logs archiveIRC Archive / Oftc / #tor / 2015 / November / 16 / 1
qwerty1
if you work for an isp it's important to keep machines with access to internal systems secure, not use them for browsing facebook or whatever
or reading slashdot
read all leaked documents
watch your own management network very very closely
of course there are some ISPs who famously do cooperate with nsa and have codenames
like STORMBREW (verizon), FAIRVIEW (at&t)
and gchq
GERONTIC, REMEDY at al
notbutthead
qwerty1: do you have a link about those isp codename ?
qwerty1
http://www.nytimes.com/2015/08/16/us/politics/att-helped-nsa-spy-on-an-array-of-internet-traffic.html
notbutthead
mh thanks
qwerty1
http://www.theguardian.com/business/2013/aug/02/telecoms-bt-vodafone-cables-gchq
BT ("Remedy"), Verizon Business ("Dacron"), and Vodafone Cable ("Gerontic"). The other firms include Global Crossing ("Pinnage"), Level 3 ("Little"), Viatel ("Vitreous") and Interoute ("Streetcar").
notbutthead
all of them are US based ISPs, right ?
or uk
qwerty1
no, some are uk
notbutthead
okay
qwerty1
http://international.sueddeutsche.de/post/103543418200/snowden-leaks-how-vodafone-subsidiary-cable
http://www.spiegel.de/video/chokepoint-the-moment-stellar-learns-it-has-been-hacked-video-1521333-inline.html
         

Summy
hey
Radmod
Hello everyone
anyone awake in here I have a question about Tor browser and a message I got about wordpress website trying to access my data
_NSAKEY
Radmod: You might as well ask your question, and hope someone who knows the answer sees it.
Radmod
Naskey thanks I was just trying to be polite. So I got a pop up message using tor browser saying that a wordpress site made a request for browser information but a blank page was sent instead"
wondering what kind of information this wordpress site was trying to get? Also can I change the settings in tor so that if it happens again I can send my own message back
_NSAKEY
Was it trying to get canvas information?
drea
t
andoruh
o
wtf_fcntl
So here's a question. Is it theoretically possible for an exit node to be able to tell you're using an obfs4 bridge based on timing quirks?
I know that obfs4/scramblesuite/whatever slows the connection down slightly, and from looking at visual representations of the data stream, it doesn't seem to be a linear slowdown.
mukt
hi
my isp blocks all ports except 22 . I don't use ssh so I have configured ORport to 22 but it is not reachable from outside. any idea where I am going wrong?
AndroUser2
what is orport?
mukt
is it possible to run tor relay through port 22?
wtf_fcntl
It is possible, but since it's a lowport, you'd probably have to either run Tor as root (which is not recommended), or use iptables.
Binding to a port under 1024 requires elevated privileges.
kernelcorn
AndroUser2: ORPort is the Onion Router Port, which is the TCP port through which Tor traffic passes
AndroUser2
it can run on any port if it is sent to the db
what is the use?
kernelcorn
AndroUser2: to route Tor traffic through that machine to the rest of the network, thus hiding the origins and destinations of user traffic
stemid
crazy question but do tor clients, like tor browser for example, relay traffic for others in the tor network? do they act as relays? I assume no because it wouldn't work without a firewall forward to the tor port.
but I just had a co-worker ask me this
weasel
you assume correctly.
The default tor configuration does not act as a relay.
stemid
thanks, I also see my tor relay listens on localhost.
on my client PC
I knew it was a crazy question ;)
weasel
it might even be in the FAQ
(I haven't checked)
LibertyWeNeed
What is going on with the network??? Why is the metrics showing a 50% drop in TOR usage???
over the last week>
         

Tichodroma
LibertyWeNeed: which graph do you mean?
LibertyWeNeed
metrics.torproject.org (look at the direct connections to TOR) and (people using bridges)
https://metrics.torproject.org/userstats-relay-country.html
Tichodroma
thanks
LibertyWeNeed
Tichodroma
I see nothing strange on the second graph
LibertyWeNeed
only hours ago it showed the same drop.
what about the statistics for the last few days?
they aren
arent displayed
stemid
https://metrics.torproject.org/userstats-relay-country.html?graph=userstats-relay-country&start=2015-11-09&end=2015-11-16&country=all&events=on weird
I just zoomed in on november
notbutthead
iirc the metric may currently have bugs
LibertyWeNeed
Isn't it suspicious that it happened only a day or two before the Paris attack.
gamambel
LibertyWeNeed1: iirc the metrics server was moved and stats are incomplete
LibertyWeNeed1
I see
gamambel
i don't know if the data will be corrected or if we will have to live with weird drops and spikes :/
LibertyWeNeed1
why were they moved?
gamambel
LibertyWeNeed1: i guess some of it will be in the november report from karsten, who maintains the metrics infrastructure
it was a planned migration to a more powerful host i think
the work is probably documented on trac
stemid
where are these reports available for the general public?
gamambel
they are all public
https://lists.torproject.org/pipermail/tor-reports/
and here we have something from karsten about the spikes: https://lists.torproject.org/pipermail/metrics-team/2015-November/000005.html
"These spikes are caused by moving CollecTor to a new host which led to Metrics processing lots and lots of data it already processed before. I had to kick it a few times to recover, and while it's almost running smoothly again, it did produce a few strange artifacts. I'll try to re-import the November data once this is over, which should also fix these spikes."
stemid
excellent, thanks gamambel
linuxthefish
wow apparently i run one of the top 10 tor relays :D
stemid
you must have tons of t-shirts
:O
linuxthefish
nah i never ask for them lol
is there any way to increse a relay's bandwidth? i know i can do 700mbit both ways, but Tor is only doing around 300 with 0.07 CPU load
stemid
only doing 300 in transfer tests or in standard use?
linuxthefish
just normal use on a relay
stemid
could be as simple as the users not requiring more bandwidth.
linuxthefish
yeah i guess
would help if the stupid tor client would not crash so much
saper
linuxthefish: does to crash because of the known bugs or unknown bugs?
triton__
hello, is there any piece of software where i can connect to via VPN an from there the tunnel is proxying everything to the Tor network?
_ADAM
Sure, why not.
triton__
can you point me into any directions?
linuxthefish
VPN before Tor? why? O.o
triton__
to hide tor from my ISP
linuxthefish
that basicly gives you a static entry point, and as most VPN providers log traffic it would be easier to try and break Tor's anonymity
triton__
oh i forgot to mention that i host this on my VPS
notbutthead
triton__: better use a bridge with obfs4 or something
triton__
and from there on it should like a normal circuit
so vpn + 3 hops
linuxthefish
yeah hosting your own VPN is much better
« prev 1 2 next »