Hi Tim! Thanks a lot for your hint.
I've changed it. I'd recognized the public IPs with arm, but didn't know the circumstances. Now it should be in a more secure mode, than before. Regards, On 05.12.2016 23:49, teor wrote: > >> On 6 Dec. 2016, at 08:32, diffusae <[email protected]> wrote: >> >> Hi! >> >> On 05.12.2016 21:32, pa011 wrote: >>> its working currently on Tor 0.2.8.9 (recommended) >>> otherwise it might conflict with arm? >> >> Yes I know this, you could solve this with a jail. So if you run >> tor-devel inside a jail and use a cloned loopback interface for the >> control port. > > It's much better to use a unix socket for the control connection. > > ControlPort unix:/path/no/spaces > > (There's a bug in parsing control socket paths with spaces that's fixed > in 0.2.9.4-alpha, but not 0.2.8.) > > Loopback interfaces and jails have a tendency to leave your control port > open on a public IP address if configured incorrectly. Some jail setups > default to this insecure mode. > > https://trac.torproject.org/projects/tor/ticket/17901 > > T > >>> Any quick idea how to solve that one: >> >>> To connect to svn.torproject.org insecurely, use >>> `--no-check-certificate'. >> >> pkg install ca_root_nss should help. With curl I can connect to svn. >> >> <H1>Welcome to svn.torproject.org!</H1> >> >> Regards, >> Reiner >> >>> Am 05.12.2016 um 18:42 schrieb diffusae: >>>> Hi! >>>> >>>> That's nice to hear. >>>> >>>> RAM is also very good for tor relays. :-) >>>> >>>> Maybe you want to change your version to tor-devel-0.2.9.5.a, if you >>>> don't done this already (e. g. portsnap fetch update && portmaster >>>> security/tor-devel). >>>> >>>> Regards, >>>> >>>> >>>> On 05.12.2016 18:32, pa011 wrote: >>>>> Working :-) >>>>> >>>>> It looks like it was missing the Address in torrc. >>>>> I added up some RAM before- that didn’t help. >>>>> >>>>> Ok, now I have time to follow up all your other recommendations in the >>>>> coming days. >>>>> >>>>> Thank you all very much for your help! >>>>> >>>>> Best Regards >>>>> Paul >>>>> >>>>> p.s. as it is finally that easy to get BSD running, hopefully more will >>>>> follow in diversifying the tor world. >>>>> >>>>> >>>>>> >>>>>> You might also want to try setting the "Address" knob. >>>>> _______________________________________________ >>>>> tor-relays mailing list >>>>> [email protected] >>>>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays >>>>> >>>> _______________________________________________ >>>> tor-relays mailing list >>>> [email protected] >>>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays >>>> >>> _______________________________________________ >>> tor-relays mailing list >>> [email protected] >>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays >>> >> _______________________________________________ >> tor-relays mailing list >> [email protected] >> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > > T > _______________________________________________ tor-relays mailing list [email protected] https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
