - look into alternative domain fronting providers Needs help with: dcf: 2023-11-09 Last week: - revised encapsulation.ReadData redesign to return an error in the case of a short buffer https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - security upgrade to tor 0.4.8.8 on snowflake bridges https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - sent emails to make contacts for uTLS-like fingerprint obfuscation in pion/dtls Next week: - open issue to have snowflake-client log whenever KCPInErrors is nonzero https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - parent: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - open issue to disable /debug endpoint on snowflake broker Before EOY 2023: - move snowflake-02 to new VM Help with: meskio: 2023-11-23 Last week: - run som experiments on more frequent bridgestrap tests (bridgestrap#39) - investigate failure on rdsys integration tests (rdsys#180) - prepare a deployment of rdsys with secret config params separated (rdsys#92) - work on the rdsys staging server (rdsys#170) - organize work for Sponsor 150 Next week: - deploy rdsys with secret config params separated (rdsys#92) - setup rdsys staging server (rdsys#170) Shelikhoo: 2023-11-23 Last Week: - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Updated probeobserver to support both snowflake bridges and updated communication system between China's vantage point and log collector https://gitlab.torproject.org/tpo/anti-censorship/connectivity-measurement/… - Merge request reviews Next Week/TODO: - Write Tor Spec for Armored URL (continue) - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Merge request reviews onyinyang: 2023-11-23 Last week(s): - Vacation! - Hackweek: Docs for Lox https://gitlab.torproject.org/tpo/community/hackweek/-/issues/20 - Preparation for publishing Lox crates to crates.io This week: - Finishing up on remaining docs tasks for crates.io publishing - SOTO anti-censorship team presentation preparation - (long term things were discussed at the meeting!): https://pad.riseup.net/p/tor-ac-community-azaleas-room-keep - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less?

1 0

Anti-censorship team meeting notes, 2023-11-23
by Shelikhoo 23 Nov '23

23 Nov '23

1 0

Are you going to 37c3 in Hamburg?
by Roger Dingledine 17 Nov '23

17 Nov '23

Hi folks, A set of Tor people will be at CCC at the end of December this year, and we are organizing what Tor activities will happen. With luck, activities will include a maintrack talk from me on Tor and recent censorship, and a Tor relay operator meetup organized by our local CCC friends. Are you part of the broader Tor community and you plan to be there? If yes, please either note this on the gitlab ticket if it's convenient ( https://gitlab.torproject.org/tpo/community/outreach/-/issues/40051 ) or else mail me off-list if you like. (No need to turn this mailing list into a big 'me too' thread.) And if you are planning some other Tor-related activity (you want some Tor people at your assembly? you plan to talk about Tor in a talk submission? something else?) please let us know that too if you like. I'll plan to keep people updated as the plans emerge. Woo, --Roger

