logs archiveIRC Archive / Oftc / #tor / 2010 / March / 6 / 1
nsa
or: Nick Mathewson <nickm@torproject.org>: 2010-03-05 22:00:13 [tor/master]: Clarify that CRLF means "A CR then an LF". Explain what those are.
outofwords
now need absolutely new get_next_token() implementation. hacks for it don't works anymore.
SwissTorExit
wow, the last's recents git version need some more library to can be build :D
Sebastian_
SwissTorExit: only for the manpage. Feel free to append --disable-asciidoc to the configure script to build without it.
SwissTorExit
hello Sebastian , no problem, i have install it and it have need another one related ascii, but it's ok and work fine, i have build it with new libevent 2.0.4 alpha :D
actually i have less traffic as always while i have delete all files from my old relay and create one with almost same name of my old exit
Sebastian_
The name doesn't matter, you lost your state file and Tor will start out slow again.
SwissTorExit
yeah, the problem i have taked from oen of my server and it wouldn't be named after 6 months, so i just started like new user, i am not worrie, it will need time to be know
yesterday it was impossible to build it with new libevent, it hang on on a libevent file but today with both update , all work fine
:P
atagar_work
nickm: thanks - those actually puzzled me at one point (though in retrospect they seem obvious)
nickm
outofwords: I think that if we want to do a minimal backport to 0.2.1 for possible security issues, the changes you made in v3 of your patch are enough.
         

outofwords
it allows doubles \n any \r any \t and spaces.
nickm
Does that have security implications?
outofwords
no I can't find, only one is distinguish clients by implemenations.
Sebastian_
it would allow version fingerprinting if 0.2.1.x and 0.2.2.x behave differently (might be a security issue if we have an exploitable bug that's only in one of those?)
nickm
atagar_work: There is an old MIT story where a professor is giving a lecture and says, "... and so it is intuitively obvious that [some equation]." Then he stops for a moment and mutters, "hang on for a moment!"
He gets out some paper and spends the next 15 minutes checking his derivation while the class looks on in uncomfortable silence.
Sebastian_
I can see how this ends ;)
nickm
Then, with a look of relief, he says, "Yes! Never mind, it _was_ intuitively obvious" and continues with the lecture
In fact, if all we want to do with 0.2.1 is fix the security issues then I think we can just leave get_next_token alone there, and only make the change to router_get_hashes_impl and related functions?
outofwords, Sebastian_: revised revised spec: http://paste.debian.net/62670/
outofwords
hm, signature can't be broken. any inserted in between keywordaboutsignature and that char is detectable.
Non-breaking space 0xA0 non ascii space? (for clear)
Sebastian_
so a + means "zero or one or more occurences" or does it mean "one or more occurences"?
I guess it means one or more?
outofwords
T1N :)
Sebastian_
(I'm just thinking that if we're going to be pedantic, then [arguments] should become [ WS argument ]* or something)
also " Unless otherwise, the digest algorithm is SHA-1." makes me smile
outofwords
why?
arma
"A or !A" is a perfectly valid statement for the spec. ;)
Sebastian_
outofwords: that sounds like "all children are blue, except when they're not" which doesn't help you when you try to determine what clothes to buy for them
Manny
Question: If vidalia loses it's connection to tor, how do you reestablish it?
outofwords
ah crash is about security?
nice catch, nickm. me too sloooow :)
nickm
+ means "one or more"
The "unless otherwise" should be "unless otherwise specified"
Sebastian_
yup
(meaning "makes sense")
arma
manny: depends how it loses the connection. often vidalia loses its connection to tor because tor died.
nickm
(err, what's the nice catch?)
         

Manny
in my case, no
outofwords
crash bug related.
Manny
it requires some kind of password
nickm
I didn't notice a crash bug. :p
Manny
to reconnect
outofwords
hmm, ok it's something another. will see changlog :)
nickm
Manny: does https://wiki.torproject.org/noreply/TheOnionRouter/TorFAQ#TorPasswordPrompt help?
outofwords: I think you think I know something you don't. Really, I think you know something _I_ don't. :)
Manny
not really
Sebastian_
Manny: Do you have any idea how you lost the connection?
Manny
vidalia crashed
i mean restarting tor would work but typically i have other things using tor at the time
arma
manny: then you need to kill tor, and have vidalia launch a new tor, if you want vidalia to be able to connect to it. the faq says this too.
if you can make vidalia crash reliably, and you're using the latest vidalia, please tell us how.
Manny
and for prrivacy purposes, that' not cool
better to just live without vidalia until reboot
arma
even better to report the bug
(*my* vidalia doesn't crash...:)
Manny
consider this me reporting the bug
arma
manny: no, a bug report gives us hints about what the bug is.
see e.g. https://wiki.torproject.org/noreply/TheOnionRouter/TorFAQ#ReportBug
(that's about tor, not vidalia, but most of the ideas carry over)
Manny
if you run tor as a service, how do you get Vidalia to connect to it?
arma
manny: set a password for your tor and vidalia to know
Manny
can i do that even if i use vidalia to run tor?
arma
if you run tor as a service, you aren't using vidalia to run tor
if by service you mean nt service
Manny
yes i know
and now i'm talking about another option
running it via vidalia
can u also set a password manually using that method?
arma
yes
go into the 'advanced' setting in vidalia's settings
Manny
k
thx
arma
so, about these vidalia crashes. can you make them happen?
what version of vidalia are you on?
Manny
no they arent typical
if i notice a pattern, i'll let you know
IIRC you need an acct to report bugs and I hate creating accts
Sebastian
I've been known to report bugs for people who presented their bug nicely. Also the Vidalia bugtracker doesn't require you to create an account.
That has the disadvantage of you losing track of the bug, of course.
nickm: I think that's all my comments on dir-spec and you patch for now.
katmagic
There needs to be a unified bug reporting system...
Sebastian
Vidalia and Tor are intentionally seperate. This has become less and less so, but they're still two distinct projects.
outofwords
need to write code for space, as for nl.
"hex value" I mean
nickm
ah, sure.
arma
katmagic: we have been thinking of moving tor from flyspray to trac. but nobody has time to do it.
n8fr8
arma how about http://redmine.org - it is my current favorite.
Sebastian
n8fr8: I think weasel has a flyspray to trac converter already (almost? completely) written
nsa
or: ioerror committed revision 21817 (/projects/android/trunk/Orbot): Update strings to reflect proper urls, better phrasing
Meliboeus
how do translations from pootle go into the code?
nsa
or: ioerror committed revision 21818 (/projects/android/trunk/Orbot): Add prefs for relay and fascist firewalling
or: Adds the following prefs:
or: PREF_RELAY (default false)
or: PREF_RELAY_PORT (default 9001)
or: PREF_FASCIST_FIREWALL (default false)
or: ioerror committed revision 21819 (/projects/android/trunk/Orbot/src/org/torproject/android): PREF_OR rather than PREF_RELAY
or: ioerror committed revision 21820 (/projects/android/trunk/Orbot/res/xml): pref_or rather than pref_relay
Fandekasp
hi
I was trying to connect to my favourite channel irc using X-Chat aqua (mac) and tor ... I didn't connect to my channels, but ended here O_O
Sebastian
Well, you're using Tor. It might be that your favorite channel blocks Tor, and oftc implemented a redirect? Just guessing, though.
Fandekasp
I've put proxy server:localhost / Proxy port:9050 / Proxy type : socks5 in my x-chat aqua, and it should work because I'm writing to you
ooh ok
so all of my 12 channels block tor O_O quite bad
Sebastian
well, what happens when you type /join #favoritechannel
or in fact, /join #randomchannelIjustmadeup
Fandekasp
http://paste.pocoo.org/show/186147/ It works, but I'm in oftc.net, and I'd like to go on other servers.. I'll try to conenct
Sebastian
well, erm, you need to connect to that other network, then
nsa
or: ioerror committed revision 21821 (/projects/android/trunk/Orbot/res/xml): add pref_or_nickname
or: ioerror committed revision 21822 (/projects/android/trunk/Orbot/src/org/torproject/android): Add PREF_OR_NICKNAME
or: ioerror committed revision 21823 (/projects/android/trunk/Orbot/src/org/torproject/android): Add an option for Relay support to Orbot!
n8fr8_
ioerror_sfo: is bustin a move on orbot
nsa
or: ioerror committed revision 21824 (/projects/android/trunk/Orbot/res/xml): remove dupe, reorder key
ioerror_sfo
If you want it baby you've got it (repeat)
Just bust a move
nsa
or: ioerror committed revision 21825 (/projects/android/trunk/Orbot/src/org/torproject/android): Add FascistFirewall preference
nickm
armadev, Sebastian, outofwords(who isn't here): See branch dir-spec in my public
arma: see above.
Sebastian
seeing
hm, I see only one commit
which is the spec patch
did you not push, or am I doing something wrong
looks like gitweb agrees with me
nickm: ^^
nickm
that is the spec commit
that's all there is in that branch. :)
Sebastian
heh. sorry. I thought the two commits you talked about in #tor-dev should be in there
guess I was wrong :)
ah yes, the EndLine and BeginLine clarifications are good
ok, I won't repeat my nitpicking ;) I think that branch is good, yes.
Manny
can one use tor to proxy ssh using only cmd line args or do you have to play with ssh_config?
katmagic
ssh -O
Err...
ssh -o
Manny
yeah, but I need more than that
with proxycommand, yeah
subbie3
are there any webpages on tor which dont suck?
katmagic
-o option: Can be used to give options in the format used in the configuration file. This is useful for specifying options for which there is no separate command-line flag.
Do you mean hidden services?
Manny
no
but for example, what host do you specify if you use ProxyCommand? localhost?
katmagic
ssh -o ProxyCommand 'socat - SOCKS4A:127.0.0.1:%h:%p,socksport=9050'
I think.
That's just off the top of my head, though.
Manny
and what host would you specify?
localhost or the real host?
katmagic
The real host.
You could do 'socat TCP4-LISTEN:1337 SOCKS4A:127.0.0.1:remote.host:22,socksport=9050 &'
And then `ssh localhost:1337`
But that would be needlessly complex.
And it wouldn't work too well with your public key cache.
Manny
i'm just worried about dns leakage
katmagic
SOCKS4a doesn't leak DNS.
Manny
i dont know that your suggested method uses socks before doing other stuff
but it seems to based on my use of netstat
to check
arma
xtoaster here?
xtoaster
yep?
ioerror_sfo
katmagic: i do:
Host *.onion
ProxyCommand socat STDIO SOCKS4A:localhost:%h:%p,socksport=9050
in my .ssh/config
katmagic
You leak DNS with that?
arma
Meliboeus: it depends which project is translated. generally, when we do a new version of vidalia, torbutton, etc we pull the latest translations.
xtoaster: do you know somebody who runs ubuntu or debian or something? i would like to do a scan of bridge addresses to see which ones are blocked. i think most are, as of yesterday.
katmagic
(Action) is running Ubuntu.
arma
a) i want somebody xtoaster trusts personally, and b) needs to be in china
katmagic
Ah.
(Action) is not in China.
xtoaster
hm. but none of my friends are linux geek though :-/
Manny
I am siamese if you please
xtoaster
i can install ubuntu. but i asssure you i dont know much about the commands :)
Manny
I am siamese if you dont please
ioerror_sfo
kaner: how do you figure?
katmagic: how do you figure?
katmagic
(10:35:25 PM) ioerror_sfo: katmagic: i do:
I thought that meant you leak DNS.
Manny
Would "ssh -o ProxyCommand 'socat - SOCKS4A:127.0.0.1:%h:%p,socksport=9050' hosttosshto.com" leak dns?
ioerror_sfo
katmagic: i meant that 'i do the following'
katmagic
Ah.
Manny: I'm 90% sure it doesn't.
Manny
ok
katmagic
Fire up Wireshark and see.
Err... Whatever it's called now.
Manny
katmagic: i could find out by disabling my dns server and letting it rip i suppose
katmagic
echo '127.0.0.1 gibraltar' | sudo tee -a /etc/hosts
Errr.
Nevermind.
I typed before I thought.
Manny
would podcasting over tor be considered equivalent to doing torrenting over tor?
katmagic
Not unless you download excessively.
arma
probably, yes. depends how many people are listening to it, and how important it is that it be safe.
people in iran uploading audio over tor is great. uploading video is even ok.
people in idaho downloading madonna over tor, not so much
katmagic
Torrents are like 10GB of traffic. Downloading a podcast is like 15MB.
Manny
like if you torified a real podcasting client and set it to suck several different podcasts
katmagic
Even if both are bad, they're not the same. :-P
« prev 1 2 3 next »