-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 algenon flower wrote: (snip) > I really don't like the notion of setting up a TOR server > w/out a firewall. It just sounds like an invitation to certain disaster. (snip)
I think running *any* system in this modern age without some kind of firewall protection - even if it's just software on the end box itself - is an invitation to disaster; doing it with a server is suicide. =:oD > Does anyone have a favorite distro of Linux to work with .rpm versions > of TOR? I might change to an easier Linux to use than RHEL if other main > OS are better w/TOR. (snip) I've used .rpm packages with Fedora (first 7, and now 8) - they seem to work just fine. However, some of the packages for Debian (see the wiki for where to get them) look a bit better IMHO, particularly from a security standpoint. One site provides modified scripts for running Tor in a chroot() - which can help isolate a security breach (assuming the process sheds its root privileges after chrooting - which the Debian mod does [I've tried it]). In the end, it's up to you - just be sure to keep Tor up-to-date. =:o) PS: My GPG key - obviously - has changed; I wanted a long RSA key, due to the ease of using better hash algorithms. The new key is signed by the old one, and I've updated "kitsune"'s ContactInfo to match the new Key ID, algorithm, and size. (The old key is still valid, though.) - -- F. Fox: A+, Network+, Security+ Owner of Tor node "kitsune" http://fenrisfox.livejournal.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFHZa47bgkxCAzYBCMRCKgiAJ4rbgZ8PPyjl5znMEePXQ4ZFx9IPwCdGH4z jlx036n/35Fu3mM/DiglrBI= =zdT+ -----END PGP SIGNATURE-----
