Rafraichis​sement d'E/S TOR

Similar Messages

• Issues with Tor connection

  Hi,
  First here is my network information.
  I'm in university, where there is a direct connection to the internet. But the firewall blocks all outgoing ports except 80 and 443. In addition they seem to be preventing CONNECT calls over HTTP to tunnel other protocols.
  I'm trying to use Tor. In my Torrc i set the following options
  ## CONFIGURED FOR ARCHLINUX
  ## Last updated 22 July 2005 for Tor 0.1.0.13.
  ## (May or may not work for older or newer versions of Tor.)
  ## See the man page, or http://tor.eff.org/tor-manual.html, for more
  ## options you can use in this file.
  # On Unix, Tor will look for this file in someplace like "~/.tor/torrc" or
  # "/etc/torrc"
  # On Windows, Tor will look for the configuration file in someplace like
  # "Application Data\tor\torrc" or "Application Data\<username>\tor\torrc"
  # With the default Mac OS X installer, Tor will look in ~/.tor/torrc or
  # /Library/Tor/torrc
  # Set the Tor Circuit Build time to find faster tor servers, increments of seconds
  CircuitBuildTimeout 2
  # connections while Tor is not in use.
  KeepalivePeriod 60
  # Force Tor to consider whether to build a new circuit every NUM seconds.
  NewCircuitPeriod 15
  # Set How many entry guards we should we keep at a time
  NumEntryGuards 8
  ## Replace this with "SocksPort 0" if you plan to run Tor only as a
  ## server, and not make any local application connections yourself.
  SocksPort 9050 # what port to open for local application connections
  SocksBindAddress 127.0.0.1 # accept connections only from localhost
  #SocksBindAddress 192.168.0.1:9100 # listen on a chosen IP/port too
  ## Entry policies to allow/deny SOCKS requests based on IP address.
  ## First entry that matches wins. If no SocksPolicy is set, we accept
  ## all (and only) requests from SocksBindAddress.
  #SocksPolicy accept 192.168.0.1/16
  #SocksPolicy reject *
  ## Allow no-name routers (ones that the dirserver operators don't
  ## know anything about) in only these positions in your circuits.
  ## Other choices (not advised) are entry,exit,introduction.
  AllowUnverifiedNodes middle,rendezvous
  ## Logs go to stdout at level "notice" unless redirected by something
  ## else, like one of the below lines. You can have as many log lines as
  ## you want.
  ## Send all messages of level 'notice' or higher to /var/log/tor/notices.log
  #Log notice file /var/log/tor/notices.log
  ## Send only debug and info messages to /var/log/tor/debug.log
  #Log debug-info file /var/log/tor/debug.log
  ## Send ONLY debug messages to /var/log/tor/debug.log
  #Log debug-debug file /var/log/tor/debug.log
  ## To use the system log instead of Tor's logfiles, uncomment these lines:
  Log notice syslog
  ## To send all messages to stderr:
  #Log debug stderr
  ## Uncomment this to start the process in the background... or use
  ## --runasdaemon 1 on the command line.
  RunAsDaemon 1
  User tor
  Group tor
  ## Tor only trusts directories signed with one of these keys, and
  ## uses the given addresses to connect to the trusted directory
  ## servers. If no DirServer lines are specified, Tor uses the built-in
  ## defaults (moria1, moria2, tor26), so you can leave this alone unless
  ## you need to change it.
  #DirServer 18.244.0.188:9031 FFCB 46DB 1339 DA84 674C 70D7 CB58 6434 C437 0441
  #DirServer 18.244.0.114:80 719B E45D E224 B607 C537 07D0 E214 3E2D 423E 74CF
  #DirServer 86.59.21.38:80 847B 1F85 0344 D787 6491 A548 92F9 0493 4E4E B85D
  ## The directory for keeping all the keys/etc. By default, we store
  ## things in $HOME/.tor on Unix, and in Application Data\tor on Windows.
  DataDirectory /var/lib/tor
  ## The port on which Tor will listen for local connections from Tor controller
  ## applications, as documented in control-spec.txt. NB: this feature is
  ## currently experimental.
  #ControlPort 9051
  ############### This section is just for location-hidden services ###
  ## Look in .../hidden_service/hostname for the address to tell people.
  ## HiddenServicePort x y:z says to redirect a port x request from the
  ## client to y:z.
  #HiddenServiceDir /var/lib/tor/hidden_service/
  #HiddenServicePort 80 127.0.0.1:80
  #HiddenServiceDir /var/lib/tor/other_hidden_service/
  #HiddenServicePort 80 127.0.0.1:80
  #HiddenServicePort 22 127.0.0.1:22
  #HiddenServiceNodes moria1,moria2
  #HiddenServiceExcludeNodes bad,otherbad
  ################ This section is just for servers #####################
  ## NOTE: If you enable these, you should consider mailing your identity
  ## key fingerprint to the tor-ops, so we can add you to the list of
  ## servers that clients will trust. See
  ## http://tor.eff.org/doc/tor-doc.html#server for details.
  ## Required: A unique handle for this server
  #Nickname ididnteditheconfig
  ## The IP or fqdn for this server. Leave commented out and Tor will guess.
  #Address noname.example.com
  ## Contact info that will be published in the directory, so we can
  ## contact you if you need to upgrade or if something goes wrong.
  ## This is optional but recommended.
  #ContactInfo Random Person <nobody AT example dot com>
  ## You might also include your PGP or GPG fingerprint if you have one:
  #ContactInfo 1234D/FFFFFFFF Random Person <nobody AT example dot com>
  ## Required: what port to advertise for tor connections
  #ORPort 9001
  ## If you want to listen on a port other than the one advertised
  ## in ORPort (e.g. to advertise 443 but bind to 9090), uncomment
  ## the line below. You'll need to do ipchains or other port forwarding
  ## yourself to make this work.
  #ORBindAddress 0.0.0.0:9090
  ## Uncomment this to mirror the directory for others (please do)
  #DirPort 9030 # what port to advertise for directory connections
  ## If you want to listen on a port other than the one advertised
  ## in DirPort (e.g. to advertise 80 but bind 9091), uncomment the line
  ## below. You'll need to do ipchains or other port forwarding yourself
  ## to make this work.
  #DirBindAddress 0.0.0.0:9091
  ## A comma-separated list of exit policies. They're considered first
  ## to last, and the first match wins. If you want to *replace*
  ## the default exit policy, end this with either a reject *:* or an
  ## accept *:*. Otherwise, you're *augmenting* (prepending to) the
  ## default exit policy. Leave commented to just use the default, which is
  ## available in the man page or at http://tor.eff.org/documentation.html
  ## Look at http://tor.eff.org/faq-abuse.html#TypicalAbuses
  ## for issues you might encounter if you use the default exit policy.
  ## If certain IPs and ports are blocked externally, e.g. by your firewall,
  ## you should update your exit policy to reflect this -- otherwise Tor
  ## users will be told that those destinations are down.
  #ExitPolicy accept *:6660-6667,reject *:* # allow irc ports but no more
  #ExitPolicy accept *:119 # accept nntp as well as default exit policy
  #ExitPolicy reject *:* # middleman only -- no exits allowed
  ReachableDirAddresses *:80
  ReachableORAddresses *:443
  But Tor is unable to connect. Here is the log
  Tor[5442]: No current certificate known for authority moria1; launching request.
  Tor[5442]: No current certificate known for authority tor26; launching request.
  Tor[5442]: No current certificate known for authority dizum; launching request.
  Tor[5442]: No current certificate known for authority ides; launching request.
  Tor[5442]: No current certificate known for authority gabelmoo; launching request.
  Tor[5442]: No current certificate known for authority dannenberg; launching request.
  Tor[5442]: Your application (using socks4 to port 80) is giving Tor only an IP address. Applications t
  hat do DNS resolves themselves may leak information. Consider using Socks4A (e.g. via privoxy or socat) instead. For more inf
  ormation, please see http://wiki.noreply.org/noreply/TheOnionRouter/TorFAQ#SOCKSAndDNS.
  Tor[5442]: Application request when we're believed to be offline. Optimistically trying directory fetc
  hes again.
  I can't find any documentation about this issue.
  Thanks.

  ## Tor only trusts directories signed with one of these keys, and
  ## uses the given addresses to connect to the trusted directory 
  ## servers. If no DirServer lines are specified, Tor uses the built-in
  ## defaults (moria1, moria2, tor26), so you can leave this alone unless
  ## you need to change it.                                             
  #DirServer 18.244.0.188:9031 FFCB 46DB 1339 DA84 674C 70D7 CB58 6434 C437 0441
  #DirServer 18.244.0.114:80 719B E45D E224 B607 C537 07D0 E214 3E2D 423E 74CF 
  #DirServer 86.59.21.38:80 847B 1F85 0344 D787 6491 A548 92F9 0493 4E4E B85D 
  Try uncomment this...
  Maybe tor need this address
  Sorry for my very bad english, i am from Brazil, add me in GTalk if you need more support.
  [email protected]
  Good luck!

• I have problem with my Firefox 3.6.18. It crashes when I sending email via Yahoo when Tor is enabled. Why is that?

  This is what I get when crash reporter shows up after crashing my browser: Add-ons: {e0204bd5-9d31-402b-a99d-a6aa8ffebdca}:1.3.3-alpha,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18
  BuildID: 20110614230723
  CrashTime: 1309515332
  EMCheckCompatibility: true
  FramePoisonBase: 00000000f0de0000
  FramePoisonSize: 65536
  InstallTime: 1308766242
  ProductName: Firefox
  ReleaseChannel: release
  SecondsSinceLastCrash: 592
  StartupTime: 1309515143
  Theme: classic/1.0
  Throttleable: 1
  URL: http://us.mg4.mail.yahoo.com/dc/launch?ymv=2&sysreq=ignore&tos=0&ncrumb=QyzpsMGBt6P
  Vendor: Mozilla
  Version: 3.6.18
  This report also contains technical information about the state of the application when it crashed.
  And I can't submit report. It shows an error.
  This is my crash report...
  https://crash-stats.mozilla.com/report/index/bp-69afdf09-890b-4857-bf03-72fb42110701
  I always get empty signature. I have no idea why but I checked every report I had and it's always empty.
  Maybe this will help to understand my situation:
  https://bugzilla.mozilla.org/show_bug.cgi?id=666924
  I have Tor button... 1.3.3. alpha. Everything worked great since this morning. It happen to me few times this month. I deleted Yahoo State Plugin. Still doesn't work.
  Yesterday I deleted Microsoft .NET Framework Assistant ...I heard it could possibly crash Firefox. But I think it wasn't about it... cause my browser still crashes. Also I have Java Console 6.0.26. and Java Quick Starter 1.0 but these plugins are always disabled when Tor in use.
  Thanks for you help.

  I believe I've solved this issue by carrying out the following action:-
  First cancel all “send and receive” operations in OutLook. Next remove all emails from your "Outbox" (by either deleting them or moving them to the “Draft” folder). Next shutdown OutLook and then click on the “Start” button on the lower left-hand side of the Window’s taskbar, then click on “Run” now type in “regsvr32.exe inetcomm.dll” without the quotation marks, so it looks like this:
  regsvr32.exe inetcomm.dll
  Note the space between .exe and inetcomm.dll and hit “Enter” on the keyboard.
  The computer will execute the command. If all goes well in a few moments a dialog box will appear and state “dll registered successful
  I have not had it hand since ... cross fingers ;)

• Issues with TOR and Firefox

  Hello,
  I am attempting to use a combination of Vidalia and the Torbutton Firefox extension to access the Tor network. However, every time I do, Firefox refuses to load any pages, stating that it is connected to a proxy that is refusing connections. My operating system is Ubuntu 10.04. Any help with this problem would be appreciated.
  Sincerely,
  Joe
  == This happened ==
  Every time Firefox opened

  I use Tor/Vidalia/Torbutton/Polipio regularly. When I get this message, it is because I am trying to browse normally with the Torbutton enabled (green, Tor is "on") -
  Or, I am trying to browse using Tor, it's turned on but Vidalia is not running in the background. If you installed Vidalia so that it does not automatically start when you start Windows, you must manually launch it (I use Start>Program Files>Vidalia Bundle>Vidalia). Give it a few seconds to get connected and then Firefox should work with the TorButton enabled.
  In case you do not know, Vidalia launches Tor, and will report if there are any problems with it.
  The documentation, tips, FAQs, help, advice and general availability of any practical knowledge on how to use these features is extremely poor, for reasons I am currently being made aware of. Because of this, I am considering starting a Discussion Forum focused primarily on helping people make use of this anonymous browsing technology.
  If anyone is interested in assisting with this effort, or has helpful advice, etc... feel free to e-mail me at quickdxtjohnatgmaildxtcom

• Having a few issues with several programs (tor / mpd / ccm..)

  Hey everybody,
  I'll arrange this post in 3 parts since I have 3 different kinds of "major" problems or questions .
  1st ( tor - privoxy - polipo - iptables )
  I somehow found this article in your wiki and therefore tried to get tor and privoxy up and running on my desktop machine, as this didn't work as I hoped it would I searched farther in the wiki and installed and configured (as far as I've thought of) polipo and iptables.
  Now I've put all 4 of them in my rc.conf, but somehow some of my http connections don't seem to work in chromium while iptables is running (https works fine though [e.g. archwiki works, youtube doesn't]).
  I did everything as suggested in the polipo wiki entry, meaning I changed my /etc/iptables/iptables.rules to
  *nat
  :PREROUTING ACCEPT [0:0]
  :POSTROUTING ACCEPT [0:0]
  :OUTPUT ACCEPT [0:0]
  -A OUTPUT -p tcp --dport 80 -m owner --uid-owner polipo -j ACCEPT
  -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-ports 8123
  COMMIT
  and removed all proxy settings from my browser - meaning all corresponding flags in the startcommand. I also added "forward / localhost:8123" to the privoxy config and changed the polipo configuration according to the wiki in order to work with tor (the socksParentProxy, socksProxyType part).
  now the next problem - that might probably be related to the first - is that my privoxy doesn't load in daemon mode anymore.
  I think it's since I've installed polipo that privoxy began to refuse starting together with the other daemons
  [usR@machine ~]$ privoxy
  Apr 23 00:20:56.459 b75086c0 Fatal error: can't check configuration file '/home/usR/config': No such file or directory
  this is the output I get when I try to start privoxy in normal user mode from the terminal, when I try starting the daemon manually (/etc/rc.d/privoxy start) it says
  touch: cannot touch `/var/log/privoxy/logfile': Permission denied
  chgrp: cannot access `/var/log/privoxy/logfile': Permission denied
  chmod: cannot access `/var/log/privoxy/logfile': Permission denied
  touch: cannot touch `/var/log/privoxy/jarfile': Permission denied
  chgrp: cannot access `/var/log/privoxy/jarfile': Permission denied
  chmod: cannot access `/var/log/privoxy/jarfile': Permission denied
  Apr 23 00:22:34.490 b76396c0 Fatal error: Cannot setgid(): Insufficient permissions.
  [/var/log/privoxy belongs to privoxy:adm]
  when I do the same in sudo mode it just fails without displaying an error message..
  I added this code to the /etc/rc.d/privoxy executable but I still get this owner conflict error and I have no idea what might be causing it.
  if [ ! -d /var/log/privoxy ]
  then
  mkdir /var/log/privoxy
  touch /var/log/privoxy/errorfile
  touch /var/log/privoxy/logfile
  chown -R privoxy:adm /var/log/privoxy
  fi
  If the order of the daemons in rc.conf is of any real importance here a copy of my setup
  ( @polipo @privoxy @syslog-ng !set-hw-addr !iptables @network netfs hddtemp @crond hal dbus @alsa @slim @tor )
  2nd ( mpd & mpc )
  I'm just wondering if there's a way to output the position of a track in the current playlist combined with a search. since mpc search <type> <query> only prints out full file path and name, but not the position in the playlist so that you could play it with mpc play. I thought of a method to print out the whole list with mpc playlist and pipe this output into a listing program, than grep out the song I'm looking for all that in a little bash script, to replace mpc search.
  Is there an integrated mpc search function that works the way I imageine it and my idea therefore redundant, or if not, is it realizable the way I picture it; does such a listing program exist?
  3rd ( cairo-compmgr )
  Since I'm already posting here I thought I'd mention my older problem which I  still couldn't solve.
  1st) I need to start cairo-compmgr(-git) in sudo mode to be able to edit any settings or activate the gui in any way. how do I automatically start the program on startup in sudo mode? I tried editing ~/.fluxbox/startup & ~/.fluxbox/init, even tried adding it in /etc/rc.d/ and /etc/rc.conf in order to start it as a daemon (lol, noob) but none of that worked properly obviously Any ideas? I don't want to start it manually and "waste" a terminal window for that every time I boot.
  2nd) I can change opacity (transparency) in both versions only per hotkey, and when I do so the settings don't get saved, they even get reset to normal opacity as soon as another window gets selected. does anybody know if there's a config file or any way to save opacity settings for certain windows & programs, so that they automatically get loaded when cairo starts and stay applied until it gets closed?
  [or generally: how do I configure the Plugins? ]
  the last "problem" which occurs only with cairo-compmgr-git:
  When I rightclick the ccm icon in the task bar and disable the composite desktop, the whole program kills itself oO
  In the old version the option "Composite desktop"'s box just got un-checked and I could easily restart ccm by rightclicking the logo again and re-enabling the "Composite desktop" option.
  Any clues on that by any chance?
  I'm using Fluxbox by the way, if that's of any importance for any of the problems. hope I didn't forget any important information if so please remind me
  Would be thankful for any kind of help
  have a nice weekend
  deF
  //edit:
  concernig the tor / privoxy problem, I managed getting all the daemons to start up at bootup again, my iptables situation remains the same though.
  I went through all the config files again and played around with chown and chmod a little and for now the system is stable, everytime I reboot all the daemons start without any problems.
  but when i start chromium with --proxy-server=localhost:8118 now, I get the following error message
  The following error occurred while trying to access http://torcheck.xenobite.eu/index.php?:
  504 Connect to torcheck.xenobite.eu:80 failed: SOCKS error: network unreachable
  Generated Sat, 23 Apr 2011 04:49:08 CEST by Polipo on archzor.localdomain:8118.
  notably with all programs running now, tor, polipo, privoxy (and by now dansguardian as well)..
  I'm tired so I'll go asleep now, maybe I'll find something tomorrow in the logfiles or whatever, so far:
  every kind of help is still very appreciated
  ²
  /var/log/polipo/polipo.log
  Disabling disk cache: No such file or directory
  Couldn't bind: Address already in use
  Couldn't establish listening socket: Address already in use
  Couldn't bind: Address already in use
  Last edited by deF291 (2011-04-23 03:13:48)

