[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
tor-ramdisk 20090105 is out
-----BEGIN PGP SIGNED MESSAGE-----
For those not familiar, tor-ramdisk is an i686 uClibc-based micro
Linux distribution whose only purpose is to host a Tor server in an
environment that maximizes security and privacy. Security is enhanced
by employing a hardened environment, and privacy is enhanced by
turning off logging at all levels so that even the Tor operator only
has access to minimal information. Finally, since everything runs in
ephemeral memory, no information survives a reboot, except for the Tor
configuration file and the private RSA key, which may be
exported/imported by FTP.
Release 20090105 is a minor update release. Since tor-ramdisk follows
stable Tor, we are following their upgrade to tor-0.2.0.32 to
accomodate the bugfixes and new features. We also took this
opportunity to upgrade the kernel to Gentoo's 2.6.25-hardened-r11 to
keep up with their changes, although none that we know of effect
tor-ramdisk. Finally we also made a minor fix to the setup script
which is the main menu run on tty1. Since ntpd is started from init on
tty3 before networking is configured and brought up, it doesn't reach
any servers and just sits there. When networking is up, ntpd stays
stuck and needs to be restarted. Previously one would do so manually
by switching to tty3 with Alt-F3 and hitting ctrl-C. With 20090105,
ntpd is automatically restarted whenever the networking is
reconfigured to make sure it updates to its new environment. We still
recommend checking by switching to tty3 and seeing ntpd's log output
and making sure that time is well synchronized.
As with all releases, this one is tested in a virtual environment and
in the wild. Node "simba" has been running 20090105 for about a week
as a relay only node with no problems.
As a side note: there has been lost of discussion of putting tor on
ARM and MIPS processors lately and so work is now underway to port
tor-ramdisk to more router specific boards.
Anthony G. Basile, Ph.D.
Buffalo NY, 14201
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----