logs archiveIRC Archive / Oftc / #tor / 2010 / April / 5 / 1
nsa
or: phobos committed revision 22116 (/torbrowser/trunk): bump to 1.3.4
or: phobos committed revision 22117 (/torbrowser/tags): Tag torbrowser 1.3.4
or: phobos committed revision 22118 (/torbrowser/trunk): bump trunk to 1.3.5-dev
BarkerJr
how bad is it for my relay to be off by an hour?
arma
barkerjr: it means tor clients will be confused because their vidalia will bi**h at them that their clock is wrong. if you need your clock to be wrong, set your dirport to 0
nsa
or: kaner committed revision 22119 (/projects/gettor): Add Linux Browser Bundle to GetTor
BarkerJr
but in the short term (while my ISP looks into it), wouldn't it hurt more to set dirport to 0 than to give clients a warning? they'd get a 404 warning in their logs instead
Sebastian_
yeah, the 404 is not so bad, though
because when the time is wrong, Vidalia actually makes a popup to tell the user
or rather, no
they wouldn't even get a 404
because a 404 means you could at least connect to the port
BarkerJr
right, and I have my dirport shared with apache
Sebastian_
ah
still
;)
costre
the bridge traffic is increasing ... closing up on 1.5 MB / hour
:D
         

Sebastian_
heh.
BarkerJr
well, anyway, setting dirport to 0 is a bad idea in this situation I think, cause of limitations in tor that wouldn't let me open it again later once the clock is fixed
Sebastian_
limitations in Tor?
BarkerJr
right, it can't bind to ports < 1024
on hup
Sebastian_
right
well, you can restart it
or you could - since you're using apache sharing - use a higher port, no?
BarkerJr
restarting tor penalizes it for a few days
yeah, I am actually using a higher port... good catch :)
Sebastian_
aha
:)
(or you could delay re-enabling the dirport until you next update Tor)
BarkerJr
I restarted my relay about 8 hours ago and it's been crawling along since then
Sebastian_
we should learn what's up with that.
Simply restarting your relay shouldn't mean at all that people stop connecting to you
nsa
or: kaner committed revision 22120 (/projects/gettor/lib/gettor): Be more consistent
or: kaner committed revision 22121 (/projects/gettor/lib/gettor): Add Linux Bundle to package expansion hack
SwissTorExit
that's strange to lost all your traffic BarkerJr, from recent devs versions of Tor, when i upgrade my client or restart it, i get directly or very quckly my traffic back and i don't lost my flags too, maybe you run a older version as me
Txt_file
I've installed tor on my vserver. the problem now is that tor uses to many connections so that my apache doesn't get enough. Is there a way to limit the number of connections?
dr|z3d
Txt_file: Set a lower ulimit.. really all one can do.
I'd like to say QoS could manage that, but I really have no idea, there.
Txt_file: Advertising less available bandwidth is also possibly a way to reduce connections..
Sebastian_
Txt_file: What are the errors you're getting from apache?
Usually Tor and apache run as different users, so they shouldn't conflict unless the hardware cannot handle the amount of connections or you are on a really constrained vm (or your kernel is ancient)
costre
Oh, the bandwidth used by Tor is getting pretty constant. It used to be sudden spikes, now it's steady at about 30 kB/s ... seems like a good sign
Txt_file
I don't get apache-error but my isp limits me to 450 TCP-sockets
Sebastian_
costre: awesome!
Txt_file: oh wow
you can't run a Tor relay then
but you can run a bridge
Txt_file
what's the difference?
Sebastian_
Tor relays have to open connections to all other relays, and that means you need at least ~2k tcp connections
Bridges only connect to relays if a client tells them to, so there's far fewer connections
bridges are unannounced Tor entry relays, and they're helpful to fight Tor being blocked
Txt_file
then I will switch from relay to bridge-mode
         

nsa
or: phobos committed revision 22122 (/website/trunk/include): release torbrowser 1.3.4
or: kaner committed revision 22123 (/projects/gettor/lib/gettor): Minor fix
niiinja
hmm check.torproject.org just accused me of not using tor, but the IP-adress it stated is definitely a Tor node.
amphibulus
hello
dr|z3d
niiinja: probably a fresh node that isn't yet in the directory.
amphibulus
i'm trying to setup a tor bridge
everything seems to run smoothlt, but i just checked the log and it says" apr 05 15:29:13.406 [Warning] Failed to open GEOIP file /Applications/Vidalia.app/share/tor/geoip. We've been configured to see which countries can access us as a bridge, and we need GEOIP information to tell which countries clients are in."
what should i do?
niiinja
dr|z3d, ah okay
amphibulus
(thanks in advance)
Sebastian_
niiinja: what is the ip?
niiinja: we're debugging some dnsel issues
niiinja
217.114.211.20
Sebastian_
thanks
niiinja
oh it's the tor.anonymizer.ccc.de one
definitely should be in the directory.
Sebastian_
exactly.
dr|z3d
Oh, well that isn't exactly a fresh node.. guess the dnsel is having some issues.
Sebastian_
:)
dr|z3d
Any idea what issues the dnsel is having, Sebastian_?
Sebastian_
unfortunately not yet
dr|z3d
Might be worth adding some to the check page for now, to indicate that the check may not be accurate.
*something/some text
It may pre-empt a whole bunchh of support queries and general angst on the part of the users.
mfo
Is any authority people here? Please help me and look if my relay is banned or something: 62.80.200.184 bertor
I have had problems the last days with my relay not routing any traffic but used to and log look normal...
Have tried different versions and setup.
I saw a clue in cached-consensus that ther might have been another router who had the same name "bertor" as mine but not anymore, can that have confused tor?
I also have cleared /var/lib/tor cache dir with no result.
And tried out the alpha version. I am using centos with binary rpm from torproject repo.
Sebastian_
relevant people here would be arma and karsten, I guess
arma is trying to sleep
karsten pretends to be a good christian
mfo
:)
ok
this is driving me nuts
Sebastian_
they'll show up eventually. I'll try to make arma aware.
mfo
thanks
amphibulus
i'm having problems with my rely-bridge too..it says apr 05 16:00:14.948 [Warning] Your server (xxx.xxx.xxx.xxx:port) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
Sebastian_
is your orport reachable?
nsa
or: kaner committed revision 22124 (/projects/gettor/lib/gettor): Some localized package names have changed, make GetTor aware
amphibulus
"orport"? what's that?
Sebastian_
the other port
amphibulus
i manually opened 9001 and 9030 (both tcp & udp)
were you referring to those?
Sebastian_
if you set your orport to 9001 then yes
amphibulus
in the relay settings i have relay port 9001 directory port 9030
Sebastian_
ok
relay port is the orport
costre
amphibulus, No router's that need port forwarding?
amphibulus
sorry, i don't understand..what do you mean by that?
if i click on "test", it says "no udnp device found"
costre
amphibulus, Do you have a router between the computer and the internet?
amphibulus
i connect through my router, yes...
but there's no firewall
costre
Then I'd try to tell the router to formward the traffic on the Tor-ports to your computer
www.portforwarding.com
amphibulus
tor (not rely) work properly, and so does any other software that involves internet
ok, and how cai i do that?
*can
costre
amphibulus, www.portforward.com
amphibulus, You know how to login to your router?
amphibulus
yeah, shpuld be 192.168. 1.1 (and i have admin privileges)
costre
good, then find the port forwarding menu and set the proper ports to get sent to your computer
amphibulus
but i have already done that
i opened 9001 and 9030
costre
And you have static IP from the router? SO the data is reaching your computer no matter if you rebooted etc?
amphibulus
no i have a dynamic
ip
(everytime i restart the router i have a new ip)
costre
Then the data get sent to the wrong ip
set your IP manually so it remains the same
amphibulus
probably you're right
how can i set my ip manually
?
costre
choose the IP you set the port forwarding to in the router
Do you run windows?
amphibulus
macos x
costre
If you don't know, I sure don't
google it
amphibulus
nice answer xD
i'll try then
Sebastian_
your router probably has a "use same ip every time" setting or something
amphibulus
thanks for the support
costre
well, I have never used a mac in my life
Sebastian_
or calls it "static ip"
amphibulus
no problem
i was kidding :D
dr|z3d
http://portforward.com ?
amphibulus
i went there
but doesn't say anything useful for this issue
costre
amphibulus, It's pretty much the same issue no matter what ... it's all about the port forwarding
and that page should tell you how to configure port forwarding
amphibulus
yeah..but it says just how to open a port (that, i've already done)
costre
ok, ok
then set static IP, and you're done
amphibulus
maybe
i got what i have to do
but it doesn't let me do it
damn!
on public port and local port, should i type in the same value (eg: 9001)?
costre
still with the port forwarding?
try the same
amphibulus
it says the the local-private port values are incorrect
costre
what says?
amphibulus
it says that local-private port values are incorrect
costre
where does it say this? The router's settings? The Tor logs?
amphibulus
ah
in the router settings
when i try to set the port, in the other way (that for other programs, like bittorrent, works)
costre
Try another port ... Just make sure it's the same as the Tor program is using
amphibulus
ok i'll try it later
thanks a lot for the support man
i appreciate it
see ya
costre
my my
jiso
where is the usual location of libevent directory on a linux machine?
SwissTorExit
/usr/local/lib if i am right
well the library not directory sorry
jiso
can libevent library be installed and used by any user, or it must be installed only by the root
Sebastian_
jiso: sure, you can run configure with --prefix
and make install to anywhere you want
jiso
libevent is not installed
can libevent be installed by a regular user and make tor use it?
Sebastian_
yeah as I said, just compile libevent and tor yourself
jiso
ok.thank you
There is something I do not understand about gpg.Almost everybody use gpg sig to prove the file is the original.However noone say where to get the public key to check those gpg signatures.Am I missign something here?
dr|z3d
jiso
I mean the public key can be store anywhere on any server.How am i supposed to know how to get it.
costre
jiso, Plenty of sites have their keys available
dr|z3d
Well, if you're seeing the hash of the key in a mesage, the author's e-mail should also be visible. :)
Often the key owner will link to the key.
jiso
ok.So only by the signature itself it is impossilbe to get information where to find the public key to check the signature itself.Maybe there is a command or a trick I am not aware of..
Sebastian_
you should learn about keyservers
also #nottor
nsa
or: pootle committed revision 22125 (/translation/trunk/projects/website): updated files from pootle
or: runa committed revision 22126 (/translation/trunk/projects/website/pl): updated translations from bogdan
jiso
so I guess it is not possible to install libevent locally and use it to compile tor
Runa
jiso: you want to check the signature of .. libevent?
jiso
no I want to install tor as user without being a root.So tor complaines about not having libevent.So I compiled it with --prefix=$HOME/libevent/ .Then when I try to compile tor and point him to the ~/libevent/ directory he still complaines that it does not find any libevent
Runa
jiso: ah ok, how do you point tor to libevent when compiling?
jiso
./configure --prefix=$HOME/tor/ --with-libevent-dir=~/libevent/
Runa
jiso: what if you use '$HOME/libevent/' instead of '~/libevent/'? (note that I'm just guessing here and I have no idea if that will make a difference)
nsa
or: runa committed revision 22127 (/website/trunk): updated translations for the website
jiso
I tried that - no difference
Sebastian_
jiso: you didn't forget to make install, did you?
« prev 1 2 3 next »