Re: [tor-relays] DigitalOcean pricing (Re: tomhek - the (new) biggest guard relay operator)
Nope. You get root, so with a bit of creativity you could probably do whatever you want, but I don't think DO officially supports installing your own OS (and they might make assumptions about your OS version that cause you issues later) On Mon, Sep 12, 2016, at 21:20, Petrusko wrote: > No way to "add" an image .iso with the web interface ? > > > D.O. has images for Debian (8.5, 7.11), Ubuntu (16.04.1, 14.04.5, > > 12.04.5), but no Gentoo. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] Tor path selection upon failure
Hi Folks, There have been some technical reports about how to deal with the problem when a botnet uses Tor as its primary C&C channel. In this case, the CPU of some relays is exhausted, causing circuit creation failure. I am wondering currently how a client reacts when its circuit creation fails? Does the client simply resend another create cell or it will re-select new path instead? Thanks ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] DigitalOcean pricing (Re: tomhek - the (new) biggest guard relay operator)
No way to "add" an image .iso with the web interface ? > D.O. has images for Debian (8.5, 7.11), Ubuntu (16.04.1, 14.04.5, > 12.04.5), but no Gentoo. -- Petrusko PubKey EBE23AE5 C0BF 2184 4A77 4A18 90E9 F72C B3CA E665 EBE2 3AE5 signature.asc Description: OpenPGP digital signature ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Moving multiple instances to another VPS
> On 12 Sep 2016, at 22:41, pa011 wrote: > > Thank you both. > > @Tim: You would kind of argue, that the advantage of carrying the old keys to > the new machine is not that important (to keep old level of traffic from > start) and that it might be even better to start from scratch? There is some value in maintaining the same level of traffic. But there will be an adjustment to your consensus weight anyway. In fact, if your new provider is too different (particularly less connected or slower), keeping your old weight would be a disadvantage for the network. There is also significant value to making a fresh start: new SSH keys and new relay keys mean that even if your old provider has a backup, or your old relay was compromised, or you have a backup of your keys, it's not much use to anyone. Particularly on an exit, your traffic will recover fairly quickly. It's completely up to you - I just wanted to describe the security advantages of a fresh start, versus the traffic advantages (or disadvantages) of keeping the same relay keys. Tim > > Paul > > > Am 12.09.2016 um 03:53 schrieb teor: > >> In Debian, using tor-instance-create and systemd, there is a separate >> directory, /var/lib/tor-instances >> You'll need to copy both /var/lib/tor and /var/lib/tor-instances to preserve >> the keys, and /etc/tor to preserve the configs. >> >> That said, please consider rotating keys when you move (that is, only >> copying /etc/tor). >> >> If your old relay or those keys were ever compromised, you'll have a fresh >> start. >> And even if it wasn't, some of your network reputation will be reset when >> you move IP addresses anyway. >> >> Tim > ___ > tor-relays mailing list > tor-relays@lists.torproject.org > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays Tim Wilson-Brown (teor) teor2345 at gmail dot com PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B ricochet:ekmygaiu4rzgsk6n xmpp: teor at torproject dot org signature.asc Description: Message signed with OpenPGP using GPGMail ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] DigitalOcean pricing (Re: tomhek - the (new) biggest guard relay operator)
On Sun, Sep 11, 2016, at 06:53, Ralph Seichter wrote: > On 11.09.2016 14:30, Markus Koch wrote: > > > So around 90 terabyte a month for $5. Seems fair :) > > Yeah, it does, doesn't it... ;-) Leaves me with figuring out what Linux > distro to use, as D.O. does not offer Gentoo. Debian or Ubuntu? Exclusive > Tor use is what I have in mind. Your thoughts? D.O. has images for Debian (8.5, 7.11), Ubuntu (16.04.1, 14.04.5, 12.04.5), but no Gentoo. ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Moving multiple instances to another VPS
Thank you both. @Tim: You would kind of argue, that the advantage of carrying the old keys to the new machine is not that important (to keep old level of traffic from start) and that it might be even better to start from scratch? Paul Am 12.09.2016 um 03:53 schrieb teor: > In Debian, using tor-instance-create and systemd, there is a separate > directory, /var/lib/tor-instances > You'll need to copy both /var/lib/tor and /var/lib/tor-instances to preserve > the keys, and /etc/tor to preserve the configs. > > That said, please consider rotating keys when you move (that is, only copying > /etc/tor). > > If your old relay or those keys were ever compromised, you'll have a fresh > start. > And even if it wasn't, some of your network reputation will be reset when you > move IP addresses anyway. > > Tim ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
