logs archiveIRC Archive / Oftc / #tor / 2010 / June / 15 / 1
nsa
or: erinn committed revision 22510 (/projects/android/trunk/Orbot): bump orbot version for release to fix issues with android 2.2/froyo
or: erinn committed revision 22511 (/projects/android/tags): tagging Orbot 0.0.8 release
or: erinn committed revision 22512 (/website/trunk/include): bump orbot version for 0.0.8 release
helix
phobos: please rebuild the website
nsa
or: [tor/master] 2010-06-14 22:25:37 Roger Dingledine <arma@torproject.org>: a line that's been sitting in my sandbox for months
or: [tor/master] 2010-06-14 22:32:44 Nick Mathewson <nickm@torproject.org>: Answer question from Roger.
phobos
helix: published
fsgzv
when you're sniffing your network on Linux, how do you differentiate Tor connections from other connections?
im a noob please excuse me
arma
you mean tor as a client, or tor as a relay?
fsgzv
arma: client
arma
the tor connections are the ones that look like ssl connections.
fsgzv
what does that mean? does it use a special port?
         

arma
no, it uses a variety of ports
ssl is the same protocol that https uses
fsgzv
so it will just show up as https? is that the only mark of identification it has?
arma
katmagic
fsgzv: There is a list of hosts/ports that Tor will connect to in DataDir/cached-descriptors.
fsgzv
katmagic: where is that folder?
katmagic
It depends upon which operating system you're using. By default, it's /usr/local/var/lib/tor/, but it's vendors usually override it during compile time. (It can also be overwritten in your torrc.)
fsgzv
guess i just have to turn tor off
katmagic
How did you gather that?
fsgzv
because i can't find where the hell it's listed
so to know if any bad connections are happening, i have to turn tor off before sniffing
arma
'bad'?
fsgzv
hacks
arma
your tor client will only make outgoing connections. that might help narrow it down.
fsgzv
i might have downloaded a keylogger by accident. how am i going to identify it without turning off tor?
katmagic
The default DataDir is usually listed in the man page.
fsgzv
thanks guys
TheJap
argh, this is so irritating. has anyone gotten Tor running as an NT-service with a working control port for Vidalia to plug into?
arma
sounds like you want to set a control password, rather than let vidalia pick one
be aware that tor, when set up as an nt service, uses a different user, and thus a different torrc, datadirectory, etc
(unless it's the same torrc. i don't remember)
TheJap
well, I set the ControlPort and HashedControlPassword in the Torrc, my problem is installing the service itself
When I run tor with the "--service install" option, I get "[warn] Failed to parse/validate config: Unknown option 'service'. Failing."
arma
--nt-service is what you want
ah. hm.
interesting. maybe we broke it.
TheJap
when I try the old "-install" switch, everything seems fine, until I start the service, then I get an error telling me it can't find my Torrc, which it's looking for in a *different* place than I specified with the "-f" switch
arma
i believe it.
basically nobody uses the nt service thing
nobody has for years, i think
         

TheJap
I mean, I can just copy my torrc to the default path it seems to be picking on it's own, or root around with NTFS symlinks, but I figured I was just doing something wrong
Yeah, I've been running my nodes for years without messing with NT services, but I'm working on sort of a strange setup at the moment, with a few Tor nodes running headless
arma
we find headless windows machines an odd concept. why not give them a real OS? :)
TheJap
haha, bad choice of words. Basically I've found a good number of friends who love the concept of Tor and want to donate their bandwidth, but don't want to muck around with setting up or managing nodes themselves
arma
ah
TheJap
I meant that I want to make Tor itself "headless" in that the user will never hear or see anything to do with it, but I can control it from a distance
arma
and they don't really want a vidalia sitting about?
TheJap
Honestly, it woulnd't really hurt, I just like the idea of being able to tweak settings and whatnot remotely, which would be easy to do with a ControlPort I could access
arma
sounds good. if you get it working, let us know how.
or if you can identify a clear bug report, that would be good too
TheJap
I'll keep screwing around with it, it seems to be a bug in how Tor is handling syntax. I'll throw something at the list if I find anything; to be honest I've never needed to look into the project's bug-report system, I can't imagine it's too difficult though
Alright, shot off a long email to tor-relays. Unless someone points out something obvious I've been missing, though, I'll end up writing up a bug report when I'm not aching for sleep. lol
zhxk
misc:hello, the bridge you provide is blocked today
Sebastian
TheJap: see my reply on -relays please
TheJap
Will do
Sebastian
where did you learn about the service options? In the manpage?
TheJap
The current options from the manual, the depreciated ones from the wiki linked to in the manual
I don't see your reply in the list, could you send a copy to my personal email?
Sebastian
http://archives.seul.org/or/relays/Jun-2010/msg00001.html
TheJap
Thanks. Give me a moment, I'll fiddle with it. I believe in that case, it took the path that was intended for "-f" and considered it a seperate argument that threw an error. I'll try it again.
Hmm. I'm getting "Service failed to start : An exception occurred in the service when handling the control request."
Which is the exact thing that happened when I tried to manually add the "-f" option to the service in the registry.
Sebastian
Is there any way to get a log?
because this might indicate a problem with the torrc
TheJap
Where would you like me to look? All I'm getting is that single-line error from the command line, and I can use the same torrc manually with the --nt-service and -f options
In this particular case, Tor isn't even starting
Sebastian
maybe windows has something like a syslog, or maybe Tor actually started logging something with the logging options you specified in that torrc?
Goldstein
event viewer
TheJap
That's where I'm headed now
http://japlin.no-ip.org/svcerror.txt
That's the most detail I can pull out of it
Tor in this case never starts logging because the SCM never manages to start it
Sebastian
how terribly useful
TheJap
And the oddest thing is
the "Path to executable" for the service is "C:\Program Files\Vidalia Bundle\Tor\tor.exe" --nt-service -f "C:\yadayada\torrc"
and if I throw that into a terminal, it works flawlessly
Sebastian
so
maybe this is permissions-related then
could that be it?
TheJap
I imagine it could be. One minute, let me try something simple
Goddamnit, I feel like an idiot now lol
Sebastian
so, what was it?
TheJap
The disk I'm storing my torrc on has no permissions except allowing me access. Windows permissions default to deny. I gave the "SERVICE" user read and list folder contents permissions, and it works like a charm
Sebastian
nice
btw, one thing I read earlier concerns me a little.
You said that you're trying to set up quite a few tor instances on some computers you manage, and it'd be easy if you could control them via control port.
Control Port is not encrypted, so you might want to consider ssl tunnels or something.
TheJap
Oh, for sure. At the moment I'm accessing everything over a VPN, I don't plan on opening the control ports to the internet.
Sebastian
right, but beware that they are open for local snooping as well
TheJap
At the moment I think the risk is minimal, considering the 30+ character length of the password
Though ideally I will be able to get Copssh daemons on them all soon
Sebastian
right. Well, I'm glad we got it working
s/we/you/
TheJap
Yeah, thanks for your help
Sebastian
it'd be nice if you followed up on -relays
TheJap
Oh, I will once I fiddle around and get everything the way I want it
I think I'm going to file a bug report about the syntax, too. The "new" flags don't work at all the way they're supposed to, and half my backlog is full of tor telling me not to use the depreciated flags (The only ones that work!)
Sebastian
Sounds like I should get a windows machine and start some patching
please do file away
TheJap
Honestly, I wish I could be of more help. I see the symptoms but wouldn't know how to go about fixing them
Sebastian
that's cool
the problem is that none in the dev team use windows, and of those 0 people even fewer use nt services
TheJap
Well I'll try and make myself useful. I'm trying to figure out if the --service flag is completely useless as-is, or if it's doing what it's supposed to, but then fully invoking Tor afterward instead of quiting
mansour
hello all, I am using maven "
I need to use tor to be able to download these libraries from the repos and continue working on my projects.
d-b
mansour: if you are to do that ensure that you CHECK the gpg key and SIGS
/checksums
mansour
there's a section in maven about setting up a proxy http://maven.apache.org/guides/mini/guide-proxies.html
but I need to understand the internals of tor to set it up. Can anyone help in this ?
d-b: how do I do this ?
Sebastian
mansour: you just need empty username and passwort, host localhost, port 9050
mansour
And what does the GPG has to do with this ?
Sebastian
gpg is not gpl
mansour
yeah, but I tried this and it didn't work
Sebastian: I tried an empty username and password with localhost and 9050
Sebastian
try protocol socks
instead of http
mansour
ok, I will try it
no, it didn't work
d-b
mansour: sorry i meant for security when downloading be sure to check the files
Sebastian
mansour: So if your local Tor is started and working, that should work. If it doesn't, I'm afraid this might be a maven problem
mansour
d-b: maven has it''s own mechanism to check the sum. All I care about now, is the files
Sebastian: hum. I don't know what to say.
I will dig more and let you know if it's maven issue.
Sebastian: no. It's not working with anything
lllll
is it possible to make the 'nslookup' command use the tor proxy?
d-b
mansour: oh does it ?
lllll: i don't think so, but there is torresolve
megabraker
hi i have installed tor and privoxy they are well configured the problem is that there are some websites that i can't access any suggetions?
Goldstein
like what?
megabraker
like youtube
the main tor website
they are blocked by my isp
:/
arma
what OS?
megabraker
UBUNTU 8.x exctly Backtrack 4 finnal edition
arma
are you using torbutton?
megabraker
yes
arma
sounds like your traffic isn't going into tor
Goldstein
well youtube wont work with torbutton
arma
ubuntu users tend to end up with both privoxy and polipo, and they can step on each other
megabraker
ok another question how to close tor i tried ps x and kill but i couldn't find the proccess
Goldstein
maybe you arent running tor but configed your browser to use it
swissknife
ps ax | grep tor
Goldstein
that would be a problem
megabraker
no tor is listening at 9050
arma
you added deb.torproject.org to your apt sources list, right?
megabraker
no
arma
megabraker
arma the torproject wensite is blocked by my ISP
:/
Goldstein
you on a laptop?
arma
google tor debian mirrors
megabraker
Goldstein Desktop
arma
which country are you in, out of curiosity?
megabraker
tunisia
arma
ah. you're going to need to set 'fascistfirewall 1' in your torrc. once you get your tor working.
Goldstein
lol
arma
that will restrict it to only trying tor relays that listen on ports 443 and 80
megabraker
ok
arma
deb http://deb.torproject.org/torproject.org <DISTRIBUTION> main
you said 8.x. is that intrepid or hardy?
megabraker
i have installed polipo then use the besic configuration and it works fine :)
« prev next »