[tor-relays] Re: WebTunnel Hardware Requirements

fine, and I don't expect that to happen often. Let us know if I'm wrong. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan.

[tor-relays] Re: Regarding IPv6 & webtunnel bridge

solve the DNS of your website and will use the IP they get from it. > It's a webtunnel bridge and that complicates things, for obfs4 the > configuration is pretty much straightforward. You are right, webtunnel bridges are a bit more complicated to set up. Sorry. --

Re: [tor-relays] turning off BridgeDB and the future of moat bridges

Quoting Toralf Förster via tor-relays (2024-10-02 17:07:56) > On 10/2/24 13:03, meskio wrote: > > Not a concrete one. My plan is to review the situation early next month and > > depending on the usage bring the conversation on what to do with those > > bridges > > to ou

Re: [tor-relays] Docker Snowflake Proxy Multiple IPs

n I specify which IP address to use with this option? Yes, you are meant to use the host network, because snowflake will open a different port per connection. It will use whatever is your defaulted routed IP address to the internet. I don't know enough of docker to setup manual routing f

Re: [tor-relays] turning off BridgeDB and the future of moat bridges

Quoting Toralf Förster via tor-relays (2024-09-30 21:24:34) > On 9/19/24 18:46, meskio wrote: > > We plan to watch the usage of moat bridges and evaluate moving them > > to another distributor depending on the usage[3]. > > Is there any timeline for the movement? Not a con

[tor-relays] turning off BridgeDB and the future of moat bridges

the usage[3]. Thank you for running bridges. [0] https://gitlab.torproject.org/tpo/anti-censorship/bridgedb/ [1] https://gitlab.torproject.org/tpo/anti-censorship/rdsys/ [2] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/42086 [3] https://git

Re: [tor-relays] Webtunnel type bridge Tor Metrics

ur bridge, like if is functional and/or it's bandwidth good enough in: https://bridges.torproject.org/status?id= -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Re: [tor-relays] lyrebird (was: bridges for Lox)

Quoting meskio (2024-02-28 10:40:04) > Quoting boldsuck (2024-02-27 21:14:51) > > On Dienstag, 27. Februar 2024 20:09:17 CET s7r wrote: > > > Is there anything needed to do with previous setups that use obfs4proxy > > > from > > > it's default previ

[tor-relays] lyrebird (was: bridges for Lox)

nfigs or a post-install script will adjust > default > installations. This will probably be in the release notes. AFAIK lyrebird is not yet packaged for debian and I don't know of anybody working on it. Do you know of some work being done for this to be included in trixie? Will

Re: [tor-relays] bridges for Lox

Quoting boldsuck (2024-02-27 16:38:59) > Is hidden OR port OK for lox based bridge? > > ORPort 127.0.0.1:14255 > ORPort [::1]:14255 > AssumeReachable 1 Yes, that will be fine as long as your obfs4 port is reachable. -- meskio | htt

Re: [tor-relays] bridges for Lox

Quoting Toralf Förster via tor-relays (2024-02-26 21:07:50) > On 2/26/24 20:07, meskio wrote: > > Rdsys, the new bridgeDB, will not automatically assign bridges to Lox for > > now, > > but will instead accept bridges with the 'BridgeDistribution lox' > >

[tor-relays] bridges for Lox

d what does not. Thank you [0] https://gitlab.torproject.org/tpo/anti-censorship/lox [1] https://community.torproject.org/relay/setup/bridge/ -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio

Re: [tor-relays] webtunnel bridge docker image still uses 0.4.7.13

notice. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. ___ tor-relays mailing list tor-relays@lists.torproje

Re: [tor-relays] obfs4 bridge current setup is not entirely clear

istenAddr line, the second one is simply ignored. > Tickets for this exist. > > So what is the best way to for an user to open both IPv4 and IPv6 > pluggable transport ports? This is not currently supported, but there is some work done in that direction: https://gitlab.torproj

Re: [tor-relays] Help Turkmens to bypass Internet censorship: run an obfs4 bridge!

ys is ignoring the running flag now :) > > > * To hide your bridge's ORPort: > > > ORPort 127.0.0.1:auto> > > > AssumeReachable 1 Yes, as mentioned not publishing the OrPort is supported. But we haven't mentioned it much around. We have an issue where we are disc

Re: [tor-relays] How do I set up a conjure Bridge?

useful for that. There are instructions on how to set it up here: https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/webtunnel/#docker-setup -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net

Re: [tor-relays] Question regarding bandwidth ratio on bridges.torproject.org and a few further, small, (probably related) questions

gt; metrics.torproject.org, which means that apparently the bridge is no longer > distributed. What could be the reason that the distribution mechanism > suddenly > changed? I don't know, as long as your bridge is functional it should

Re: [tor-relays] (Announcement) WebTunnel, a new pluggable transport for bridges, now available for deployment

u need IPv6 address?', as webtunnel bridges claim to have IPv6 addresses bridgedb. But the fix is already in its way, I hope will be delpoyed soon: https://gitlab.torproject.org/tpo/anti-censorship/bridgedb/-/merge_requests/56 -- meskio | https://meskio.net/ -

Re: [tor-relays] (EVENT) Tor Relay Operator Meetup - June 24, 2023 @ 18.00 UTC

expect your proxy to keep being useful even if you don't rotate it. But if you have the possibility to do it once every few months might be handy if censors start catching up with stable proxies. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- M

Re: [tor-relays] For some reason, my bridge is still saying it has no distribution mechanism, despite it is listed as email in my torrc and says it is overloaded?

f there is something wrong with it. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. ___ tor-relays maili

Re: [tor-relays] For some reason, my bridge is still saying it has no distribution mechanism, despite it is listed as email in my torrc and says it is overloaded?

idges.torproject.org/status?id=4D6E3CA2110FC36D3106C86940A1D4C8C91923AB I see you have configured obfs4 to use port 8081. Have you checked that there is not firewall or something blocking the connections there? Have you looked into the logs to s

Re: [tor-relays] obfs4proxy on arm64

eye-backports. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. ___ tor-relays mailing list tor-rel

Re: [tor-relays] security update for obfs4proxy

all bridge operators for the work here. Quoting meskio (2022-10-14 11:28:44) > Hello, > > The latest version of obfs4proxy (0.0.14) comes with an important security > fix. > If you are running a obfs4 Tor bridge please upgrade as soon as possible. > > If you use debian yo

Re: [tor-relays] Status of Bug #7349 - Obfsbridges should be able to "disable" their ORPort?

t exposed to the World. We do still need the ORPort reachable. The bridge authority does use that port to check if the bridge is running (marking the 'running' flag to it). We are still using that flag to decide what bridges are distributed, we'll like to revisit that in the future. But

Re: [tor-relays] Difficulties testing my bridge

ject.org/tpo/anti-censorship/pluggable-transports/obfs4/-/issues/40008 I'm sorry for the long wait. If you are reading this and run a bridge, please check that you are running obfs4proxy version 0.0.14 and tor has being restarted since it got upgraded :) -- meskio | https://meskio.net/ -=

Re: [tor-relays] security update for obfs4proxy

I > should shut down my two bridges. Yes, we are exploring if we can provide obfs4proxy in our own repo to solve this problem. In the mean time I have built a backport of the package for jammy: https://people.torproject.org/~meskio/jammy/obfs4proxy_0.0.14-1_amd64.deb I

Re: [tor-relays] security update for obfs4proxy

from: https://packages.debian.org/stable-backports/obfs4proxy -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. signature.asc Description

Re: [tor-relays] security update for obfs4proxy

A reminder: If you operate a obfs4 bridge, please upgrade obfs4proxy to 0.0.14 and restart the tor daemon. It is important to keep the users of your bridge safe. Thank you. Quoting meskio (2022-10-14 11:28:44) > The latest version of obfs4proxy (0.0.14) comes with an important security &g

Re: [tor-relays] security update for obfs4proxy

Quoting Toralf Förster (2022-10-17 12:56:04) > On 10/17/22 11:41, meskio wrote: > > Will be nice to add those fixes to the package. Maybe you can open two > > issues on > > the debian bugtracker for them. > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021911

Re: [tor-relays] security update for obfs4proxy

add those fixes to the package. Maybe you can open two issues on the debian bugtracker for them. https://www.debian.org/Bugs/ Or feel free to directly send patches to the package: https://salsa.debian.org/pkg-privacy-team/obfs4proxy Thanks for noticing. -- meskio | https://meskio.net/ -=-=-=

Re: [tor-relays] security update for obfs4proxy

Quoting Toralf Förster (2022-10-14 20:17:58) > On 10/14/22 19:09, meskio wrote: > > The upstream changelog is here: > > https://gitlab.com/yawning/obfs4/-/blob/master/ChangeLog > > But I understand is not easy to understand what the problem is from that > > changelog. &g

Re: [tor-relays] security update for obfs4proxy

Quoting Toralf Förster (2022-10-14 18:08:38) > On 10/14/22 11:28, meskio wrote: > > The latest version of obfs4proxy (0.0.14) comes with an important security > > fix. > > Is there a Changelog available ? The upstream changelog is here: https://gitlab.com/yawning/obfs4/-/

[tor-relays] security update for obfs4proxy

Forum: https://forum.torproject.net/c/support/relay-operator/17 We appreciate a lot your effort and time! Thank you -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos va

Re: [tor-relays] Most useful bridge distribution

y will put more resources in finding them as many users use them. While email bridges are not so much blocked. We believe settings are telegram are harder to discover for censors, but it might be that censors hasn't catch up with them yet. This is a continuous experimentation.

Re: [tor-relays] bridge distribution

ried to connect to your own bridge? Does it work for you? -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. signature.asc Description: signature ___

Re: [tor-relays] We need much more bridges with obfs4 and iat-mode set to 1 or 2..barely can't find any.

I said you are welcome to work on it. [0] https://gitlab.torproject.org/tpo/anti-censorship/rdsys/-/blob/main/doc/moat.md -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=

Re: [tor-relays] Setting a bridge to automatically change IP adresses

er year or something like that, but don't do it on daily basics. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croata

Re: [tor-relays] How can I tell if standalone Snowflake is running?

to see it in journald. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. signature.asc Description: signature

Re: [tor-relays] Bridge lifecycle expectations

Quoting flux via tor-relays (2022-03-23 22:52:29) > > On 3/23/22 14:11, meskio wrote: > > You can monitor how many > > connections you get from each country (by looking at stats/bridgestats) and > > if > > you were getting many connections from a certain countr

Re: [tor-relays] Bridges not being distributed

metrics where not being produced correctly because the disk was full. Is corrected now, but it might take some time for metrics.tpo to display the new metrics. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.tx

Re: [tor-relays] Bridge lifecycle expectations

the coming weeks. BTW, ip counting is rounded to 8, so seeing 8 might mean you have a single client connecting to it or up to 8. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=

[tor-relays] update obfs4proxy if you run a bridge

4proxy [3] https://hub.docker.com/layers/thetorproject/obfs4-bridge/0.11/images/sha256-87cd986d98a76c8af93f5b84ee07b0ae232fd013b6122dfaef188900ac36d968 -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/cryp

[tor-relays] rdsys was ignoring BridgeDistribution

[0] https://lists.torproject.org/pipermail/tor-relays/2022-February/020365.html [1] https://metrics.torproject.org/rs.html -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

[tor-relays] new BridgeDB version using rdsys

ut will be soon in use. If you notice any problems with the bridge distribution don't hesitate to open an issue[2] or contact me. [0] https://bridges.torproject.org [1] https://gitlab.torproject.org/tpo/anti-censorship/rdsys/ [2] https://gitlab.torproject.org/tpo/anti-censorship/rdsys/

Re: [tor-relays] questions about raspberry pi bridges

x27;s docs that it's a terrible idea > to give a bridge a nickname such as 'TorCuba'? It should!! Why do you think is a terrible idea? -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=

Re: [tor-relays] snowflake incoming UDP ports

Quoting Toralf Förster (2022-02-21 22:06:36) > On 2/19/22 12:48, meskio wrote: > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: > > https://meskio.net/crypto.txt > > OT, but: You're still at freenode ? No, I left a while ago, but looks like I forg

Re: [tor-relays] snowflake incoming UDP ports

a conversation about that in the forum few months ago: https://forum.torproject.net/t/a-few-questions-about-the-standalone-snowflake-proxy/387 -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-

Re: [tor-relays] snowflake vs bridges (vs node)

be your default public address. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. signature.asc Descr

Re: [tor-relays] snowflake vs bridges (vs node)

e relays. If you run both in the same IP address and the censor has a way to discover one but not the other both of them will be blocked at once. So you are making it easier for the censor to discover them and block them. That is why we don't want

Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?

you think? What do you mean about attack via email? -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. si

Re: [tor-relays] Responding to Tor censorship in Russia

t it after the down time has passed. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. signature.asc Descript

Re: [tor-relays] Responding to Tor censorship in Russia

like a big range to block without problems. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan. signature.asc Description: sig

Re: [tor-relays] Tor Bridge Question

esn't have the resources of the GFW just to figure out employees that run bridges. Thanks for helping the tor network. Bridges are very useful, remember to configure it with obfs4 :) -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://

Re: [tor-relays] Burning Bridges

bridge users you are not running one and will be good if you rotate the IP address once in a while. Thanks for running a bridge. -- meskio | https://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: https://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-