Hi,
This is just a quick update that as of late October, WMF is officially hosting a Tor relay: https://atlas.torproject.org/#details/DB19E709C9EDB903F75F2E6CA95C84D637B62A...
This is not an exit node, and it's just a small contribution to the network. Really - anyone can do it: https://www.eff.org/torchallenge/
We want to note that editing via Tor is a whole other matter, and I would refer to previous conversations on this list if you have questions about the current state of things. We also currently have no plans to run an exit node or a hidden service, but we're open to suggestions for additional ways in which WMF can support anonymity and privacy.
Sincerely, Faidon
Le 10/11/2014 10:10, Faidon Liambotis a écrit :
Hi,
This is just a quick update that as of late October, WMF is officially hosting a Tor relay: https://atlas.torproject.org/#details/DB19E709C9EDB903F75F2E6CA95C84D637B62A...
This is not an exit node, and it's just a small contribution to the network. Really - anyone can do it: https://www.eff.org/torchallenge/
We want to note that editing via Tor is a whole other matter, and I would refer to previous conversations on this list if you have questions about the current state of things. We also currently have no plans to run an exit node or a hidden service, but we're open to suggestions for additional ways in which WMF can support anonymity and privacy.
Nice, and I started a stub page on wikitech with the above links:
https://wikitech.wikimedia.org/wiki/Tor_relay
Great! Thanks. * "Advertised Bandwidth 3.3 MB/s", what does it mean and can it be increased? * I see in puppet that there is at least some logging enabled. What is being logged and why? "The best policy is to keep no logs." https://trac.torproject.org/projects/tor/wiki/doc/OperationalSecurity#MinimizeDataRetention
Nemo
On Mon, Nov 10, 2014 at 11:35:42PM +0100, Federico Leva (Nemo) wrote:
- "Advertised Bandwidth 3.3 MB/s", what does it mean and can it be
increased?
As we do not set any advertised bandwidth in our configuration, the value in Atlas is the bandwidth observed by the network. We are still in a ramp-up phase and going to continue being so for until approximately the end of 2014. Read https://blog.torproject.org/blog/lifecycle-of-a-new-relay for more. We do not plan to set an bandwidth limit at this point, either in the Tor configuration or externally, in our network.
- I see in puppet that there is at least some logging enabled. What is
being logged and why? "The best policy is to keep no logs." https://trac.torproject.org/projects/tor/wiki/doc/OperationalSecurity#MinimizeDataRetention
What logs are you referring to? If you're referring to "Log notice /var/log/tor/tor.log" then this just logs statistics, nothing else. torrc's manpage says on the matter: "[w]e advise using "notice" in most cases, since anything more verbose may provide sensitive information to an attacker who obtains the logs". We do not keep traffic/usage logs in any way nor are we planning to.
Faidon
This is great news! Mozilla just began hosting middle relays a few days ago as well. Facebook just set up a hidden service to allow Tor users to access Facebook entirely within Tor. It's been a good week for the folks over at Tor.
- "Advertised Bandwidth 3.3 MB/s", what does it mean and can it be
increased?
As we do not set any advertised bandwidth in our configuration, the value in Atlas is the bandwidth observed by the network. We are still in a ramp-up phase and going to continue being so for until approximately the end of 2014. Read https://blog.torproject.org/blog/lifecycle-of-a-new-relay for more. We do not plan to set an bandwidth limit at this point, either in the Tor configuration or externally, in our network.
I would highly recommend the lifecycle blog post that was linked to for anyone wanting to understand the statistics mentioned in Atlas.
If anyone has any questions about any of the information listed in Atlas, you are welcome to shoot them my way as well. I'd be happy to answer them or find someone who can.
- I see in puppet that there is at least some logging enabled. What is
being logged and why? "The best policy is to keep no logs." https://trac.torproject.org/projects/tor/wiki/doc/OperationalSecurity#MinimizeDataRetention
What logs are you referring to? If you're referring to "Log notice /var/log/tor/tor.log" then this just logs statistics, nothing else. torrc's manpage says on the matter: "[w]e advise using "notice" in most cases, since anything more verbose may provide sensitive information to an attacker who obtains the logs". We do not keep traffic/usage logs in any way nor are we planning to.
By default Tor doesn't keep any meaningful logs and the folks at the Tor project get very upset if you change that, for obvious reasons.
Thank you, Derric Atzrott
Sidenote: I've just a few days ago been laid off. My last day at this job will be on Friday, at which point I will be re-subscribing to this list using the email address zellfaze@zellfaze.org.
wikitech-l@lists.wikimedia.org