[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Tor Cloud/AWS relay set up but no Tor installed



Hi there,

After a long month of not having time for this, I've got it working thanks to
Sina's help. I've attached patches to the ec2-prep.sh script that should make
it work again (nothing extensive, basically just what Sina pointed out plus
something about ExtORPort I saw it complaining about in the log.

Bridge is now up. :)

Best wishes,
allicoder

On Sun, Mar 22, 2015 at 10:51:42AM +0000, tor-relays-request@xxxxxxxxxxxxxxxxxxxx wrote:
> Send tor-relays mailing list submissions to
> 	tor-relays@xxxxxxxxxxxxxxxxxxxx
> 
> To subscribe or unsubscribe via the World Wide Web, visit
> 	https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
> or, via email, send a message with subject or body 'help' to
> 	tor-relays-request@xxxxxxxxxxxxxxxxxxxx
> 
> You can reach the person managing the list at
> 	tor-relays-owner@xxxxxxxxxxxxxxxxxxxx
> 
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of tor-relays digest..."
> 
> 
> Today's Topics:
> 
>    1. Re: IPv6 HiddenServicePort (teor)
>    2. Tor Cloud/AWS relay set up but no Tor installed
>       (aredocilla@xxxxxxxxx)
>    3. Re: Tor Cloud/AWS relay set up but no Tor installed (SiNA Rabbani)
>    4. Tor-Tshirts (Nchinda Nchinda)
>    5. Re: Tor-Tshirts (Roger Dingledine)
> 
> Message: 2
> Date: Sun, 22 Mar 2015 03:10:53 +0000
> From: aredocilla@xxxxxxxxx
> To: tor-relays@xxxxxxxxxxxxxxxxxxxx
> Subject: [tor-relays] Tor Cloud/AWS relay set up but no Tor installed
> Message-ID: <20150322031053.GB5948@MadHatter>
> Content-Type: text/plain; charset=us-ascii
> 
> Hello,
> 
> I've been trying to set up a tor relay on AWS using the free tier using the
> instructions in various places (e.g. https://cloud.torproject.org/,
> https://www.fak3r.com/2012/08/11/howto-run-a-tor-node-in-the-cloud-for-free/).
> But sshing in from my PC shows clearly that not only is tor not running, it's
> not even installed!
> 
> ubuntu@ip-172-31-28-207:~$ aptitude show tor
> Package: tor                      
> State: not installed
> Version: 0.2.5.11-1~precise+1
> Priority: optional
> Section: net
> ...
> 
> ubuntu@ip-172-31-28-207:~$ ps -ely | grep tor
> ubuntu@ip-172-31-28-207:~$ ls /var/log
> alternatives.log  auth.log  btmp            dist-upgrade  dmesg.0     dmesg.2.gz  fsck      landscape  mail.err  news    udev     unattended-upgrades  wtmp
> apt               boot.log  cloud-init.log  dmesg         dmesg.1.gz  dpkg.log    kern.log  lastlog    mail.log  syslog  ufw.log  upstart
> 
> Has something changed, and the images no longer include tor on start-up (I made
> sure I followed the gist of the cloud.torproject.org steps, given that the
> interface has changed significantly; even went to the previous page from the
> linked one to check that the AMI thing mentioned tor)? I've noticed various
> people have posted online saying it's not safe to run Tor on cloud services -
> has the image been deleted because of this? I wanted to try it anyway because
> the main torproject website still says in several places that running a relay
> on AWS is A Good Thing.
> 
> Or did I just do something wrong?
> 
> Best wishes,
> allicoder.
> 
> -- 
> PGP key available on request
> 
> 
> ------------------------------
> 
> Message: 3
> Date: Sun, 22 Mar 2015 04:52:34 +0000 (UTC)
> From: SiNA Rabbani <sina@xxxxxxxxxxx>
> To: tor-relays@xxxxxxxxxxxxxxxxxxxx
> Subject: Re: [tor-relays] Tor Cloud/AWS relay set up but no Tor
> 	installed
> Message-ID:
> 	<1101716784.98280.1426999954497.JavaMail.zimbra@xxxxxxxxxxx>
> Content-Type: text/plain; charset=utf-8
> 
> Hi allicoder,
> 
