logs archiveIRC Archive / Oftc / #tor / 2010 / April / 10 / 1
katmagic
Hi.
_pg_
does anyone have any other recommended tools besides tor for staying anyonomous/secure (not that they're the same thing, but rather in the same vein.) Preferably for nix or osx.
currently using just tor, torbutton, and peer guardian
dmb
is there something wrong with the tor network, I get stuck at 10%
BarkerJr
Sebastian/arma/data: I'm running centos 5.4
Sebastian
BarkerJr: hah!
the plot thickens
_pg_
any other good stealth tools? lol
BarkerJr
I see my coast2 server didn't come back after reboot, either
Sebastian
dmb: what is your OS and Tor version, what messages are you getting
BarkerJr
karsten said it did, but I don't see it on torstatus
         

dmb
linux, 0.2.1.25, ubuntu package
Apr 09 17:21:06.605 [warn] Problem bootstrapping. Stuck at 10%: Finishing handshake with directory server. (DONE; DONE; count 22; recommendation warn))
its worked before
Sebastian
running Vidalia?
dmb
no
BarkerJr
there's the note about the update to openssl on march 27: http://lists.centos.org/pipermail/centos-announce/2010-March/016593.html
dmb
Sebastian: is this a known problem, maybe related to the ssl upgrade?
Sebastian
hm
it should work on Ubuntu
BarkerJr
not the same symptoms, either
Sebastian
right, otherwise there'd be something about renegotiation in the logs
dmb
i'll see what happens on my other machine
on my other computer
i get
Apr 09 18:12:12.603 [warn] Problem bootstrapping. Stuck at 72%: Loading relay descriptors. (DONE; DONE; count 20; recommendation warn))
nsa
or: [torbutton/master] 2010-03-17 00:05:19 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1283 - Disable JS event handlers on toggle.
or: [torbutton/master] 2010-03-18 01:12:02 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1032 - Apply mystery patch from anonymous commenter.
or: [torbutton/master] 2010-03-18 04:25:43 Mike Perry <mikeperry-git@fscked.org>: Bug 1033 - Update Torbutton only over Tor.
or: [torbutton/master] 2010-03-18 01:08:05 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1157 - Properly handle torbutton state conflicts.
or: [torbutton/master] 2010-03-18 04:48:20 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1055 - Make error console the default log output.
or: [torbutton/master] 2010-03-30 00:28:52 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1302: Update useragent to FF3.6.2 on NT6.1.
or: [torbutton/master] 2010-04-04 10:35:19 Mike Perry <mikeperry-git@fscked.org>: Forgot to properly scope a variable for query redirect.
or: [torbutton/master] 2010-04-03 12:40:33 Mike Perry <mikeperry-git@fscked.org>: Fix two google search redirect issues.
or: [torbutton/master] 2010-04-07 22:34:07 Mike Perry <mikeperry-git@fscked.org>: Update translation strings for search option text.
or: [torbutton/master] 2010-03-31 09:52:02 Mike Perry <mikeperry-git@fscked.org>: Add pref UI for google search box fix.
or: [torbutton/master] 2010-03-30 01:21:59 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1235: Improve torbutton changed-state message.
or: [torbutton/master] 2010-04-03 13:15:10 Mike Perry <mikeperry-git@fscked.org>: Bump FF version to 3.6.3.
or: [torbutton/master] 2010-04-06 23:25:52 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1321: Killing FF via the window close button ruins startup state.
or: [torbutton/master] 2010-03-30 09:52:32 Mike Perry <mikeperry-git@fscked.org>: Add UI for Google query redirect.
or: [torbutton/master] 2010-03-31 12:57:11 Mike Perry <mikeperry-git@fscked.org>: Woops, we did the regex wrong for the query.
or: [torbutton/master] 2010-04-04 01:21:28 Mike Perry <mikeperry-git@fscked.org>: Lie about our window size even if we didn't get a chance to round it.
or: [torbutton/master] 2010-04-07 22:23:13 Mike Perry <mikeperry-git@fscked.org>: Clarify the search option a bit.
or: [torbutton/master] 2010-04-03 13:14:50 Mike Perry <mikeperry-git@fscked.org>: Alter redir fix slighlty.
or: [torbutton/master] 2010-04-06 23:52:47 Mike Perry <mikeperry-git@fscked.org>: Improve message about external content.
or: [torbutton/master] 2010-04-07 23:29:17 Mike Perry <mikeperry-git@fscked.org>: Add changelog.
or: [torbutton/master] 2010-04-06 10:58:56 Mike Perry <mikeperry-git@fscked.org>: Regression on CoolPreviews fix.
or: [torbutton/master] 2010-03-18 21:56:10 Mike Perry <mikeperry-git@fscked.org>: Bug 1246 - Fix IST timezone issue.
or: [torbutton/master] 2010-03-31 09:21:35 Mike Perry <mikeperry-git@fscked.org>: Strip identifying info off Google searchbox queries.