1 0

Anti-censorship team meeting notes, 2023-11-16
by meskio 17 Nov '23

17 Nov '23

Hey everyone! Here are our meeting logs: http://meetbot.debian.net/tor-meeting/2023/tor-meeting.2023-11-09-16.00.html And our meeting pad: Anti-censorship -------------------------------- Next meeting: Thursday, Nov 16 16:00 UTC Facilitator: meskio Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: onyinyang == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: * https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from sponsors, we are working on: * All needs review tickets: * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?s… * Sponsor 96 <-- meskio, shell, onyinyang, cohosh * https://gitlab.torproject.org/groups/tpo/-/milestones/24 * Sponsor 150 <-- meskio working on it * https://gitlab.torproject.org/groups/tpo/anti-censorship/-/issues/?label_na… == Announcements == * changed to a read-only pad: * https://pad.riseup.net/p/r.9574e996bb9c0266213d38b91b56c469 == Discussion == * Dual stack (IPv4/6) bridges support * https://gitlab.torproject.org/tpo/core/tor/-/issues/40885 * the changes in cached-extrainfo work fine in rdsys * we'll need to wait for the patch to be ready in c-tor == Actions == == Interesting links == * == Reading group == * We will discuss "" on * * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * Is there future work that we want to call out in hopes that others will pick it up? == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2023-11-09 Last week: - conjure bridge maintenance - caught a bug in safelog library - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - caught problem with domain front in conjure - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… This week: - lox tor browser UX integration - lox distributor testing - look into alternative domain fronting providers Needs help with: dcf: 2023-11-09 Last week: - revised encapsulation.ReadData redesign to return an error in the case of a short buffer https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - security upgrade to tor 0.4.8.8 on snowflake bridges https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - sent emails to make contacts for uTLS-like fingerprint obfuscation in pion/dtls Next week: - open issue to have snowflake-client log whenever KCPInErrors is nonzero https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - parent: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - open issue to disable /debug endpoint on snowflake broker Before EOY 2023: - move snowflake-02 to new VM Help with: meskio: 2023-11-16 Last week: - experiment with testing bridges more frequently by bridgestrap (bridgestrap#39) - investigate why OSX TB installers didn't work in telegram (onionsproutsbot#57) - investigate why rdsys tests are failing for multiconfig (rdsys!196) - restart bridgedb to fix the email distributor that was not responding emails - test the whatsapp user in rdsys-frontend-01 (tpa/team#41370) - test the patch for dual stack (IPv4/6) bridges and if it works with current rdsys (tor#40885) - finish the pad archival for the hackweek (hackweek#16) Next week: - keep working on a frequent bridgestrap Shelikhoo: 2023-11-16 Last Week: - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Merge request reviews Next Week/TODO: - Write Tor Spec for Armored URL (continue) - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Merge request reviews onyinyang: 2023-11-09 Last week(s): - Continued work on Lox telegram bot - Hackweek: Docs for Lox https://gitlab.torproject.org/tpo/community/hackweek/-/issues/20 This week: - Hackweek: Docs for Lox https://gitlab.torproject.org/tpo/community/hackweek/-/issues/20 - Publish Lox crates to crates.io (long term things were discussed at the meeting!): https://pad.riseup.net/p/tor-ac-community-azaleas-room-keep - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan.

2 1

Tomorrow's All Hands Meeting - 16:00 UTC - Wednesday, November 15th
by Tyler Corn 14 Nov '23

14 Nov '23

Hi everyone! We have our Hackweek retrospective at tomorrow's All Hands meeting (Wednesday, November 15th). Each project's presenter(s) will have 5 minutes or so to talk about the work done and any next steps. Action items: (1) Re: projects that you worked on, presenters, please be prepared to discuss the work done and next steps, add comments about status of projects in Gitlab, and also close the issue; (2) Re: projects that weren't picked up/worked on last week, please go ahead and close those issues in Gitlab; and lastly (3) See the link for the Hackweek retrospective pad below. Please take a few moments to collect your thoughts about: (a) what went well with Hackweek?; (b) what didn't go so well and the challenges?; and (c) what could we try to do differently in the future? Got them gathered? Good! Now add them to the pad below :) https://pad.riseup.net/p/AWQ8DisjSVnu9leO90Xo-HackweekRetrospective-keep If we have time after presentations, we'll go through the retrospective pad comments. Thanks everyone! See you at the All Hands! Best, Tyler

