Re: [tor-relays] Relay configuration issue "Could not bind to 0.0.0.0:443: Permission denied"

Subject: Re: [tor-relays] Relay configuration issue "Could not bind to 0.0.0.0:443: Permission denied"

From: "Louie Cardone-Noott" <lcn@xxxxxxxxxxxx>

Date: Fri, 22 Jan 2016 09:42:22 +0000

Delivery-date: Fri, 22 Jan 2016 05:26:03 -0500

Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=fastmail.net; h= content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-sasl-enc :x-sasl-enc; s=mesmtp; bh=GO0oCKHvB/dqgpQ3es+XfLizty4=; b=bBU3k6 s5TJ4gAi4P12kT9ge4lz2RalNsIqgp9Yo8Fc+mAsmnZI/aOjTZVBifRpNBm0vTQg JRKSpN/YVfNh989+dDwdEmsS6uo6AOqd49rIWGC4EmnqobIi8d1baa+z7MDXqGop Fysejl4ujINo/8F2puOPt6arUR/CFYOyv/0Ss=

Dkim-signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-sasl-enc:x-sasl-enc; s=smtpout; bh=GO0oCKHvB/dqgpQ 3es+XfLizty4=; b=XZtOaSdPHIELJT/8WdJO5WZmlRPSJYFHFycU4fW1zVLMJO9 NdLjSZLRWN/4tnNQCnF9Hc2BJOuYB1vnHIzMnI93KZnVn/HAZxGeYtoT28tLrrr6 UoLpTPs0Aky2gesLR3UiDEIFJ773rx00cXr6Uy8lPCi+d6urmZmHAd8SbwoU=

In-reply-to: <CAO=Hd=g1o=kt5dHLZ3f+-T5ZH5YgG9+GaV1+bvKwVF8Zro8NRw@xxxxxxxxxxxxxx>

List-archive: <http://lists.torproject.org/pipermail/tor-relays/>

List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>

List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>

List-post: <mailto:tor-relays@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>

References: <CAO=Hd=g1o=kt5dHLZ3f+-T5ZH5YgG9+GaV1+bvKwVF8Zro8NRw@xxxxxxxxxxxxxx>

Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx

Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Try restart instead of reload.

It looks like you've installed from a package, which allows the daemon to bind to any port then "drop privileges" (according to the FAQ).

On Mon, 18 Jan 2016, at 12:26 AM, AJ NOURI wrote:

sudo service tor reload

* Reloading tor daemon configuration... [fail]

/var/log/tor/log

Jan 08 08:01:25.000 [notice] Tor 0.2.7.6 (git-605ae665009853bd) opening new log file.

Jan 08 10:19:40.000 [notice] Heartbeat: Tor's uptime is 3 days 0:00 hours, with 0 circuits open. I've sent 1.17 MB and received 28.04 MB.

Jan 08 12:31:58.000 [notice] Received reload signal (hup). Reloading config and resetting internal state.

Jan 08 12:31:58.000 [notice] Read configuration file "/usr/share/tor/tor-service-defaults-torrc".

Jan 08 12:31:58.000 [notice] Read configuration file "/etc/tor/torrc".

Jan 08 12:31:58.000 [notice] Based on detected system memory, MaxMemInQueues is set to 5988 MB. You can override this by setting MaxMemInQueues by hand.

Jan 08 12:31:58.000 [notice] Opening OR listener on 0.0.0.0:443

Jan 08 12:31:58.000 [warn] **Could not bind to 0.0.0.0:443: Permission denied**

Jan 08 12:31:58.000 [warn] Failed to parse/validate config: Failed to bind one of the listener ports.

Jan 08 12:31:58.000 [err] Reading config failed--see warnings above. For usage, try -h.

Jan 08 12:31:58.000 [warn] Restart failed (config error?). Exiting.

Configuration /etc/tor/torrc

ORPort 443

Nickname ididnteditheconfig

RelayBandwidthRate 1000 KBytes # Throttle traffic to 100KB/s (800Kbps)

RelayBandwidthBurst 2000 KBytes # But allow bursts up to 200KB (1600Kb)

ExitPolicy reject *:*

Opened 443 port on the Internet box:

http://i.stack.imgur.com/oVwzO.jpg

Port 443 locally opened:

ss -tunlp | grep 443

tcp LISTEN 0 128 *:443 *:*

tcp LISTEN 0 128 :::443 :::*

_______________________________________________

tor-relays mailing list

tor-relays@xxxxxxxxxxxxxxxxxxxx

https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Email had 1 attachment:

image.png

61k (image/png)

_______________________________________________ tor-relays mailing list tor-relays@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays