logs archiveIRC Archive / Oftc / #tor / 2010 / January / 19 / 1
nsa
or: arma committed revision 21436 (/projects): a directory for accumulating essays and other articles we write
or: arma committed revision 21437 (/projects/articles): draft of my "things to look for in a circumvention tool" article
or: arma committed revision 21438 (/projects/articles): fixes as suggested by jo glanville
or: arma committed revision 21439 (/projects/articles): they needed a bio in the published version, but we don't need one here
jr_
sjmurdoch: ping
nsa
or: sebastian committed revision 21440 (/projects/todo): karsten's branch was merged
or: arma committed revision 21441 (/projects/articles): tighten up the first third, thanks to karen
or: Sebastian Hahn <sebastian@torproject.org>: 2010-01-02 01:14:02 [tor/master]: Log a notice when we get a new control connection
or: phobos committed revision 21442 (/website/trunk): remove ssl for tor.beme-it.de by request.
jr_
arma: are there any other applications thinking about using DTLS?
nsa
or: Michael Witten <mfwitten@gmail.com>: 2010-01-16 21:13:31 [tor/master]: Build Bug: -lm should come after passing ../common/libor.a to linker
or: sebastian committed revision 21443 (/projects/todo): bug 1196 fix is merged, please now merge bug 1198 fix
or: Sebastian Hahn <sebastian@torproject.org>: 2010-01-19 03:59:24 [tor/master]: Fix build on Solaris by disabling support for DisableAllSwap
or: sebastian committed revision 21444 (/projects/todo): that was quick, thanks!
or: mikeperry committed revision 21445 (/torflow/trunk/NetworkScanners/BwAuthority):
or: Add hack to ignore guards temporarily. Also add code to
or: calculate a BETA and GUARD_BETA from the consensus
or: version counts.
or: mikeperry committed revision 21446 (/torflow/branches/stable):
or: Remove debug logging for bwauthority's control port.
or: Change svn:externals url for TorCtl.
Sebastian
oh hey, true
we get to update all svn:externals
nsa
or: mikeperry committed revision 21447 (/torflow/trunk/NetworkScanners/BwAuthority):
or: Remove control port debug logging from bwauthority.py.
or: Also add a script for testing ALPHA convergence.
or: mikeperry committed revision 21448 (/torflow/branches/stable/NetworkScanners/BwAuthority):
or: Add hack to ignore guards temporarily. Also add code to
or: calculate a BETA and GUARD_BETA from the consensus
or: version counts.
j_r
arma: ping
arma
you keep finding me right before i'm trying to sleep :) what's up?
         

j_r
doh
sjmurdoch's office neighbor said that the reardon thesis was viewed somewhat skeptically / criticized by the PET community when it came out
sjmurdoch hasn't been around to follow up with
was wondering what the issues were apart from the user stack and DTLS maturity
arma
he might have confused it with camilo viecco's thesis
camilo presented his thesis at the pet in leuven, and ian chaired the session. ian ripped into him pretty good.
i'm not sure anybody's really noticed joel's thesis
he presented it at usenix security. i missed it
j_r
viecco did over ipsec?
nm
UPD-Tor?
arma
yes, except udp not upd
j_r
lol
anyhow, looks like there are a number of potential issues
circuit extension
to start
arma
i feel sad that the original zks freedom design never came with specs on how they did circuits
i had to read the cebolla paper before having any clue how it worked
(have you read the cebolla paper?)
j_r
no
arma
http://freehaven.net/anonbib/#cebolla
it predates tor in pretty much all respects
and it's written by a systems person, so might be more understandable. :)
ps
would you like to participate when Ano will be released?
arma
ano?
ps
http://en.wikipedia.org/wiki/Ano
j_r
arma: are there any critiques of cebolla / zks?
arma
ps: huh. interesting. keep us informed.
j_r
arma: anyhoo, I'll let you go to bed and will read Zach's paper
ps
arma: ok
arma
j_r: nobody wrote up their critiques if they had them. the main critique of zks freedom was that it became so unwieldy that they couldn't maintain it, even with dozens of brilliant systems and crypto people on staff. they had their own kernel shim to maintain, etc etc.
j_r
arma: yeah, I've seen grad student cleverness get out of hand at other places
Scale8 etc
arma
(Action) fades to black
j_r
Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it.
Brian W. Kernighan
nite
nsa
or: Juliusz Chroboczek <jch@pps.jussieu.fr>: 2010-01-19 01:51:50 [polipo/master]: Clean up chunk locking for httpServeChunk. The interface is changed, the served chunk must now be locked by the caller. This avoids races without silly unlock/lock pairs.
or: Juliusz Chroboczek <jch@pps.jussieu.fr>: 2010-01-19 01:51:49 [polipo/master]: Add basic .gitignore file.
         

tallhos
Hello. I'm running an exit node. For DMCA notices received, I'm planning to redirect all the traffic temporally to an other machine. I want my Tor process running in host A. I run an ssh tunnel towards host B (that opens a socks interface at port 9999 in A). I want to redirect all connections generated by Tor in A to the socks port 9999 (ie: run tor like "tsocks tor").
The socks port 9999 in A works fine: I use "tsocks wget myipaddress.com" and it responds with the IP of B.
The problem is that if I execute "tsocks tor" in A, the bootstrap process remains at 45% with the following message:
Jan 19 10:54:46.386 [warn] Problem bootstrapping. Stuck at 45%: Asking for relay descriptors. (DONE; DONE; count 94; recommendation warn)
and continues outputing such line forever.
any reason I cannot redirect Tor to a socks?? I know is quite extravagant...
Thank you in advance.
fossiiil
tallhos: checked /etc/tsocks.conf ?
tallhos
yes, the port 9999 it's configured, and I can use tsocks with other applications without problems.
fossiiil
tallhos: you can't execute tsocks tor, btw
it says something like, redirect all networking used by Tor daemon to Tor SOCKS listener...you see...kinda nonsense
tallhos
I don't understand. I want all the "exit traffic" generated by my exit node to be redirected to a socks port, that's it.
So I've thought the one easy way to do it is to execute tor with tsocks, so all the traffic generated by the tor application will be redirected to the socks interface.
but maybe as tor opens the ORport, there is something incompatible with such configuration...
fossiiil
tallhos: i understand now
tallhos: what's your firewall setup? are DNS requests allowed?
run tcpdump port socks_port
tallhos
no. It's not possible in fact. as the application (tor) acts as a server, the connection coming from other ORs will be done directly to A, but the tor process will answer through the socks, so the ORs won't understand nothing.
well, thank you fossiiil, I abandon.
fossiiil
tallhos: abandon?
tallhos: ok, dude...good you solved it :-)
tallhos
I stop going in such way :)
thanks.
dfi
hi i'm trying to "simulate" TOR with netem (tc) - has anyone here ever done that? which parameters are reasonable
Sebastian
dfi: So what you want to do is emulate that you're a client, using Tor?
dfi
exactly
i want to set bandwidth and delay restrictions so it looks like i'm using tor
Sebastian
tor has a huge variance in speed
dfi
i have a setup like this: "A<-->B<-->C". B has 2 NICS which i bridged together. and i want to set the restrictions on B
tc supports variance
Sebastian
sometimes you get 5kB/s with 8 seconds latency, and sometimes you get 200kB/s with 1 second latency.
dfi
you can set variance based on a normal distribution for example
is there a paper maybe which analyzes tor traces?
Sebastian
I'm not sure a normal distribution fits Tor
but maybe it will
I don't know, sorry.
dfi
alright, ic :)
nsa
or: sebastian committed revision 21449 (/website/trunk/de): Remove the German faq skeleton file, as it produces dead links
Sebastian
If anyone who knows how to build Tor from source is bored, please try my new manpage branch. It converts the manpage from roff to asciidoc, and I'd like feedback on how it goes for you. git repository at git://git.torproject.org/sebastian/tor branch manpage.
murb
(Action) yawns.
ok bored enough.
Sebastian
yay
nsa
or: sebastian committed revision 21450 (/projects/todo): new manpage branch
DaScotch
Hi guys
niiinja
hi
DaScotch
I recently started using tor, but the speed is slow; is there a way to find an exit with a good bandwith - some script or something similar ?
Runa
DaScotch: you could check out http://torstatus.kgprog.com/
Sebastian
DaScotch: just finding a fast exit won't do
DaScotch
thanks - will have a look and come back to comment on my findings!
Sebastian
see https://www.torproject.org/faq#WhySlow
murb
Sebastian: a2x: ERROR: xmllint --nonet --noout --valid /home/murble/git/tor-manpage/doc/tor.1.xml returned non-zero exit status 4
Sebastian
a2x --version?
murb
8.5.2
Runa
8.5.2 here as well, works just fine
(i.e. the files in doc aren't empty)
murb
(debian testing)
Runa
(debian unstable in vmware)
murb
(in qemu)
Runa
(on windows 7)
murb
on linux :)
Runa
hehe :)
murb
ah i'll switch to unstable..
Sebastian
well we should still fix that
can you get me the entire output?
murb
http://www.yuri.org.uk/~murble/tor/tor-manpage-out.txt
Sebastian
that sure is verbose
murb
:)
Sebastian
cd doc/
murb
want the output of xmllint?
Sebastian
a2x -vf manpage tor.1.txt
murb
yeah
Sebastian
can you get me that ouput is what I meant :)
Or are you debugging yourself?
murb
Sebastian: or i could answer the phone :(
Sebastian
looks like someone needs their priorities readjusted ;)
no worries, I'll wait.
murb
ah anyway found the rason.
warning: failed to load external entity "
with that dtd it works fine.
Sebastian
is there anything I need to fix, or is that a setup problem on your end?
murb
http://www.yuri.org.uk/~murble/tor/tor-manpage-out-ver.txt # fwiw
Sebastian
So how did you fix it? Fetch the dtd an make it available, or install an additional package? I'd like to check this at configure time somehow.
nsa
or: runa committed revision 21451 (/website/trunk/en): fix my name
murb
Sebastian: okay i failed to have docbook-xml installed.
Sebastian
murb: ah ok
and that's not a dependency in your package manager?
murb
very disapointed that it all works now :)
well asciidoc doesn't bring it in.
Sebastian
grml
that is Debian stable?
murb
i did apt-get build-dep tor
nah, it was a squeeze system
just upgraded it to unstable to be the same as runa had.
Sebastian
yeah, I haven't included any debian changes in my patch
murb
ah, i didn't attempt to build a debian package.
Sebastian
good
The thing that is bad currently is that if you don't have asciidoc installed, you can still make tor (without the manpage). but if you have asciidoc installed, it appears that you cannot make Tor unless you install docbook-xml
that is not good.
murb
Sebastian: this is why it is worth having a nice clean system to begin with :)
i didn't even have build-essential before i started just now.
Sebastian
:)
ok, so asciidoc recommends docbook-utils, which recommends docbook-xml
bah.
murb
ah the default now days is to install recommends i think.
depending on what tool you use to install packages.
Sebastian
right, but i think it doesn't do that recursively
totally idiotic anyways
murb
i'll test it.
Sebastian
asciidoc recommends vim-addon-manager
lol
murb
urg!
(now you know why i don't install recommends!)
Sebastian
I don't either
murb
APT::Install-Recommends "false"; here
Sebastian
I guess that means I'll need to come up with an a2x test for configure that fails
murb
After this operation, 670MB of additional disk space will be used.
with recommends true...
nein, danke!
Sebastian
thanks for testing
or rather, dude, why did you test
murb
see above.
15:22 < murb> ok bored enough.
Sebastian
yeah :0
murb
and i found a git bug as well :)
Sebastian
neat, what is it?
murb
clone with -b segfaults
in testing.
ok with recommends on, it all works...
Sebastian
haha
« prev 1 2 next »