> The images on Tor Cloud website have not been updated for a while. The project is lacking someone
> that can keep it up to date. I tried to take on the responsibility but so far I have failed to dedicate
> the necessary time. Sorry for the bad experience.
> 
> As far as the specific problem with the Cloud image itself, there is a script that is supposed to install the relay
> on first boot. See /etc/rc.local.
> 
> You can also find that script here: https://gitweb.torproject.org/tor-cloud.git/plain/ec2-prep.sh
> 
> There are a couple of issues with the script itself that I noticed immediately:
> 1) the harcoded pgp key is expired
> 2) the debian experimental repository is returning a 404
> W: Failed to fetch http://deb.torproject.org/torproject.org/dists/experimental-precise/main/binary-i386/Packages  404  Not Found [IP: 38.229.72.16 80]
> 
> If you wish to do some trouble-shooting, try to get these commands to run without any errors:
> sudo apt-get -y update
> sudo apt-get -y upgrade
> sudo bash /etc/ec2-prep.sh bridge
> 
> Finally, now that you have a running image and ssh access, you can just follow the Tor relay installations here:
> https://www.torproject.org/docs/debian.html.en
> 
> I apologize for the inconvenience and thank you for running a relay.
> 
> All the best,
> Sina
> 
> 
> 
> 
> "Be the change that you wish to see in the world." - Mahatma Gandhi
> 
> ----- On Mar 21, 2015, at 11:10 PM,  aredocilla@xxxxxxxxx wrote:
> 
> > Hello,
> > 
> > I've been trying to set up a tor relay on AWS using the free tier using the
> > instructions in various places (e.g. https://cloud.torproject.org/,
> > https://www.fak3r.com/2012/08/11/howto-run-a-tor-node-in-the-cloud-for-free/).
> > But sshing in from my PC shows clearly that not only is tor not running, it's
> > not even installed!
> > 
> > ubuntu@ip-172-31-28-207:~$ aptitude show tor
> > Package: tor
> > State: not installed
> > Version: 0.2.5.11-1~precise+1
> > Priority: optional
> > Section: net
> > ...
> > 
> > ubuntu@ip-172-31-28-207:~$ ps -ely | grep tor
> > ubuntu@ip-172-31-28-207:~$ ls /var/log
> > alternatives.log  auth.log  btmp            dist-upgrade  dmesg.0     dmesg.2.gz
> > fsck      landscape  mail.err  news    udev     unattended-upgrades  wtmp
> > apt               boot.log  cloud-init.log  dmesg         dmesg.1.gz  dpkg.log
> > kern.log  lastlog    mail.log  syslog  ufw.log  upstart
> > 
> > Has something changed, and the images no longer include tor on start-up (I made
> > sure I followed the gist of the cloud.torproject.org steps, given that the
> > interface has changed significantly; even went to the previous page from the
> > linked one to check that the AMI thing mentioned tor)? I've noticed various
> > people have posted online saying it's not safe to run Tor on cloud services -
> > has the image been deleted because of this? I wanted to try it anyway because
> > the main torproject website still says in several places that running a relay
> > on AWS is A Good Thing.
> > 
> > Or did I just do something wrong?
> > 
> > Best wishes,
> > allicoder.
> > 
> > --
> > PGP key available on request
> > _______________________________________________
> > tor-relays mailing list
> > tor-relays@xxxxxxxxxxxxxxxxxxxx
> > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
> 
> 
> ------------------------------
> 
> End of tor-relays Digest, Vol 50, Issue 31
> ******************************************

-- 
PGP key available on request
From 5a599e6dc13c06146f1daa2051e884b89f60101b Mon Sep 17 00:00:00 2001
From: allicoder <aredocilla@xxxxxxxxx>
Date: Tue, 28 Apr 2015 02:16:06 +0100
Subject: [PATCH 1/3] ec2-prep.sh: experimental repos no longer exist.