  okay I've finally been able to get tor and all the other programs to work according to my plan the only thing that's still making problems is that iptables doesn't work as I want it to, when I start chromium without proxy settings privoxy doesn't seem to forward the information to polipo.. do I need to add another rule to iptables.rules in order for the program to know it has to reroute the information again or how can I get this to work? and is there any way to run rtorrent with proxy support?
  anyway, problem 2 and 3 are still to be solved.
  and does anybody know where i can get a good dansguardian blacklist that was not designed for 6 year old children and for which I don't need to subscribe? I'm still getting these partypoker popups -.-
  //e: with iptables it's the same thing as described in the first post. https works, http doesnt. I get the output "Invalid header received from client." on http sites. still no idea why though.. (and the https-version of torcheck.xenubite says i'm tor unprotected while starting the browser with iptables)
  Last edited by deF291 (2011-04-23 16:16:31)

• Schedule lines & TOR in Sales order

  Hai Experts,
  ( in Sales order - VA01 ) How Schedule lines is related with TOR.
  Kindly explain me in detail
  Regards,
  Geetha

  Hi Geetha
  To deliver an Item you need to have a schedule line.
  In the Sales order, an Item can have one or more schedule line, but to be delivered atleast one schedule line must be there.
  During Sales order processing a 'requirement transfer" is sent to the "Materials planning " department for the schedule line ,which a communication between SD and MM department (SD-MM interfac).
  From this "Transfer of Requirement", Materials Planning comes to know,How much quantity of which material SD needs to deliver and on which date.
  Accordingly, they may go for Production or Procurement as applicable to make the goods available for SD to meet the schedule line.
  Schedule line contains the information about Delivery date, delivery quantity aswell as information about requirement transfer and goods movement.Schedule line is controlled by "Schedule line category".
  So, in the Schedule line category we configure, whether Tranfer of Requirement is relevant or not, beacuse all schedule lines are not relevant for Transfer of Requirement.
  For example,
  when we create a Standard order for a normal material, it has got a schedule line and its schedule line is relevant for "Requirement Transfer".
  But, when our faulty goods comes back from the customer, we create a Return order, which also has a schedule line so that the goods will come in, but this schedule line is not relevant for "Requirement Transfer".
  So, if you will go for the "Schedule line category in Return" (DN), you will find the Requirement transfer field is blank, beacuse when my faulty goods are coming back, why should I put a requirement to Materials planning.It is not relevant.
  I hope now you are clear about the relation of Schedule line and Requirement transfer.

