- tor-relays - lists.torproject.org

Deciding where to put new Tor relays
by Virgil Griffith 10 Sep '15

10 Sep '15

I'm at an APNIC conference in Jakarta, and they demoed a new tool which shows the interconnections (peering + transits) between AS numbers within a given country (will eventually work for regions). URL: http://labs.apnic.net/vizas/ Left-panel is IPv4 and right-panel is IPv6. Here is the fellow who built it: https://www.linkedin.com/pub/geoff-huston/42/828/891 For Tor, this tool helps us prioritize the ASs for new relays. To maximize censorship resistance, we would want relays on AS numbers in the middle (lots of interconnections) that do not currently have Tor relays. We can imagine giving out Roster bonus points depending on the AS-number. The points would go something like: AS_i_bonus_points = ASweight(i) / #_Tor_relays_on_AS ASweight(i) = k * \sum_{j=1}^n num_ips_routed_by_edge_i_j where k is an arbitrary constant (k=1 is reasonable). This could be very useful for deciding where to put new relays. I'll see if I can access to the raw data that generates these graphs so we have more than just pretty pictures. Much love, -V

3 4

Vultr disallowing exit relays
by Carlin Bingham 08 Sep '15

08 Sep '15

I have just been informed by Vultr that they now do not tolerate exit relays. The wiki[0] suggested they were a good host for exits, and vultr's staff confirmed to me at the start of the year that exits are fine. They appear to have changed their mind. [0] https://trac.torproject.org/projects/tor/wiki/doc/ISPCorrespondence#Vultr -- Carlin

1 0

Message from my relay
by DARKNET.IT 08 Sep '15

08 Sep '15

I need help to solve this message: possible syn flooding on port 80. sending cookies. check snmp counters Port 80 is the ORPort of the relay. Thanks for reply

2 3

Relay Stats
by Billy Humphreys 08 Sep '15

08 Sep '15

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I've sent and received almost 10GB and I've only been up for 2 days. I was first a exit relay, then non-exit (so many blue outbounds!) now I'm a exit relay again. Here's my ARM message: Tor's uptime is 1 day 18:00 hours, with 31 circuits open. I've sent 9.69 GB and received 9.35 GB. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJV7wGNAAoJEHukJMVt72wm83QP/RJpihJTntgCXAMJQZW48CDT oX7Z1SVFDQnfkzgW67JmZmoyOSVjgmuBLXdsdICB/kvI8+58HA5Hj0kJiCyN3m0K IeEMXiUaY+yajg6TggZ/lXVAbpp5T3Vd12RNsXQlwHna6rxKLwySxKSpdjR9HZgt ei4MotC7j6wor2hoIsMftuqKSmKicjrnnlfEt/H0dZ2+qCqZ4RUsLu+TC7m1EMwc uBL6d7GYgroaTQ6VH0QybYzJzhEAFPG4AaQzg4OVNPe3h+Af+FhKuvRpIoG0yZSl PfUP5K1lfKcGGh+KLMeCqVawQbUTZJXxcTtDpio6I6O+T0QdUas2ts0pE/cI0JxE eKITCq9Va13xj99/f3qV8R7gXhPTgNmwPVyRCk2dO1gUfKMkX94ScwTrNTxXb7Gy vD6ofnfmAh0OGA5rjfaKTCrsPWD9lFErAva1OeTVaxmxVZFap0tKykgNp2HeBIeS nQiHaujIEyJsu4WJTyFPQ370YuOVGuzEYo6AiQTVQFCesz7pnMLrG724HQljLQIp PdLXUsCy0QFvlScqWUr6IXzNWilt8wkH9UHjPp6LDsWiRdD6l0/gJomqoSJbNC5p Qzz9DOO6uEvBY7Tki2Kgo29mE00B7O0DP8cJBwkm1VCG8oj4u1ho+r4DX4DvGeyh GNoSM1mSWs6gMgid/2EQ =1rSF -----END PGP SIGNATURE-----

1 0

Bots, love 'em or hate 'em?
by starlight.2015q3＠binnacle.cx 08 Sep '15

08 Sep '15

My relay says it receives about 50k v1/v2/v3 connections each day to the 60k v4 connections that come in. "Entry-ips" says it has about 35k guard- clients. Blutmagie says there are no pre-0.2.4 relays talking anything other than v4. So I'm left thinking that 95% or more of the bandwidth consumption and client count is from crusty old botnet bots running ancient versions of the Tor daemon. But all that bot traffic creates a lot of statistical "background noise," and so may be providing a service in making it more difficult for advanced adversaries to perform traffic correlation analysis. Thoughts anyone?

5 8

My VPS hoster (Zappie Host) understood!
by Billy Humphreys 08 Sep '15

08 Sep '15

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi all, When I asked my reverse DNS to be added for my Tor exit relay, they said that Tor nodes were disallowed due to the ToS, but didn't stop me. I messaged back a few times (in normal UK time, 3AM over there) and I got this reply: 'Hey there Thank you firstly of understanding our position that in almost most cases the end user that runs the tor exit does without a care in the world leaving the provider fully liable for all the crap that comes with it. In our ToS we state "any tor nodes" simply to cover our asses as its (for the most part) not worth the hassle and misunderstanding later down the track. Yes a relay node is fine. feel free to continue with that. If you want to continue with an exit node what I will do is edit the WHOIS details and put in for that specific IP that you are the operated the IP address as a Tor Exit node. (SWIP the IP) Please let me know if this is something you are interested in this plan or just settle for a relay node as is. Regards and thank you for understanding Adam' If you sign up and are wishing to run a Tor exit relay, PLEASE contact them to set it all up for you so that you will be classified as a Tor relay :P -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJV7kYDAAoJEHukJMVt72wmclEP/1jjw+mvLldLFq0Q38c7+QRl U16jrWdf9r2ngiDFEEJAYo35mZB48K+80KUjLdKdycn2FxjYFZSpTubWuJYQN5/b NV/gHTeLKhIWTTGFBEHwVSvY71BzwrBcWO2M2Np7ax75TgYgd9KglIgyqc5ORzAW NaOtAOIcuRuRbeOd2+TKeoqqYmhyHA+yHRxI6tCE4ZIMdpQmx9JQ5r2uH0OAgxJZ dDxGqjNJEUoBAoftMx2qxCX73F6X4k9FJ5srIMQQHU1RTmbVdD/ehLs0uPCSAdpZ VB4mhtrKx6prZ6kWIpFPucBbhRF7kGzb5Er8n36R1eb50HgbA+ZIfHLoo3lEHUMr OIVLdtkIzENNetpe2dZTbOE5307fuPaAOYgJbJjVeAOBaJ1mirI9CvHGF2VbuiVy PIuyUXqT/UPfaxYP6EnhOX3tFnGeBQwYzp9l8o5NFBsnn+CEOuIh0C2268hd9vny be4xSLsO0wqpE61s+2o8qzx2LEcd1Q+pbLEboa7nP3+iQnz4zA7qvuTmg22vzrlw vSLdsboOslsFEJ9VhCe2j/L7DZVKALGxOHK4XJDBj6Cfab1cDTcQw2hvSaTLOhVC tcxKQiw3twXsNQe3kiIIExcnOp7/XketBkAaYTavFFOlJkGAerkMWQCc2T1V+cdg chO8fJUW9KdXTkiAeCPj =WpHn -----END PGP SIGNATURE-----

1 0

Does Setting Up a Bridge Relay Disable the Browser?
by Kenneth Freeman 07 Sep '15

07 Sep '15

This may be a naïve question, but I've fired up my 64-bit Debian box now that the nights are cool, and editing the torrc to establish a bridge relay borks the browser. I provide anonymity much more than I use it myself, but is the bridge relay copacetic? Thanks in advance.