---
 ec2-prep.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ec2-prep.sh b/ec2-prep.sh
index 90bf140..482beb4 100644
--- a/ec2-prep.sh
+++ b/ec2-prep.sh
@@ -107,7 +107,7 @@ esac
 echo "Adding Tor's repo for $DISTRO...";
 cat << EOF >> $SOURCES
 deb http://deb.torproject.org/torproject.org $DISTRO main
-deb http://deb.torproject.org/torproject.org experimental-$DISTRO main
+#deb http://deb.torproject.org/torproject.org experimental-$DISTRO main
 EOF
 
 # Install Tor's GPG key
-- 
2.1.4

From 965d68f3d9fb6dd12c2b15c01629750cb83ec077 Mon Sep 17 00:00:00 2001
From: allicoder <aredocilla@xxxxxxxxx>
Date: Tue, 28 Apr 2015 02:17:02 +0100
Subject: [PATCH 2/3] ec2-prep: get archive key from keyserver.

The previous hardcoded key had an old expiry date on it that prevented the
installation.
---
 ec2-prep.sh | 43 ++-----------------------------------------
 1 file changed, 2 insertions(+), 41 deletions(-)

diff --git a/ec2-prep.sh b/ec2-prep.sh
index 482beb4..7a30d91 100644
--- a/ec2-prep.sh
+++ b/ec2-prep.sh
@@ -112,47 +112,8 @@ EOF
 
