logs archiveIRC Archive / Oftc / #tor / 2010 / June / 13 / 1
krit
ok is there a way to stop and start tor associated with a vidalia using comand line ?
gingerale
Hello
I'm trying my exit node to access a webpage but it always returns Plesk default page
not just 'a' website, any
http://www.whatismyip.com.drivebyrelay.exit for instance
is that the correct way?
some not just plesk but whine about the host header being invaild
solved
krit
is there a way to stop and start tor associated with a vidalia using comand line ?
arma
stop, sure. you can kill it. start, no. vidalia needs to start it so it knows the right authentication key.
krit
just saw this, i didn't get that about the auth key
can i use a command line (batch file) to stop the tor in vidalia or start it ? I don't want to start/stop vidalia, I want to start/stop the tor associated with that vidalia
nsa
or: [Tor Bug Tracker & Wiki] #1562 filed by phobos: #1562: Expand the list of email providers for bridge requests - http://trac.torproject.org/projects/tor/ticket/1562
or: gmail is frequently starting to require sms verification for new account
or: creation. We should figure out other providers that offer both ssl and
or: dkim headers.
or: [Tor Bug Tracker & Wiki] #1562 was updated: #1562: Expand the list of email providers for bridge requests - http://trac.torproject.org/projects/tor/ticket/1562#comment:1
or: Comment(by phobos):
or: perhaps fastmail.fm (now Opera) or lavabit.com are options.
ilter_
Hello everyone. Does OP still initiate circuit building by create cell on current version of Tor? I remember that OP gave up this job to first OR of the circuit but i'm not sure.. Could you say what is the situation?
Sebastian_
The client (OP) always establishes the circuit.
For the first hop, it can use a create or a create_fast cell, for all further hops it uses create
ilter_
Sebastian_: Hello. So can we say that OP is the first hop in the circuit?
         

krit
is there a way to start/stop tor controlled by a vidalia process using command line (in windows) ?
Sebastian_
I don't think so, it depends on your definition of hop
krit: I'm afraid you can't do that in windows, unless you attach another different controller for stopping tor
krit
ok
ilter_
Sebastian_: What about first create cell during establishing a circuit .. I mean who send it?
krit
why doesn't udp work on tor ? i read some stuff online but can't make too much sense
ilter_
Sebastian_: OP or OR?
Sebastian_
ilter_: ORs only pass on cells
and reply to the client
krit: the main reason is that Tor uses tcp for transport, and udp over tcp is really horrible. We're working on different transports, but there are some anonymity problems with this
ilter_
Sebastian_: Afaik ORs does not only pass but also make create cell to extend the circuit.
*do not
Sebastian_
hm.
ah yes
right
ilter_
Sebastian_: In conclusion while establishing a circuit who creates the first "create cell"? Do you say OP, ha?
Sebastian_
yes, the OP either sends a create or a create_fast cell
ilter_
Sebastian_: I remembered this feature was changed but it seems i'm wrong.
Sebastian_: Thank you for your concern.
Sebastian_
I don't recall any changes here
krit1
Sebastian_: so there is work going on UDP ? but it may have anonymity problems ? what about delay/latency ?
Sebastian_
krit1: what do you mean?
krit1
you said ther eis support planned
or something liek that, but pehraps you meant udp over tcp ?
(sorry for the delay - didn't see your response, i am at work and chatting at same time)
nsa
or: pootle committed revision 22509 (/translation/trunk/projects/website/ru): Commit from The Tor Translation Portal by user vitolink. 30 of 30 messages translated (0 fuzzy).
lllll
is it possible to download Windows updates via tor proxy? and if so, is this even advisable?
Runa
lllll: which version of windows?
murb
lllll: I know you can manually download the updates from microsoft.com
but i'm not sure about things that require WGA verification.
and the downloads are probably not avalible over https.
         

lllll
i see, so the downloads are only over http, which means its risky to do over tor (since un-encrypted)
Sebastian_
the better thing to do would be to try and torify the windows update client. Maybe it honors system proxy settings
murb
Sebastian_: i'm pretty sure it does, otherwise it wouldn't work on networks that require a proxy tog et out.
Sebastian_
murb: you still don't know if it tries direct connection first
murb
microsoft also have tools for doing updates for many machines at once, this allows you to disable the local updates completely.
(Action) generally tries to avoid windows syadmin though..
Runa
murb: it does for pre-vista, at least.
lllll
so when I set the global http proxy, and since I'm using the 'Tor browser bundle' which is running as a limited (non-admin) user, is it ok to set the SOCKS proxy setting to point to a limited (non-admin) tor process?
i'm guessing the windows update process runs with admin priviliges
s/http/socks5
Sebastian_
this isn't a problem
it is normal network communication, even if it is on the same hot
host*
w0_
I've installed fedroa 13, and am having trouble with tor.. when I enable tor button, and go to check.torproject.org (or anywhere else), I get 'the proxy server is refusing connections' .. is it SELinux?? or what??
please respond, I'll chill here for a while.
Piet
w0_: your question is?
swissknife
<w0_> I've installed fedroa 13, and am having trouble with tor.. when I enable tor button, and go to check.torproject.org (or anywhere else), I get 'the proxy server is refusing connections' .. is it SELinux?? or what??
velope
lllll and others curious about windows/microsoft update: the problem with windows/microsoft update is that it is activex code that runs in internet explorer.
activex is arbitrary code that is downloaded and run. therefore you have little knowledge or control over its actions.
this is a nearly hopeless security situation.
that is why the recommended setup is firefox plus torbutton.
in a practical sense, if you have a clean install of windows/IE with no personally identifying contact info, probably th
ere is nothing harmful about using update. but yes, you are trusting microsoft.
avoiding update is mostly possible but tedious.
you can search the downloads page for every possible update (using terms like xp or vista),
sort them in chronological order, carefully read each corresponding knowledge base / security bulletin page,
doofus
i got a quick quesiton.
velope
download the desired updates (there are integral signatures that can be checked), and run those executable installer files.
microsoft does provide all the info to do this.
doofus
seems irc doesn't like the tor relay i'm using; all the major servers, undernet, efnet, dalnet, etc. all kline me. how can i setup my client to use a different tor relay/proxy?
client as in the tor protocol, not irc.
velope
doofus: it might be possible to find a recently added exit node (relay/proxy) that the irc servers haven't blocked, but that is tedious and unlikely.
doofus
velope, damn.
works so nice, yet it's abused so much it's acceptance is getting smaller everyday.
velope
you might be able to connect via a tor hidden service, if it's up.
doofus
hmm.
velope
try configuring your irc client to use 37lnq2veifl4kar7.onion as the irc server.
(that is for oftc)
doofus
need something to connect to undernet.
velope
i don't use undernet myself.
the other method that some irc servers provide is SASL. search for info on it.
doofus
k thanks
velope
[continuing on windows/microsoft update:]
of course, the installer file for each update is itself executable code that you either have to trust or pick apart and
inspect with a de-archiver (not really practical unless you have enormous time and patience).
as for wga (license checking), very few updates require it--none of the security or basic bugfix ones. however, some of the ones that do (all indicated as such on the download pages) can be desirable, such as updates to daylight savings time zones and some enhancements/upgrades.
microsoft provides the so-called alternate verification method for use with firefox. about the best you can do with that is download the standalone utility they provide and run it separately, with no browser running.
(the idea of proxifying or torifying that--ha ha, tell me how it goes for you).
it will transmit some blob of your system configuration & install key data to microsoft and hopefully output a time-limited key that you can then paste into the download pages.
so yes, here again you have to trust arbitrary microsoft code. but, that's what you're doing anyway when you use windows.
compare all of the above to, say, debian, where apt or aptitude can use a http proxy (or just automatically communicate via a system-wide transparent tor proxy, if you've gone through the work of setting that up); there is no license key or verification; and you can inspect all the installer code and update scripts if you wish (though of course that would be tedious as well).
so, even if your software is free, you pay for security--with your time.
anothernewbie
Anyway to prevent tor from starting when I boot unbuntu?
swissknife
.. /etc/init.d may be the spot to check.
anothernewbie
Ill try it because I said no to autoboot during installation but next time I rebooted logged in it forgot the setting
swissknife
command: ps ax | grep tor shows you if it is active. command: ls /etc/init.d | grep tor if there is a file with anem tor...
anothernewbie
Well It is not active now since I used the killall command
Just want it to stop booting with ubuntu so I can boot it through Valida
so basically just delete the file out of the directory?
swissknife
anothernewbie: or chmod -x so it can't be executed..
Runa
swissknife: using 'bum' (boot up manager) is another good option, fwiw :)
swissknife
Runa: never heard "bum" in this contect :) i never used apt-get or such things, my system is Linux-From-Scratch, all from source..
Runa
swissknife: ah :)
swissknife: it's a nice gui that allows for easy configuration of applications that should be started when your os boots
nsa
or: [tor/maint-0.2.1] 2010-06-13 20:04:32 Roger Dingledine <arma@torproject.org>: remove old changes that were folded into 0.2.1.26
or: [Tor Bug Tracker & Wiki] #1562 was updated: #1562: Expand the list of email providers for bridge requests - http://trac.torproject.org/projects/tor/ticket/1562#comment:2
or: Comment(by arma):
or: Needs to be more than just ssl and dkim -- it needs to also rate limit
or: account creation about as well as gmail does.[...]
« prev next »