logs archiveIRC Archive / Oftc / #tor / 2015 / July / 9 / 1
cryptanon
Hi. I was reading a report that was from Snowden docs released in December of last year that said Tor alone gave NSA major problems. Is this still true even though it's been a good three years from there creation date as far as anyone can tell? Thanks.
misc
yes
cryptanon
Ok that's what I thought! Thanks
steve
"some guy called misc on the internet told me i was safe"
anontalk
Does anyone know where I might be able to find the directory authority IP addresses? Just curious as to what they are. Ty
scotman
i have two questions. orbot and tor project globe
i have a rooted phone and trying orbot as transparent proxy but it stops all internet from working in apps
except for ones that use the http or socks proxy
this does not matter whether i enable or disable the app from transparent proxying
i disable transparent proxying and everything works fine again
ncl
anontalk: https://globe.torproject.org/#/search/query=&filters[flag]=Authority
scotman
and is the globe website up
it may just be slow for me
i will wait
ncl
the authorities are also hardcoded in the source
https://gitweb.torproject.org/tor.git/tree/src/or/config.c
line 844
         

anontalk
Thanks!
quaddex
Hi. Having a bit of an issue setting up a hidden service on Fedora again. Getting this problem when the hidden service dir is chowned to root:root -
Jul 09 00:08:04 user tor[548]: Jul 09 00:08:04.338 [warn] /opt/tor/hiddenservice is not owned by this user (toranon, 993) but by root (0). Perhaps you are running Tor as the wrong user?
and this one when chowned to toranon:toranon
Jul 09 00:01:17 user tor[755]: Jul 09 00:01:17.406 [warn] /opt/tor/hiddenservice is not owned by this user (root, 0) but by toranon (993). Perhaps you are running Tor as the wrong user?
For what it's worth, when the Tor process originally created the dir for me, it created it under the toranon user & group and with permissions of 700
Not sure how to fix this
I don't really want to run Tor as root
I should note that though both of these come up as just warnings, they do actually stop the Tor service from starting
anontalk
If anyone responded to my question, I missed it. Sorry
Thumper2Kewl
hello room
anontalk
Hi
Thumper2Kewl
whats up
anontalk
Not much. Just trying to find Tor directory authority IPs out of curiosity. Looking through tons of source. Any easier ways. Globe didn't seem to work.
Thumper2Kewl
idk about that im new to tor
anontalk
Ok thanks anyway.
Thumper2Kewl
i got it on my phone just fine but for some reason cant make exe work on my pc
quaddex
anontalk: I seem to remember Appelbaum noting in one of his speeches that they're a set of IPs hardcoded into the source somewhere
There's something like 10/12 of them, but I can't really help you find where they are
anontalk
I got the 844th line of Tor source. Been reading it, but I don't know C that well.
Thumper2Kewl
anyone have any clue { i click the exe and see an hourglass for 1 sec then nothing }
have tried for the life of me but cant figure it out
it doesnt even launch a process
anontalk
Not really sure as to what might be going on. Make sure all of your OS software and TBB are up to date.
quaddex
Thumper2Kewl: If you're looking at /src/org/config.c then yeah, that's them
second line of each entry has the IP
Thumper2Kewl
thats anontalk
quaddex
my bad
anontalk: Yeah you're looking in the right place
Not sure if there's much you'll be able to do with the list, but still
https://gitweb.torproject.org/tor.git/tree/src/or/config.c#n852
anontalk
Good to know I'm looking in the right place. When Tor starts boot strapping, what does it mean when it says 5% connecting to directory server. Is it talking about the IPs that I'm looking at? Also, is that connection encrypted?
quaddex
I think "5%" refers to how far it's got through the whole bootstrapping process
So it's considering "Connecting to directory server" as the first step, then downloading the list is the next, then connecting to guard relays next
And I can't see it not being encrypted. Though there are some fingerprints there, and some of the servers seem to be listening on port 80, so maybe the directory is being served unencryped, but signed with the authority server's key, which is hardcoded into the source.
Though I'm no expert at all. Just looks like that to me.
Even if the directory list is being served over pure HTTP, it can't really be tampered with if it's being signed with a key that's hardcoded into the source.
bentler
any idea how to make /etc/resolv.conf changes stick? whonix guide for other OS workstations says to modify that file but it goes away on reboot
         

anontalk
Thanks for the info. If a firewall controled by a government were to add those addresses to a blacklist, would Tor stop boot strapping and fail to connect?
quaddex
Pretty much, yeah.
There's a good talk that's probably on YouTube. It's fairly old now, but pretty interesting, but it covers a lot of those types of questions. https://www.youtube.com/watch?v=GwMr8Xl7JMQ
Of course there are Tor talks pretty much every year at DEFCON and CCC and I would urge you to go watch them all. Most are on YouTube.
anontalk
I've seen a lot of them. I'd think that pluggable transports like Meek and OBFS proxy would be able to get around a directory authority block, wouldn't they? Thanks!
quaddex
Not sure. I need to look further into pluggable transports to find out.
I think they're probably a newer development than that video, so maybe you're right.
Thumper2Kewl
wtf lol
kernelcorn
in the Tor Browser, where does the Tor instance log events to? Is there a file?
pte_petey
hi
I'm trying to setup tor with a vpn
kernelcorn
VPN before or after Tor?
pte_petey
but I'm having some problems with the vpn bit - it was working before but now I can't connect to the VPN network
VPN - > Tor - > Tor Bridge
i also downloaded dnscrypt because I want to use opendns
but not sure how that fits in if I'm using a vpn
kernelcorn
wait, what? Don't you mean VPN -> Tor bridge -> Tor?
pte_petey
yeah I think you're right :)
kernelcorn
Thumper2Kewl: is this Windows 7?
Thumper2Kewl
64bit vista
this is first program that i ever had wouldnt launch installer
kernelcorn
so what steps did you take? You went to the website, downloaded Tor, and then?
Thumper2Kewl
tried to run exe nothing inbetween
pte_petey
hi
if I want to route all my macs networking through TOR typically i would have to point the sock 5 to 127.0.0.1 right
but if i'm using a vpn do I have to do the same for the vpn connection, the wifi or both ?
likewise for opendns
unknown12
Hey can anyone guide me or let me know if there is a document on how to host an exit node ?
kernelcorn
unknown12: have you set up a relay before?
might I ask where you are trying to set up the exit, and under what operating system?
pirate4096
Hi. I'm looking for the directory authority IP addresses. I went through a bunch of source, but couldn't find them. Could anyone tell me where I can find them easily.
ncl
pirate4096
Is their a way to search for the tips of the directory authorities? If not, that's okay. Thanks for all the help!
cacahuatl
"tips"?
unknown12
No actually I havent
kernelcorn: I have not set up a relay node yet
the os is ubuntu and its the US with limited exit policy
scientes
Why does the tor browser use so much ram when there are no tabs open
also it wont create a new profile when the current one has been deleted, instead it errors
qwerty1
scientes: https://www.areweslimyet.com/
see also https://wiki.mozilla.org/Performance/MemShrink
MemShrink is a project that aims to reduce the memory consumption of Firefox (on desktop and mobile) and Firefox OS. There are three potential benefits.
1. Speed. Firefox will be faster due to less cache pressure, less paging, and fewer/smaller GC and CC pauses. Changes that reduce memory consumption but make Firefox slower are not desirable.
2. Stability. Firefox will suffer fewer aborts/crashes due to virtual or physical memory exhaustion. The former is mostly a problem on 32-bit Windows builds with a 2GB or 4GB virtual memory limit, the latter is mostly a problem on mobile devices that lack swap space.
3. Reputation. Fewer people will complain that Firefox is a memory hog and that Mozilla ignores memory usage.
« prev 1 2 next »