[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] My relay software gets hung up on OVH

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] My relay software gets hung up on OVH
From: lists@xxxxxxxxxxxxxxx
Date: Mon, 11 Jan 2021 13:43:00 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 11 Jan 2021 07:43:16 -0500
In-reply-to: <5ED2A59B-808B-4508-B198-0E4246415B8C@hxcore.ol>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <5ED2A59B-808B-4508-B198-0E4246415B8C@hxcore.ol>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Roundcube Webmail/1.3.3

On 10.01.2021 22:23, Keifer Bly wrote:

Sometimes gets hung up. About every two weeks or so, the relay
software gets hung up, causing the relay to go offline. I notice when
this happens, the tor log file becomes unreadable, making it difficult


Try:
journalctl -xe
journalctl -u tor.service

What means unreadable? Then something is wrong with logrotate or/etc/logrotate.d/tor.

to tell what was happening with the tor process when this occurs. It
is only when the relay is restarted by running “killall tor” in
terminal and then restarting the relay.


Don't you run Tor as a normal systemd service?
systemctl status tor.service -> shows last errors
systemctl reload tor -> 'killall' is only the last resort


By the way, don't be surprised if your server is under DDoS.
You allow SSH password login for all users!

Allow only one or a group. Example:
/etc/ssh/sshd_config -> AllowUsers Keifer user2 ...
or AllowGroups ssh-users

Login is only recommended via ssh key auth, not with a password!
Or you only allow access via VPN or certain IP's.

Why do you have 'accept 6660-6667' in the torrc?
TCP 6660-6667 and 6697 are well known DDoS ports.

Even if you don't allow exit traffic, I don't know whether that can beexploited.


--
╰_╯ Ciao Marco!

Debian GNU/Linux

It's free software and it gives you freedom!
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] My relay software gets hung up on OVH
  - From: Keifer Bly

Prev by Author: Re: [tor-relays] Blocking bittorrent
Next by Author: Re: [tor-relays] OrNetStats: Operator Level Graphs added
Previous by thread: [tor-relays] My relay software gets hung up on OVH
Next by thread: [tor-relays] Config question
Index(es):
- Author
- Thread