logs archiveIRC Archive / Oftc / #tor / 2010 / March / 23 / 1
anvo
phobos: I'll give it a try!
phobos
use our repos to install tor and vidalia
ilter
anvo: It doesn't say about init.d.
Sebastian
ilter: yeah, it works when I add a v2 authority
anvo
ilter: Oops! sorry
ilter
Sebastian: On your last script, it makes last auth with v2 authority. So can we say this script is working good now?
Sebastian
ilter: I think yes
ilter
Great! Again thanks a lot.
anvo
Errrr... What link is Vidalia on...?
         

phobos
https://www.torproject.org/docs/debian.html.en
ilter
Sebastian: Now, I'm going to try one of client to create some traffic. Do you have any idea to create dummy traffic?
Sebastian
ilter: bittorrent?
anvo
But this link is to install Tor, not Vidalia!
bja
anvo: when you put those repos, vidalia will automagically appear as a new package :)
Sebastian
hah. We should document that
then I'd know ;)
ilter
Sebastian: Hmm.. maybe. Ok i'm starting with browsing for real traffic then i'll try bittorent for dummy traffic.
anvo
bja: so, to remove Vidalia I'll have to remove all of Tor...?
bja
They will actually appear on the New Packages headline of aptitude
no
you can selectively install and remove packages from a repository
anvo
OK, I see!
Just the Vidalia package..!
But where should I download JUST Vidalia?
bja
anvo: type aptitude on a line by itself and you will see the interactive screen of aptitude
when you set the repos, they will show you the packages it has, then you can download whatever you want from them
anvo
www.torproject.org/vidalia/
bja
if you only want vidalia, then you can download only that
anvo
OK
that's what I want!
I believe the source package does not need to be installed, is it?
Sebastian
no
only if you want to build from source.
anvo
So, either I run vidalia.install script or....? What?
ilter
Sebastian: Can i use polipo for a client which on private network to make web browsing?
anvo
What is the script name to start Vidalia without installing it from the source?
Sebastian
ilter: sure
ilter: point polipo at one of your clients
anvo
Readme's won't say that...!
         

Sebastian
anvo: erm... what?
anvo
Under the Vidalia directory, where I gziped the source package...
What is the script name to start vidalia without installing it...?
Sebastian
so you're not using apt-get or aptitude to install?
anvo
No...
They say it's an ancient version...
Sebastian
well, good luck. If you want to play advanced user, then play it right ;)
ilter
Sebastian: How can i point it?
Sebastian
ilter: edit the configuration
anvo: they pointed you to http://www.torproject.org/docs/debian-vidalia.html.en
anvo: follow the instructions, we're happy to help you if they break
but if you don't follow them you're on your own, I'm afraid.
anvo
According to REadme's, one does not need to run in advanced proccesses...!
I'm not building my own deb source for vidalia! I just want to make it run or install from the source package!
ilter
Sebastian: Is changing "socksParentProxy = "localhost:x"" parameter enough for polipo to point a client which has SocksPort x?
anvo
OK, here it is "
Sebastian
ilter: yeah I think so
anvo: if you install from source you will have the exact same problems as above
just install the damn package
where's the problem?
anvo
some one said it's old!
Sebastian
omg jesus crhist
the one you have installed is old
anvo
Just a sec
Sebastian
So please just follow the instructions you were pointed to, to get a recent package
anvo
Package manager offers Vidalia 0.2.7
How is it...?
It's current!
Sebastian
Is that with our repo, or the standard ubuntu repo?
anvo
Sorry guyz!
Your repo!
Sebastian
right.
so.
hrm
now I cannot reproduce the segfault. awesome.
-.-
ilter
Hmm.. Polipo testing fails: "Tor proxy test FAILED! Check your proxy and Polipo settings.". Any suggest?
Sebastian
ilter: well, you tested via torbutton?
ilter
Yes.
Sebastian
If you think for a minute, do you know why the test failed? ;)
ilter
(Action) thinks ..
Sebastian
ilter: you're not using the real Tor network
ilter: Torbutton uses check.torproject.org, and thus fails the test.
ilter
Sebastian: Thank you. I didn't guess that.
* couldn't guess
Sebastian
ok, sorry
ilter
But also polipo gives this error now: "Couldn't read from client: Connection reset by peer"
Sebastian: np. Thanks. You're so patience and kind for my a lot of questions ..
Sebastian
all it takes is a smart question ;)
ilter
;-)
Sebastian_
hrm
nope
can't reproduce the segfault. Happened reliably yesterday. wtf.
weasel
ah, but yesterday was 2 minutes ago
ilter
:)
Sebastian: Are you trying without v2 auth. to reproduce segfault?
Sebastian_
ilter: yeah
weasel: I wasn't lying, it did occur yesterday ;P
almost 20 hours ago or so ;P
pipe
and "you didn't change anything", right
narr
a reboot?
Sebastian_
oh, I changed a bunch of things
narr
;)
Sebastian_
weasel: I wasn't lying by accident, but still ;P
maybe it was an os problem. I had pretty much killed the machine anyways
ilter
Sebastian: I succeed it. I'm using a client over private network for web browsing. And also i set a ControlPort for it to trace circuits, etc .
Sebastian_
great
ilter
"getinfo circuit-status" shows all relays on circuits by their fingerprint. Is there a way to see it's name also?
*their name also
Sebastian
Only if they were named
you could set up a Namingauthority :)
ilter
But your script has already put names for them: "Nickname relay$NUM"
Sebastian
yeah
but no naming authority
NamingAuthoritativeDirectory
see that in the manpage
ilter
(Action) looking ..
Thanks i'm going to try it.
mikeperry
bikeshed color selection time!
"Redirect Torbutton updates through Tor"
pipe
The bikeshed should be black
mikeperry
does that make sense?
Sebastian
how about the color that has two letters and the first letter is n and the second is o?
mikeperry
given that the option right below it will be "Disable Updates during Tor usage"
and that you can check one, both, or neither of them
pipe
options are bad
mikeperry
it will default to on
pipe: yeah, steve jobs would never approve of Torbutton ;)
does it make sense that you could select one, both, or neither of those two? I was pondering making them exclusive, but they don't have to be
if you disable updates during Tor usage, your addons won't update while you use Tor, but when you leave Tor mode, Torbutton updates would still be redirected through Tor
pipe
When I leave Tor, I don't want anything through Tor
And when I enter Tor mode, I don't want anything "on the side"
Sebastian
What's the point of redirecting torbutton updates through Tor? Also, I often have firefox running when no Tor is running.
mikeperry
hrmm..
the problem is that addons.mozilla.org has horrible log retention policies
and firefox also downloads .xpis over http
so censors can see you download torbutton
and either block it, or arrest you
ilter
Sebastian: One of tries, client couldn't fetch router descriptors. And also v2 auth gave an err: Mar 23 02:09:44.258 [err] do_main_loop(): Bug: Error initializing keys; exiting.
Sebastian
ilter: the v2 auth error seems to be a setup problem
ilter: the first problem is a known Tor bug
ilter: https://bugs.torproject.org/flyspray/index.php?do=details&id=1247
mikeperry: hrm. So how is mitm prevented? Not at all?
mikeperry
you download a sha1 hash over https
Sebastian
ouch ouch ouch
wtf
they are pretty insane, are they not?
well, so the user is fu*ked anyways. Maybe instead make a nice popup "please tell the tordevs that mozilla is horrible. they should look for alternatives"
mikeperry
people think ssl is expensive. there are all sorts of hacks done in firefox to avoid it
Sebastian
yeah
hm
I guess it doesn't much matter then
mikeperry
the safebrowsig updates come via http, for example. for a while firefox forgot to check their HMAC :)
pipe
hooray for arpspoof and sslstrip.
Sebastian
So why does the "disable all updates during Tor usage" option exist?
mikeperry
two reasons: 1. because it wasn't clear to me what happened if javascript was disabled (during install, it is page javascript that verifies the sha1). and 2. because the set of addons you update is potentially a fingerprint
Sebastian
hm. Is it on by default?
mikeperry
oh, and 3. the version check used to happen over http too, I think
pipe
(Action) just implemented "GETINFO bytes" in his tor
Sebastian
haha
omg
mikeperry
its off by default
Sebastian
ok
mikeperry
in that updates happen via tor
on the assumption that some people leave tor on always
and should get updates, now that the auth process is a bit saner
Sebastian
so my bikeshed is "make three options. update always, update only using Tor, update only using non-tor"
pipe: what does it do?
ilter
Sebastian: I've already read it but it doesn't mention about do_main_loop() err.
Sebastian
ilter: ah, that error happened only once?
pipe
Sebastian: Simply reports all bytes running through Tor since startup. stats_n_bytes_read/write. That way it's much easier to get useful bandwidth stats from Tor. I'm using it for a munin-plugin that graphs bandwidth over time.
Sebastian
nice. You should submit the patch.
pipe
Ok, I'll try that.
ilter
Yes it seems so. Also other authorities are working with no error.
Sebastian
anything else in the logs? Did the /keys dir get created?
ilter
Yes /keys was created. There is also another log; Cannot open fingerprint file '/work/authorities/auth7/approved-routers'. Failing.
Sebastian
ah. yeah. You need that file on a namingauthority.
ilter
Yes i configured torrc of auth7 as a NamingAuthority.
Sebastian
so you also created an approved-routers file?
If not, bad ilter.
ilter
Should i create it by manually?
Sebastian
yeah
ilter
What should be in it?
Sebastian
erm
did you read the manual? :)
The entry for NamingAuthoritativeDirectory says you need an approvied-routers file
and then in the files section the format is explained
ilter
Sorry i read it before but i didn't notice this file .. :(
Sebastian
np
ilter: did you get it to work?
ilter: hrm regardless, time to sleep. Hopefully for a loooong time. Good luck.
narr
good night Sebastian, and good luck with it
ilter
Sebastian: I dropped asleep. I'm going to try it again today. Thank you for your concern and i hope you can rest for a long time.
anvo
hello tor!
Even if I stop tor through "/etc/init.d/tor stop", I still cannot connect to irc.freenode.net! Why's that?
narr
did you run an exit lately?
freenode blacklists tor nodes temporarily
anvo
narr: Well, propper exit is a problem to me... I do not how to manage it... I use vidalia, where I have nothing checked! Is that OK for a propper exit...?
narr
the default vidalia config doesn't use you as exit
if you have unchecked all exit policies, i guess it should run as middle node
you mean you cannot connect to freenode through tor, or you cannot connect to freenode without using tor?
« prev 1 2 3 next »