Re: [tor-relays] Relay uptime versus outdated Tor version

2017-08-17 Thread Toralf Förster 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

On 08/17/2017 04:24 PM, Chuck McAndrew wrote:
> Uptime used to be something to brag about. Now it just means you aren't
> regularly updating.
+1

I do usually follow the vanilla stable kernel - meaning my uptime isn't bigger 
than 2 weeks since that.

- -- 
Toralf
PGP C4EACDDE 0076E94E
-BEGIN PGP SIGNATURE-

iI0EAREIADUWIQQaN2+ZSp0CbxPiTc/E6s3eAHbpTgUCWZXAMxccdG9yYWxmLmZv
ZXJzdGVyQGdteC5kZQAKCRDE6s3eAHbpTkFdAP9F3POPsg83GS4edr5NLOV9kEcX
EUP0rQJuR/I109SGlAD/eRucOWT/1+fuEOWtG/2Q3MBx9AFgbnL24HwKOSXiWg4=
=83Z1
-END PGP SIGNATURE-
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Relay uptime versus outdated Tor version

2017-08-17 Thread Chuck McAndrew 
Uptime used to be something to brag about. Now it just means you aren't
regularly updating. This is true for any kind of server, not just a relay.

On Thu, Aug 17, 2017 at 12:17 AM, K. Besig  wrote:

> LolI'll frame it and then upgrade both...thanks for the kick in the
> rear..
>
> On Aug 16, 2017 2:34 PM, "Petrusko"  wrote:
>
>> And why not taking a screenshot + print it to remember :p
>>
>>
>>
>> tor :
>> > You'll lose your uptime, but... don't be ridiculous. It's better to
>> > keep Tor up-to-date. That uptime undoubtedly means you're running an
>> > outdated kernel too, which is not ideal. I think it would be wise to
>> > take the hit and update both.
>>
>> --
>> Petrusko
>> C0BF 2184 4A77 4A18 90E9 F72C B3CA E665 EBE2 3AE5
>>
>>
>>
>> ___
>> tor-relays mailing list
>> tor-relays@lists.torproject.org
>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>>
>>
> ___
> tor-relays mailing list
> tor-relays@lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>
>


-- 
*The Right-To-Know Law provides that most e-mail communications, to or from
Lebanon Public Libraries employees regarding the business of the library,
are government records available to the public upon request.  Therefore,
this e-mail communication may be subject to public disclosure.  *
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

[tor-relays] blocking >1 connections per ip address onto Tor DirPort

2017-08-17 Thread Felix 

Hi everybody

>>> Does a particular Tor server/client will open more than 1
>>> connection at a time from to the DirPort ?

>> If you're worried about denial of service issues on the DirPort,
>> maybe the simple answer is to turn off the DirPort? I think the
>> only real impact might have something to do with whether old
>> clients believe that you're a usable guard.

> understood - removed those iptables rules

Good discussion. My experience is protecting the dirport makes
sense to avoid ddos attempts.

During my Debian times this rule worked fine for me:

/sbin/iptables -A INPUT -p tcp -d $IPEXT --dport 80 -j ACCEPT
-m limit --limit 5/s --limit-burst 50


On FreeBSB I go with something like:

pass in on $IFEXT inet proto tcp from ! to $IPEXT port 80
flags S/SA keep state (max 150,max-src-states 50,max-src-conn 50,
max-src-conn-rate 20/10,overload )

# release the blockDIR after some hours
pfctl -t blockDIR -T expire 7200 # hourly cron job


--
Cheers, Felix
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Shirts

2017-08-17 Thread Sebastian Urbach 

Hi Roger,

They saw me wearing:

https://www.torservers.net/wiki/_media/ttshirt/tor-green.jpg

That's the shirt they don't like:

https://www.torproject.org/images/torshirtsob.jpg

Thanks for the contact info.
--
Sincerely yours / M.f.G. / Sincères salutations

Sebastian Urbach

---
Those who surrender freedom for security will
not have, nor do they deserve, either one.
---
Benjamin Franklin (1706-1790)



Am 17. August 2017 10:17:10 schrieb Roger Dingledine :


On Thu, Aug 17, 2017 at 09:53:12AM +0200, Sebastian Urbach wrote:

I was asked recently by friends & family if i could get the traditional Tor
shirt for them. I showed them the new Tor shirt and well let's say they
really want the traditional shirt.


Which one is new and which one is traditional? There have been like
eight Tor shirt designs by now. :)

I would suggest contacting tshirt@tp.o among the other steps you take.

--Roger

___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays



___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Shirts

2017-08-17 Thread Roger Dingledine 
On Thu, Aug 17, 2017 at 09:53:12AM +0200, Sebastian Urbach wrote:
> I was asked recently by friends & family if i could get the traditional Tor
> shirt for them. I showed them the new Tor shirt and well let's say they
> really want the traditional shirt.

Which one is new and which one is traditional? There have been like
eight Tor shirt designs by now. :)

I would suggest contacting tshirt@tp.o among the other steps you take.

--Roger

___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

[tor-relays] Shirts

2017-08-17 Thread Sebastian Urbach 

Good Morning,

I was asked recently by friends & family if i could get the traditional Tor 
shirt for them. I showed them the new Tor shirt and well let's say they 
really want the traditional shirt.


Any chance to get it anywhere ? torservers.net is just offering size M /L 
and that's not going to work ...


Thanks
--
Sincerely yours / M.f.G. / Sincères salutations

Sebastian Urbach

---
Those who surrender freedom for security will
not have, nor do they deserve, either one.
---
Benjamin Franklin (1706-1790)


___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays