- tor-relays - lists.torproject.org

Re: [tor-relays] Traceroute measurement from Tor relays
by Jesse Victors 24 Oct '13

24 Oct '13

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 > That's where you come in. To figure out where traffic travels from > your relay, we'd like you to run a bunch of "traceroutes" - network > measurements that show the paths traffic takes. This is a one-time > experiment for now, but, depending on what we find out, regularly > making such measurements may become a part of Tor itself. We have > already gotten some results thanks to Linus Nordberg of DFRI and > Moritz Bartl of > torservers.net, and now it's time to ask all relay operators to help. > We would like to start this right away. How much bandwidth will this be taking up, and roughly how much will be uploaded/downloaded? I've cloned the repo, but I'm nervous about running this if it's going to be a significant bandwidth hog for a whole week. As Aaron said in Issue 39, it looks like it's going to be a lot of IPs and a large amount of packets. Also, ISPs may not take kindly to all these scans. What's the word on that? Has anyone run this tool, and what's their opinion? I'd be happy to help, but I'd like to know the full details of the various resources this tool will be consuming. Jesse V. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQF8BAEBCgBmBQJSacyDXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQxMjgyMjhENjEyODQ1OTU1NzBCMjgwRkFB RDk3MzY0RkMyMEJFQzgwAAoJEK2XNk/CC+yAhy4IAJ0OSiPjqFTq8bqyU+nXZX7R 6TgA1nmU3Q2tEc6CVBf+/eBpddyAmAG5SZ8/vXKGrUB2VtujaW/VMZ/9zaEMql2B KKGcPcYAy0wQUcJPFZEw0TMuRS5dVV+bEmUXEYh3DhfECVfsGMy8b1mP0UuxW9MN 8UQFiDbzT04lGo2vNOpFGk2DuH+WVHzDj1/Nqv249iobPQWqvebJtFbTnoWrt7m/ cAO3kJtSq43RJSQcImXqwOKDdnTLI5/7FSlP/0Mw5N7ROBMUVfA9/80mRY3VcxtX u6EHP8ZE0JPBOf6WAnwjJU1DBay9EUtHuPpYu1jO9pfuWDrPINyR7NgSg+wEWIQ= =yDvu -----END PGP SIGNATURE-----

1 0

Cheap non exit relay recommendation
by Christian Dietrich 24 Oct '13

24 Oct '13

I hope this is allowed, to due the fact that this is advertising. Currently i'm running two tor relays on a single dedicated server, pushing 404 mbit/s atm. (000000000000myTOR1 & 000000000000myTOR2) I will cancel it at beginning of november due to the fact that i miss tor relay multi core support and i plan to support other projects instead. Anyway, i can recommend my current hoster for non exit tor nodes, you will get: HP ML310e G8 Server (/w iLO4) Intel XEON E3-1230v2 (4x 3,3 GHz /w HT) 16 GB DDR3 ECC 2x 1 TB SATA RAID1 Disks 1000mbit unmetered traffic (pushed ~100 TB so far, no problems) 1 IPv4 Adress (5,-€ per additional) / /64 IPv6 for 69,99€ (currently ~96 USD) hXXp://goo.gl/pXkb78 Germany based. I think this is currently the best deal for non exit relays.

3 2

Port for obfsproxy
by GDR! 22 Oct '13

22 Oct '13

Hello, I'm new here, running a relay for the past year. I'm looking to implement obfsproxy running on port 80 and emulating HTTP traffic. The official manual says I should add this line to torrc: ServerTransportPlugin obfs2,obfs3 exec /usr/bin/obfsproxy managed However, it runs on a random port (30000+) which kind of defeats the whole purpose of running an obfuscated bridge. I also haven't seen a way to force faking HTTP traffic. The manual page is very terse and doesn't explain how to do any of this. How do I configure obfsproxy to look like a HTTP server? -- Zapisz moj nowy prywatny adres email: gdr(a)gdr.name Teraz na wlasnym serwerze. Zawsze czysto - zawsze sucho - zawsze pewnie. Klucz PGP to nadal 4ED3D2B7

7 13

Re: [tor-relays] My Relay speed has dropped nearly to zero - Why?
by Jesse Victors 22 Oct '13

