The Tor Project issueshttps://gitlab.torproject.org/groups/tpo/-/issues2024-02-27T19:08:49Zhttps://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/webtunnel/-/issues/9Fix unreliable bufio usage in HTTP Upgrade transport2024-02-27T19:08:49ZshelikhooFix unreliable bufio usage in HTTP Upgrade transportCurrently, there are a few TODO marked bufio usage that are unreliable as the buffer is not drained before original buffer is reused.Currently, there are a few TODO marked bufio usage that are unreliable as the buffer is not drained before original buffer is reused.shelikhooshelikhoohttps://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/webtunnel/-/issues/8Add Tor PT Log feedback to WebTunnel Client2024-02-27T19:08:35ZshelikhooAdd Tor PT Log feedback to WebTunnel Client[Add](https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/webtunnel/-/merge_requests/1#note_2832380) Tor PT Log feedback will make it easier to debug issues in the pluggable transport.[Add](https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/webtunnel/-/merge_requests/1#note_2832380) Tor PT Log feedback will make it easier to debug issues in the pluggable transport.shelikhooshelikhoohttps://gitlab.torproject.org/tpo/web/support/-/issues/310Instructions on setting up bridge relay for Debian / Ubuntu2024-01-30T13:34:35ZRedhill54Instructions on setting up bridge relay for Debian / Ubuntu
1 I am writing about a problem that I had when setting up a Tor bridge relay on a machine with an Ubuntu operating system.
2 On 13 August I put a question with the title “Change instructions or add alternative for adding gpg keys” ...
1 I am writing about a problem that I had when setting up a Tor bridge relay on a machine with an Ubuntu operating system.
2 On 13 August I put a question with the title “Change instructions or add alternative for adding gpg keys” onto Tor Stack Exchange. The link to the question is
A https://tor.stackexchange.com/questions/23269/change-instructions-or-add-alternative-for-adding-gpg-key
3 The one answer received suggested that I put the problem as an issue for the people who manage the website which includes the Tor bridge relay instructions, which is what I am now doing.
4 I followed the instructions on setting up a bridge relay in Ubuntu that I found in two different webpages. The instructions were identical in both webpages as follows.
B https://support.torproject.org/apt/tor-deb-repo/
C https://support.torproject.org/apt/
5 I installed a new version of Lubuntu on a computer, replacing all the programs and data, and then installed the programs for a Tor bridge relay.
6 There was a problem with the gpg key instructions. On Tor Stack exchange I found some advice in the answers to the question “Problem with adding gpg while installing Tor browser: Permission denied” at the link below.
D https://tor.stackexchange.com/questions/23212/problem-with-adding-gpg-while-installing-tor-browser-permission-denied
7 This advice enabled me to get the bridge relay running, but I could not find a way to run nyx using the command “nyx”, but had to use “sudo nyx”. The nyx system gives messages stating that using “sudo nyx” should not be necessary, but if I used “nyx” I got requests for Authentication passwords, or a cookie authentication file, and I could not figure out the password required or gain access to the cookie authentication file. I am aware that it is possible that there may be ways to find the right password or gain access to the cookie authentication file, but I would need further instructions on those actions.
8 Some days later I saw the instructions in the webpage from the link below.
E https://support.torproject.org/relay-operators/
These instructions and commands were different from the instructions at the links B and C. I wonder if the instructions at link E, which includes some shorter commands and fewer “sudo” commands. (NB in the instructions at links B and C, “#” is shorthand for “sudo”).
9 My question is whether the instructions at link E are more up-to-date, and will avoid the need for the change mentioned in link D, and remove the need for the “sudo nyx” command. If this is the case, I presume that the instructions at links B and C will need to be changed in line with those at link E.
10 If you confirm that the instructions at link E should be used, rather that those at links B, C, and D, then I will repeat the process of loading Ubuntu onto the computer and installing the Tor bridge relay, and see if that works as it should.
With thanks in advance for looking at this issue,
Redhill54https://gitlab.torproject.org/tpo/core/arti/-/issues/559add CI test which searches logs for sensitive data2022-10-20T21:12:53ZIan Jacksoniwj@torproject.orgadd CI test which searches logs for sensitive dataWe should add a test to the CI that greps the integration test logs for as many of the things mentioned in `doc/Safelogging.md` as we can.
