Re: [tor-relays] tor-relays Digest, 3 questions on torcc file

[jensm1 <jensm1@xxxxxxx>]

I agree to everything Matt said.

A good rule of thumb for tor configuration is "leave everything at default, unless you've got a reason to change it".

Also keep in mind that configuration files (and especially their comments) are mostly about what you CAN do, not what you SHOULD do.

Regarding the control port: I think you don't need it at all, unless you're doing something unusual or don't have ssh access to the computer tor is running on. If both run on the same machine, arm is doing fine with just the (unix) control socket.

Regarding the exit settings:
Is this relay running on a computer at your home, Daniel? Is there other important stuff stored/running on that computer? If the answer to AT LEAST ONE of those two questions is yes, you should definitely set "ExitRelay 0" and "ExitPolicy reject *:*".
Actually, you should set this, regardless of the answers, unless you know exactly, what it means to run an exit-relay and are willing and prepared to do this.

Jens

Am 03.09.2016 um 22:18 schrieb Matt Traudt:

Daniel Boone

I missed your SOCKS question.

If you do not intend to directly use this Tor instance to access the Tor
network, you should leave the SocksPort as it was. By default Tor only
listens on localhost:9050 (as the documentation indicates). Therefore,
even if you *do* intend to use this Tor instance to access the Tor
network, by default you can already point your applications towards
localhost:9050.

So in most cases, this option can be left alone so the default
configuration can do its thing. Either you won't use the SOCKS proxy and
it is harmlessly listening on localhost anyway, or you are like most
people and don't need it to listen on non-localhost non-9050. For either
case, the default behavior is fine.

Hope this helps.

Matt

On 09/03/2016 03:55 PM, daniel boone wrote:

 
I got a couple of question to ask on the torrc file and I hope one of
you will direct me.
 
Ok here we go. I got it working as a relay which i can see in the
terminal. I just started so it is still testing bandwidth. but this is
not my questions
 
1. on line 18 of mine it is about Socks. I was reading in the man pages
on this. It was #Socksport 9050. Per the man pages I took out the
comment and placed as "+" per the page. So now it is *+SOCKSPort 9050 #
Default: Bind to localhost:9050 for local connections.*
 
 

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays