logs archiveIRC Archive / Oftc / #tor / 2010 / April / 11 / 1
atagar
Sebastian: in catching up on the discussion yesterday you chimed in about geoip stats - the only thing that I'm aware of is the bridge GETINFO option - I can provide stats on the countries of the relays you're connected to but there isn't information at present to say "you're helping five users in country X" (even if you're a guard)
ie, I think you and ioerror were discussing different things at that point
reguardless, it's fairly unrelated to the connection proposal
Sebastian
Depends
maybe the proposal is focused too much on connections
atagar
the one thing it would make possible is distinguishing which connections are clients (or bridges) and hence provide stats on those (ie, less errors)
Sebastian
So I think one of the reasons why there isn't a geoip query for guards is that Tor doesn't yet have a way to say "you are a client" and "you are not a client"
(where geoip query means a control port command to expose geoip info about connecting clients)
with bridges, it is easier
atagar
yup, makes sense
BarkerJr
do guards know if a given connection is the first hop?
Sebastian
not reliably
BarkerJr
good :)
dmb
is there anything I can do to debug my issue?
i tried looking at the debug log
non of it makes any sense
         

Sebastian
remind me what your issue is
dmb
Sebastian: gets stuck at 10 percent while bootstraping
according to vidalia, it times out 'Establishing an encryped directory connection'
Sebastian
ah, right
dmb
i just compiled from source
same thing
Sebastian
are you on Linux?
dmb
yes
Sebastian
what does openssl s_client -connect 128.31.0.34:9101 give you?
dmb
CONNECTED(00000003)
Sebastian
hrm, that's bad
it should dump you a certificate
dmb
so maybe its openssl?
Sebastian
hrm
looks more like a network/blocking issue
let's try this:
openssl s_client -connect 78.47.18.111:80
dmb
its weird, i could of sworn it worked a couple weeks ago
so far I see nothing
i can't even ping that ip addr
Sebastian
erm
sorry
openssl s_client -connect 78.47.18.110:80
wrong ip ;)
dmb
same thing as above, CONNECTED(00000003)
Sebastian
openssl s_client -connect 78.47.18.109:443
dmb
that one outputed some stuff
Sebastian
interesting.
the last one is a normal apache
dmb
the last one outputed a cert
Sebastian
yeah
dmb
i guess that could be filtering then
not sure why a univ would filter
         

Sebastian
ah
some universities do that
but you said a bridge isn't working either?
hrm, back in a bit
dmb
the ones i tried no
Sebastian: yup, even tried doing that email thing, all bridges i used that command with all don't return a certificate
Sebastian
dmb: what about 92.194.124.160:6666 ?
dmb
nope
Sebastian
ok
dmb
i don't even see how its possible for them to block it that way
Sebastian
hm
dmb
this is just a small college
Sebastian
really sounds like a problem with your software, then. Please file a new bug. I don't know much about openssl internals etc, I won't be very useful in tracking this down any further.
Please provide all the info we have collected, I'll add in the missing pieces
dmb
ok ,i'll do that when I get back
nsa
or: atagar committed revision 22169 (/arm/trunk): Few issues discovered while testing on freebsd.
or: - fixed crashing error when failing to find event types
or: - noted connection querying problems for freebsd
or: - netstat lacks an equivilant for the -p flag, making it useless to arm
or: - ss belongs to a spreadsheet program instead (this had me a bit speachless)
atagar
unfortunately portinstall of lsof failed so wasn't able to test that (beyond that I'm out of ideas for bsd)
Sebastian
atagar: You might want to mail nickm with your proposal comments, he might not find them in backlog.
atagar
Sebastian: thanks, will do if he doesn't reply in a day or so
Sebastian
Sending him emails summons him to irc sometimes :)
you're too scared of bothering people
atagar
true
though he said he'd occasionally be around irc this weekend (well, actually he said that the baby meant he'd be here sparingly), but seems better to give the irc backlog at least a chance of being seen
Sebastian
do as you please :)
xtoaster
just curious, does tor have any ipv6-enabled authority?
arma
nope. well, actually yes, i think tor26 might be reachable via ipv6.
but we haven't taught clients how to get to ipv6 addresses yet.
xtoaster
hm , what will happend if i bind it to a ipv6 address ?
stuck ? :-)
arma
feel free to try
you get to keep both pieces :)
xtoaster
any address to start with ?
arma
no clue. i might be wrong about tor26 having an ipv6 address, too.
xtoaster
google returns this : dirserver tor26 v1 orport=443 86.59.21.38:80 847B 1F85 0344
hm. does all authority use ip directly ? if so it looks impossible for me to figure out their ipv6 addr
arma
yep. unless you use the ipv6 addr that is equivalent to their ipv4 addr.
Rolaulten
Good evening, I was wondering if anyone could point out a few ideas as to why I can access the tor network when I load Tor and Privoxcy from a CLI, but not when I use Vidalia?
arma
what OS?
Rolaulten
ubuntu
everything is installed from the repositories
xtoaster
so which one is in the way, privoxy or tor ?
Rolaulten
em - I'm just following the guide on the ubuntu wiki, and it says to load both of them up?
xtoaster
i would first check if they are all running when vidalia launched them.
Rolaulten
yea, that was my first guess, and no, they are not
xtoaster
ok. so vidalia starts them and then both quit ?
Rolaulten
best I can tell, vidalia starts OK, no error messages, but when I switch firefox over, I get a load error
however, if I cut VIdalia out of the loop, and start/stop everything from commandline it works just fine
xtoaster
hm. did you try "top" after starting tor in vidalia to see if tor is running?
Rolaulten
No need, I can see it pop up on my conky display, its on and running
xtoaster
ah good so tor is running
vidalia starts tor correctly. but you cant surf through tor
Rolaulten
bingo
xtoaster
then maybe its privoxy to blame
what is the proxy setting in firefox? you can try tor's socks proxy at port 9050
if tor is running that port should work.
Rolaulten
I use torbutton for firefox - so forgive me - how do I find the socks proxy...is that in /etc/ or firefox's settings?
xtoaster
its in torbutton's configuration window
arma
rolaulten: the ubuntu wiki tells you lies about tor
use the documentation on the tor website
are you using the vidalia deb from deb.torproject.org?
Rolaulten
let me check were it came from, and yes, the socks proxy is automated (the recommended settings)
Yep, it came from deb.torproject.org
arma
ok. if you follow the directions on tor's website, i think you'll be in better shape
another option is to just use the tor and polipo you have, and be happy. you don't need vidalia.
Rolaulten
kk
arma
most people on linux use tor without vidalia
Rolaulten
its mostly because I need to keep things 'simple', non geeks use this computer and want tor
in otherwords, the command line scares them...and they dont have the sudo password
arma
ok. then apt-get remove privoxy, apt-get install polipo, pull down our sample config file for polipo and put it into place, restart polipo, apt-get install tor, apt-get install vidalia and tell it to disable tor starting on boot. then run vidalia.
Rolaulten
kk - thanks
xtoaster
arma, do you remember the privoxy add-on, maybe it would be easier for user, if polipo is compiled into a dll/so loaded by the controller/tor automatically
Rolaulten
Ok, thats working, thanks once more
arma
i haven't investigated whether "prifoxy" is spyware or what. it seems unwise to recommend it until somebody has looked more carefully.
xtoaster: there, i mailed or-talk about it
xtoaster
oh i am not promoting about prifoxy. just its idea. if it can compile privoxy into a dll and load it. maybe tor/controller can do the same
the good thing is. the lib must load/unload with tor/controller, under good control :)
atagar
svn repo is empty of any source code... why would this be on google code if it's not open sourced?
katmagic
I know.
It shouldn't be.
(Action) tried to check it out several days ago.
There's a source release, though.
atagar
katmagic: thanks
katmagic
http://prifoxy.googlecode.com/files/privoxy_3_0_10_src.zip
atagar
weird, didn't even change the internal name from privoxy
arma
maybe that *is* the privoxy source
and prifoxy just puts the privoxy source up because of gpl
atagar
about to run a diff (if so, it's *very* outdated)
as in two years out of date
katmagic
lol
Oh. That was the Privoxy source.
xtoaster
dont know how it compile privoy in to a dll. maybe there are comments in the js source.maybe we can unzip it and have a look :)
gotta run . see you ppl
atagar
hmmm... not easily diffable (md5 says not a carbon copy and contents differ slightly: + config.h, - w32res.h, - w32taskbar.c/h)
oh well (if I was using windows wouldn't touch it personally)
katmagic
The XPI is just a ZIP with the source, but the source has a DLL in it.
Is there a way to read a whole thread on or-talk without clicking through each individual message?
TJ
what happened to dizum dir?
(Action) ?
(Action) arma you guys took it down?
Neeraj
atagar: did you read my comment
do you want any more explanation?
katmagic
What comment?
Neeraj
comment on the proposal of improving resistance katmagic
hi katmagic
are you one of the developers or a student?
katmagic
Hi.
(Action) is just a person in a chat room.
Where's your comment at?
Neeraj
k
atagar: sorry for the late reply, i just saw the comments yesterday only and replied as soon as possible
its ignorance on my part
at the proposal
katmagic
Where is the proposal?
Neeraj
at gsoc
katmagic: do you have the administrative rights for seeing the proposals submitted at gsoc??
katmagic
Only if they're accessible to the general public.
Neeraj
and how to make them accessible to general public
atagar
Neeraj: yup, I saw it
Neeraj
ok
anything else required?
sorry for being late
to reply
i did not saw your comments till yesterday
may be because of my ignorance or because students were not able to see comments before 9th April
atagar
it was there before - on first glance it seemed fine
Neeraj
ok
its my mistake then
atagar
not a problem (we can look at the comment just as easily as the app)
Neeraj
k
Runa
Neeraj: katmagic is not a mentor
Neeraj
ok Runa
TJ
what happend to dizum dir?
Sebastian_
TJ: very good question
uSuRa: hey, any idea what's up with dizum?
ilter
Hello everyone. Is there any command on TorCtl which using to remove an entry guard?
mikeperry: ping?
SwissTorExit
btw, i have a question about the old requested features for vidalia about muti cores ? i see vidalia used 100 % of ressource in one core too many times and i am curious to see if we can worked on multithreads, if that fix this problem
oups wrong chan
TJ
im trying other rpm versions but most are not signed :(
and i can't install it.
helix
TJ: what problem are you having?
TJ
most probably the tor opessl bug thing
helix
ah yes, I am reading the bug now
TJ
theres a suggestion there of using other tor ver but i cant install as it said it's not signed :(
wondering where do they get their versions? im getting it here.. http://archive.torproject.org/tor-package-archive/rpm/
helix
which one isn't signed? which one are you trying to use?
and which version of centos are you using?
« prev 1 2 next »