• IPad no longer connecting to HP Photosmart Plus B210 after changing black tore cartridge

  I had my iPad nicely connected to my HP Photosmart Plus B210.  However, after changing the black tore cartridge I am no longer able to print from the iPad.  The printer statur report and the wireless network test both show everything is OK.  Most of the time the iPad recognizes the printer and accepts the print command without any error messages.  However, sometimes it returns the message that the printer is offline even though it found the printer earlier.  Any solutions?  Thanks

  I too have a B210 and the IPAD has printed marvelously via WIFI for about a half a year. Now, when the IPAD print radio button appears it still lists the B210 is available as if all is good but the printer doesn't come to life when the print command is issued. Printer sez it is connected to the router, too. I have reset the router and the printer a number of times and the printer sez everything is good. But, I can't print any longer from the IPAD. bummer.

• How can i get to a website with TOR using firefox as my explorer?

  i have to use TOR to connect to some sites.in the past i used firefox and it had an option of turn on or off vidalia...but then i downloaded this new version and now i can't open any websites by firefox...i can't activate this on firefox.

  Unfortunately for some routers, you do have to use Internet Explorer to access them. You should have Internet Explorer on your computer (if not in the All Programs list, open up windows update, that is Internet Explorer). so you can then access that IP, and get your network key.
  For future reference, write the network key down and take it to the side of your router, it makes it easier in the future :)

• [Solved] tor /hidden_service not being created

  I am trying to set up a tor hidden service, but tor does not seem to want to create the "hidden_service" folder at /var/lib/tor/ or any other place.
  I have tried checking the permissions of /var/lib/tor and even set them to 777 just to see if it worked, and it didn't, /var/lib/tor is owned by tor according to ls -al, but the group is root (shouldn't matter if i set permissions to 777?)
  I have tried manually creating hidden_service/ and setting it to be owned by tor (with 777), and it did not work
  This thread on ubuntu forums has the same problem, and a post at the bottom says that the web server needs access hidden_service/ (which i think is false, why would the web server need to know about the keys?)
  I uncommented the notices line in torrc and it does not generate any logs in /var/log/tor/notices.log
  ## CONFIGURED FOR ARCHLINUX
  ## Last updated 22 July 2005 for Tor 0.1.0.13.
  ## (May or may not work for older or newer versions of Tor.)
  ## See the man page, or http://tor.eff.org/tor-manual.html, for more
  ## options you can use in this file.
  # On Unix, Tor will look for this file in someplace like "~/.tor/torrc" or
  # "/etc/torrc"
  # On Windows, Tor will look for the configuration file in someplace like
  # "Application Data\tor\torrc" or "Application Data\<username>\tor\torrc"
  # With the default Mac OS X installer, Tor will look in ~/.tor/torrc or
  # /Library/Tor/torrc
  ## Replace this with "SocksPort 0" if you plan to run Tor only as a
  ## server, and not make any local application connections yourself.
  SocksPort 9050 # what port to open for local application connections
  SocksBindAddress 127.0.0.1 # accept connections only from localhost
  #SocksBindAddress 192.168.0.1:9100 # listen on a chosen IP/port too
  ## Entry policies to allow/deny SOCKS requests based on IP address.
  ## First entry that matches wins. If no SocksPolicy is set, we accept
  ## all (and only) requests from SocksBindAddress.
  #SocksPolicy accept 192.168.0.1/16
  #SocksPolicy reject *
  ## Allow no-name routers (ones that the dirserver operators don't
  ## know anything about) in only these positions in your circuits.
  ## Other choices (not advised) are entry,exit,introduction.
  AllowUnverifiedNodes middle,rendezvous
  ## Logs go to stdout at level "notice" unless redirected by something
  ## else, like one of the below lines. You can have as many log lines as
  ## you want.
  ## Send all messages of level 'notice' or higher to /var/log/tor/notices.log
  Log notice file /var/log/tor/notices.log
  ## Send only debug and info messages to /var/log/tor/debug.log
  #Log debug-info file /var/log/tor/debug.log
