[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Hello, about Best Hardware...
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Hello, about Best Hardware...
- From: "F. Fox" <kitsune.or@xxxxxxxxx>
- Date: Sun, 16 Dec 2007 15:01:16 -0800
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Sun, 16 Dec 2007 18:01:28 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; bh=0xMPbFjyUMdr5yo6LF/gK9e3nW4Q8zyzMDKmj0gGPtI=; b=C2QrN67BHCZKuw7Xz6lyZXen4Ppn/0UjV0Byc/IoCQdEUTRwVBJyi6/iG5cogYY9gNV36XYG4+zvnUJxhlOy/qiuW4OLo8DIrrpCD6r2SQ5FdyGES7ZH/CKBE3h9DfjH5AIaZ4WHp1wFGh0+s3t/IH6PfXTtNNRy8CEocKOP/2I=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=eWwOIFRIrUavQvEX6Bo0MS86WRw6bpYYsgxjlWClujAyFtwntRWWpT2miikiZx/x6bxAhLobhxFaipU/3uOu2QvoJMAl54rw7XFciLPuJhQ1TKRO7gr9OPSVdqWks6gGZl8oqwMHrXUe6Tqqf6xIo6nwP5qsL7v/AM+MSeoKlAw=
- In-reply-to: <524173.15532.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
- References: <524173.15532.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Thunderbird 2.0.0.9 (X11/20071115)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
algenon flower wrote:
(snip)
> I really don't like the notion of setting up a TOR server
> w/out a firewall. It just sounds like an invitation to certain disaster.
(snip)
I think running *any* system in this modern age without some kind of
firewall protection - even if it's just software on the end box itself -
is an invitation to disaster; doing it with a server is suicide. =:oD
> Does anyone have a favorite distro of Linux to work with .rpm versions
> of TOR? I might change to an easier Linux to use than RHEL if other main
> OS are better w/TOR.
(snip)
I've used .rpm packages with Fedora (first 7, and now 8) - they seem to
work just fine.
However, some of the packages for Debian (see the wiki for where to get
them) look a bit better IMHO, particularly from a security standpoint.
One site provides modified scripts for running Tor in a chroot() - which
can help isolate a security breach (assuming the process sheds its root
privileges after chrooting - which the Debian mod does [I've tried it]).
In the end, it's up to you - just be sure to keep Tor up-to-date. =:o)
PS: My GPG key - obviously - has changed; I wanted a long RSA key, due
to the ease of using better hash algorithms. The new key is signed by
the old one, and I've updated "kitsune"'s ContactInfo to match the new
Key ID, algorithm, and size.
(The old key is still valid, though.)
- --
F. Fox: A+, Network+, Security+
Owner of Tor node "kitsune"
http://fenrisfox.livejournal.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFHZa47bgkxCAzYBCMRCKgiAJ4rbgZ8PPyjl5znMEePXQ4ZFx9IPwCdGH4z
jlx036n/35Fu3mM/DiglrBI=
=zdT+
-----END PGP SIGNATURE-----