logs archiveIRC Archive / Oftc / #tor / 2009 / November / 27 / 1
nsa
or: kaner committed revision 21027 (/projects/gettor): We should clean our package and dist dirs on update
or: kaner committed revision 21028 (/projects/gettor/lib/gettor): Parse '+' addresses, add farsi support
arma
kaner: did we confirm that the "+" trick actually works on moria?
koryk
so I have been running a relay for a while I guess, and now anytime I google, I get "Sorry, your computer or network may be sending automated queries."
is this common? is there a fix?
misc
not a exit node ?
koryk
misc: not sure, how can I tell if I am an exit node?
I would google it but...
misc
koryk: well, you can give the config file, and we can look
koryk
misc: http://pastebin.com/m1b1759b7
misc
ExitPolicy accept *:80,accept *:443,accept *:6660-6669,accept *:6697,accept *:706,accept *:1863,accept *:5050,accept *:5190,accept *:5222,accept *:5223,accept *:8300,accept *:8888,reject *:*
darrob
pastebin still doesn't like Tor it seems.
         

misc
koryk: so yes, you are acting as a exit node
koryk
misc: so that must be what is causing google to block me - I have no problem being an exit node, but I thought they would give a captcha instead of totally blocking\
misc
koryk: well, i think you should read a little bit more doc before being a exit node, as you may have problem like this and worst
koryk
hahaha I am pretty aware of the things that can happen - I just thought that I would be given a captcha instead of totally being blocked
and after running relays for ~6 months, this is the first that this has happened
jcase
I'm trying to run tor as: tor --User nobody
but .. [warn] Error creating directory /root/.tor: Permission denied
keb
tor needs a directory to keep its cache and keys
jcase
and I don't see a config directory to either tell it NOT to create a user-specific dir, or to force it to use a system-wide one rather than a user-specific one
keb: yeah that's fine - just doesn't need to a be a (user)/.tor dir ...
keb
see DataDirectory
in your torrc
jcase
hmm
that was the first thing I loked at, but the man page clearly states that the default for datadirectory is: @LOCALSTATEDIR@/lib/tor
so I wonder why its trying to do (user)/.tor ...
weird.
hehe
Sebastian_
Did you compile Tor from source?
jcase
line from default torrc: #DataDirectory /usr/local/var/lib/tor
seb: yeah.
hehe
Sebastian_
jcase: looks like the manpage has a bug.
jcase
/usr/local/var/etc/sbin/var/tmp/lib/tor
OH
that line in the default config file _is_ a joke
sorry
ok nevermind - I will just set it by hand in torrc and be done.
I was just weirded out by that line, which I see now is an obvious joke.
Sebastian_
There are no obvious jokes.
keb
/var/lib/tor is the default when it is installed as a system process
Sebastian_
keb: totally depending on packaging
keb
from a linux package
yeah
jcase
/usr/local/var/lib/tor ?
ok.
keb
if you compile, it will be under /usr/local/
but you can set it of course
Sebastian_
jcase: this might be an obvious bug or obvious stupidity to you, so please do file a bugreport and explain why to get it fixed.
         

jcase
no, just confusion on my part.
trying to think of a "correct" directory in FreeBSD to use as DataDirectory
tempted to just use /usr/local/etc/tor, since it already exists...
keb
remember to set ownership so tor can write into the directories it needs
Sebastian_
jcase: ah, one more question, did you compile from git or did you compile a source package for freebsd?
jcase
no, just plain old source tarball
not freebsd specific
Sebastian_
hm ok. We should still file a bug about the problem with the manpage
gigeman
hi
anyone can help me to configure tor with mIRC ?
XImax
elo jest ktos z polski?
kto kuma tego tora?
kaner
arma: yes, it works.
at least for +fa currently :)
XImax
somemony speak polend to help me?? i cant speak english ;/
misc
not me, sorry
XImax
np hehe
davi
Have some of you connect to FreeNode via Tor?
Sebastian_
davi: see http://freenode.net/irc_servers.shtml for instructions
qbiort
davi: Haven't tried it for some time now. But they blocked one of the hidden services (since months).
davi
I have sent them a signed email, but I have not got reply back
I included in the email a hash of my password
qbiort
davi: me too, I'm waiting since month, if not years for an answer.
But I heard reports that they reply back within days.
davi
What a pity
Is some of you connected or able to connect to FreeNode via Tor, right now?
nsa
or: kaner committed revision 21029 (/projects/gettor/lib/gettor): Towards sending out localized packages: Almost there. Thanks to Robert (kventil) for testing
davi
It reads:
* *** Banned: Due to abuse we currently accept tor connections via our tor-gpg service only. See freenode.net/irc_servers.shtml - questions can be directed to klines@freenode.net (2009/11/27 12.36)
* Closing Link: 127.0.0.1 (Banned)
* Disconnected (Remote host closed socket).
MARRENTO
»i need a program ;}'
»help me'
»i need TOR'
»brother & sisters'
Runa
what do you need help with, MARRENTO?
dr|z3d
It's linked in the channel topic, MARRENTO. Please refer there, and also to the wiki.
MARRENTO
»not open my navigator'
Runa
sorry?
dr|z3d
MARRENTO: Please, ask for help intelligbly, or be quiet. You're making a lot of noise and saying precisely nothing.
MARRENTO
»im brazilian'
»i need a TOR'
Runa
MARRENTO: you can download tor from the website
dr|z3d
Ok, please /join #nottor
Runa
MARRENTO: and as dr|z3d already said, the url is in the topic
MARRENTO
»My http acces is blocked, i can't browser any website'
murb
MARRENTO: can you reach it on https:// ?
steve
ftp?
MARRENTO
»could you send me via DCC?'
dr|z3d
MARRENTO: Please use #nottor for your support issues. Thanks.
nsa
or: phobos committed revision 21030 (/projects/todo): add a slew of new tasks from recent meetings, update the pdf to reflect
or: the changes
begotten_
wich version of firefox (latest) is recommended when using tor?
dr|z3d
3.5x I think is good to go.
Sebastian_
I don't think the version with all the 3.5.x fixes has been released yet
so most recommended would be the latest 3.0.x
SwissTorExit
well a few days ago was released the final 3.5, my hardy have upgarded yet
hi dr|z3d, Sebastian_, begotten_
nsa
or: Jon committed revision 21031 (/website/trunk): add mirror - http://archives.seul.org/tor/mirrors/Nov-2009/msg00001.html
or: Jon committed revision 21032 (/website/trunk/include): runtime
JonCharge
...issues.
Sebastian
svn should pick up commit messages from irc :-)
SwissTorExit
oh nice !
great news Sebastian
i hope that flyspray too like for vidalia
arma
(Action) appears for a bit. anything i should do?
JonCharge
rub my feet
:)
kidding. Hope your day is good
emanon
HI. has anyone of you ever experienced bandwidth shaping /cutoff to TOR or I2P connections on their DSL link?
qbiort
no
emanon
uhm.
davi
emanon, I have HTTP no reply or similar some times
I just retry again (Sometimes I have to retry even 3 times)
to get the web page.
emanon
davi doesn't make sense to me :/
there should be something i am missing here
i mean ISP/postal police
when they play this MITM act, there is nothing you could do?
yalla
hi
emanon
hi yalla
yalla
hi emanon
emanon
sometimes the quality of signal could be weaker, there could be some overhead ahead of your ISP - it is normal
but what do you do whan you sistematically see that your packets get diverted, null routed?
or the streams of open connections get bandiwdth shaped?
*bandwidth*
noone interested in it?
ulf would you suggest anything?
JonCharge
arma, you still there?
gele
Hello, I've been using Tor for a while. Now I moved my laptop (and got a new IP), and I can't get it to start correctly again.
The last lines in the log are
Nov 27 20:15:53.780 [notice] Bootstrapped 10%: Finishing handshake with directory server.
JonCharge
gele...
gele
And then a bunch of "Nov 27 20:15:53.907 [warn] TLS error: unexpected close while renegotiating"
Anyone know what might be wrong?