1 0

Anti-censorship team meeting notes, 2023-11-09
by onyinyang 09 Nov '23

09 Nov '23

Hey everyone! Here are our meeting logs: http://meetbot.debian.net/tor-meeting/2023/tor-meeting.2023-11-09-16.00.html And our meeting pad: Anti-censorship work meeting pad -------------------------------- Anti-censorship -------------------------------- Next meeting: Thursday, Nov 16 16:00 UTC Facilitator: meskio Weekly meetings, every Thursday at 16:00 UTC, in #tor-meeting at OFTC (channel is logged while meetings are in progress) This week's Facilitator: onyinyang == Goal of this meeting == Weekly check-in about the status of anti-censorship work at Tor. Coordinate collaboration between people/teams on anti-censorship at the Tor Project and Tor community. == Links to Useful documents == * Our anti-censorship roadmap: * Roadmap:https://gitlab.torproject.org/groups/tpo/anti-censorship/-/boards * The anti-censorship team's wiki page: *https://gitlab.torproject.org/tpo/anti-censorship/team/-/wikis/home * Past meeting notes can be found at: * https://lists.torproject.org/pipermail/tor-project/ * Tickets that need reviews: from sponsors, we are working on: * All needs review tickets: *https://gitlab.torproject.org/groups/tpo/anti-censorship/-/merge_requests?scope=all&utf8=%E2%9C%93&state=opened&assignee_id=None * Sponsor 96 <-- meskio, shell, onyinyang, cohosh *https://gitlab.torproject.org/groups/tpo/-/milestones/24 * Sponsor 150 <-- meskio working on it *https://gitlab.torproject.org/groups/tpo/anti-censorship/-/issues/?label_name%5B%5D=Sponsor%20150 == Announcements == == Discussion == * azure will close domain fronting January 8 * https://gitlab.torproject.org/tpo/anti-censorship/team/-/issues/33#note_296… * Maybe, move to use a private pad? * we can use the 'read-only' link from the riseup pads as a public link and share the editing link with the people that participates on the meetings. * meskio will set up for next week. == Actions == == Interesting links == * https://forum.torproject.org/t/snowflake-daily-operations-october-2023-upda… * FOCI & PETS 2023 videos * Running a high-performance pluggable transports Tor bridge https://www.youtube.com/watch?v=UkUQsAJB-bg&list=PLWSQygNuIsPc8bOJ2szOblMK4… * Lox: Protecting the Social Graph in Bridge Distribution https://www.youtube.com/watch?v=hT2PkFs-61A&list=PLWSQygNuIsPeSo_mDoX9MPrVD… * others https://github.com/net4people/bbs/issues/307 == Reading group == * We will discuss "On Precisely Detecting Censorship Circumvention in Real-World Networks" on November 9 * https://www.robgjansen.com/publications/precisedetect-ndss2024.html * Questions to ask and goals to have: * What aspects of the paper are questionable? * Are there immediate actions we can take based on this work? * Are there long-term actions we can take based on this work? * Is there future work that we want to call out in hopes that others will pick it up? == Updates == Name: This week: - What you worked on this week. Next week: - What you are planning to work on next week. Help with: - Something you need help with. cecylia (cohosh): 2023-11-09 Last week: - conjure bridge maintenance - caught a bug in safelog library - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - caught problem with domain front in conjure - https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/conj… This week: - lox tor browser UX integration - lox distributor testing - look into alternative domain fronting providers Needs help with: dcf: 2023-11-09 Last week: - revised encapsulation.ReadData redesign to return an error in the case of a short buffer https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - security upgrade to tor 0.4.8.8 on snowflake bridges https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - sent emails to make contacts for uTLS-like fingerprint obfuscation in pion/dtls Next week: - open issue to have snowflake-client log whenever KCPInErrors is nonzero https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - parent: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snow… - open issue to disable /debug endpoint on snowflake broker Before EOY 2023: - move snowflake-02 to new VM Help with: meskio: 2023-11-09 Last week: - update the teams wikis - explore pad backup options (hackweek#16) - rdsys accept multiple config files, to support separating secrets (rdsys#92) - fix onionsproutsbot after server upgrade (onionsproutsbot#55) - expore why polyanthum disk is filling up (tpa/team#41379) Next week: - experiment with testing bridges more frequently by bridgestrap (bridgestrap#39) Shelikhoo: 2023-11-09 Last Week: - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Hackweek: wiki replacement considerations https://gitlab.torproject.org/tpo/community/hackweek/-/issues/26#note_29635… - Hackweek: Collaborative editing https://gitlab.torproject.org/tpo/community/hackweek/-/issues/16#note_29633… - Merge request reviews Next Week/TODO: - Write Tor Spec for Armored URL (continue) - Work on snowflake performance improvement (WIP): https://gitlab.torproject.org/shelikhoo/snowflake/-/tree/dev-speedwithudp?r… - Merge request reviews onyinyang: 2023-11-09 Last week(s): - Continued work on Lox telegram bot - Hackweek: Docs for Lox https://gitlab.torproject.org/tpo/community/hackweek/-/issues/20 This week: - Hackweek: Docs for Lox https://gitlab.torproject.org/tpo/community/hackweek/-/issues/20 - Publish Lox crates to crates.io (long term things were discussed at the meeting!):https://pad.riseup.net/p/tor-ac-community-azaleas-room-keep - brainstorming grouping strategies for Lox buckets (of bridges) and gathering context on how types of bridges are distributed/use in practice Question: What makes a bridge usable for a given user, and how can we encode that to best ensure we're getting the most appropriate resources to people? 1. Are there some obvious grouping strategies that we can already consider? e.g., by PT, by bandwidth (lower bandwidth bridges sacrificed to open-invitation buckets?), by locale (to be matched with a requesting user's geoip or something?) 2. Does it make sense to group 3 bridges/bucket, so trusted users have access to 3 bridges (and untrusted users have access to 1)? More? Less? -- --- onyinyang GPG Fingerprint 3CC3 F8CC E9D0 A92F A108 38EF 156A 6435 430C 2036

1 0

ebanam's monthly status report and user support report for October 2023
by ebanam 07 Nov '23

07 Nov '23

Hello everyone! With three stable Tor Browser releases (two for desktop, one for Android), much of my work focussed on user support around these releases. Prior to the release of Tor Browser 13, I worked to review and update our user-facing documentation on Tor Browser User Manual[0]. I also handled some tickets from users reaching out for support and questions about Tor in light of the launch of the year-end campaign[1]. The questions range from, "where can I download Tor Browser from?", "I can't reach xyz.com", "this particular onion service isn't working","apart from donating, can I contribute with ideas/suggestions?", etc. In October, we closed many tickets that were already resolved, but they were in the 'open' queue. We also had some private bridge "country code" requests that ended up being basic troubleshooting problem. And finally, many tickets were created by a few users trying to get new bridges. So each ticket that we closed was marked as 'resolved' hence showing up in the numbers although counted just once in the breakdown. Following is a thorough breakdown of tickets our user support team handled in October: # Frontdesk (email support channel) * 965(↑) RT tickets created * 1280(↑) RT tickets resolved Tickets by numbers: 1. 204(↓) RT tickets: private bridge requests from Chinese speaking users. 2. 174(↓) RT tickets: circumventing censorship in Russian speaking countries. 3. 27 RT tickets: user support and common Tor questions in aftermath of launch of YEC. 4. 9(↑) RT tickets: circumventing censorship with Tor in Farsi. 5. 8(↑) RT tickets: help with installing and troubleshooting Tor Browser on Linux. 6. 4 RT tickets: All saved passwords lost after updating to Tor Browser 13.0.[2] 7. 3 RT tickets: Tor Browser 13 (lyrebird) not working with Windows 7.[3] 8. 3 RT tickets: Questions about internships and volunteering with Tor.[4] 9. 1 RT ticket: Tor Browser empties clipboard while shutting down.[5] 10. 1 RT ticket: Tor Browser detected as malware on Windows.[6] # Telegram, WhatsApp and Signal Support channel * 681(↑) tickets resolved Breakdown: * 633(↑) tickets on Telegram * 34(↑) tickets on WhatsApp * 14(↑) tickets on Signal Tickets by numbers: 1. 370(↑) tickets: circumventing censorship in Russian speaking countries. 2. 37(↑) tickets: circumventing censorship with Tor in Farsi. 3. 30(↑) tickets: private bridge requests from Chinese speaking users. 4. 3(↓) tickets: Tor Browser detected as malware on Windows # Highlights from the Tor Forum 1. Call for testers: Webtunnel, a new way to bypass censorship with Tor Browser.[7] 2. PSA: Updated Tor User Support office hours (2023)[8] 3. Tor Browser no longer flagged by Windows Defender[6] Thanks! e. Note: (↑), (↓) and (-) are indicative if the number of tickets we received for these topics have been increasing, decreasing or have been the same from the previous month respectively. [0]: https://gitlab.torproject.org/tpo/web/manual/-/issues/150 [1]: https://blog.torproject.org/2023-fundraiser-make-a-donation-to-Tor/ [2]: https://forum.torproject.org/t/saved-passwords-gone-after-upgrade-to-tor-br… [3]: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42179 [4]: https://community.torproject.org/ [5]: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42154 [6]: https://forum.torproject.org/t/torbrowser-12-5-6-no-longer-flagged-by-windo… [7]: https://forum.torproject.org/t/call-for-testers-webtunnel-a-new-way-to-bypa… [8]: https://forum.torproject.org/t/psa-updated-tor-user-support-office-hours-20…

1 0

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

tor-project