« Gumby got a new driveGot another brain for Orac »

I took The EFF Tor Challenge

06/05/11

  09:52:32 pm, by The Dreamer   , 1090 words  
Categories: General, Software, Networking, Android

I took The EFF Tor Challenge

Link: http://www.eff.org/torchallenge

Earlier in the week, I got an email from EFF about their Tor Challenge. I had looked at Tor some time ago, but it seemed like a hassle to use. But, I am a support of EFF, and not just because I had lots of ReplayTVs and now a few TiVos.

So, I decided to take another look at Tor....I had started worrying about my privacy with some of my online activities, and I do support various human rights issues, etc.

The challenge called for setting up a relay. So, I continued looking and what I needed to do to make it do that. ORPort prefers to be either 9001 or 443...well, wouldn't go on 9001 on Orac, it conflicted with another service that I'm already running. So, it would have to go on a different port.

That, meant figuring out how to NAT on my WRT54GS...it doesn't do port NAT on inbound forwards, so I had to figure out how to add entries to iptables to make that go. That took some doing, but eventually I got that working. Not before I accidentally lost my rc_firewall, and had to restore for a rather old version. I should probably see about doing some kind of automated backup...

It defaults to going with exit relay, and I decided to go ahead...but use the 'reduced exit relay' policy. To see how that would work.

I set bandwidth and transfer limits on things....but first instance on the 'Orac' actually hit the limit, which made it hard to night surf for my own reasons. And, while I was on the torproject site, I decided to take a look at Orbot for both my Android phone and my Android tablet. And, I suppose I'll want to run it on my laptop.

One problem I seemed to have is that I couldn't get tor to work locally on my android phone on wifi, but it worked on 3g. I figured its some kind of conflict with the tor network seeing the relay at the same IP. Though later it started working, maybe that was the relay went into hibernation. I did set up 'Orac' as a central proxy for everything at home. Strange that when I think of private surfing I tend to use my DSL and general surfing on Cox. I had gone with default gateway on 'Orac'...so it was going Cox.

With everything seeming to work well, I opted to set up another instance of 'box' to use my other Internet connection. That didn't go as well, because the ISP blocks a lot more inbound connections than the other. But, I got it working. And, I poked around some sites here and there before calling it a night.

Pages: 1·

2 comments

Comment from: The Dreamer [Member]  

The example in torrc has section for exit relay, and section for bridge only. But, says nothing about how to be a middle relay. And, searching on the torproject site didn’t get any answers.

But, my best guess is if you don’t set bridge only and have no exits…then your a middle.

06/11/11 @ 13:20
Comment from: The Dreamer [Member]  

So, it seems because I’ve implemented the draconian measures on my exit relay to satisfy FreeNode (not only can I not allow exists to common IRC ports, but I can’t allow exits to the web [80 & 443])…. But, once I removed the allow for 80 and 443, I found that I’m no longer listed as an Exit.

Since my port 443 is available for ORPort, I can still be useful…except that there isn’t a major need for bridges, even though I heard of one person finding themselves behind a restrictive firewall that only allowed port 80/443.

I guess I’ll take out the rest of the ExitPolicy lines and just be a middle.

Was kind of curious on the bandwidth this would consume, but there doesn’t seem to be a way to have Accounting for the sake of Accounting….and not limiting. Though minimum bandwidth also needs to be 50kB/s to allow publishing DIRPort. Might go back to setting a limit, was just curious to see under what conditions a DIRPort gets published.

07/03/11 @ 17:43
Now instead of subjecting some poor random forum to a long rambling thought, I will try to consolidate those things into this blog where they can be more easily ignored profess to be collected thoughts from my mind.

Latest Poopli Updaters -- http://lkc.me/poop

bloglovin

There are 20 years 1 month 24 days 12 hours 35 minutes and 9 seconds until the end of time.
And, it has been 4 years 11 months 3 days 1 hour 27 minutes and 47 seconds since The Doctor saved us all from the end of the World!

Search

November 2017
Mon Tue Wed Thu Fri Sat Sun
 << <   > >>
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30      
Google

Linkblog

  XML Feeds

Who's Online?

  • Guest Users: 0
This seal is issued to lawrencechen.net by StopTheHacker Inc.
CMS software

hosted by
Green Web Hosting! This site hosted by DreamHost.

monitored by
Monitored by eXternalTest
SiteUptime Web Site Monitoring Service
website uptime