  ## Send ONLY debug messages to /var/log/tor/debug.log
  #Log debug-debug file /var/log/tor/debug.log
  ## To use the system log instead of Tor's logfiles, uncomment these lines:
  Log notice syslog
  ## To send all messages to stderr:
  #Log debug stderr
  ## Uncomment this to start the process in the background... or use
  ## --runasdaemon 1 on the command line.
  RunAsDaemon 1
  User tor
  Group tor
  ## Tor only trusts directories signed with one of these keys, and
  ## uses the given addresses to connect to the trusted directory
  ## servers. If no DirServer lines are specified, Tor uses the built-in
  ## defaults (moria1, moria2, tor26), so you can leave this alone unless
  ## you need to change it.
  #DirServer 18.244.0.188:9031 FFCB 46DB 1339 DA84 674C 70D7 CB58 6434 C437 0441
  #DirServer 18.244.0.114:80 719B E45D E224 B607 C537 07D0 E214 3E2D 423E 74CF
  #DirServer 86.59.21.38:80 847B 1F85 0344 D787 6491 A548 92F9 0493 4E4E B85D
  ## The directory for keeping all the keys/etc. By default, we store
  ## things in $HOME/.tor on Unix, and in Application Data\tor on Windows.
  DataDirectory /var/lib/tor
  ## The port on which Tor will listen for local connections from Tor controller
  ## applications, as documented in control-spec.txt. NB: this feature is
  ## currently experimental.
  #ControlPort 9051
  ############### This section is just for location-hidden services ###
  ## Look in .../hidden_service/hostname for the address to tell people.
  ## HiddenServicePort x y:z says to redirect a port x request from the
  ## client to y:z.
  HiddenServiceDir /var/lib/tor/hidden_service/
  HiddenServicePort 80 127.0.0.1:80
  #HiddenServiceDir /var/lib/tor/other_hidden_service/
  #HiddenServicePort 80 127.0.0.1:80
  #HiddenServicePort 22 127.0.0.1:22
  #HiddenServiceNodes moria1,moria2
  #HiddenServiceExcludeNodes bad,otherbad
  ################ This section is just for servers #####################
  ## NOTE: If you enable these, you should consider mailing your identity
  ## key fingerprint to the tor-ops, so we can add you to the list of
  ## servers that clients will trust. See
  ## http://tor.eff.org/doc/tor-doc.html#server for details.
  ## Required: A unique handle for this server
  #Nickname ididnteditheconfig
  ## The IP or fqdn for this server. Leave commented out and Tor will guess.
  #Address noname.example.com
  ## Contact info that will be published in the directory, so we can
  ## contact you if you need to upgrade or if something goes wrong.
  ## This is optional but recommended.
  #ContactInfo Random Person <nobody AT example dot com>
  ## You might also include your PGP or GPG fingerprint if you have one:
  #ContactInfo 1234D/FFFFFFFF Random Person <nobody AT example dot com>
  ## Required: what port to advertise for tor connections
  #ORPort 9001
  ## If you want to listen on a port other than the one advertised
  ## in ORPort (e.g. to advertise 443 but bind to 9090), uncomment
  ## the line below. You'll need to do ipchains or other port forwarding
  ## yourself to make this work.
  #ORBindAddress 0.0.0.0:9090
  ## Uncomment this to mirror the directory for others (please do)
  #DirPort 9030 # what port to advertise for directory connections
  ## If you want to listen on a port other than the one advertised
  ## in DirPort (e.g. to advertise 80 but bind 9091), uncomment the line
  ## below. You'll need to do ipchains or other port forwarding yourself
  ## to make this work.
  #DirBindAddress 0.0.0.0:9091
  ## A comma-separated list of exit policies. They're considered first
  ## to last, and the first match wins. If you want to *replace*
  ## the default exit policy, end this with either a reject *:* or an
  ## accept *:*. Otherwise, you're *augmenting* (prepending to) the
  ## default exit policy. Leave commented to just use the default, which is
  ## available in the man page or at http://tor.eff.org/documentation.html
  ## Look at http://tor.eff.org/faq-abuse.html#TypicalAbuses
  ## for issues you might encounter if you use the default exit policy.
  ## If certain IPs and ports are blocked externally, e.g. by your firewall,
  ## you should update your exit policy to reflect this -- otherwise Tor
  ## users will be told that those destinations are down.
  #ExitPolicy accept *:6660-6667,reject *:* # allow irc ports but no more
  #ExitPolicy accept *:119 # accept nntp as well as default exit policy
  #ExitPolicy reject *:* # middleman only -- no exits allowed
  Last edited by supernub (2013-03-15 08:22:01)

  I think it might be that my disk is 100% full, ill update this post in a bit once i finish reinstalling on a larger disk. (virtual)
  update:
  yep,
  hidden_service/
  hidden_service/hostname
  hidden_service/private_key
  are all being generated properly to the best of my knowledge.
  Last edited by supernub (2013-03-15 08:21:34)

• Tor resolves ip address using port 80 [SOLVED]

  Hey everyone,
  I'm trying to provide a service to fellow internet users that don't like their internet traffic to be snooped on. To explain my situation I'll tell something about my setup.
  I use a router to access the internet. I let a router set up a vpn connection to my vpn provider. Then I tell it, using iptables, to redirect all http and https traffic through the VPN tunnel and let all other traffic go over the standard WAN. Not entirely true, I also redirect all udp and icmp traffic through the vpn tunnel.
  I have a server that I want to act as the TOR relay. I want it to use the WAN acces and not go over the VPN. This makes sure I don't burden my vpn provider with a bunch of traffic that can just use my WAN acces.
  When setting up the TOR relay I use port 4436 as the relay port and port 9030 as the Directory port. My router directs all this traffic over the WAN. I also port forward these ports in the router towards the server.
  The TOR relay seems to work but not entirely. I have the following message log: (I have replaced the ip addresses that belong to my WAN and VPN tunnel with "<wan-ip>" and "<vpn-ip>" to make it clearer. )
  sep 04 17:29:48.164 [Notice] Self-testing indicates your DirPort is reachable from the outside. Excellent.
  sep 04 17:35:08.532 [Notice] Our IP Address has changed from <wan-ip> to <vpn-ip>; rebuilding descriptor (source: 154.35.32.5).
  sep 04 17:35:09.883 [Notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor.
  sep 04 17:55:08.476 [Warning] Your server (<vpn-ip>:9030) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
  sep 04 18:15:08.476 [Warning] Your server (<vpn-ip>:9030) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
  sep 04 18:26:44.664 [Notice] Our IP Address has changed from <vpn-ip> to <wan-ip>; rebuilding descriptor (source: 128.31.0.34).
  sep 04 18:26:45.117 [Notice] Our IP Address has changed from <wan-ip> to <vpn-ip>; rebuilding descriptor (source: 194.109.206.212).
  sep 04 18:26:49.342 [Notice] Our IP Address has changed from <vpn-ip> to <wan-ip>; rebuilding descriptor (source: 76.73.17.194).
  sep 04 18:26:58.255 [Notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor.
  sep 04 18:33:01.221 [Notice] Self-testing indicates your DirPort is reachable from the outside. Excellent.
  sep 04 18:36:52.096 [Notice] Our IP Address has changed from <wan-ip> to <vpn-ip>; rebuilding descriptor (source: 212.112.245.170).
  sep 04 18:37:10.626 [Notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor.
  sep 04 18:56:51.965 [Warning] Your server (<vpn-ip>:9030) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
  sep 04 19:16:51.967 [Warning] Your server (<vpn-ip>:9030) has not managed to confirm that its DirPort is reachable. Please check your firewalls, ports, address, /etc/hosts file, etc.
  sep 04 19:27:44.011 [Notice] Our IP Address has changed from <vpn-ip> to <wan-ip>; rebuilding descriptor (source: 128.31.0.34).
  sep 04 19:27:44.092 [Notice] Our IP Address has changed from <wan-ip> to <vpn-ip>; rebuilding descriptor (source: 171.25.193.9).
  sep 04 19:27:44.095 [Notice] Our IP Address has changed from <vpn-ip> to <wan-ip>; rebuilding descriptor (source: 128.31.0.34).
  sep 04 19:27:44.098 [Notice] Our IP Address has changed from <wan-ip> to <vpn-ip>; rebuilding descriptor (source: 194.109.206.212).
  sep 04 19:27:50.211 [Notice] Our IP Address has changed from <vpn-ip> to <wan-ip>; rebuilding descriptor (source: 76.73.17.194).
  sep 04 19:27:55.398 [Notice] Self-testing indicates your DirPort is reachable from the outside. Excellent.
  sep 04 19:28:08.914 [Notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor.
  sep 04 19:29:45.764 [Warning] We just marked ourself as down. Are your external addresses reachable?
  sep 04 19:37:51.966 [Notice] Our IP Address has changed from <wan-ip> to <vpn-ip>; rebuilding descriptor (source: 212.112.245.170).
  sep 04 19:37:55.358 [Notice] Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor.
  What I think will fix the problem is that TOR should not resolve my ip address using http or https since that will provide the wrong ip address. When trying to access that ip address at another port (in this case 9030) will obviously not work. However there is no setting to do that. Is there any way to archieve this?
  Please ask if anything is unclear.
  Regards,
  Berend
  --edit--
  I was able to set the Address field in the torrc file. This means I can hardcode the ipaddress I want it to use (WAN). However that address can change every 6 months or so. If someone has a better solution that would be very welcome.
  Last edited by Berend (2013-09-05 00:47:25)

  Berend wrote:@progandy
  I don't have any experience with that.
  I guess I can tag them with a TOS so my router knows what to do with it. But how would I give that tag?
  Select the packtes with owner and then depending on what your router supports you can set either DSCP or TOS. dscp is the current standard, tos is deprecated.

• Where can I find an older version of Firefox that supports Proxy Mobile- and yes, gain access to Tor. Orweb is just kind of, meh

  The Guardian Project recommends using Orweb or Firefox with Orbot when using Tor,but your upgrade will no longer install Proxy Mobile- I need an older version of Firefox Mobile that supports Proxy Mobile.

  Hello kc9agz,
  Thank you for contacting Mozilla Support. Did you back up your bookmarks before you moved to the new computer? You can find more information about backing up and restoring bookmarks in this article.
  [[Restore bookmarks from backup or move them to another computer]]
  Please let us know if this solves your issue.
  Cheers,
  Patrick

• Query in Av Check and TOR

  Dear Sap Gurus,
  I am a fresher in SAP ISU  trying to learn the concepts of AV check and TOR.
  Intial stock is zero for material 'x'.
  Sale order is created for qty 10 of material 'x' and saved.
  In schedule line system confirms that the material can be delivered on 11/10 /2010 , since inhouse production days is 1 day.
  so on 10/6/2010 it can confirm '0' Qty and actual material ordered in the sale order which is '10' can be confirmed on 11/10/2010.
  As per standard it is working fine.Now i do a GR for 10 material on 11/ 10/2010, now the material is in the stock (ie) confirmed atp qty is 10.
  Then when i try to execute the same  sale order number, delivery date on 11/6/2010 system is not allows me to do the delivery
  even though stock is present. Pls explain me., how to allocate the current stock to this sale order.
  In back order processing also i checked the same sale order is displayed as back order.
  When i do backorder processing, as per the concept of back order i can change the already confirmed material for a sale order can be reassigned to some other sale order
  For eg i had changed the confirmed qty for eg ( 5) to 0 and saved. system allow me to do when i click change confirmation in back order.
  My question is after change confirmation , how i will allocate the same material to some other sale order. Pls explain how to do that?
  Awaiting for your answer gurus.
  Thanks
  Sruthi

  Hi,
  Check the link
  http://wiki.sdn.sap.com/wiki/display/ERPLO/AvailabletoPromise+(ATP)
  And also run  V_V2- for rescheduling
  Thanks
  Chidambaram

• Oracle not showing up in Tora database selection

  I'm running Oracle9i (9.2.0) and Tora-1.3.14.1-2. I can reach my selected DB via sqlnet with no problems. Yet, Oracle doesn't show up in my Connection menu. Is there something I'm doing wrong?
  Gene

  Did you install Tora from rpm packages or you compiled Tora from sources?
  If you did install Tora using rpm then check whether you have installed tora and tora-oracle packages (you need both of them).
  Also check whether $ORACLE_HOME/lib is registered in $LD_LIBRARY_PATH enviroment variable

• Create Tor anonymising middlebox osx

  Hello,
  i would like to create an tor anonymising middlebox (mac mini running mavericks and internet-sharing enabled). I don't know if this is the correct way to do it, so i hope you guys can give me some helpfull advise here. The goal is to redirect all external traffic trhough tor. Even https, imap and other connection types not just http request on port 80. This should be done for every device on the network (even ios devices), without to configure them sepreately. thats why i'm using the transparent proxy setup later on.
  here is what i did:
  i installed tor with brew and configured it with the following options
  NATDPort 9040
  NATDListenAddress 127.0.0.1
  DNSPort 9053
  DNSListenAddress 127.0.0.1
  im using NATDPort because i could not get the TransPort Option to work. Tor tells me that Transport and TransListenAddress is not available in my Build. I have no idea how to compile tor on osx and getting these two options to work. The tor manual says that NATDPort is for systems that could not use Transport.
  To redirect all external traffic through tor i use the following pf anchor. I found it on the tor wiki. It required to create a second loopback device, which i could not do either, so i tried to use the bridge100 device which was created by the internet-sharing option on Mavericks instead.
  # destinations you don't want routed through Tor
  non_tor = "{ 192.168.1.0/24 192.168.2.0/24 }"
  # Tor's TransPort
  trans_port = "9040"
  #dns
  rdr pass on bridge100 inet proto udp to 192.168.2.1 port domain -> 127.0.0.1 port 54
  #http
  rdr pass on bridge100 inet proto udp to 192.168.2.1 port http -> 127.0.0.1 port 3131
  rdr pass on bridge100 inet proto tcp all -> 127.0.0.1 port $trans_port
  #rdr pass on bridge100 inet proto udp to port domain -> 127.0.0.1 port domain
  block return out
  pass out quick on lo0 route-to bridge100 inet proto tcp to 127.192.0.0/10 flags S/SA modulate state
  pass quick on { lo0 bridge100 } keep state
  # uncomment the following line if you need to be able to connect to this system
  # from elsewhere on your $non_tor subnet
  #pass in proto tcp from $non_tor to $non_tor port { 22, 25, 80, 110 } flags S/SA keep state
  pass in proto tcp from $non_tor to $non_tor flags S/SA keep state
  pass out quick inet proto tcp user rene flags S/SA modulate state
  pass out quick route-to bridge100 inet proto udp to port domain keep state
  pass out quick inet to $non_tor keep state
  pass out route-to bridge100 inet proto tcp all flags S/SA modulate state
  i'm using pdnsd to cache dns queries, thats why im redirecting all port 53 requests to the localhost on port 54. Also i redirect port 80 requests to my transparent privoxy proxy on port 3131 of localhost. privoxy uses polipo to access tor at 127.0.0.1 port 9050 again. This is against unwanted cookies and trackers.
  i'm not familiar with pf. The rules get loaded, properly, and i can see that there are requests sent to 127.0.0.1 port 9040. the dns queries do work, i can resolve hostnames through tor, but somehow i cannot establish any connection with that pf-anchor in combination with the NATDPort setting of tor. When i try to surf the web (just http not even https) i get a white page with just a body tag and no content.
  i know this can be done with linux, but i don't want to change the os just for that.
  I hope that anyone is able to help me here, until then i have to use the only-redirect-port-80 option
  Happy Holidays and a Happy new Year!

  If you have more than one user account, these instructions must be carried out as an administrator.
  Make sure the title of the Console window is All Messages. If it isn't, select All Messages from the SYSTEM LOG QUERIES menu on the left. If you don't see that menu, select
  View ▹ Show Log List
  from the menu bar.
  Enter "BOOT_TIME" (without the quotes) in the search box. Note the timestamps of those log messages, which refer to the times when the system was booted. Now clear the search box and scroll back in the log to the last boot time after  you had the problem. Select the messages logged before the boot, while the system was unresponsive or was failing to shut down. Copy them to the Clipboard by pressing the key combination command-C. Paste into a reply to this message (command-V). Please include the BOOT_TIME message at the end of the log extract.
  If there are runs of repeated messages, post only one example of each. Don’t post many repetitions of the same message.
  When posting a log extract, be selective. In most cases, a few dozen lines are more than enough.
  Please do not indiscriminately dump thousands of lines from the log into this discussion.
  Important: Some private information, such as your name, may appear in the log. Anonymize before posting.

• Can't create a desktop shortcut for a website in Firefox Tor Browser

  I am a Tor Browser user, and I really like the Firefox interface. According to my about page, my Firefox browser is up to date. But For some reason I cannot save desktop shortcuts for a website. Every time I drag the icon next to a website (variously a glob, a green lock, and other icons), I get a denial mouse icon anywhere I try to put the web shortcut on the desktop. This even happens when I drag bookmarks from my bookmark bar! My guess is that something is blocked in the Tor settings that won't allow shortcuts. Any suggestions on where the shortcuts settings are in Firefox?

  I don't know that program. Go to its Mozilla Add-ons web page and find the support link. Then ask them about this. It may be a bug.
  Do the other add-ons I sent you work okay? Then you should be about done, until you hear from the Tor support people.
  Once you get an answer, please post it here. Good Luck, Happy Holidays !