[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] Quick bugfix sharing regarding obfs4 malfunctioning

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] Quick bugfix sharing regarding obfs4 malfunctioning
From: telekobold <torproject-ml@xxxxxxxxxxxxx>
Date: Thu, 7 Sep 2023 14:12:36 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 07 Sep 2023 08:12:54 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telekobold.de; s=MBO0001; t=1694088757; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=6Sl39rDCtymjO3QXrsOu6RVaOuqmTw7RPcHc7eRrMBU=; b=ne5WfTpTK1FpKCf2d0/HyKbXih1Byn2RK9LnUURSaHl4q8kGygSvQ5MqkZdN50pDHwNpC+ TAFqPd1yJ+C7O6bYym5cfS8H1eR3VcND+usZ8FLqtgsH97krCtUGCzV2xgSiBuk1IgeEc0 GvOQ3ahnkV7Mg1hxnb+31ZQvZ8K5ci1/9HuDOp79LO/ay+/6FfkcLVzdXGsjBHxbE/Um++ RmL8w5z4btuVHL/hDei5gTi+WA/Wueto7T9ueI7m13JEzLubOI4SsonI3Q5bLipK1dkamv VqT2+bc4OZKcyVYAQwAFcKYk5lXvHge+bqY2dD8Oc8uBLKUYMTOef9E3p3DgCw==
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi,

I just want to share some quick bugfix with you (sorry if this isobvious to you or has been written somewhere else).

Suddenly, I got the following error messages on my two bridges runningon Debian 11 appearing in the logs (in /var/log/tor/notices.log and inthe nyx output) every second until a restart:

<timestamp> [warn] Managed proxy "/usr/bin/obfs4proxy" processterminated with status code 65280<timestamp> [warn] Server managed proxy encountered a method error.(obfs4 listen tcp 0.0.0.0:443: bind: permission denied)<timestamp> [warn] Managed proxy '/usr/bin/obfs4proxy' was spawnedsuccessfully, but it didn't launch any pluggable transport listeners!

When restarting the corresponding bridge, in the startup process thesecond and the third of the above warning messages again appeared in thelogs. So obfs4 was suddenly not usable any more. Port 443 is not blockedin the bridge's firewalls.

A bit research reveled that apparently, an automatic update set thesystemd setting "NoNewPrivileges=no" in/lib/systemd/system/tor@default.service and tor@.service [1] back toyes, which caused the above issue. After setting it back and restarting,everything works fine now and instead of the warning messages mentionedabove, the following message appears in the log again:


<timestamp> [notice] Registered server transport 'obfs4' at '[::]:443'

(Several places recommend to set the obfs4 port to 443 to get aroundrestrictive firewalls, so I didn't want to set it to something else).


Kind regards
telekobold

[1]http://xmrhfasfg5suueegrnc4gsgyi2tyclcy5oz7f5drnrodmdtob6t2ioyd.onion/relay/setup/bridge/debian-ubuntu/

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Quick bugfix sharing regarding obfs4 malfunctioning
  - From: Toralf Förster
- Re: [tor-relays] Quick bugfix sharing regarding obfs4 malfunctioning
  - From: David Fifield

Prev by Author: Re: [tor-relays] Metrics
Next by Author: Re: [tor-relays] Metrics
Previous by thread: Re: [tor-relays] Metrics
Next by thread: Re: [tor-relays] Quick bugfix sharing regarding obfs4 malfunctioning
Index(es):
- Author
- Thread