logs archiveIRC Archive / Oftc / #tor / 2015 / July / 3 / 1
hjak18761hjd7182
Hello
Luthien
Has anyone ever kept using a "new Tor circuit for this site" but their first-hop relay never changes? I've been stuck with a relay in Sweden for the last 5-6 circuits or so. Anyone know why this is? It seems suspicious to me.
SHADOWIMPACT
oh come on now you're not even trying
the first relay is called a guard node and it does not change often for security reasons
Luthien
Hm..weird...ok..I've never noticed that before...
SHADOWIMPACT
yeah it used to be like three but now they switched to only one for even extra security
the idea is that some of the entry nodes will be malicious so it is safer to stick to one than toggle and make sure that over time at least some of the traffic will have passed through a malicious entry
Luthien
ok..interesting
SHADOWIMPACT
of course some users who pick and stay with a malicious one will be screwed for a bunch of months on end lol but the rest will have more security so this is how it is worth it
Luthien
Wow-really? So there's no way for them to manually force Tor to pick a new guard node?
SHADOWIMPACT
there is, EntryNodes in the torrc
either that or removing the state file so that tor picks a new entry
         

Luthien
Or I suppose they could elect to use a bridge if they weren't using one already
ok
SHADOWIMPACT
:)
cacahuatl
Guard nodes are kept long term for a reason: https://blog.torproject.org/blog/improving-tors-anonymity-changing-guard-parameters
Luthien
cacahuatl-thanks for the link
Anyone here a relay operator?
zdm
I'm trying to install tor (not tbb) on ubuntu 15.04 but I dont see install instruction for that here: https://www.torproject.org/docs/debian.html.en
Do I just follow the Trusty Tahr instructions?
Luthien
Try it and see-as long as you have the correct repository added like it says in the tutorial, then the version of Linux you're running shouldn't matter-it's about making sure you have the right version of Tor
SHADOWIMPACT
cacahuatl
there is one for "vivid" it seems, it's just not automagically generated by the site
generally you want to replace 'trusty' or whatever for the codename provded by `lsb_release -c`
zdm
hmm, I cant connect to oftc with tor but it seems like I installed tor correctly.
Luthien
IDENTIFY
For the relay operators: what are some of the cons of staying with the default ORPort of 9001 and DirPort of 9030? I see here: https://www.torproject.org/docs/tor-relay-debian that it is encouraged to switch them to ports 80 and 443, for the users who have restrictive firewalls, but was thinking of sticking with the defaults unless there's a drawback to that?
squeegily
Is there a way to know the latest Tor version?
From a shell script
I have in my crontab
sh -c 'VERSION=detect_latest_tor_version;curl -L https://www.torproject.org/dist/torbrowser/4.5.2/tor-browser-linux64-"$VERSION"_en-US.tar.xz | tar xJC "$HOME"'
but how do I detect the latest tor version?
cacahuatl
er, you need another version, instead of 4.5.2 in the path there but https://www.torproject.org/projects/torbrowser/RecommendedTBBVersions
squeegily
Is
curl -L https://www.torproject.org/projects/torbrowser/RecommendedTBBVersions | grep -oP '^\"\K[0-9\.]*' -m 1
The recommended way to get that version?
It seems a little off
cacahuatl
No, I don't think anyone is recommending grep to parse json
squeegily
What's the best way to parse it in a shell script? The script is currently a one-liner
cacahuatl
Try stackexchange for programming tips :)
squeegily
I'm wondering if there is any way, in a shell script, to know the latest version of the tor browser bundle
Is parsing that JSON the only way?
cacahuatl
No, it's probably not. Maybe you could look at how tor browser does it's own checks for updates, too.
velope
Luthien: default ports are totally fine. what any single relay does, doesn't make much difference.
Luthien
velope: Thanks, that's good to know!
         

tacky
oh, that's nice. https://trac.torproject.org/projects/tor/attachment/ticket/10896/0001-Educate-tor-on-OpenBSD-s-use-of-divert-to-rules-with.patch
Negative_Se7en
hello. i sent an request e-mail to bridges@torproject.org for obfs3 bridges. i tried 2 or 3 times, but there is not response. i need new bridges how can i get new bridges ?
cyne
how long have you waited for a reply to those emails?
Tichodroma
Negative_Se7en: send your bridges as a PM
grievershymn
TOTAL AMNESIAC INCOGNETO LIVE SYSTEM
ryonaloli_1
wat
justaguy
o_O
grievershymn
crazy
na
Farshid
tor does not send bridges ? why is that?
sending "get transport obfs4" or "get transport obfs3" to bridges@torproject.org does not work since yesterday, is it down?
Vigdis
Hi, if I ask some tshirts because I/we run big exit nodes, how fast can I receive the link to get them currently?
qwd
Hi, a few hours ago I noticed the password for my router didn't work anymore and when I tried to log in with ssh I got a warning saying remote host identification has changed. I'm thinking maybe it might have something to do with me seeding the latest tails before it was officially released. Any advice on what to do?
jager
can you just not go to foxnews.com on tor? Access Denied
murb
jager: feature.
jager
but but but
/scientists-explain-how-should-pet-your-cat/
that's important stuff man
murb
they choose to block tor.
jager
weird
DevDaniels
jager: You can always subscribe to cat facts
FlashySlash
hey, is it rlysafe to surf deep web with Tor?
tacit
hello
Am i actually texting?
FlashySlash
yes
tacit
cool, thanks I should probably read the man
Peng
"texting"...
Stevko
writing text
FlashySlash
texting write
tacit
yes, that is correct. my apologies, I failed all of my english courses :-)
FlashySlash
Is your Tor working? Because I'd been using it for like 5 minutes and since then it says "unable to connect"
tacit
did my invite work @FlashySlash?
FlashySlash
What invite?
tacit
uess not, lol
I was practicing my invite skillz
I have none, like so many social skillz in my life :-(
FlashySlash
lol
tacit
@FlashySlash are you a pro at using cli irc's?
FlashySlash
I don't even know what cli is tacit
tacit
oh , I thought that it was short for command line interface
help
lol my bad
Jim_D
First time using Irssi? Lol
tacit
whois flashyslash
?
FlashySlash
just use / in front of commands dude
tacit
i know that now, lol
this fun, takes me back to my primary school days :-)
is*
well it was a pleasure everyone, I hope you all enjoy your days. Back to learning Django ;-)
FlashySlash
Guys is it safe to download using Tor?
Jim_D
Download what? If you're downloading an executable, make sure to download it over HTTPS.
FlashySlash
archives
Jim_D
Jim_D
If it's just an archive with ordinary files, say music, there should be no problem. But keep in mind that with Tor, it is _possible_ (small chance though) that there is a man in the middle when transferring data over non-HTTPS connections. So executables should preferrably be downloaded over HTTPS, and if possible check its checksum.
« prev 1 2 next »