logs archiveIRC Archive / Oftc / #tor / 2015 / July / 6 / 1
NoEUbutEUROPE
Hi there, does TBB and Tor provide some AppArmor profile separately?
cacahuatl
Not explicitly, there are a few bases out there to copy from
Hard to write apparmor for an app that a user might extract and run from an arbitrary folder
NoEUbutEUROPE
thats true
cacahuatl
https://github.com/micahflee/torbrowser-launcher/tree/master/apparmor here's a base to work from
NoEUbutEUROPE
thank you cacahuatl
I'm actually using torbrowser-launcher, so I have already them in my /etc/apparmor.d/ folder
but I do have 2 another Tor AppArmor related profile, named: "system_tor" and "torbrowser.start-tor-browser", do you know from where they come from?
cacahuatl
I think "system_tor" comes with the debian package
https://packages.debian.org/jessie/amd64/tor/filelist
vernor
is tor not welcome on oftc anymore?
Peng
vernor: It's been temporarily disabled due to abuse. It will be back sometime
vernor
wonder if there is a way to get on freenode from tor
         

qwerty1
simeka is now sending PM floods for some reason
yano
freenode blocks all exit nodes from connecting in the clear net
they use to run a .onion
but it hasn't been up since January
:(
vernor
that sucks
is this the only tor friendly server for irc
yano
pretty much :-\
verner
http://thehiddenwiki.org/?s=irc
:(
nothing
whyrlpool
would there be a noticable difference between my tor server being virtualised on kvm or openvz? Could run it on the actual server but I would prefer to install as little as possible on my hypervisor
(noticable difference in performance, just to clarify)
Peng
Do you even need much performance?
whyrlpool
well currently it's been sitting at 400kbps for a week
barely using any of the resources it has
verner
saftey is always more important :)
whyrlpool
Any way to debug what's preventing my relay picking up more traffic?
verner
it takes weeks to get busy from what i heard
whyrlpool
10 days uptime, ~2mo since the relay first went up
qwerty1
openvz is very thin virtualization
whyrlpool
it's currently on kvm
shadowalker
ohai
anyone where who can tell me how to gat a tshirt from tor? :)
cat-xeger
A search for "get tor t-shirt" returns https://www.torproject.org/getinvolved/tshirt.html
shadowalker
yeah well cat-xeger the page says "run a fast tor node for 2 months or more", mine has been running for more than 4 months, with some interruptions :) :p
Peng
shadowalker: have you registered it with https://weather.torproject.org/ ?
shadowalker
yup I did Peng
Peng
more than two months ago?
         

shadowalker
yes I did
Peng
ah...
FlashySlash
Can't anybody tell me what program is this https://i.imgur.com/CJE9jSc.png ?
hashes
5f220928799a9ac846da4a9936a99cb0c6388c833fc503d7bd0458668353f198 torbrowser-install-4.5.3_en-US.exe, the hash doesn't match, all the digital signatures are ok
never mind
mosasaur
I want tor-browser to open a new window if I click on a link, instead of it giving me this "already running" message. Can it do that?
open a link in a new tab then?
using -new-window as a command line argument doesn't work here, nor does using -new-tab
but these are listed with --help
-new-instance is failing too
aexl
hi. i need quick help. since upgrading to 0.2.6.9 (git-145b2587d1269af4) on debian jessie i get following:
Jun 29 23:42:39.000 [warn] Couldn't open "/media/cRAID/Tor/lock" for locking: Read-only file system
Jun 29 23:42:39.000 [err] set_options(): Bug: Acting on config options left us in a broken state. Dying.
algorythm
change that folder into something else
the lockfile has to be read-write
or if that is your USB stick, then remove the USB and flip the write-protection thingy (a plastic physical flip on the actual device) and reinsert it
aexl
sudo ls -Ahl /media/cRAID/Tor/lock
-rw------- 1 debian-tor debian-tor 0 Jun 29 23:05 /media/cRAID/Tor/lock
algorythm
its read-write for root only
oh no
it should work
aexl
sudo ls -Ahl /media/cRAID/ | grep -Ei tor
drwx------ 4 debian-tor debian-tor 4.0K Jun 29 23:40 Tor
algorythm
mount | grep cRAID
aexl
sudo ls -Ahl /media/ | grep -Ei craid
drwxr-x--x 7 aexl aexl 4.0K Feb 22 17:19 cRAID
algorythm
says perhaps its a read-only fs, just like the error output says it is?
aexl
/dev/md2 on /media/cRAID type ext4 (rw,nosuid,nodev,noatime,user_xattr,barrier=1)
algorythm
oh.
i has no idea then.
aexl
it's also suspicious that's it's directly after the update. i'll pastebin the log file somewhere.
algorythm
:|
aexl
kernelcorn
For those that weren't with us at PETS, David Fifield's talk on domain fronting via meek won an award for the best talk by a student. PETS had a number of exceptional talks, but it's refreshing to see one that causes significant impact with such a straightforward idea. Well done!
ruukasu
is there any way to bind a hidden service to a port on localhost?
I want to forward a port with ssh, like how you can do `ssh -NL 1234:example.com:80` to make it so that connecting to localhost:1234 goes to example.com
but with a .onion
TvdW
I use socat for that
ruukasu
ah, I've heard of that
how would I do that?
qwerty1
TvdW
/usr/bin/socat TCP-LISTEN:1234,fork,reuseaddr,range=127.0.0.1/8,su=nobody SOCKS4A:127.0.0.1:something.onion:22,socksport=9050
that command works great with Tor
ruukasu
TvdW: something.onion:80 or something.onion:22?
TvdW
oh, 80 then
read ssh, assumed 22
qwerty1
ruukasu: you can use a line like hiddenserviceport 22 1.2.3.4:22
TvdW
qwerty1: that's not what ruukasu is asking
qwerty1
oh nm
ruukasu
TvdW: I was just using ssh as an example because other than nat that's the only example of port forwarding I know :/
TvdW
/usr/bin/socat TCP-LISTEN:1234,fork,reuseaddr,range=127.0.0.1/8,su=nobody SOCKS4A:127.0.0.1:something.onion:80,socksport=9050
:)
qwerty1
yeah that socat command will work
ruukasu
yeah, that looks good, thanks
TvdW
I run something similar on all my bridges, for easy communication to the central server without disclosing the connection between them
etha
Hello. Can someone make it really clear to me how to setup a relay or bridge? I'm using linux, and I always fail.
TvdW
etha: 1) install tor 2) patch /etc/tor/torrc 3) start tor
etha
I have read how to modify my torrc
« prev 1 2 next »