22 Oct '13

On 10/19/2013 06:00 AM, tor-relays-request(a)lists.torproject.org wrote: > Message: 3 > Date: Sat, 19 Oct 2013 00:55:42 -0400 > From: Torop <torop(a)optonline.net> > To: tor-relays(a)lists.torproject.org > Subject: Re: [tor-relays] My Relay speed has dropped nearly to zero - > Why? > Message-ID: <526210CE.80409(a)optonline.net> > Content-Type: text/plain; charset=ISO-8859-1; format=flowed > > On 10/18/2013 11:46 PM, David Carlson wrote: >> > On October 8 something caused my non-exit relay speed to drop from >> > around 50 KB to less than 10 KB according to Atlas graphs. I have >> > checked with my ISP and run speed tests that verify my upload speed to >> > be .96 Mb and download to be over 3 Mb, as they have been for years. I >> > am running Tor 0.2.4.17-rc on Windows 7 and my consensus weight has >> > dropped to 26. What could have caused this? >> > > Same here. See the below and do the math on how much data I was and am > now pushing per 24 hours, as well as open circuits. > > > Oct 07 09:04:41.242 uptime 15 days 22:00 hours, 791 circuits open. > I've sent 55.41 GB and received 57.06 GB. > Oct 08 09:04:41.237 uptime 16 days 22:00 hours, 1255 circuits open. I've > sent 63.95 GB and received 65.80 GB. > > Oct 17 23:04:41.236 uptime 26 days 12:00 hours, 87 circuits open. > I've sent 90.08 GB and received 92.16 GB. > Oct 18 23:04:41.259 uptime 27 days 12:00 hours, 87 circuits open. > I've sent 91.85 GB and received 93.96 GB. I've been seeing the same. My bandwidth limit is around 3 MB/sec, but it's been consistently at 400-600 KB/sec. I don't think it started that early for me though, not sure though. I was going to blame it on psad, but I can't see any evidence of that. The fact that all three of us experience this is interesting. Jesse V.

5 7

Relay security, re: local network
by Joe 21 Oct '13

21 Oct '13

Hi, I'm planning to run a Tor relay on a spare computer at home. Security is a concern, and not only regarding the machine running the relay but also my other computers. Are there any (theoretical or otherwise) known attacks a person can perform on a running Tor relay to take remote control of it, and assuming the said person could pull that off, is it possible to extend this control to the other computers behind the same router? I am aware of possible DDOS attacks and other risks related to running an exit, but i am comfortable in taking these chances in my environment. I would run the relay on a yet-undecided-Linux distro, possibly Mint Debian or some flavor of Ubuntu which i am more familiar with, and use full-disk encryption with strong passwords. Are there any risks to my other computers worth consideration? Thanks.

11 13

rm /var/lib/tor/keys/* before changing exit policy?
by Martin Kepplinger 21 Oct '13

21 Oct '13

Really quick not too important question. When switching a relay to become an exit node or the other way round, does it make sense to delete /var/lib/tor/keys/* beforehand and start it over this way? I was thinking, if the relay has the guard flag, it would make sense, but maybe even if it doesn't. I don't know. I'll do it I guess. thanks martin

4 4

VPS
by Eduard 21 Oct '13

21 Oct '13

I rented a VPS with 256mb ram and unmetered bandwidth. Ubuntu 12.04. Can someone please tell me how to configure it as a non-exit relay for Tor? Acess via PuTTy. Cheers, Edward Sent from my Orange Smartphone I <beatthebastards(a)inbox.com> wrote: >_______________________________________________ >tor-relays mailing list >tor-relays(a)lists.torproject.org >https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

6 6

Re: [tor-relays] port 9001 udp
by zwiebel＠quantentunnel.de 20 Oct '13

20 Oct '13

2 5

Botnet issues and upgrading to 0.2.4.x
by Chris Whittleston 20 Oct '13

20 Oct '13

Hey guys, So I just started running a non-exit relay on a Raspberry Pi, and have hit a problem where it seems huge numbers of circuits are being created which overwhelms the system and can cause tor to crash. I read here ( https://blog.torproject.org/blog/how-to-handle-millions-new-tor-clients) that upgrading to 0.2.4.x might help with this, so I followed the instructions here: https://www.torproject.org/docs/debian#development And ran apt-get update, apt-get upgrade to get the latest version which turned out to be 0.2.4.11-alpha-1~wheezy+1 There seems to be a problem with this though as when the install finishes (or when I try to restart tor), I get this error: pi@torberrypi /etc/tor $ sudo /etc/init.d/tor restart /etc/init.d/tor: line 111: 9701 Illegal instruction $DAEMON $VERIFY_ARGS > /dev/null [FAIL] Checking if tor configuration is valid ... failed! /etc/init.d/tor: line 111: 972 https://www.torproject.org/docs/debian#development4 Illegal instruction $DAEMON $VERIFY_ARGS 1>&2 Tor is not starting and I'm unsure how to proceed - help appreciated! :) Chris

9 19

Relay behind VPN router
by Jochen 20 Oct '13

20 Oct '13

I have a TOR relay behind a Tomato router on an ADSL line. I activated the vpn client to route all traffic through privateinternetaccess.com. Because a TOR relay does not work behind NAT without port forwarding, I'm looking for a way how to route tor traffic directly to my internet provider. I can add static routes, but I don't now the IPs in advance. Maybe there is no problem to route outgoing traffic through the vpn tunnel, but how can I make my relay publish my WAN IP instead of the tunnel IP? My WAN IP is changing every day, so I cannot configure it as static. -- Mit besten Grüßen Jochen Fahrner

3 6