We can use the existing logs, which run with a high verbosity level, and filter them (post-hoc, i...We should add a test to the CI that greps the integration test logs for as many of the things mentioned in `doc/Safelogging.md` as we can.
We can use the existing logs, which run with a high verbosity level, and filter them (post-hoc, in an ad-hoc way) for severity.Ian Jacksoniwj@torproject.orgIan Jacksoniwj@torproject.orghttps://gitlab.torproject.org/tpo/core/arti/-/issues/554Move channel padding logic into the channel reactor2023-02-27T12:00:17ZetaMove channel padding logic into the channel reactorAs part of the discussions on arti!657, we agreed to move some of the channel padding logic back into the channel reactor. This ticket tracks that work (and mostly exists so I don't forget to actually do that refactor).As part of the discussions on arti!657, we agreed to move some of the channel padding logic back into the channel reactor. This ticket tracks that work (and mostly exists so I don't forget to actually do that refactor).https://gitlab.torproject.org/tpo/onion-services/sauteed-onions/web/-/issues/2Link HotFOCI talk2022-08-23T18:10:33ZRasmus Dahlbergrasmus@rgdd.seLink HotFOCI talkLink @syverson's HotFOCI talk somewhere. Let's defer until we know if there
will be any official upload from HotFOCI, otherwise fix that ourselves.Link @syverson's HotFOCI talk somewhere. Let's defer until we know if there
will be any official upload from HotFOCI, otherwise fix that ourselves.https://gitlab.torproject.org/tpo/onion-services/sauteed-onions/web/-/issues/1Update search example images2022-08-17T21:10:59ZRasmus Dahlbergrasmus@rgdd.seUpdate search example imagesIt would be nice to show screenshots of using api.sauteed-onions.org. If
we do, I'm not sure if our crt.sh example should be kept, moved, or removed.
(Something that's nice about the crt.sh example is that it shows what happens
in deta...It would be nice to show screenshots of using api.sauteed-onions.org. If
we do, I'm not sure if our crt.sh example should be kept, moved, or removed.
(Something that's nice about the crt.sh example is that it shows what happens
in detail; whereas api.sauteed-onions.org has a UX that hides details.)https://gitlab.torproject.org/tpo/onion-services/sauteed-onions/monitor/-/issues/1Verify that downloaded entries are in a consistent Merkle tree2022-08-17T21:10:36ZRasmus Dahlbergrasmus@rgdd.seVerify that downloaded entries are in a consistent Merkle treeIn addition to downloading all log entries we should also verify that they are included in a consistent Merkle tree.In addition to downloading all log entries we should also verify that they are included in a consistent Merkle tree.Rasmus Dahlbergrasmus@rgdd.seRasmus Dahlbergrasmus@rgdd.sehttps://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/41087Onion Services show broken padlock instead of Secure Onion icon in the URL ba...2023-11-06T23:36:20ZrichardOnion Services show broken padlock instead of Secure Onion icon in the URL bar on AndroidDan BallardDan Ballardhttps://gitlab.torproject.org/tpo/web/lego/-/issues/50Use `mailto:gettor@...?body=...` links wherever the gettor email is mentioned2024-02-22T15:39:24ZWofWcawofwca@protonmail.comUse `mailto:gettor@...?body=...` links wherever the gettor email is mentionedExample link:
<mailto:gettor@torproject.org?body=windows%20en_US>
If you click this link, this will tell the handler to prefill the body with `windows en_US`. Maybe could also add something else, like a comment about "replace `windows`...Example link:
<mailto:gettor@torproject.org?body=windows%20en_US>
If you click this link, this will tell the handler to prefill the body with `windows en_US`. Maybe could also add something else, like a comment about "replace `windows` with `linux` if you need to, and `en_US` with the name of your locale <a link to locales list>".
For example, on gettor.torproject.org we could generate such a link, instead of just giving verbal instructions. Also we could add "OS" and "locale" `<select>`s and change the link based on that, and try to detect the locale and OS for default values.
Also there needs to be a "copy" button as currently in Chromium and Gecko it appears that if you right-click and copy the link, it only copies the email address.
This should allow to share such a link more easily as you don't have to add instructions along with email address.
We could also add such links to the response emails as well (e.g. if the user did not specify the OS) - maybe make a table with OS as columns, language as rows and links as cells.
But I shall warn that removing the instructions and only relying on such links is probably not good because they don't always do what I described. For example, if you set Chromium as the `mailto` link handler, and do not set up any handler websites inside the browser, clicking such link will do nothing.
I don't know where else this email is mentioned, maybe this can help https://gitlab.torproject.org/tpo/anti-censorship/gettor-project/gettor/-/issues/87
And I'm not sure if this is the right place for this issue, maybe https://gitlab.torproject.org/tpo/anti-censorship/gettor-project is more appropriate, feel free to move it.
Related: https://gitlab.torproject.org/tpo/anti-censorship/gettor-project/gettor/-/issues/64Jérôme Charaouilavamind@torproject.orgJérôme Charaouilavamind@torproject.org2024-03-31https://gitlab.torproject.org/tpo/network-health/metrics/collector/-/issues/40029Clean up torperf archive and stop archiving "new" data2024-03-21T17:14:43ZGeorg KoppenClean up torperf archive and stop archiving "new" dataTorperf is long gone but we are still archiving "new" data, see: https://metrics.torproject.org/collector/archive/torperf/. We should stop that and remove the "archives" from 2020-06 on (inclusive).Torperf is long gone but we are still archiving "new" data, see: https://metrics.torproject.org/collector/archive/torperf/. We should stop that and remove the "archives" from 2020-06 on (inclusive).HiroHirohttps://gitlab.torproject.org/tpo/web/community/-/issues/280add information about contacting new relay operators in the requirements2023-04-05T19:00:27Zemmapeeladd information about contacting new relay operators in the requirementsThere was a thread the other day in reddit about tor project wanting to contact a new relay operator that added lots of relays to the network in a very short time.
The whole thread was about why the tor project wanted to do a video call...There was a thread the other day in reddit about tor project wanting to contact a new relay operator that added lots of relays to the network in a very short time.
The whole thread was about why the tor project wanted to do a video call and how bad that was.
We should maybe add some information about this to https://community.torproject.org/relay/relays-requirements/
We can also mention starting an asociation as a good way to preserve the anonimity of individuals, while still keeping certain accountability to benefit the netwrok.
One good phrase about this issue is:
```
Remember that running a relay is an act of transparency
(even though being a Tor user is an act of privacy),
because the way to strengthen trust in relays is by having a stronger community
Be sure to set your ContactInfo to a working email address in case we need to reach you
```
which is part of the sysadmin101 howto gman999 did for the relay operators.GusGushttps://gitlab.torproject.org/tpo/community/training/-/issues/49[Training] Prepare training and outreach material on Internet shutdowns2024-03-06T13:47:48Zraya[Training] Prepare training and outreach material on Internet shutdownsThe idea here is to start creating material that is not centered around the technology but is framed around a use case.
In this case, the slides would talk about Internet censorship and shutdowns more generally:
- Defining Internet shut...The idea here is to start creating material that is not centered around the technology but is framed around a use case.
In this case, the slides would talk about Internet censorship and shutdowns more generally:
- Defining Internet shutdowns (based on #KeepItOn's newest [working definition](https://rightscon.summit.tc/t/2022/events/revising-our-working-definition-of-shutdowns-9rPraKJSSZo5gU6wRnMrY9))
- Outlining the different types of Internet censorship
- Measuring network interference (with OONI)
Where drafts are being written:
- Training slides structure: https://pad.riseup.net/p/tor-internet-shutdowns-prepare
- Outreach material structure: https://pad.riseup.net/p/tor-internet-shutdown-outreach
- https://docs.google.com/presentation/d/1L4yTldEaIaoUDS7JmRJ8x2G-jOPfJ_g5Hek-SH530B4/edit
Note: once material is completed and reviewed, translate it into markdown for Reveal JS.rayarayahttps://gitlab.torproject.org/tpo/web/community/-/issues/272Redesign the main menu on mobile devices2023-05-02T17:00:27ZGusRedesign the main menu on mobile devicesThe main menu on mobile devices is taking up a good part of the page and it's also covering up the internal menus.
![community portal main menu](/uploads/bceaf486dcd9892900e1036fdfe2e36a/community-portal-menu.jpeg)The main menu on mobile devices is taking up a good part of the page and it's also covering up the internal menus.
![community portal main menu](/uploads/bceaf486dcd9892900e1036fdfe2e36a/community-portal-menu.jpeg)https://gitlab.torproject.org/tpo/onion-services/onion-support/-/issues/71Module to spread the use of Onion-Location header2022-04-07T22:20:08ZSilvio RhattoModule to spread the use of Onion-Location headerIs there a way to make easy the setting up of the [Onion-Location header](https://community.torproject.org/onion-services/advanced/onion-location/)?
Right now it's just a single line of code to be added either in the webserver/proxy or ...Is there a way to make easy the setting up of the [Onion-Location header](https://community.torproject.org/onion-services/advanced/onion-location/)?
Right now it's just a single line of code to be added either in the webserver/proxy or in the website HTML, but could it be done easier?
Could a tool be built to make this task even simpler?https://gitlab.torproject.org/tpo/onion-services/onion-support/-/issues/69Tool to manage Onion Service auth keys2023-10-20T16:17:37ZSilvio RhattoTool to manage Onion Service auth keysModule to create Onion Services authorization keys, given that [the current instructions](https://community.torproject.org/onion-services/advanced/client-auth/) are not very handy to follow. Some tool/library could automate this manageme...Module to create Onion Services authorization keys, given that [the current instructions](https://community.torproject.org/onion-services/advanced/client-auth/) are not very handy to follow. Some tool/library could automate this management in the server side.
Thanks @gus for the idea :-)https://gitlab.torproject.org/tpo/core/tor-ci-reproducible/-/issues/6GPG_CMD env variable2022-11-14T17:56:49ZDavid Gouletdgoulet@torproject.orgGPG_CMD env variableFor the Qubes user out there, they use a wrapper around GPG so we need a variable that allows the user to point on where is the GPG binary to use for signing.For the Qubes user out there, they use a wrapper around GPG so we need a variable that allows the user to point on where is the GPG binary to use for signing.https://gitlab.torproject.org/tpo/core/tor-ci-reproducible/-/issues/5Wipe build/ before starting script2022-11-14T17:56:43ZDavid Gouletdgoulet@torproject.orgWipe build/ before starting scriptWe need to wipe `build/` in the `build.sh` script before starting else when it lingers, we get bad results.We need to wipe `build/` in the `build.sh` script before starting else when it lingers, we get bad results.https://gitlab.torproject.org/tpo/anti-censorship/censorship-analysis/-/issues/40029[Turkmenistan] Number of directly connecting users is going down2024-03-05T18:48:39ZGus[Turkmenistan] Number of directly connecting users is going downThe current number of Tor users in TM is going down since July 2021. I'm creating this ticket to investigate what's happening and ask volunteers to run emma.
![Screenshot_2021-08-10_Users___Tor_Metrics](/uploads/84cb05ae72314320d73bad18...The current number of Tor users in TM is going down since July 2021. I'm creating this ticket to investigate what's happening and ask volunteers to run emma.
![Screenshot_2021-08-10_Users___Tor_Metrics](/uploads/84cb05ae72314320d73bad184aeb15f4/Screenshot_2021-08-10_Users___Tor_Metrics.png)
https://metrics.torproject.org/userstats-relay-country.html?start=2021-05-12&end=2021-08-10&country=tm&events=offshelikhooshelikhoohttps://gitlab.torproject.org/tpo/anti-censorship/rdsys/-/issues/92remove private material from the config2023-12-21T17:12:38Zmeskiomeskio@torproject.orgremove private material from the configSo we can keep the config in [rdsys-admin](https://gitlab.torproject.org/tpo/anti-censorship/rdsys-admin).
Right now there are api tokens, smtp passwords, auth tokens, generator seeds, ... Does it make sense to have a second `secrets.js...So we can keep the config in [rdsys-admin](https://gitlab.torproject.org/tpo/anti-censorship/rdsys-admin).
Right now there are api tokens, smtp passwords, auth tokens, generator seeds, ... Does it make sense to have a second `secrets.json` file for that kind of content? There are secrets for the backend, distributors or updaters, does it make sense to mix all of them in the same file?meskiomeskio@torproject.orgmeskiomeskio@torproject.org