logs archiveIRC Archive / Oftc / #tor / 2015 / July / 5 / 1
qwerty11
a complete http proxy would be a lot of code
but one only supporting CONNECT wouldn't need to be
hmm
TomvdW
a complete http proxy shouldn't be too much code either, you only need to parse the initial line as it contains the hostname and port
GET http://www.torproject.org/index.html.en HTTP/1.1
qwerty11
lots of edge cases to think about
but one that didn't handle them indeed wouldn't need to be complex
TomvdW
oh, you'd break on connection re-use
only connect is easy :(
qwerty11
only need to support connect for most things and other verbs would just get an error
the same error about tor not being an http proxy
trouble is then it's hard use ideological arguments for why the rest isn't implemented, so such a patch would probably not get merged
TomvdW
rofl, I just noticed one of my top20 relays became unmeasured because of the bwauth mess :D /cc arma
https://atlas.torproject.org/#details/9030DCF419F6E2FBF84F63CBACBA0097B06F557E scroll down
averaged 20MB/s, then poof, unmeasured and all gone
same here: https://atlas.torproject.org/#details/B7EC0C02D7D9F1E31B0C251A6B058880778A0CD1
so yeah, that's 800Mbit/s (up+down) lost to the bwauth issue
wgreenhouse
squeegily: freenode hidden service is down, make alternative arrangements (e.g. ssh tunnel from a friend, or getting lucky with an ipv6 tor exit, as freenode doesn't really know them yet)
toralf
TomvdW: seems, that few parts of those traffic now goes over my relay - I was wondering already why my exit relay has currently about 1000 outgoing connections to other relay OR Ports whereas before the value was just about 50-100
TomvdW
right, that mention is what made me discover it (was looking to confirm what you saw)
         

toralf
ah - and now it slowloy goes down - currently about 640 connections
cheapest_mf
Hello. Anyone here?
teor
Please ask a question
cheapest_mf
drugs taboo here
SHADOWIMPACT
inappropriate here, try #nottor
curious_watcher
curl -s http://cbsg.sourceforge.net/cgi-bin/live | grep -Eo '^<li>.*</li>' | sed 's,\</\\?li\>,,g' | shuf -n 1
adobrawy
Hello, I think I have trouble with configuring my tor middle relay to support IPv6. Googling don't give me accurace result. Is it the good place to ask question about that?
SHADOWIMPACT
yeah
grift
i want to use tor to connect to irc servers (oftc/freenode) with irssi. when i try to connect i get this:
Irssi: Unable to connect server frxleqtzgvwkv7oz.onion port 6697 [Operation not permitted]
and this:
WARNING torsocks[4388]: [connect] Connection to a local address are denied since it might be a TCP DNS
any hints as to what i might be doing wrong here please? i am using torsocks, and that sasl_cap.pl script
rixxer
I'm noticing about 80% of the nodes being used in the circuits on any given connection are in Germany .... curious if anyone else is experiencing this and/or if I should be concerned
adobrawy
I am sorry SHADOWIMPACT. I misses your answer. My torrc is: http://wklej.to/tHs80 (I drop commend and password), but atlas and globe don't show support ipv6
What I misses?
destrudo
things.
adobrawy
Or is it all?
destrudo
he said "Yeah"
and that was it.
jweiss
grift: you've probably figured it out by now, but freenode stopped allowing tor connections months ago
I suspect that you wouldn't have that warning connecting to oftc since it's not on an onion
grift
jweiss, thanks, i actually handnt figured it out since there seem to be more factors in play here
one of which is that my irssi does not seems to be be built with socks5 support
i probably should have tried it with oftc as well
jweiss
weechat is actually better and has mostly the same interface
that being said, it's still a bit safer to pass it through torsocks imo
qwerty1
there's a new option for torsocks iirc
AllowOutboundLocalhost
grift
yes i tried that as well
qwerty1
i used to have to patch torsocks before that was added :)
hmm
         

grift
thats when i got ssl errors
qwerty1
try with socat then
grift
i might yes
torsocks is neat though
i am using it for git, mutt, bti etc etc
qwerty1
no problems with any apps so far?
grift
irssi
qwerty1
other apps
grift
surprisingly not
jweiss
if the ssl error is in connection with freenode, it's a known issue. check out https://freenode.net/irc_servers.shtml
grift
jweiss yes i read that, what part are you referring to specificly?
jweiss
it gives directions on how to make finicky irssi happy with the certs they use
grift
because i think i pretty much tried that all
well ssl works fine with freenode with plain ssl or plain sasl
just not as soon as i use the onion
jweiss
oh, that's to be expected
grift
is it?
jweiss
you'll have that on all onions since we don't have a CA issuing certs for them
grift
o i see
jweiss
you just have to disable cert verification
grift
anyhow without ssl it still trows an error just not ssl related
refused or something
jweiss
(Action) wishes more software were like fetchmail and supported cert fingerprinting
grift
o thanks for the advice
i tried tsocks but that didnt work either
torsocks tsocks irssi
lol
jweiss
like I said, freenode disabled access from tor quite some time ago because of abuse and haven't re-enabled it since
grift
ok
ill for get about freenode/tor
google also wont let me search when i am on tor
so i went back to gogoduck
jweiss
either that, or find yourself a frontend host and use it through tor via proxychains :)
grift
funny thing is, that i use gmail with mutt but that seems to work fine with torsocks
so i guess google didnt block that
i have to admit though, i am novice with this, i might be overlooking or misunderstanding things
jweiss
I should probably also mention that proxychains supposedly silently drops back to normal connections under certain error conditions. However, if you run things as a fenced user (one firewalled off so that can't access anything except via the proxy), then it should be safe
yes, you can use gmail over tor, but eventually they'll lock your account and demand a phone number to "verify" it's you
grift
yes
thats a good point
jweiss
if you need a free email account somewhere that's tor-friendly, try cock.li
grift
noted, thanks
jweiss
most of the domain name options are pretty dubious, but they have at least one that isn't (airmail.cc)
whyrlpool
can anyone advise me as to why my tor relay isnt using much bandwidth? (Fingerprint: 04334CB737E70A8B372EBE80F192471A19EA8EE3 )
it's got 100mbps up and down, tor is only using 1-3% CPU, and has been up for a month and a bit
It's also using the minimal exit policy
grift
can someone clarify the use of some of these ports (i need to give them a appropriate name) tcp 9100 tcp 9001-9004 tcp 9030-9033
i suppose i should call tcp/9100 tor trans port as per what i read on internet
« prev 1 2 next »