 # Install Tor's GPG key
 echo "Installing Tor's gpg key...";
-#gpg --keyserver keys.gnupg.net --recv 886DDD89
-#gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -
-cat << EOF > $GPGKEY
------BEGIN PGP PUBLIC KEY BLOCK-----
-Version: GnuPG v1.4.10 (GNU/Linux)
-
-mQENBEqg7GsBCACsef8koRT8UyZxiv1Irke5nVpte54TDtTl1za1tOKfthmHbs2I
-4DHWG3qrwGayw+6yb5mMFe0h9Ap9IbilA5a1IdRsdDgViyQQ3kvdfoavFHRxvGON
-tknIyk5Goa36GMBl84gQceRs/4Zx3kxqCV+JYXE9CmdkpkVrh2K3j5+ysDWfD/kO
-dTzwu3WHaAwL8d5MJAGQn2i6bTw4UHytrYemS1DdG/0EThCCyAnPmmb8iBkZlSW8
-6MzVqTrN37yvYWTXk6MwKH50twaX5hzZAlSh9eqRjZLq51DDomO7EumXP90rS5mT
-QrS+wiYfGQttoZfbh3wl5ZjejgEjx+qrnOH7ABEBAAG0JmRlYi50b3Jwcm9qZWN0
-Lm9yZyBhcmNoaXZlIHNpZ25pbmcga2V5iQE8BBMBAgAmAhsDBgsJCAcDAgQVAggD
-BBYCAwECHgECF4AFAlA+M24FCQ0iFQAACgkQ7oy8noht3YkZsAf/Z+O15tDvGwLz
-NROeMiTyOZ4fyQ1lynUpOS3fUJl3qM30oWPl1tK5pdAZgwleL0Co8d27Hv14zpCO
-wwI3htgl7dsD8IS564v1sHGx+X1qfLzInwFxIlVxzrVbhUNeLSKiBJ6qwcZqAIep
-eS2Lv+l3lELOvjbHQ4bx5DqoVZn0uUqksh3PkyN9Du4lZ2WGiTm1pIWDxY8kJIgx
-pDFEL3e5i/cIQy6wsfeE2Nw2T0qoxn+sWSvwBUijtfq0K41w4jpEsnmjiZQ0l+VT
-wcoGlF/oQuEkAV+FXQCLw26a2aPUXizttlPINJ8JiNzl68j8FaMnqkaFAzJffbM8
-D1UOZVdmnbkBDQRKoO2QAQgA2uKxSRSKpd2JO1ODUDuxppYacY1JkemxDUEHG31c
-qCVTuFz4alNyl4I+8pmtX2i+YH7W9ew7uGgjRzPEjTOm8/Zz2ue+eQeroveuo0hy
-Fa9Y3CxhNMCE3EH4AufdofuCmnUf/W7TzyIvzecrwFPlyZhqWnmxEqu8FaR+jXK9
-Jsx2Zby/EihNoCwQOWtdv3I4Oi5KBbglxfxE7PmYgo9DYqTmHxmsnPiUE4FYZG26
-3Ll1ZqkbwW77nwDEl1uh+tjbOu+Y1cKwecWbyVIuY1eKOnzVC88ldVSKxzKOGu37
-My4z65GTByMQfMBnoZ+FZFGYiCiThj+c8i93DIRzYeOsjQARAQABiQJEBBgBAgAP
-AhsCBQJQPjNzBQkJX6zhASnAXSAEGQECAAYFAkqg7ZAACgkQdKlBuiGeyBC0EQf5
-Af/G0/2xz0QwH58N6Cx/ZoMctPbxim+F+MtZWtiZdGJ7G1wFGILAtPqSG6WEDa+T
-hOeHbZ1uGvzuFS24IlkZHljgTZlL30p8DFdy73pajoqLRfrrkb9DJTGgVhP2axhn
-OW/Q6Zu4hoQPSn2VGVOVmuwMb3r1r93fQbw0bQy/oIf9J+q2rbp4/chOodd7XMW9
-5VMwiWIEdpYaD0moeK7+abYzBTG5ADMuZoK2ZrkteQZNQexSu4h0emWerLsMdvcM
-LyYiOdWP128+s1e/nibHGFPAeRPkQ+MVPMZlrqgVq9i34XPA9HrtxVBd/PuOHoaS
-1yrGuADspSZTC5on4PMaQgkQ7oy8noht3Yn+Nwf/bLfZW9RUqCQAmw1L5QLfMYb3
-GAIFqx/h34y3MBToEzXqnfSEkZGM1iZtIgO1i3oVOGVlaGaE+wQKhg6zJZ6oTOZ+
-/ufRO/xdmfGHZdlAfUEau/YiLknElEUNAQdUNuMB9TUtmBvh00aYoOjzRoAentTS
-+/3p3+iQXK8NPJjQWBNToUVUQiYD9bBCIK/aHhBhmdEc0YfcWyQgd6IL7547BRJb
-PDjuOyAfRWLJ17uJMGYqOFTkputmpG8n0dG0yUcUI4MoA8U79iG83EAd5vTS1eJi
-Tmc+PLBneknviBEBiSRO4Yu5q4QxksOqYhFYBzOj6HXwgJCczVEZUCnuW7kHww==
-=10NR
------END PGP PUBLIC KEY BLOCK-----
-EOF
-apt-key add $GPGKEY
+gpg --keyserver keys.gnupg.net --recv 886DDD89
+gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -
 
 # Install Tor and arm
 echo "Installing Tor...";
-- 
2.1.4

From 9d53cdae6a1f31c705183095c645a315c1109d2a Mon Sep 17 00:00:00 2001
From: allicoder <aredocilla@xxxxxxxxx>
Date: Tue, 28 Apr 2015 02:18:14 +0100
Subject: [PATCH 3/3] ec2-prep: add ExtORPort to torrc

---
 ec2-prep.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/ec2-prep.sh b/ec2-prep.sh
index 7a30d91..7ae8914 100644
--- a/ec2-prep.sh
+++ b/ec2-prep.sh
@@ -139,6 +139,8 @@ SocksPort 0
 
 # What port to advertise for Tor connections.
 ORPort 443
+# For pluggable transports
+ExtORPort 6699
 
 # Listen on a port other than the one advertised in ORPort (that is,
 # advertise 443 but bind to 9001).
-- 
2.1.4

Attachment: signature.asc
Description: Digital signature

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays