logs archiveIRC Archive / Oftc / #tor / 2015 / August / 31 / 1
benmezger
hey guys
kurius
Is there a way I can change the ExitNodes by talking to the control port? I don't want to change a torrc every time I need to switch my exit country.
benmezger
Is this even possible: Use google chrome, without the tor network, but everytime I access google.com, it will pass this connection through tor?
cacahuatl
kurius: Yes, you should read the control spec.
GDi
hello guys, can you help me guys set up TOR on my debian desktop pc
its actually crunchbang based . but its still debian
velope
you mean "Tor" or "tor" -- see the channel /topic
as a client for your own traffic, the debian tor package doesn't need any setup
cacahuatl
download the Tor Browser from https://torproject.org and run the provided 'start-tor-browser' script or the provided .desktop file
velope
right
that's instead of the tor package, although you can also have the package there for other purposes
GDi
is that purpose like, if i want all my traffic to be inside TOR?
not just browser
like when i connect ssh, ping, etc
         

twim
"It's 'Tor', not 'TOR'"
velope
sort of
tor only transports TCP traffic, so you can't use it for ping
GDi
sorry
i see
velope
it's far better to "torify" apps individually rather than attempt to automatically shove everything through tor, which will result in some breakage, or lead you to assume that an app is anonymous just because it's going through tor, which is false.
to see what life in a tor-or-nothing OS is like, you might first experiment with Tails, perhaps in a VM
GDi
oh, velope , i did not know that. Thanks for that suggestion
on the torproject website, i look at the debian tor installation, why is the need to put a line or two in the source.list.
is it if i want to have the newest Tor?
i thought apt-get install tor is enough
woosa
if a tor client is listening on 2 ports and i switch from 1 to the other i should get a new session rite
GDi
hello
Peng
GDi: The deb.torproject.org repository will give you the newest release, yes. Whether your OS's package is new enough depends. On Debian, yes, it normally is. On some Debian-derived distros like Ubuntu, it's old as hell. I don't know about CrunchBang.
GDi
Ok Peng . thanks
got it
Peng: so do i need to add deb.torproject.org on sources.list then?
Peng
I don't know about CrunchBang.
Also... CrunchBang is dead, right?
stoned_
dst is confusing
"Opponents argue that actual energy savings are inconclusive,that DST increases health risks such as heart attack"
GDi
Peng im talking about debian not crucnhbang anymore
velope
yes, for debian itself you can use the debian repositories
which version you get depends on what else you have installed and what you ask for
torbrowser though is not an OS package at all but just a self-contained archive that you can only download from torproject.org
and that's what you should begin with
pakcjo
hi
What's the minimum hard disk size required in the data directory to run a tor relay? (sorry if this was answered already)
qwerty1
unless the datadir is on its own filesystem tor won't be the only thing needing space to write things to that fs
how much space is there?
pakcjo: is this an embedded device where every kb counts?
pakcjo
qwerty1: yes
qwerty1: I have 2 MB :/
kurius
cacahuatl: thx for the guidance, I didn't know where to read.
SETCONF will do it apparently :P
pakcjo
qwerty1: but, I could use tmpfs... Just not sure which should stay, keys directory, fingerprint file?
cacahuatl
pakcjo: https://www.torproject.org/docs/faq.html.en#UpgradeOrMove
pakcjo
cacahuatl: thanks
So, a setup where I create a directory in tmpfs (making it tor data directory) and inside of it a symbolic link to keys directory in disk would do?
descriptors would be lost after each reboot, is that ok? no problems? (only what's inside keys directory would be kept)
         

cacahuatl
pakcjo: http://opensource.dyc.edu/tor-ramdisk this might be a good project to look at
kurius
SETCONF StrictNodes=1 results in COMMAND FILTERED
wtf, why
pakcjo
cacahuatl: thanks!
"Configured to measure directory request statistics, but no GeoIP database found" how can I configure it not to requests statistics?
cacahuatl
pakcjo
thanks again
probably my device is not enough to run tor... it got killed with out of memory :(
mrphs
what device? and running tor as a relay or what
pakcjo
mrphs: relay, my router... tp-link :p
mrphs
pls dont run a relay on a router or any device that can't be secured or handle min of 250KB (each way) traffic :)
revenant1
pakcjo: maybe you could put openwrt on it?
pakcjo
revenant1: already
tysol
mrphs: Why not btw? Entropy for keys?
mrphs
tysol: it's too slow that's gonna hurt the network.
tysol
Don't clients take ping into account when creating paths?
Arn't more nodes better? Even if slow?
mrphs
no
tysol
:(
mrphs
in the past when there wasn't enough number of the relays, yes, that was the case
but nowdays capacity of relay is more important than network diversity
tysol
Bad trade off that... some users would choose safety over speed. Think china / iran
mrphs
what makes you think tor isn't safe?
pakcjo
news ;)
mrphs
unfortunately,running a tor relay on your router that is probably getting internet from comcast or verizon and cant handle the min traffic isn't going to help anyone
tysol
If you have few fast relays, and some of them are in a 5 eyes controlled area, there's a chance clients will build a path using nodes that are all being monitored. And so that user will be identified as connecting to site
mrphs
good thing there isn't just few of them :)
tysol
If the choice is large, and more available nodes are outside 5 eyes, then the chances of creating a bad path are less
mrphs
a node that can't handle min of 250KB would slow down the whole connection in that path. and wouldnt be use to anyone anyways.
tysol
Long term, it would be nice to have a relay in every net cafe. Even if it's on a slow home router
cacahuatl
and since a lot of traffic will traverse network chokepoints, even if the relay isn't located there itself.
it's not really meaningful if the relay is in "FVEY" countries or not.
pakcjo
yes, but on the other hand, I haven't heard of anything doing something big in tor that hasn't been deanonymized, of course you can blame that on the user itself... but
tysol
Ok then. How about this for a future feature of the protocol, splitting and reconstituting data using multiple paths?
cacahuatl
Maybe you want to go and read anonbib and the documentation section?
tysol
Like. Make a path A>B>C and X>Y>C and have packets joined at C before they exit the network
cacahuatl
A lot of these questions are covered there.
tysol
Just shooting the breeze
mrphs
yes, more reading would be nice. here's a link for the curious mind: freehaven.net/anonbib/
tysol
Not looking to reinvent the world. Just random ideas.
mrphs
no offense, but anonymity software is based on actual research not random ideas.
tysol
;_; But all these potential nodes! sniff!
pakcjo
btw, my connection is capable of 250 kB/s
revenant1
only exits, potentially
tysol
Say i have a PC, with 2 conncetions from 2 ISPs, is it possible or desireable to run a relay that receives traffic on one interface, and only forwards packets to other nodes on the other interface?
revenant1
correlation...
« prev 1 2 3 next »