or: [torbutton/master] 2010-03-30 09:23:13 Mike Perry <mikeperry-git@fscked.org>: Redirect Google queries to competitors' search engines.
or: [torbutton/master] 2010-03-18 11:48:42 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1169 - Popup conflict with CoolPreviews 3.0.1
or: [torbutton/master] 2010-03-22 23:42:34 Mike Perry <mikeperry-git@fscked.org>: Bug 1283: Disable the fix. Too much collateral damage..
or: [torbutton/master] 2010-03-31 11:32:11 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1337: Bind alerts to correct window.
or: [torbutton/master] 2010-03-30 01:25:54 Mike Perry <mikeperry-git@fscked.org>: Fix bug 1219: Fix the toggle warning loop.
or: [torbutton/master] 2010-03-24 10:50:56 Mike Perry <mikeperry-git@fscked.org>: Add option to always update Torbutton via Tor.
or: [torbutton/master] 2010-04-07 09:30:43 Mike Perry <mikeperry-git@fscked.org>: Update translations with new strings from pootle and the en template.
helix
goodness
_pg_
best security/stealth/paranoid distro? anyone
Sebastian
_pg_: that's a snakeoil question
_pg_
Sebastian: alas, I am unlearned! what is that?
Sebastian
_pg_
hmmm
so im selling something underhandedly?
Sebastian
I'm saying there is no "most secure" distribution. You can never know where the next problem is found, and who finds it, and how much your attacker knows.
if you want to discuss this more, #nottor is a better place.
_pg_
right-o
nsa
or: mikeperry committed revision 22161 (/website/trunk/include): Update torbutton version and hash.
or: mikeperry committed revision 22162 (/website/trunk/torbutton/en): Update the torbutton source url.
mikeperry
so much hate on the torbutton reviews page
on a.m.o
         

dmb
mikeperry: thats because only idiots post comments
the ones that are not having problems, or like it usually don't post at all
kmacy_
phobos: ping
OS X upgrade doesn't to work at all
nsa
or: erinn committed revision 22163 (/torbrowser/trunk/build-scripts): add first pass at OS X makefile
phobos
kmacy_: parse error
BarkerJr
data: yum downgrade openssl openssl-devel
reakw0n
Heh.HehHehHehHehhHehHeh
arma
barkerjr: does switching back to the older openssl help?
reakw0n
(Action) removes tunic and thong
BarkerJr
yep
both relays are online again
kmacy
phobos: I had vidalia installed
phobos: I tried installing a newer version
phobos: tor didn't work
phobos: I then deleted the old vidalia and tor
phobos: folders under Library
phobos: I tried installing the new vidalia again
phobos: it doesn't install tor now
so
wondering how to proceed
arma
https://www.torproject.org/faq#HowUninstallTor
barkerjr: hm. that is both good and bad, then. it means we need yet another fu*king openssl fix. :)
nsa
or: [torbutton/maint-1.2] 2010-04-10 03:56:05 Mike Perry <mikeperry-git@fscked.org>: Update rebuilt design doc.
or: [torbutton/maint-1.2] 2010-04-10 03:52:42 Mike Perry <mikeperry-git@fscked.org>: Update Torbutton design doc for 1.2.5
kmacy
arma: thanks
xtoaster
arma: did you see the china ripple ;) http://bgpmon.net/blog/?p=282
arma
xtoaster: fun
nsa
or: mikeperry committed revision 22164 (/website/trunk/torbutton/en):
or: Update links from svn to git.tp.o. gitweb is too clunkty to
or: link to atm.
or: mikeperry committed revision 22165 (/website/trunk/torbutton/design):
or: Update design doc for 1.2.5.
or: [torbutton/master] 2010-04-10 03:52:42 Mike Perry <mikeperry-git@fscked.org>: Update Torbutton design doc for 1.2.5
or: [torbutton/master] 2010-04-10 03:56:05 Mike Perry <mikeperry-git@fscked.org>: Update rebuilt design doc.
zhxk
send me a tor for chrome, if you?
send me a tor for chrome on windows, if you?
xtoaster
zhxk: what do you need exactly?
zhxk
tor for google chrome on windows
i need the binary
xtoaster
there is no tor package configed for chrome
why not just set proxy port to 8118/privoxy in chrome ?
zhxk
can i ?
so give me a tor and its buddle for windows first
what email should i send to for it
to what email box should i send request for it
xtoaster
zhxk:send a email to gettor@torproject.org
zhxk
you kindy, xtoaster
xtoaster
:) np
arma
xtoaster: if you use chrome with tor, you'll be vulnerable to all sorts of privacy attacks.
if you don't care about those, ok. but then maybe you should be using freegate or something. :)
xtoaster
not me :) zhxk wants to
arma
zhxk: see above
xtoaster: i was mentioning it to you because it might be a better answer, in the future, than the one you gave
xtoaster
chrome has cleared its attitude on proxy : http://code.google.com/p/chromium/issues/detail?id=266
arma: ok , i will try to discourage them next time
zhxk
the buddle says "no route to host"
arma
zhxk: if you're using tor from inside china, you likely need a bridge address
bridges are tor relays that aren't as public, so they're harder for gfw to block
zhxk
does getbridge return diffrent bridges every request?
arma
zhxk: you can learn a few bridges by mailing bridges@torproject.org from your gmail account
no, it returns the same bridges (or sometimes doesn't answer at all if you've asked already)
zhxk
does it return the same bridges to everyone who asked about the same time?
if so, there is a risk that gfw will block the just returned ip soon
xtoaster
no its the same address for a group of mail address
zhxk
why a group of ?
xtoaster
each mail address is bind to a set of bridge to avoid enumerating
zhxk
the buddle is started up now, what port it accept for proxy?
arma
zhxk: localhost port 9050 is a socks proxy, and localhost port 8118 is an http proxy
zhxk: which bundle do you have? if you got the tor browser bundle, it will start its own firefox window.
zhxk
is it ok run torbutton without polipo?
tor budle,arma
xtoaster
zhxk: socks should be ok for firefox. if you set socks proxy setting correctly in firefox. polipo is used as a socks->http translator
arma
if you run without polipo, you won't have an http proxy. you'll only have a socks proxy.
zhxk
isnt socks proxy enough?
TJ
im not in consensus but im in the statu directory now.
i change from 0.9.8e-12.el5_4.1 to 0.9.8e-12.el5_4.6
openssl
zhxk
with tor is with ssl, isnt?
with tor is with ssl, isnt it?
TJ
come again?
zhxk
answer me, ifyou?
arma
tj: ah. meaning dizum is voting Running for you?
if so, you will probably be in the next consensus. they're made once per hour.
TJ
im in consensus now also :)
strangely i thought its openssl 1.0.0 and tor have issues but as you can see i never have 1.0.0 but still i encouter the same problem.
by the way, what's their OS?
arma
tj: i think centos backported stuff from openssl 1.0.0.
tj: what is whose OS?
TJ
and having 'tor.xx.com' as rdns will be easily subjected to blocks? or it's not that irrelevant?
it seems another Centos based node encoutered the same probem and just downgrade its openssl. according to the mailinslist.
nsa
or: kaner committed revision 22166 (/projects/gettor/lib/gettor): Versions in packdir are bad, don't use them
lins
hello
Hidden services are not requred to be run only on the same machine running tor, right? So how to make the service only available to tor network and not to the clearnet?
Sebastian_
if you want to make your hidden service availble via Tor only, it has to be run on the same machine
(or you need to set up an ssh tunnel or similar)
lins
is there any other way?
ok. but then the tor users can access the service only from one tor client, node
or I am wrong.ssh tunnel could be a solution.Would you give me more info about the setup?
Sebastian_
I'm not sure I understand what you're talking about.
setup? Well, Tor client on machine a, service on machine b
ssh tunnel from a to b
lins
and then how to define the hidden service.
ssh tunnel needs port forwarding a guess
Sebastian_
HiddenServiceDir /some/directory
HiddenServicePort <port> localhost:<tunnelport>
lins
ok. pc1 runing tor adress a.a.a.a , pc2 running service b.b.b.b:40 .Ok that would work.would you please give me the ssh tunneling command example according to the given info?
I need to tunnel b.b.b.b:40 to the local port on pc1 and then use the same port in hidenserviceport 6667 127.0.0.1:sshtunelport
is that right Sebastian_?
Sebastian_
well just use normal ssh port forward?
ssh -L <localport>:localhost:<remoteport> <username>@<host>
your ssh manpage or google will have more details
lins
ok.thank you
one other question.Could this can be acomplished by other means than ssh?
although the ssh is the easiest way
Sebastian_
I'm sure there are other ways
lins
ssltunnel?
Sebastian_
if that exists
lins
http://www.stunnel.org/ stunnel not ssltunnel
how to debug tor ? i get [warn] TLS error: unexpected close while renegotiating
intrigeri
lins: make sure you've got the last tor package for your distro, first, there has been a mess / conflicts between various openssl versions and tor releases.
lins
i got 0.25 tor version
ln5
/gaway bbl
lins
OpenSSL OpenSSL 0.9.8k
what would hapen if i try to run tor inside tor?
intrigeri
lins: what OS / distro?
lins: I don't understand "tor inside tor"
lins
FreeBSD 8.0-RELEASE amd64
intrigeri
can't help you then :/ search the or-talk ML archives for "freebsd", there has been some talk there about it a few weeks ago.
lins
tor inside tor means like you have tor running and then you build another one and try to connect using 127.0.0.1 9050
« prev 1 2 next »