logs archiveIRC Archive / Oftc / #tor / 2010 / June / 4 / 1
nsa
or: [Tor Bug Tracker & Wiki] #1522 filed by katmagic: #1522: Tor aborts when a 'getinfo config-text' command is sent to the controller and $HOME is unsent. - http://trac.torproject.org/projects/tor/ticket/1522
or: When the HOME environment variable is unset in the Tor process and an
or: authenticated control session sends "GETINFO config-text\n", Tor aborts
or: logging;
or: [warn] Couldn't find $HOME environment variable while expanding "~/.tor"[...]
just_0x0
I'm using the "current" version of tor and I would like to know how do I map an address when using the control interface?
nsa
or: phobos committed revision 22468 (/projects/misc-sysadmin): add serra to the list for now.
just_0x0
nevermind... I think I got it
it is not working yet :( I did get the control command accepted... but the "circuitry" isn't working
setconf mapaddress=(whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit)
what is wrong here?
when I access the webpage the traffic doesn't get routed/mapped to that tor node
katmagic
Mapaddress is a dedicated command, not a configuration option.
arma
katmagic: actually, it's a torrc option too.
katmagic
Use 'MAPADDRESS whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit'.
Can you set it from the controller?
arma
yep. with setconf.
setconf mapaddress address newaddress
well, or whatever the syntax for setconf is. which i guess is where just_0x0 is going wrong.
katmagic
Hmm... Interesting.
         

arma
the parentheses are clearly bad though
just_0x0
then why would I receive a 250 OK ?
and doing: getconf mapaddress gets me a: 250 MapAddress=(whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit)
arma
just_0x0: looks fine. that means when your tor client makes a request for (whatismyipaddress.com, it will be rewritten as a request for whatismyipaddress.com.SwedishBikiniTeam.exit).
maybe not what you want though.
just_0x0
that is what I want... when I access that webpage, I want it to see me as being computer SwedishBikiniTeam.exit
kind of a proxy
but what happens it that it's completely ignored. the IP I get to the outside world is the one given by tor dynamic circuitry (if I'm making myself clear here)
katmagic
Use 'MAPADDRESS whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit'.
Or 'SETCONF MapAddress=whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit'
arma
right. just_0x0, you didn't read what i said. read it very carefully. including the ( and the ).
just_0x0
arma: I now understand what you mean. So what would be the correct way?
katmagic: I tried that and it didn't work :-(
setconf MAPADDRESS=whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit
250 OK
getconf MAPADDRESS
250 MapAddress=whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit
arma
hm. i wonder if the second = is what you want.
try setconf mapaddress="whatismyipaddress.com whatismyipaddress.com.SwedishBikiniTeam.exit"
katmagic
2.5.1 MAPADDRESS: Sent from the client to the server. The syntax is: "MAPADDRESS" 1*(Address "=" Address SP) CRLF
arma
he's using setconf, not mapaddress.
i can see the confusion though. he's setconfing the torrc option called mapaddress.
just_0x0
grrrrr....... difficult testing it right now....
arma
why are you not just editing your torrc?
just_0x0
now the tor circuitry is chosing to use that specific tornode for all connections... I signaled NEWNYM two times already... :-|
arma
yeah. you made a circuit that exited somewhere, it works fine for other things
just_0x0
arma: yes, I'm using tor control through telnet
arma
seriously, if you want fine-grained control over your circuits and streams, use attachstream
but you're going to have to write code, not use telnet, probably. unless you type fast. :)
just_0x0
arma: no no... not yet... it was using that tornode for all connections by accident... I've only set a tornode for that specific address, which is not working yet
arma: I don't need much fine-grained. Just something that allows me to say: for this website, use this specific tor node
but it's not working yet
katmagic
If you do want to write code, consider helping with https://www.assembla.com/code/torctrl/git/nodes .
just_0x0
I would cause more trouble than help... ahaha
and not that much free time also
(my free time is usually spent trying to get "linux" to work :p)
after I issue a signal NEWNYM just a couple of seconds latter the tor node for all connections falls back to SwedishBikiniTeam.exit
this is too much coincidence
probably the setconf MAPADDRESS=whatismyipaddress.com=whatismyipaddress.com.SwedishBikiniTeam.exit is bugged and working for all connections... I don't know
arma
are you using polipo? it often pipelines http requests, meaning it's never hanging up the connection, meaning tor *would* make new requests use a new circuit, but there are no new requests.
firefox without privoxy does this too.
         

just_0x0
arma: no polipo here. just firefox with the torbutton
arma
your setconf syntax with the two equal signs is wrong.
firefox with torbutton and no privoxy may also hold the connection to the website open.
just_0x0
setconf mapaddress="whatismyipaddress.com whatismyipaddress.com.SwedishBikiniTeam.exit"
arma: I may have found a bug or I'm doing something wrong :p
I'm using two websites for checking my IP whatismyipaddress.com (which is the one I'm trying to use a specific tor node) and http://getip.110mb.com/mini/index.php?v=ahp
if I issue the commands on my tor control:
signal NEWNYM
setconf mapaddress="whatismyipaddress.com whatismyipaddress.com.SwedishBikiniTeam.exit"
then access getip.110mb.com I can see a different IP from the SwedishBikiniTeam
and then immediatly check whatismyipaddress.com and (on a new tab) getip.110mb.com, they both show the IP for SwedishBikiniTeam.exit
so it seems that after the first request to that mapaddressed website, all the circuitry gets overwritten
arma
sounds plausible.
tor uses whichever circuit is considered 'best' for that stream
it doesn't care why the circuit was made
just_0x0
but that seems to defeat the purpose of mapaddress since it no longer "refreshes" the circuitry, that may bring problems from an anonimity point of view
or am I wrong?
arma
could be. i can imagine many things that users might want. it only does some of those things. other users lose, unless they either patch their tor or use attachstream to decide exactly what stream goes where.
just_0x0
how difficult is it to use attachstream? is there a tutorial/examples?
arma
just_0x0: have you looked at torctl? it's a python script to do lots of what you've been looking at
just_0x0
cool, I'll have to try it out
nsa
or: [tor/master] 2010-06-04 00:29:29 Roger Dingledine <arma@torproject.org>: Let bridge users use the non-primary address of a multi-homed bridge
or: [Tor Bug Tracker & Wiki] #1522 was updated: #1522: Tor aborts when a 'getinfo config-text' command is sent to the controller and $HOME is unsent. - http://trac.torproject.org/projects/tor/ticket/1522#comment:1
or: Comment(by nickm):
or: Interesting! What do you suppose is a reasonable default for the datadir
or: if HOME isn't set? I guess we could just set it to /var/lib/tor in that[...]
larsborg
Hi everyone
Goldstein
question?
m3ga
larsborg: don't ask to ask, just ask :-)
larsborg
ahh actually yes thanks. I been looking around but can't work out how to connect to such servers as undernet (irc) with tor using Mirc. So far this is the only server I have been able to connect to in this way without being disallowed for "running a trojan or virus"
sorry m3ga:)
Goldstein
not all irc netowrks allow tor
larsborg
ah ok. so they know I'm using it?
Goldstein
of course
the list of tor nodes is public
larsborg
ok
m3ga
also, don't most irc servers do an ident against the machine that connects? and the tor exit point may not be running ident
larsborg
and there is no way around this? i get sick of "hackers" trying to be cool in the linux channels by spamming my ip all the time lol
Goldstein
m3ga: that usually isnt enough to block you
m3ga
what do you mean by ' spamming my ip'?
Goldstein
larsborg: get a shell acct someplace
larsborg
oh you know... "i'm a el1t3 linux hackor, allow me to scan all your ports and tell everyone where you live" haha.... nothing serious but I would love to confuse the heck out of those kiddies:)
Goldstein, good idea that, i will look into that a bit further
m3ga
you need to hang out in better channels. either that or just firewall your machine to the max and tell them to do their worst or fu*k off :-)
larsborg
heh...channel search on OFTC reveals a few largish nix channels....maybe I should find a new home here
yeh lol
i'm running comodo...its good
Goldstein
have you tried freenode?
larsborg
havent been there since I installed tor yesterday. freenode likes tor?
Goldstein
if you want serious tech support, freenode and here are best
freenode provides a way to use tor
you have to use their hidden service
larsborg
ah k cool
Goldstein
and use SASL
larsborg
ok
m3ga
i hang her and a couple of debian channels on OFTC and then a bunch of freenode channels
Goldstein
which limits which clients you can use
larsborg
hey thanks for the feedback guys!!! be back inj a bit....
BarkerJr
all these graphs are spiking: http://metrics.torproject.org/recurring-users-graphs.html
is tor suddenly super-popular?
larsborg
i just started using it but i cant take the credit for that:)
Goldstein
BarkerJr: tor has had bad press lately
maybe everybody thinks that's cool
larsborg
bad press?
Goldstein
yeah there was that wired article
misc
the graph look more like being buggy, or some dos
larsborg
that wired article is fascinating
Goldstein
its also a lot of FUD
larsborg
so how do these hidden servers work? can I host content from my node? my localhost rather
ephcon
yes
Goldstein
larsborg: freenode has an example
ephcon
http://www.torproject.org/hidden-services.html.en
larsborg
ta
damn now im on another bloody tangent.....always more tangents
ephcon
checkout the hidden wiki for other hidden service info
irc://oldd6th4cr5spio4.onion
larsborg
cheers
BarkerJr
how come that .onion seems almost english
weasel
don't know, maybe because it is?
m3ga
is there some sort of index for .onion?
BarkerJr
there are unofficial ones
ephcon
check this out: http://kpvz7ki2v5agwt35.onion/wiki/index.php/OnionNet
http://l6nvqsqivhrunqvs.onion/
larsborg
damn this is cool! all I need now is some really sensitive top secret information to post anonymously:)
what a shame im boring
BarkerJr
hehe
Goldstein
well apparently government workers are using tor without ssl so just run an exit node and grep for .gov
larsborg
thats amazing jeez
well, now I know where all the pedophiles are hiding lol... onionnet irc
sick bastards
it was nice learning from you guys. thanks
formalist
lol
nsa
or: [Tor Bug Tracker & Wiki] #1522 was updated: #1522: Tor aborts when a 'getinfo config-text' command is sent to the controller and $HOME is unsent. - http://trac.torproject.org/projects/tor/ticket/1522#comment:2
or: Comment(by Sebastian):
or: We're using 'LOCALSTATEDIR PATH_SEPARATOR tor' during startup. I'm looking
or: at making a patch.
atagar
Dumb question, but just compiled from source and tor keeps looking for "/usr/local/etc/tor/torrc" rather than the home directory ("~/.tor"). I'm guessing I forgot a config option while building?
oddly the install instructions don't mention this...
phobos
or didn't set datadir in your torrc
Sebastian_
atagar: Tor doesn't look for its configuration file in the datadir, and ~/.tor is the default datadir.
atagar: Tor by default looks into sysconfdir, which is $prefix/etc
if you don't set a prefix, the default is /usr/local
atagar
ahhhh
Wait... sysconfdir is listed as "read-only single-machine data". Why would it be looking in there for the torrc? Is this something I should change via the configure or is the preferred solution just to set up a symlink?
Sebastian_
well, the torrc is pretty much that, no?
atagar
not really, it's meant to be user edited
Sebastian_
I guess it is accurate if Tor is seen as a system daemon
you should ask nickm about these things.
In an email or bug report ;)
atagar
that description sounds like a cache or something else the user sould take a hands off approach with
gotcha
Sebastian_
I think it is the default autoconf description for an etc dir
atagar
hmmm, looks like the only way of changing the default is to edit the middle of the configure script where "CONFDIR=`eval echo $sysconfdir/tor`" which seems horribly hacky. Don't the debs and such default this to the home directory?
admittedly I've been using old versions for quite a while, but never ran into this...
Oh well. If no one else has brought this up before it's probably not a big whoop.
phobos
stealing from the mac instructions
here's what I do to force tor to the right paths in os x
CONFDIR=/Library/Tor ./configure --prefix=/Library/Tor \
--bindir=/Library/Tor --sysconfdir=/Library
Sebastian_
atagar: the .deb defaults it to /etc/tor/
Arathorn
My list of bridge clients is ALL over the map. Also, countries like Norway and Sweden surprises me ... http://i45.tinypic.com/2dgj8eg.png
Sebastian_
why does it surprise you?
Arathorn
For starters, it was chinese clients only, 100+ per day. I expected that :) This is a surprise
Also, Norway and Sweden seems like countries who wouldn't ban tor connections
Sebastian_
yeah, the chinese have become quite good at blocking bridges
atagar
Arathorn: the great firewall's been doing well against us of late so there's only a trickle of CN users
phobos
norway and sweden record all internet traffic just in case you might have been a criminal
Sebastian_
note that geoip data is neither 100% accurate, nor are countries the only organizational units that might block Tor
Arathorn
I understand Saudi arabia and Arab emirates being at the top ....
phobos
see iPRED
Arathorn
phobos, I know about ipred. But that in itself doesn't ban you from the tor network, there would be no use for bridge access?
phobos
i use bridges all the time so someone can't easily see if i'm using tor
Arathorn
phobos, I guess that explains that :)
If I should close the bridge and open an exit relay, would it still be possible to monitor the bandwidth and client location?
atagar
Arathorn: nope - if you're seeing exit traffic then you know nothing about the client (it wouldn't be much of an anonymity system otherwise!)
bandwidth sure
Sebastian_
erm
some exits are also guards
Arathorn
atagar, Well, bandwidth wouldn't be such a violation of the clients integrity
« prev 1 2 next »