logs archiveIRC Archive / Oftc / #tor / 2009 / December / 11 / 1
neoeinstein
Hrmm.. No more .zh-cn will break my current MultiView-like redirect rules.
Since that is the form of the accept-language header string.
murb
neoeinstein: can't you just change the map for zh-cn ->z-CN
keb
if people use torbutton they will always send that they accept en-us
murb
and as the patch as been revereted i don't think we have to worry about it.
arma
neoeinstein: right, i reverted it. in part for that reason.
neoeinstein
No real problem for me, since I'm using rewrite rules; I would just be adding more rules.
btw, the Tor website is running very well within IIS 7.5, faked multiviews and all.
arma
heh.
great to hear.
neoeinstein
I should publish a little document on how to set up those rewrite rules.
Triskelios
IIS o_O
         

neoeinstein
O-o
Yes. Unholy of unholies, IIS!
noncombatant
What, IIS too high-quality?
marcus
I've been very impressed with IIS 7.5, actually.
noncombatant
5 was the bad one... but Apache from that era wasn't so hot either
murb
marcus: don't you require a windows server licence that costs minium 500¬ to run IIS?
noncombatant
500 E would probably get you a whole MSDN license...
murb
noncombatant: i mean for poduction
anwayay this is ->#nottor
noncombatant
arma: I don't know how safeiop compares to Nick's macros
keb
maybe they are nickm's macros. did anyone check the copyright
noncombatant
I doubt Will and pval swiped Nick's stuff, if that's what you mean
arma
shanepancake: hey
nsa
or: phobos committed revision 21145 (/projects/todo): progress update new pdf
keb
noncombatant : with a bsd license, theres no "swiping", just giving credit.
phobos
well, one has to include the license file
intact
keb
yep
scream
.
dr|z3d
(Action) encases scream's "." in concrete.
scream
lol
user08490
anyone around? i just compiled tor from source and ran the tor executable in the src directory.
Sebastian
user08490: sure
         

user08490
i'm getting the message "Dec 11 11:35:23.541 [notice] Configuration file "/usr/local/etc/tor/torrc" not present, using reasonable defaults."
keb
great
user08490
i'm wondering if i can change the path the it looks for the torrc in
Sebastian
sure
call it with src/or/tor -f path/to/torrc
user08490
tried edtiting the only place i found that path in the make file but that didn't do it
Sebastian
or you can use the configure switch
user08490
yeah. but can i change the default at compile time so that the executable automatically looks where i want it to?
Sebastian
I thought there was a configure switch, but now I can't find it. Let me check in half an hour, busy now, sorry
try --sysconfdir
not sure if that helps, though, but worth a try
keb
you'll likely want to change --datadir=DIR also
unless you like /usr/local/var/lib/tor
user08490
yeah. no
arma
right, CONFDIR is the variable you want to change
i'm not sure what the convention is for changing it. what sebastian said is plausible.
see how the debian compile does it, in debian/rules in the source repository
keb
theres no confdir listed in configure --help
but there is sysconfdir
arma
prefix, mandir, infodir, localstatedir, sysconfdir
user08490
where are you getting this? i'm looking through the output of './config --help' and i'm not seeing that
or are you looking at the makefile?
keb
./configure --help
Sebastian
arma: yeah, debian uses sysconfdir
ah, the user went away.
plytheman
quick question: if I want to use a specific exit node, could would I just type www.site.nodename.exit/stuff/page ?
arma
yes, assuming nodename is up, reachable, and has an exit policy that allows www.site
also assuming you're using tor 0.2.1.x. we disabled that notation in tor 0.2.2.x.
plytheman
I tried it on one and got a 504, but I haven't checked if it was up today yet (was yesterday)
arma
(if you're using 0.2.2.x, set "AllowDotExit 1" in your torrc)
plytheman
0.2.1.20, should be good
lemme make sure the node is still up, got a 504 when I tried
ShanePancake
hey arma, I was taking a final, what's up?
plytheman
would it be bad etiquette to use tor to stream a show?
keb
it wouldnt work well
plytheman
yeah, I'm figuring it wouldn't...
but I cant find a torrent of this show anywhere
keb
how big is the show in bytes
plytheman
I was hoping I could just let it buffer for however long it takes then watch it through, or would it still run poorly?
keb
tor doesnt do udp
plytheman
couldn't tell you... http://www.channel4.com/programmes/classic-ships/4od#2928473
that's the show, fwiw
keb
udp is better suited for bulk streaming
plytheman
don't know anything about that, I'll look into it now
is it free? cus that's whats keeping me from paying for a uk specific proxy, I just want a half hour of this show and I'd be happy
Sebastian
udp is a protocol, not a program
keb
yeah
plytheman
ic, I'll go look into using that then
Sebastian
in other words, udp is a certain mechanism allowing bytes to travel across the internet
Tor doesn't support udp, and I think it is unlikely that the webstream will
keb
oh you just want a country specific one hop proxy
plytheman
and it bypasses region specific junk?
Sebastian
it is nothing that you can "enable" on your side without server support.
plytheman
like I said, I'm just looking to watch one program that I can't find anywhere else. The few free uk proxies I've found haven't had java or flash required to watch it
keb
plytheman
no, haven't seen that yet, I'll give it a shot, thanks =D
that a one hop proxy?
keb
yeah
plytheman
sweet deal, thanks
keb
when people say they want to stream something, i often assume they want to serve live multimedia to the internet.
maybe the meaning has changed
of stream
plytheman
I've always just used it from the user end, but makes sense that it would work both ways
keb
anyway, yes it would be bad for tor network to send gigs of data over it
plytheman
definitely, to be honest I'm not sure how much data watching a video would take up, so I wanted to be sure I wouldn't be dragging everyone else down with me if I did
keb
if you run a relay, watching a video or two once in a while wont hurt the network so badly ;)
giving back to the community and all that
plytheman
I'd love to but I'm living with the fam at the moment and they'd prolly not be happy with me sharing our bandwidth
keb
if they dont use the line much 12 hours a day or more, you could setup a timed bandwidth limited relay. but good to ask
plytheman
hrm, got a "Network Error (tcp_error) Connection Refused when I tried to use a uk proxy
that mean the proxy is no good?
keb
hmm, maybe they can detect the use of open proxies
further discussion of using non-tor stuff would best go in #nottor though
plytheman
will do
thanks for sending me down the right path with xroxy
keb
not sure it is, but its one alternative ;)
Hoppi
hi everyone! i just set up tor hooray! it works! :)
keb
yay
Hoppi
hehe :)
only on firefox at the moment though
an i pass other apps the socks v4/5 localhost proxy data to get them routed through tor though? or use privoxy as an http proxy for the same effect? o.O
*can
(not sure why i said data after proxy, you know what i mean :) )
keb
if the apps can do socks5 or socks4a they can be pointed directly at tor
localhost:9050 by default
firefox has a bug so use an http proxy like privoxy or polipo
Hoppi
ah yes, i'm using the torbutton plugin thingy to point firefox at privoxy :)
keb
instructions for various apps are at https://wiki.torproject.org/noreply/TheOnionRouter/TorifyHOWTO
Hoppi
but i heard dns leaks might be a problem?
keb
yes thats why socks4a is important
but using http proxy solves that for firefox
see also https://wiki.torproject.org/noreply/TheOnionRouter/SupportPrograms
Hoppi
ah i just realized i'm pointing firefox (torbutton) at privoxy not polipo.. i hope that's ok
keb
(Action) tired
Hoppi
and ok i'll check those links :)
coderman
if you want to avoid DNS leaks use a transparent Tor proxy setup
then even unwilling / malicious code cannot subvert your carefully constructed sock4a or 4 with names proxy setup.
(via DNS...)
er, 5 with names
Hoppi
yeah i tried running the application through tsocks
but it said it failed to connect to the SOCKS server
coderman
what os?
Hoppi
do i need to tell it the port?
linux
coderman
yeah
port needed
Hoppi
how do i pass it that information?
the man page is a little bare on the details and i haven't yet worked out where it's config file is... etc? hmm
coderman
man tsocks.conf
server_port
locate tsocks.conf , etc :)
there's a sample config somewhere, looking...
https://git.torproject.org/checkout/tor/master/contrib/tor-tsocks.conf
Hoppi
ok
i set the server port to 9050 in tsocks.conf but it still failed
i'll check that link :)
seems happy...
:)
ok so, now that tsocks seems content, do i have to set anything in the application itself? sorry, i don't think i fully understand what tsocks has actually done :)
i'm still a proxy and tor noob :)
hi? :)
coderman
it intercepts systems calls relating to networking like a rootkit
however, if an application implements its own DNS client resolver with UDP directly
you are screwed. see above regarding transparent proxy setup.
(or an application is hot injected with a udp resolver, etc, etc.)
Hoppi
all this stuff is a bit foreign to me! heh
powertool08
Where can I find .onion sites which actually still exist?
darrob
powertool08: your best bet would be the hidden wiki or the onion forum, i think.
powertool08
darrob: I looked on the hidden wiki (I think) and didn't see much, I tried toogle but there weren't many results, and 80% of the results were dead, or went to different posts on the same thread of the forums.
xtoaster
powertool08: you can try i2p. it is more devoted to stuff like that.
powertool08
xtoaster: To stuff like what? Hidden webpages?
xtoaster
um. yes
a closed network.
darrob
powertool08: well, that's really all i know about .onions. Wikileak's hidden service is the only intersting site i can think of off the bat.
powertool08
xtoaster: Have you ever used it? Anything interesting or is it all porn? Not looking for any porn btw.
darrob: What's the address to that? or is it a regular website?
xtoaster
:-) all anno network is facing pr0n invasion. but of course i2p isnot all about pr0n,
powertool08
Also, is running an exit node just asking for a RIAA lawsuit/fbi child porn investigation?
darrob
powertool08: wikileaks is also a regular website and you can google it as well as its onion address.
xtoaster
powertool08: i do remeber a nice blog in i2p : privacy.i2p
darrob
powertool08: concerning exit nodes you could dig through the mailing list archives. you can certrainly say that it's risky, but people do so without too much hassle anyway apparently.
powertool08
darrob: I've read some, also an article titled something along the lines of "Why you must have balls of steel to run an exit node"
darrob
powertool08: i can imagine. to me it doesn't sound like fun
powertool08
It seems the results are so varied from letters from your isp, tell them you're running an exit node and they leave alone, to lawsuits for p2p you aren't doing and the fbi crashing in at 5am confiscating all electronics capable of storage.
darrob
i assume there are many factors involved. for example your country of residence, your isp's attitude and whether you run your exit node at home or on a server/vps. and who knows what else
powertool08
I guess its not such a good idea in the US with a major cable isp on a home connection. :/
darrob
maybe not. you could still run a very useful relay though.
powertool08
True
ilter
Hello. I couldn't find example torrc file to be a relay on Tor websites. Do you know any address for it?
gouki
ilter, http://www.torproject.org/docs/tor-doc-relay.html.en
On the Manual Configuration part.
When you install/compile Tor, you should have the file created for you. It's just a matter of making your own changes. More information about torrc
https://wiki.torproject.org/noreply/TheOnionRouter/TorFAQ#torrc
ilter
I've already looked these sites. But there is only configuration lines to be a bridge not a relay.
gouki
ilter, I configured a relay yesterday based on that wiki page.
ilter
gouki: Thank you. I've already configured and made port forwarding on my home router for 9001(orPort)
9051(controlPort) and 9030 (dirport)
But unfortunately it doesn't work.
it gives info messages on logs. It says Interface ip address is a private address. Ignoring.
should i put my wan ip on Address line? (on default torrc it's commented like # Address noname.example.com)
gouki
ilter, no, you should not put your address there.
Can you paste your log file on paste.ubuntu.com, for example?
ilter
gouki: Thank you for your concern. I put it on paste.ubuntu.com now.
it's on http://paste.ubuntu.com/339131/
gouki
ilter, that's not the log file, that's your torrc.
« prev 1 2 3 next »