Sebastian
yes
JonCharge
deferring to Sebastian because I don't recognize that error message
Sebastian
your distribution has upgraded openssl to a new version, which changed some behaviour to fix a wide-spread security issue with many kinds of software
gele
Ah.
Sebastian
Tor wasn't affected, but the update to openssl broke Tor. There is a new development version with a patch for this, and a new stable should be released soon
if you tell me what distribution you're running, I can probably help more.
gele
I'm on Debian Testing.
Sebastian
ah, a new Tor version should be available then
gele
Can't find anything... in Unstable maybe?
Yep, there it is.
Sebastian
hm yeah, maybe it hasn't propagated to testing
or you can update to the development version
gele
Installing the version from Unstable now.
Sebastian
ok good
gele
Right, from looking at the log that seemed to have fixed the TLS problem. Thanks!
Nov 27 20:24:07.651 [notice] Bootstrapped 100%: Done.
Yay!
Sebastian
you're welcome. If you're interested in the details on the bug, please read https://bugs.torproject.org/flyspray/index.php?do=details&id=1144
gele
Thanks, reading.
emanon
what does it mean "[notice] Your application (using socks4a to port 0) gave Tor a[...]" ?
arma
emanon: depends on the [...]
gele
Is it complaining about getting IPs instead of domain names?
arma
emanon: as for your bandwidth shaping question, perhaps your ISP shapes ssl connections? (which country/isp?)
emanon
about the message: yes it is " Tor will do the DNS resolve for you. This is good." does not matter if the notce says socks4a to port 0 or to port 80?
arma
you have turned on 'testsocks' i guess?
emanon
no arma. no testsocks, by the way everynow and then i used tor-resolve
usually torsocks
but sometimes it cannot handshake with socks
arma
i think you have 'testsocks 1' in your torrc.
emanon
silly me.. yes i forgot about that, and SafeSocks too! But nonetheless i do not catch why sometimes the info message says socks5 to port 80 other socks4a to port 0, other socks4a to port 80
arma
i suspect tor-resolve is the one that says port 0
tor-resolve doesn't use ports
as for socks5 vs socks4a, you are using multiple applications with tor. say, privoxy and firefox and pidgin. they are configured to use different versions of socks.
emanon
allright ty arma. about the ISP I am afraid that here in Italy Telecomitalia bw/shapes whatever the like, tor-mixnets too
arma
tor looks mostly like ssl. so i would guess they're not targetting just tor, but rather all vpn like things
emanon
it happens with normal http/80 and with various ssl/80,9001,443.. but usually only for some hours,seems no automatic filter device, but people looking live at traffic
and deciding when to shape when to reroute to try to decrypt some packets
arma
exciting.
emanon
I noticed a lot of dupes/retransmission of course, but also non initiated syn-rst attempts from entry guards, am i making sense?
well if no one else noticed this, i can safely assume it is not so, is it?
arma
not very many people look at their packets
scream
Does anyone feel up to writing a quick tutorial on how to set up https capability... openssl (self signed wildcard) and apache?
I /might/ be able to give credit on the site for the work.
emanon
arma: so i suppose. (and not many cops are sniffing everyday your internet traffic too) could the so called "fascist firewall" option help in these case of TOR censorship?
the situation in Italy is not like in China, yet it is getting hotter and hotter on the free communication channels, nevvero arma?
Sebastian
JonCharge: there are a billion such tutorials already. Why not pick a good one and stick with it?
JonCharge
It would need to be adapted to our specific setup... and at the moment, I can't do it all... :)
AstralStorm
hello again
any good ideas about speeding up tor both as a server and a client?
JonCharge
There are a couple of other goals I'm working on personally... e.g. recoding a mirror update script, and purging misconfigured/deconfigured mirrors.
AstralStorm
now, I have to update the firmware on the router and set up some real QoS there
JonCharge
bbl
AstralStorm
anything except that?
I bet boosting SYN to TOS Minimize-Delay might help, right?
yalla
AstralStorm: only if all the routers to the destination address support and actually use the TOS-bit
« prev 1 2 next »