5 9

Relay Speed
by Billy Humphreys 07 Sep '15

07 Sep '15

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I'm happy - my Tor relay says it's advertised bandwith is 1.1MB/s and it is. Quote from Atlas: Bandwidth rate: 1073.74 MB/s Bandwidth burst: 2147.48 MB/s Observed bandwidth: 1.11 MB/s Hopefully if I can keep this up, I'll be qualifying for a shirt from Tor . -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJV7aL8AAoJEHukJMVt72wmTUgQAKq0tFA0ArP2LnGXy1/BNVus kpTooYAovokbnRV6PgKZoKGZsjU0AlRDMsRXuCYnyLPTdGZbGi3v5EljrlDdvL22 eCGSU3yryBG2Ity9OgIT/KuqdgL9DqisAsdL77WVMHfkOgMoFHTFwjCvseleMgZc H4tPR4J262PYTgJ1KwByIZYHXfpKwlSdHBlOEdUL1HVLCQZX9QscgGVmTTmOJqkI Qz7Be7HRXI8oGkK60CjnNs87rDTCBIDzc9hFs4MmBL7g3ogDMikQpO5OhoC0eN+/ QdtM31HS7EFIjqn/6cmLJCX8I3EBZ9bTsuvW7VSsC9xp6ZG2iaicv37zcn/lWuEd mMzZ7wqAh7wLQa4FGRTia99PGxYLVb9Sh+9EYVgrT8azjzCmPK+D9cXartXtf1yR pI7ISfhUsZlfz33CGkwiyIQBj8hvpOvaoVKA/4HvtAnnfmAikV+0TXHNn69Hg02a 7EaXjGnhvKhwPs8SRd/JpclUFHVw7N+Ft2zRW+y2GfTLaNtt4yKc3YqvTvO1KZ78 76QC2Lxzqlp0V/+4t4Wis41+g6ayt5DLt48jO8VK12rf5rm3Sg77IBqOqkzseTsm pbi2eUnh/MvXzxASUk44l+qEWUJDq3s+xayzN6O5LqaWvcmZEsoxio/mjw/FrZtg fBqqfYmgj8ct1Q4t7ypT =1BBs -----END PGP SIGNATURE-----

3 4

tor-relays] Experience hosting exit relay with Costa Rica Servers: crservers.com
by starlight.2015q3＠binnacle.cx 07 Sep '15

07 Sep '15

You might check for existing relays in their system. This Robtex seems to have much of their network, which they appear to lease from other providers: https://www.robtex.com/en/advisory/dns/cr/crservers/ And while they advertise many network blocks, it appears it's all slices of just a few large allocations: http://www.cidr-report.org/cgi-bin/as-report?v=4&as=AS3790 http://www.cidr-report.org/cgi-bin/as-report?v=4&as=AS2385 You can download CSV of all relays from https: // torstatus dot blutmagie dot de and look for matches. Otherwise, call or email them and ask how they feel about Tor exits. Hosting is competitive and if you run a relay with proper contact info and reverse DNS they might not mind. Ask them to automatically forward any complaints they receive to you.

1 0

About Tor Weather
by Billy Humphreys 07 Sep '15

07 Sep '15

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 BTW to all people, I asked yesterday about Tor Weather, and why it wouldn't locate my relay. It now can (https://atlas.torproject.org/#details/9CBD228738FBB0293A348680DF241B606 069E2F9), I just had to wait a day. Hope this helps anyone who had these issues (signup for Tor Weather, so you get email notifications if it's down, if it's not running latest Tor, and even if you've earned a shirt :D - --Poke -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJV7S8ZAAoJEHukJMVt72wmNOAP/Rg1S+y3IU66QUrERPRjQ9mG iHYF5Gb3Ei7Ompp2VMY6AMAbB3MSOwtsgJgSwySDOZIN8Qk+2E/pJ7P/lfk41YJz j4OcyYvEL0fXx0aIAOua2JVZOy+0ATCPAs41zX4vccRW6iOX78oXRXaV24CNLW3z xuCHTsBHKx+5alEzfXMwc/+4oRGVAISYZIco3frn63xGktso2GewdQYm7VnDIqA7 j9FQjDLurNH6SeX9xYUQT9Ypis1hdS5p2Sz0rCvNJ82njhE7XcMEL2B0p9hB/eG0 uYAu0pGNLg5jpoNL5qNnHhM1bBnRiy1+P6a1s801NndbEgBoX3H1yDDRJNHgv1wo JGf7PsYeET+lqNK3hx4eZ/YdaApXxbkI6qMNoyl7FjMn2QG3Hd5W05In0uADNxPd mKy3LevM7BUBgTbgDMBg91Fm5kAu9n/rucWx6jiI9h+59zSqj/LabGDFCuSv4QC7 +pQ0MGyY94Gp5zQRDWQR5BGS9/Y3Yw0R0FV/Bi99ZgBal8Vm59Jk/8/OZqegVpIE e199Mub1tu16eIymxKtVuawY8cleKYpl6Q8lnG3tWTEmpR6L2QHuXcTUSkM6zzXz vUaFNo5v1gHsHsDwyAEchT56sd5OaqcK3CNulGwkIn2RgcBV2WtSV1wlLvouOow7 ZqmQZml9MqnxBHaEQuUi =hmIr -----END PGP SIGNATURE-----

1 0