- tor-relays - lists.torproject.org

User report with TBB 2.4.17rc
by David Carlson 08 Sep '13

08 Sep '13

As of the time-stamp on this e-mail it is extremely slow using TBB 2.4.17 rc to access such places as gmail.com. It took me about 10 minutes since I first fired it up to sent this email. David C

3 2

ExitPolicy reject *:* ships commented out?
by gordon＠thisblueroom.net 07 Sep '13

07 Sep '13

I convinced a friend to run a Tor relay (he was happy to do so) but he claims he just upgraded and that this line: ExitPolicy reject *:* # no exits allowed is commented out by default. So his VPS got shut down over a bunch of complaints and he got banned from Freenode on it. Is that true? I could've sworn 0.2.4.x shipped with that as the *default* exit policy - as it should, given the potentially catastrophic legal consequences in some countries for those setting up a relay who unwittingly set up an exit relay rather than a middle node. Best, -Gordon M.

9 9

[ARM] Connecting to another host's control port with ARM: Connection refused.
by Robert Charlton 07 Sep '13

07 Sep '13

Hello, Tor community. Quick, possibly noobish question. I'd like to use my desktop and connect ARM (running on the desktop) to the control port of a server running Tor on the same LAN, but it's refusing the connection. I'm running /sudo -u tor arm -i 10.0.0.3:9051/, and it outputs: robert@CPC-Arch:~$ sudo -u tor arm -i 10.0.0.3:9051 [sudo] password for robert: Connection refused. Is the ControlPort enabled? I can connect to the control port from the same host fine, but when I try to do it from another host it fails. There must be something I'm missing. Hope you guys can help me. Thanks. -Robert

3 3

The Tor flood
by David Carlson 07 Sep '13

07 Sep '13

I think that it may be somewhat ego-centric to accept the argument that this apparent flood is actually directed at the Tor network. It may be that the real goal is to find efficient weapons to attack the Internet as a whole, or major segments of it. It may be measuring the response time of the Tor network as well as that of various defenders who are trying to disarm bot-nets. David C

2 1

Raspberry Pi / Raspbian tor 0.2.4.17-rc binary .deb packages
by Gordon Morehouse 07 Sep '13

07 Sep '13

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hello folks, I've built binary .deb packages for Raspbian, the Raspberry Pi flavor of armhf Debian built for the Pi's ARMv6 chip. You can get them here, or find instructions on how to build your own from source if you don't trust my build. https://github.com/gordon-morehouse/cipollini I haven't made any changes to the source itself - no Pi-specific optimizations - just built it on a Pi to get ARMv6 compatible executables; Debian wheezy armhf is targeted at ARMv7 and up, for those not familiar. Best, - -Gordon M. -----BEGIN PGP SIGNATURE----- iQEcBAEBCgAGBQJSKm1tAAoJED/jpRoe7/ujjO4H/RfvL2PbUV48lbzLyyD4vuxH FmQdGNSGLyI2u6E2rbugpr5Y2OUVLZDXdPmbypen5rGEgKy73vOSjaoOLLiSu3+w VhOtoKZl4NvHIXFlU+wGddK51gZneUIpiARUqBry9vjglYoMaRHvOEaHrQrUb00f ioBxCgNyP4bLESGECPwIgT5X6PaISATin9fghGTQHQ84F1Zh2Kt7aViMK2RGxJRS WJdZ/PxURHC30uaN5R+KBNgcKHoZHIYTRqAhuD0bfcJbhgEAxDAyxBHB2bSzQOsi fW8IyXLrBshsHAllJZdt6wgcDarRUsMX6G6Y7SuvvNEwG4zXSU+2RnZaWWDygfY= =qxGc -----END PGP SIGNATURE-----

2 1

RaspPi with -enable-ec_nistp_64_gcc_128
by Harold Naparst 06 Sep '13

06 Sep '13

Yesterday, Nick Mathewson wrote: One thing that you should try is seeing whether the latest 0.2.4.x release does any better for you. In particular, I'd recommend trying the just-released 0.2.4.16-rc, with openssl 1.0.1e, and make sure that openssl 1.0.1e was built with the -enable-ec_nistp_64_gcc_128 option if possible. (I see you're already using 1.0.1e, but it doesn't appear to have been built with that option.) When I try to build openssl with this option on my Raspian system, I get *ecp_nistp224.c:43:3: error: unknown type name ‘__uint128_t’ * It would be helpful for me to get some guidance from someone who has done this on Raspbian. Regards, Harold

3 2

how to start remote VPS gui
by I 06 Sep '13

06 Sep '13

2 1

Patch
by Niels Hesse 04 Sep '13

04 Sep '13

Hello. Please excuse my ignorance. I saw the mention of a patch in the recent tor blog post. https://blog.torproject.org/blog/tor-weekly-news-%E2%80%94-september-4th-20… How does one apply that? Thanks in advance.

3 3

MaxAdvertisedBandwidth, MaxOnionQueue and so on
by Thomas Themel 04 Sep '13

04 Sep '13

Hi, currently trying to set up a bog standard relay node that's supposed to generate about 20TB/month of outgoing traffic. I've thus set RelayBandwidthRate 7500 KB RelayBandwidthBurst 20000 KB but keep getting tons of these Your computer is too slow to handle this many circuit creation requests! Please consider using the MaxAdvertisedBandwidth config option or choosing a more restricted exit policy. Questions: - Is this log message still accurate? I've seen from e.g. ticket 9005 that apparently circuit creation is anyway already handled in parallel, and my machine is definitely not constantly overloaded on all 8 threads. - The node also crashes far too often, i.e. multiple times a week. Annoyingly, I can't seem to get core dumps for these crashes even though I've verified that the core ulimit is set to unlimited, but still the crashes themselves or a kill -SEGV $TORPID do not give me core files. Any ideas? I've also verified that the cwd is /var/lib/tor and that /var/lib/tor is writable :( - I've also set MaxOnionQueue 250, but that didn't change much. Any other suggestions? ciao, -- [*Thomas Themel*] I just want an EDitor!! Not a "viitor". Not a "emacsitor". [Albulastrasse 52] Those aren't even WORDS!!!! ED! ED! ED IS THE STANDARD!!! [ CH-8048 Zürich ] [*+41 78 9070988*] Paul J. LoPresti in <1991Jul11.031731.9260(a)athena.mit.edu>

4 4

obfsbridge operators: git master enables client statistics!
by George Kadianakis 04 Sep '13

04 Sep '13

Greetings obfsbridge operators, tl;dr, you might want to upgrade your tor to the latest git master. Trac tickets #4773 and #5040 have been merged to tor's git repository. This means that if you run the current git master, your obfsbridge will produce interesting statistics. Specifically, your bridge will count the number of its unique users like normal bridges do (but because of some complications it was not so easy for obfsbridges). It will also count the number of users per transport. Your bridge will then send these statistics to the bridge authority, and they will be published in metrics.torproject.org so that we can easily track the deployment of pluggable transports. You can experience the stats yourself by peaking at $DataDirectory/stats/bridge-stats. BTW, make sure that you are using the latest obfsproxy written in Python, and not the obsolete obfsproxy written in C. Cheers!

2 2