Don't "by default" and "please add flag" contradict each other? If it makes sense to enable it by default, then perhaps there’s no need for an extra flag. I also get the snowflake binary from deb.torproject.org. If it isn't updated there, my binary will unfortunately remain outdated :-( Not everyone wants to use Docker. On Thu, 16 Apr 2026 16:19:20 -0400 Cecylia Bocovich via tor-relays <tor-relays@lists.torproject.org> wrote:

Hello,

After receiving reports of Snowflake proxies being blocked by DTLS fingerprint in Russia[0], we updated the standalone proxy to enable a new DTLS randomization and mimicry feature[1] by default.

Proxy operators that are using the standalone version of the proxy will need to update or set the following command-line option:

-covertdtls-config randomizemimic

Browser-based proxies such as the browser badge or webextension were not blocked and do not require an update.

Thank you for running a Snowflake proxy!

[0] https://github.com/net4people/bbs/issues/603 [1] https://www.petsymposium.org/foci/2025/foci-2025-0006.pdf _______________________________________________ tor-relays mailing list -- tor-relays@lists.torproject.org To unsubscribe send an email to tor-relays-leave@lists.torproject.org

-- Marek Küthe m.k@mk16.de er/ihm he/him

I installed a standalone Snowflake proxy and it seems to default to running as root. Are there any concerns? Is running as root required to run properly? Thank you! On Friday, April 17th, 2026 at 09:59, Marek Küthe via tor-relays <tor-relays@lists.torproject.org> wrote:

Don't "by default" and "please add flag" contradict each other? If it makes sense to enable it by default, then perhaps there’s no need for an extra flag.

I also get the snowflake binary from deb.torproject.org. If it isn't updated there, my binary will unfortunately remain outdated :-( Not everyone wants to use Docker.

On Thu, 16 Apr 2026 16:19:20 -0400 Cecylia Bocovich via tor-relays <tor-relays@lists.torproject.org> wrote:

...

Hello,

After receiving reports of Snowflake proxies being blocked by DTLS fingerprint in Russia[0], we updated the standalone proxy to enable a new DTLS randomization and mimicry feature[1] by default.

Proxy operators that are using the standalone version of the proxy will need to update or set the following command-line option:

-covertdtls-config randomizemimic

Browser-based proxies such as the browser badge or webextension were not blocked and do not require an update.

Thank you for running a Snowflake proxy!

[0] https://github.com/net4people/bbs/issues/603 [1] https://www.petsymposium.org/foci/2025/foci-2025-0006.pdf _______________________________________________ tor-relays mailing list -- tor-relays@lists.torproject.org To unsubscribe send an email to tor-relays-leave@lists.torproject.org

-- Marek Küthe m.k@mk16.de er/ihm he/him _______________________________________________ tor-relays mailing list -- tor-relays@lists.torproject.org To unsubscribe send an email to tor-relays-leave@lists.torproject.org

Quoting Josh Lawson via tor-relays (2026-04-17 23:54:35)

I installed a standalone Snowflake proxy and it seems to default to running as root. Are there any concerns? Is running as root required to run properly?

Is not needed to be run as root and AFAIK 2.10.1-1 debian package did fix this problem: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1075885 -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan.