logs archiveIRC Archive / Oftc / #tor / 2010 / March / 25 / 1
shahn
atagar: did you catch my comments from earlier?
ilter
shahn: Hello. How are you? Are you still working on segfaults?
pipe
Question: Is it bad to run the latest git trunk on the real Tor network
or "master" or whatever you call it.. I should learn git :/
Sergio`
I just set the ORPort 9001 to make a relay. This appeared about 10 times in the log with different IPs: http://pastebin.com/kNFARmHt
The final message in the log is: Mar 24 23:05:03.153 [notice] Have tried resolving or connecting to address '[scrubbed]' at 3 different places. Giving up.
Is the relay working properly? The log says it can be reachable from outside.
ilter
pipe: What do you mean by bad? Is the latest git trunk is "
tntcoda
Hi, under Linux how can I ensure that a specific binaries traffic is going through tor? the said binary has no proxy settings what so ever. Is there a 3rd party tool I could use to 'trap' and reroute its traffic
atagar_work
shaha: nope, I don't have much of a backlog while at work
intrigeri
tntcoda: don't know, but you can run such a program under a dedicated user and use iptables to forward this user's traffic through Tor's transparent proxy.
pipe
ilter: I mean that if I do that, I'll have to take the node down every week or so to upgrade, and there could be bugs in the code that affects the network badly
         

atagar_work
oops, s/shaha/shahn
tntcoda
intrigeri, thanks that will be perfect
pipe
tntcoda: I saw a script to do sort of what you wanted, but I forgot where :)
tntcoda
I shall go searching :)
ilter
Sergio`: It seems your tor couldn't fetch network-status. Could you check is there a cached-consensus file under your tor DataDirectory?
pipe
tntcoda: If you're hardcore, you can run for example wireshark on your interface and actually watch the traffic
bja
intrigeri: how does iptables becomes aware of uesers?
s/uesers/users
pipe
You mark the packages belonging to a group or user
then you can filter on that mark
ln5
tntcoda: try usewithtor from torsocks http://code.google.com/p/torsocks/
intrigeri
bja: -m owner --uid-owner
pipe
I do it on one of my machines
tntcoda
thanks ln5
bja
intrigeri: thx
intrigeri
pipe: I guess you mean s/packages/packets, don't you?
bja
pipe: thx
pipe
intrigeri: yes
intrigeri: different word, same meaning ;)
ln5
ilter, pipe: here's the git repo: https://gitweb.torproject.org//tor.git
pipe
more importantly, same word in swedish.
ilter
pipe: Ok i got it. Do you mean "
ln5: Thanks, i know this site.
ln5
"trunk" is usually the subversion term for what git calls "master" (kind of)
         

tntcoda
http://wiki.noreply.org/noreply/TheOnionRouter/TransparentProxy that does the job if anyone else was interested :) using iptables/transparent proxy as intrigeri suggested
ln5
pipe: bringing down your node for a restart isn't too bad but of you probably would run into more bugs than if running releases. i'd say it depends on how much time you're willing to spend on looking after your node and report bugs that you might see.
i think it's valuable with testers filing good bug reports.
ilter
ln5: Does "trunk" contain latest tor version? Or this term is being used only for some updates on source codes, documents etc.?
pipe
ln5: I'm fine with reporting bugs, what I'm worse with is detecting what is a bug and what is normal behaviour.
ln5
ilter: i don't know the state of the svn repo but looking at the bottom of https://gitweb.torproject.org//tor.git you will see four different "heads" (or branches), where "master" is what svn people call "trunk".
ilter: bleeding edge is on "master" and stable releases are on "maint-0.2.1".
ilter: if you look at the "tags" section of that same page, you'll see tags named tor-<version> and sometimes tor-<version>-alpha. these are releases, so to speak.
ilter: the 0.2.2 series contains some code that 0.2.1 lacks and is called unstable while 0.2.1 is the stable series of releases.
ilter
ln5: Hmm.. Thanks ln5. Now i'm getting git better.
ln5
pipe: yes, that's part of the job. :)
ilter
ln5: Yes i heard about it. For now maybe we can say beta version for 0.2.1 version.
ln5
ilter: or even alpha, hence the name of the 0.2.2 releases.
ilter
Finally can we say that "trunk" (master) is tag for latest alpha version?
ln5
ilter: no
ilter: we can say that master is the trunk of the tree, or the master branch, out of which an alpha release (0.2.2.n-alpha) is cut, i.e. tagged.
(Action) ponders the possibility that it might have been more pedagogic to use the word "stem" rather than "trunk" in that last sentence
kmacy_
ioerror: around?
atagar
shahn: back at this alias - somehow parsing the manpage to determine defaults sounds... less than elegant ;)
pipe
Would have to keep it synchronized with the Tor version
Since defaults can change
atagar
(Action) shudders
might be another thing for the control-spec proposal...
brah-
I still can't get tor to work
my regular ISP is comcast, are they blockin it?
its not even getting a list of tor relays now
I figured it out
since you didn't bother trying to help me with the answer, I won't tell you the answer
though, I doubt you really care, as you already got your donation money
enki
brah-: you are reading waaaay too much into a channel being idle
rudi_s
He left :-/
pipe
wtf
donation money?
didn't bother trying to help?
dr|z3d
Safe to ignore.. some people have a tenuous grasp of IRC support protocols. :)
subbie3
ffs
StrangeCharm
re the orbot package for android: the only way to use it at all is on rooted devices?
shahn
atagar: yeah that is what i meant. ;)

StrangeCharm: no, you can use it with some apps that c
come with s
u ggh.
karsten
new phone works great, shahn? ;)
shahn
socks or
karsten
also, 'morning.
shahn
wa
ok this thin
g suc ks
touccchs ccree nnn t
StrangeCharm
nexus one?
i love the touch-screen ¬_¬
i don't plan on composing any novels, but it works for what it's meant for
is proxysurf actually any good?
proxysurf doesn't seem to be making requests through tor: check.torproject.org shows my handset's real ip
shahn
wow, don't get that phone's surface dirty.
yeah most applications are probably unsafe :(
formalist
tor_free(cp)
hagh.
control port.
shahn
formalist: in need of help?
ilter
Hello everyone. I've question about authorities. Is there anybody here who knows the requirements to be a directory authority server on the real Tor network?
Or is there any documents for it?
SwissTorExit
hi ilter, yeah, mostly you must meet and know the Tor devs and be active i think min one year, to be a autority there must accept your relay and add it as a autority to can use it
ilter
SwissTorExit: Thanks for your reply. How do you know it? Is there any policy about it?
SwissTorExit
you are welcome, i know while i am here from a bit and have spoke with the devs about that early. i will like to said that's logical while if peoples will able to run autority without any trust, Tor will be for sure vulnerable, well i thin so
ilter
SwissTorExit: Of course you're right that tor will be vulnerable if everybodies want to be an authority. Additionally i think that some policies should be somewhere to provide certainity.
* want to be an authority without any trust.
SwissTorExit
nope, not useful or needed, if it will be the case, there will sure too much peoples who will ask to run somes ;) so the good sense make the rules i will say :D
ilter
SwissTorExit: That's what i said. Sorry i think that i couldn't tell my thought well. I also mean that making rules by the policies.
SwissTorExit
i understand you very well but why would you added soemthing about that ? in any cases it will not for the "public" so asking and meet personnaly are enough for policies :D
where are you living ?
why there was or-talk about that early and it's important to have the authority in differents countrys
Neeraj
can anyone tell me what does the numbers in the papers mean like this one [3, 4, 8, 10, 17, 18, 29, 34, 36] or [5, 6, 7, 16, 28]
SwissTorExit
lol what for papers ?
ilter
SwissTorExit: :) I'm trying to understand tor in deeply. That's reason why i asked in details. And i wonder that if there is document where is it? If there is maybe we can develop it also.
SwissTorExit: Turkey. And you?
dr|z3d
ilter: Directory servers are currently hand picked based on trust and prior acquaintance.. there isn't an officially written up policy for selecting those afaik.
SwissTorExit
Switzerland :D
hi dr|z3d :D
dr|z3d
Hello there SwissTorExit!
ilter
Neeraj: It means that you need to read so much. :) They should be reference numbers of the other paper, sources etc. which your paper references.
Neeraj
oh
shahn
ilter: we would contact you if we thought you should run an authority. There are no clear rules.
ilter
dr|z3d: Thanks for your reply.
SwissTorExit
morning seb :D
jobe-
shahn
ilter: you need to run @
dr|z3d
Oh, chrome spam.. that's a new one.
*chromium
shahn
a fast relay, it needs to be very stable. you need to be very available
you must have roger's trust.
ilter
shahn: Sorry now i need to go for a job, i'll be here in one hour.
zdfak
hello
circID is a 16bit number right?
ln5
zdfak: yes
zdfak: see tor/doc/spec/tor-spec.txt
zdfak
thank you ln5
Zax
Hmm, since I last built Tor it's gained a dependency on asciidoc. On Debian that has 600MB of knock-on dependencies.
Ah, --disable-asciidoc
D1ggl3r
Hi, is hidden service key fixed at 1024 bit?
ilter
Hello again.
shahn: Hello. But in that way how can the other people who use tor trust me?
dr|z3d
ilter: Hang around the channel, be useful, attend meets..
And go buy Roger a beer any time you see him. :)
ilter
:)
dr|z3d
Seriously, though.. see if there's something you can contribute to, project-wise.. documentation, bug triage.. the more involved and visible you are, the more trust you're likely to get.
ilter
dr|z3d: I don't want to be an directory authority server for now. Beacuse also i don't have a stable server at this time. Maybe later. I asked this issue because i'm trying to learn tor in detail. I asked a document because maybe we can find some vulnerables on it and we can develop it as the other tecnical issues.
shahn
ilter: ultimately they have to trust the tor project to choose more than half of the operators wisely.
D1ggl3r
Any developer to answer my question? I should be in the FAQ, I think. I would generate a bigger key manually to check, but the base-36 hostname generation thing is not well-documented either!
I/It
shahn
yes, the size is fixed.
D1ggl3r
shahn, are youa developer?
shahn
i think so
D1ggl3r
Ok, please note my request to add this to the FAQ, and the base-36 thing as well (which part of the key is checksummed, how, etc.)
Also, do you know why is it fixed?
shahn
feel free to edit the faq in the wiki.
i don't know why exactly it is fixed
D1ggl3r
Didn't know it's editable by anyone - but I can't add the base36 stuff.
shahn
file a bugreport to remind us that rend-spec sucks.
D1ggl3r
Ok... It seems silly to add another encryption layer if the hidden service key size is not sufficient.
ilter
shahn: Yes you're right they already must trust half of the seven authorities. And i remember a news which is about some directory authorities were hacked. Do you remember it?
shahn
yes of course
ilter
Do you remember this news' web site?
misc
i think you can find it on the tor official blog
as developers belive in the virtue of transparency , they spoke of it : https://blog.torproject.org/blog/tor-02122-released
ilter
Thanks misc i'm looking it.
kose
OK could anyone please help me? I am having some major problems with tor.
Tor*
ln5
kose: describing your problem will increase the chance of someone helping you
kose
ok
i keep getting this 502 error
pipe
where do you get that?
in the browser, tor logs?
kose
in the Tor browser window
pipe
I know too little to help you, I'm just trying to make things as clear as possible :)
ln5
kose: that's "bad gateway". is your polipo or privoxy running?
kose
it says "Disconnected operation and object not in cache"
polipo is running
ln5
kose: do you happen to be on ubuntu?
kose
yes
ln5
what version of polipo are you using?
kose
how do you find that out?
ln5
kose: i was guessing based on http://www.mail-archive.com/polipo-users@lists.sourceforge.net/msg00572.html
but it's a long shot so i didn't want to point you in that direction before i knew more. but now you're there, so check it out.
also, ubuntu isn't extremely rare these days ;-)
kose
why did you say that?
so I'm assuming from that article that I should install polipo directly from their site, is that correct?
katoda
sjmurdoch: ping
ln5
kose: why did i say what?
pipe
you typoed /ping sjmurdoch
kose
this: <ln5> also, ubuntu isn't extremely rare these days ;-)
ln5
kose: well, i could also have said "are you wearing jeans?"
pipe
Ubuntu *isn't* rare, it's probably the most used linux distribution
So most people that have a problem with linux, will use Ubuntu
katoda
pipe: according to distrowatch.com, Ubuntu is the most used linux distro
kose
thanks for the help
ln5
i was trying to tell you that guessing that you were using ubuntu is probably fairly easy without knowing anything about you at all
kose
oh
brb
ln5
kose: regarding polipo, if you're running the ubuntu package mentioned in the link, yes go ahead and install a newer one and see if it helps
pipe
katoda: eww... that was an ugly website :)
kose
ok
pipe
Hm, looks like the bandwidth limiter in Tor works well
kose
pipe ln5 I checked the polipo website. It tells you to get polipo from the ubuntu repositories.
« prev 1 2 next »