Hi there, After a long month of not having time for this, I've got it working thanks to Sina's help. I've attached patches to the ec2-prep.sh script that should make it work again (nothing extensive, basically just what Sina pointed out plus something about ExtORPort I saw it complaining about in the log. Bridge is now up. :) Best wishes, allicoder On Sun, Mar 22, 2015 at 10:51:42AM +0000, tor-relays-request@xxxxxxxxxxxxxxxxxxxx wrote: > Send tor-relays mailing list submissions to > tor-relays@xxxxxxxxxxxxxxxxxxxx > > To subscribe or unsubscribe via the World Wide Web, visit > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > or, via email, send a message with subject or body 'help' to > tor-relays-request@xxxxxxxxxxxxxxxxxxxx > > You can reach the person managing the list at > tor-relays-owner@xxxxxxxxxxxxxxxxxxxx > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of tor-relays digest..." > > > Today's Topics: > > 1. Re: IPv6 HiddenServicePort (teor) > 2. Tor Cloud/AWS relay set up but no Tor installed > (aredocilla@xxxxxxxxx) > 3. Re: Tor Cloud/AWS relay set up but no Tor installed (SiNA Rabbani) > 4. Tor-Tshirts (Nchinda Nchinda) > 5. Re: Tor-Tshirts (Roger Dingledine) > > Message: 2 > Date: Sun, 22 Mar 2015 03:10:53 +0000 > From: aredocilla@xxxxxxxxx > To: tor-relays@xxxxxxxxxxxxxxxxxxxx > Subject: [tor-relays] Tor Cloud/AWS relay set up but no Tor installed > Message-ID: <20150322031053.GB5948@MadHatter> > Content-Type: text/plain; charset=us-ascii > > Hello, > > I've been trying to set up a tor relay on AWS using the free tier using the > instructions in various places (e.g. https://cloud.torproject.org/, > https://www.fak3r.com/2012/08/11/howto-run-a-tor-node-in-the-cloud-for-free/). > But sshing in from my PC shows clearly that not only is tor not running, it's > not even installed! > > ubuntu@ip-172-31-28-207:~$ aptitude show tor > Package: tor > State: not installed > Version: 0.2.5.11-1~precise+1 > Priority: optional > Section: net > ... > > ubuntu@ip-172-31-28-207:~$ ps -ely | grep tor > ubuntu@ip-172-31-28-207:~$ ls /var/log > alternatives.log auth.log btmp dist-upgrade dmesg.0 dmesg.2.gz fsck landscape mail.err news udev unattended-upgrades wtmp > apt boot.log cloud-init.log dmesg dmesg.1.gz dpkg.log kern.log lastlog mail.log syslog ufw.log upstart > > Has something changed, and the images no longer include tor on start-up (I made > sure I followed the gist of the cloud.torproject.org steps, given that the > interface has changed significantly; even went to the previous page from the > linked one to check that the AMI thing mentioned tor)? I've noticed various > people have posted online saying it's not safe to run Tor on cloud services - > has the image been deleted because of this? I wanted to try it anyway because > the main torproject website still says in several places that running a relay > on AWS is A Good Thing. > > Or did I just do something wrong? > > Best wishes, > allicoder. > > -- > PGP key available on request > > > ------------------------------ > > Message: 3 > Date: Sun, 22 Mar 2015 04:52:34 +0000 (UTC) > From: SiNA Rabbani <sina@xxxxxxxxxxx> > To: tor-relays@xxxxxxxxxxxxxxxxxxxx > Subject: Re: [tor-relays] Tor Cloud/AWS relay set up but no Tor > installed > Message-ID: > <1101716784.98280.1426999954497.JavaMail.zimbra@xxxxxxxxxxx> > Content-Type: text/plain; charset=utf-8 > > Hi allicoder, > > The images on Tor Cloud website have not been updated for a while. The project is lacking someone > that can keep it up to date. I tried to take on the responsibility but so far I have failed to dedicate > the necessary time. Sorry for the bad experience. > > As far as the specific problem with the Cloud image itself, there is a script that is supposed to install the relay > on first boot. See /etc/rc.local. > > You can also find that script here: https://gitweb.torproject.org/tor-cloud.git/plain/ec2-prep.sh > > There are a couple of issues with the script itself that I noticed immediately: > 1) the harcoded pgp key is expired > 2) the debian experimental repository is returning a 404 > W: Failed to fetch http://deb.torproject.org/torproject.org/dists/experimental-precise/main/binary-i386/Packages 404 Not Found [IP: 38.229.72.16 80] > > If you wish to do some trouble-shooting, try to get these commands to run without any errors: > sudo apt-get -y update > sudo apt-get -y upgrade > sudo bash /etc/ec2-prep.sh bridge > > Finally, now that you have a running image and ssh access, you can just follow the Tor relay installations here: > https://www.torproject.org/docs/debian.html.en > > I apologize for the inconvenience and thank you for running a relay. > > All the best, > Sina > > > > > "Be the change that you wish to see in the world." - Mahatma Gandhi > > ----- On Mar 21, 2015, at 11:10 PM, aredocilla@xxxxxxxxx wrote: > > > Hello, > > > > I've been trying to set up a tor relay on AWS using the free tier using the > > instructions in various places (e.g. https://cloud.torproject.org/, > > https://www.fak3r.com/2012/08/11/howto-run-a-tor-node-in-the-cloud-for-free/). > > But sshing in from my PC shows clearly that not only is tor not running, it's > > not even installed! > > > > ubuntu@ip-172-31-28-207:~$ aptitude show tor > > Package: tor > > State: not installed > > Version: 0.2.5.11-1~precise+1 > > Priority: optional > > Section: net > > ... > > > > ubuntu@ip-172-31-28-207:~$ ps -ely | grep tor > > ubuntu@ip-172-31-28-207:~$ ls /var/log > > alternatives.log auth.log btmp dist-upgrade dmesg.0 dmesg.2.gz > > fsck landscape mail.err news udev unattended-upgrades wtmp > > apt boot.log cloud-init.log dmesg dmesg.1.gz dpkg.log > > kern.log lastlog mail.log syslog ufw.log upstart > > > > Has something changed, and the images no longer include tor on start-up (I made > > sure I followed the gist of the cloud.torproject.org steps, given that the > > interface has changed significantly; even went to the previous page from the > > linked one to check that the AMI thing mentioned tor)? I've noticed various > > people have posted online saying it's not safe to run Tor on cloud services - > > has the image been deleted because of this? I wanted to try it anyway because > > the main torproject website still says in several places that running a relay > > on AWS is A Good Thing. > > > > Or did I just do something wrong? > > > > Best wishes, > > allicoder. > > > > -- > > PGP key available on request > > _______________________________________________ > > tor-relays mailing list > > tor-relays@xxxxxxxxxxxxxxxxxxxx > > https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays > > > ------------------------------ > > End of tor-relays Digest, Vol 50, Issue 31 > ****************************************** -- PGP key available on request
From 5a599e6dc13c06146f1daa2051e884b89f60101b Mon Sep 17 00:00:00 2001 From: allicoder <aredocilla@xxxxxxxxx> Date: Tue, 28 Apr 2015 02:16:06 +0100 Subject: [PATCH 1/3] ec2-prep.sh: experimental repos no longer exist. --- ec2-prep.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ec2-prep.sh b/ec2-prep.sh index 90bf140..482beb4 100644 --- a/ec2-prep.sh +++ b/ec2-prep.sh @@ -107,7 +107,7 @@ esac echo "Adding Tor's repo for $DISTRO..."; cat << EOF >> $SOURCES deb http://deb.torproject.org/torproject.org $DISTRO main -deb http://deb.torproject.org/torproject.org experimental-$DISTRO main +#deb http://deb.torproject.org/torproject.org experimental-$DISTRO main EOF # Install Tor's GPG key -- 2.1.4
From 965d68f3d9fb6dd12c2b15c01629750cb83ec077 Mon Sep 17 00:00:00 2001 From: allicoder <aredocilla@xxxxxxxxx> Date: Tue, 28 Apr 2015 02:17:02 +0100 Subject: [PATCH 2/3] ec2-prep: get archive key from keyserver. The previous hardcoded key had an old expiry date on it that prevented the installation. --- ec2-prep.sh | 43 ++----------------------------------------- 1 file changed, 2 insertions(+), 41 deletions(-) diff --git a/ec2-prep.sh b/ec2-prep.sh index 482beb4..7a30d91 100644 --- a/ec2-prep.sh +++ b/ec2-prep.sh @@ -112,47 +112,8 @@ EOF # Install Tor's GPG key echo "Installing Tor's gpg key..."; -#gpg --keyserver keys.gnupg.net --recv 886DDD89 -#gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add - -cat << EOF > $GPGKEY ------BEGIN PGP PUBLIC KEY BLOCK----- -Version: GnuPG v1.4.10 (GNU/Linux) - -mQENBEqg7GsBCACsef8koRT8UyZxiv1Irke5nVpte54TDtTl1za1tOKfthmHbs2I -4DHWG3qrwGayw+6yb5mMFe0h9Ap9IbilA5a1IdRsdDgViyQQ3kvdfoavFHRxvGON -tknIyk5Goa36GMBl84gQceRs/4Zx3kxqCV+JYXE9CmdkpkVrh2K3j5+ysDWfD/kO -dTzwu3WHaAwL8d5MJAGQn2i6bTw4UHytrYemS1DdG/0EThCCyAnPmmb8iBkZlSW8 -6MzVqTrN37yvYWTXk6MwKH50twaX5hzZAlSh9eqRjZLq51DDomO7EumXP90rS5mT -QrS+wiYfGQttoZfbh3wl5ZjejgEjx+qrnOH7ABEBAAG0JmRlYi50b3Jwcm9qZWN0 -Lm9yZyBhcmNoaXZlIHNpZ25pbmcga2V5iQE8BBMBAgAmAhsDBgsJCAcDAgQVAggD -BBYCAwECHgECF4AFAlA+M24FCQ0iFQAACgkQ7oy8noht3YkZsAf/Z+O15tDvGwLz -NROeMiTyOZ4fyQ1lynUpOS3fUJl3qM30oWPl1tK5pdAZgwleL0Co8d27Hv14zpCO -wwI3htgl7dsD8IS564v1sHGx+X1qfLzInwFxIlVxzrVbhUNeLSKiBJ6qwcZqAIep -eS2Lv+l3lELOvjbHQ4bx5DqoVZn0uUqksh3PkyN9Du4lZ2WGiTm1pIWDxY8kJIgx -pDFEL3e5i/cIQy6wsfeE2Nw2T0qoxn+sWSvwBUijtfq0K41w4jpEsnmjiZQ0l+VT -wcoGlF/oQuEkAV+FXQCLw26a2aPUXizttlPINJ8JiNzl68j8FaMnqkaFAzJffbM8 -D1UOZVdmnbkBDQRKoO2QAQgA2uKxSRSKpd2JO1ODUDuxppYacY1JkemxDUEHG31c -qCVTuFz4alNyl4I+8pmtX2i+YH7W9ew7uGgjRzPEjTOm8/Zz2ue+eQeroveuo0hy -Fa9Y3CxhNMCE3EH4AufdofuCmnUf/W7TzyIvzecrwFPlyZhqWnmxEqu8FaR+jXK9 -Jsx2Zby/EihNoCwQOWtdv3I4Oi5KBbglxfxE7PmYgo9DYqTmHxmsnPiUE4FYZG26 -3Ll1ZqkbwW77nwDEl1uh+tjbOu+Y1cKwecWbyVIuY1eKOnzVC88ldVSKxzKOGu37 -My4z65GTByMQfMBnoZ+FZFGYiCiThj+c8i93DIRzYeOsjQARAQABiQJEBBgBAgAP -AhsCBQJQPjNzBQkJX6zhASnAXSAEGQECAAYFAkqg7ZAACgkQdKlBuiGeyBC0EQf5 -Af/G0/2xz0QwH58N6Cx/ZoMctPbxim+F+MtZWtiZdGJ7G1wFGILAtPqSG6WEDa+T -hOeHbZ1uGvzuFS24IlkZHljgTZlL30p8DFdy73pajoqLRfrrkb9DJTGgVhP2axhn -OW/Q6Zu4hoQPSn2VGVOVmuwMb3r1r93fQbw0bQy/oIf9J+q2rbp4/chOodd7XMW9 -5VMwiWIEdpYaD0moeK7+abYzBTG5ADMuZoK2ZrkteQZNQexSu4h0emWerLsMdvcM -LyYiOdWP128+s1e/nibHGFPAeRPkQ+MVPMZlrqgVq9i34XPA9HrtxVBd/PuOHoaS -1yrGuADspSZTC5on4PMaQgkQ7oy8noht3Yn+Nwf/bLfZW9RUqCQAmw1L5QLfMYb3 -GAIFqx/h34y3MBToEzXqnfSEkZGM1iZtIgO1i3oVOGVlaGaE+wQKhg6zJZ6oTOZ+ -/ufRO/xdmfGHZdlAfUEau/YiLknElEUNAQdUNuMB9TUtmBvh00aYoOjzRoAentTS -+/3p3+iQXK8NPJjQWBNToUVUQiYD9bBCIK/aHhBhmdEc0YfcWyQgd6IL7547BRJb -PDjuOyAfRWLJ17uJMGYqOFTkputmpG8n0dG0yUcUI4MoA8U79iG83EAd5vTS1eJi -Tmc+PLBneknviBEBiSRO4Yu5q4QxksOqYhFYBzOj6HXwgJCczVEZUCnuW7kHww== -=10NR ------END PGP PUBLIC KEY BLOCK----- -EOF -apt-key add $GPGKEY +gpg --keyserver keys.gnupg.net --recv 886DDD89 +gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add - # Install Tor and arm echo "Installing Tor..."; -- 2.1.4
From 9d53cdae6a1f31c705183095c645a315c1109d2a Mon Sep 17 00:00:00 2001 From: allicoder <aredocilla@xxxxxxxxx> Date: Tue, 28 Apr 2015 02:18:14 +0100 Subject: [PATCH 3/3] ec2-prep: add ExtORPort to torrc --- ec2-prep.sh | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ec2-prep.sh b/ec2-prep.sh index 7a30d91..7ae8914 100644 --- a/ec2-prep.sh +++ b/ec2-prep.sh @@ -139,6 +139,8 @@ SocksPort 0 # What port to advertise for Tor connections. ORPort 443 +# For pluggable transports +ExtORPort 6699 # Listen on a port other than the one advertised in ORPort (that is, # advertise 443 but bind to 9001). -- 2.1.4
Attachment:
signature.asc
Description: Digital signature
_______________________________________________ tor-relays mailing list tor-relays@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays