logs archiveIRC Archive / Oftc / #tor / 2015 / October / 20 / 1
arma
finn: i filed #17385
it probably needs a patch from somebody though or it will never move forward
thanks
https://gitweb.torproject.org/weather.git/
finn
ah cool
thx :)
welp i officially can't find why it's rejecting it
the only apparent constraint is 75 characters, which I'm within
maybe i just dont know django that well
aha!
django 1.2's remail regex sucks
looks like it may be possible to override it without upgrading the version of django
torQUES
what is the experimental torrc option "Sandbox"? a defense against zombi attacks? anyone here qualified for the right answer?
ryonaloli_
torQUES: i can only stay here for like 30 seconds but
the sandbox enables a filter called seccomp, which filters what "syscalls" the program can use
torQUES
I read about this in man tor
ryonaloli_
for example, if the program only needs to send to the network and write to files, seccomp will allow it to do that, but block everything else
that way if tor gets hacked through a software exploit, the sandbox will provide protection
it does not do anything for network-level attacks, only for software attacks
torQUES
ok, thanks ryonaloli_ - I think I need some research on that
ryonaloli_
just google for "seccomp" and you'll see some good info on it. i think wikipedia has a page on seccomp
anyway, now i gotta go afk again. cya
torQUES
thanks
         

YourMom42o
is hidden wiki working for anybody?
http://ev3h5yxkjz4hin75.onion/wiki/index.php/Main_Page
im getting "Sorry! This site is experiencing technical difficulties."
torQUES
Seccomp is a feature of the Linux kernel that is enabled in (most) contemporary Linux distributions. It restricts a thread to a small number of system calls: read(), write(), exit() and sigreturn() - If the thread calls any other system call, the entire process gets terminated. now Seccomp is deprecated - seccomp.2 a.k.a. Seccomp-BPF has a Berkeley Packet Filter (BPF) with selected and allowed syscalls other than the above mentioned four syscalls. http://ma
n7.org/linux/man-pages/man2/seccomp.2.html - sounds like a plan, a good plan, and I think I will test "Sandbox 1" on my relay Tor 0.2.8.0-alpha-dev
YourMom42o
so can i make a relay?
and whatexactly would the benifets be for me if i ran a relay
and im concerned if i make a relay some body out there is gonna look at stuff they arent sopoused to and next thing i know im getting a knock at the door
torQUES
you'll get the freedom medal and the spamhaus place on their fascist blacklist
YourMom42o
huh
whats the freedom metal
medal*
marcusw
I'd honestly be more worried about the banking info you're hosting
thorazine
YourMom42o: the freedom metal is gold, because without gold you cannot bribe your way to freedom. alternatively you could just forbid exit from your relay.
Guest5664
fusebox wants this channel to be +iR, make it happen velope / isis
YourMom42o
ok i didnt know that thank you i didnt know u could forbid exit
marcusw
like, what even is http://110.35.83.206/s10/data%20-%20Copy/OTRDailyReport_01122012.txt ?
YourMom42o
i dont know too much about it
i just know that tor is awsome cause it gives u a new ip everytime u connect
thorazine
YourMom42o: if that's all you know about tor, maybe you shouldn't run a relay
YourMom42o
lol
true
i mean i can understand somewhat how it works
i dont even know how to set up mirc here to use tor
lol
but i have a decent proxy so
im not too worried about irc
_opal
install gentoo
and get a better client
:v)
tor should work with mirc some way
YourMom42o
whats wrong with mirc
ive been useing mirc since 98
_opal
closed source
trialware
YourMom42o
good point
_opal
nagware rather
YourMom42o
well thats why u get a crack
then its not trial ware
lol
_opal
:p
         

marcusw
not to mention a history of security issues (not counting identity leaks)
_opal
true
yeah xdcc comprises half the security issues
YourMom42o
xdcc is still way better then torrents
torQUES
how to compile tor with libseccomp and its necessary header files (e.g. seccomp.h)?
[notice] Tor v0.2.8.0-alpha-dev (git-a8a26ca30eae38fb) running on Linux with Libevent 2.0.22-stable, OpenSSL 1.0.2d and Zlib 1.2.8.
[warn] This version of Tor was built without support for sandboxing. To build with support for sandboxing on Linux, you must have libseccomp and its necessary header files (e.g. seccomp.h).
_opal
it's centralised, so no
torrents are a more efficient way to download
i've never touched xdcc in my life lol
YourMom42o
well ive never recieved any notices from ISP from downloading from xdcc but torrents they love ending notices
hidden wiki seems to be down
_opal
i wasnt talking in terms of piracy
and there is no single hidden wiki
i was talking about how bittorrent as a protocol is the most efficient way to download files
Chocolate_Chip
You shouldn't bittorrent over tor
Besides the fact that it isn't anonymous EVEN THROUGH TOR, it overloads the network, ruining it for everyone else
_opal,
_opal
i didnt say bittorrent over tor
let me say for the third time
i was talking about how bittorrent as a protocol is the most efficient way to download files
Chocolate_Chip
ok
Sorry, I just joojed ands saw what you said
_opal
:p
ursuel
Chocolate_Chip: There are some torrent programs that will ignore a broken proxy and connect to clearnet instead of failing when the proxy connection fails. Is this what you mean by "it isn't anonymous EVEN THROUGH TOR" or do you have documentation about another attack vector
yano
doesn't Tor advise against torrenting over Tor?
ursuel
yano: The idea is to not waste what might be very important and needed bandwidth on a yify.
yano
ah
ursuel
Where a p2p network like i2p the more bandwidth you share the better, download all day
yano
but with i2p don't you have to give back in order to use it?
ursuel
'have to', no. By default Tails is setup in 'hidden' mode and you will be acting as a leech on the network.
If you are a poorfag just figure out how much bandwidth you have left each month and aim for 20 gigs under the limit. No neck breaking speed but its the biggest p2p network I've found to date.
_opal
hi Mikaela, with what melee instrument do you plan to commit seppuku? are you going to use a traditional means or a cheaper alternative?
rec4ught
Can i have multiple HiddenServicePorts per hidden service .onion address, so i can run SMTP and POp3 servers on the same.onion but on different ports (for example)?
weasel
yes.
LibertyWeNeed
Hi Everyone. Does anyone know where I can watch Roger Dingledines "State of the Onion" address?
« prev 1 2 3 next »