[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] Onion repository Re: Debian is not allowing tor to update despite it being listed as a trusted respritory

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] Onion repository Re: Debian is not allowing tor to update despite it being listed as a trusted respritory
From: Jonas Friedli via tor-relays <tor-relays@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 7 Jun 2022 17:15:48 +0200
Autocrypt: addr=jonasfriedli@xxxxxxxxxxxxx; keydata= xjMEYeTwsxYJKwYBBAHaRw8BAQdA4QU3tbKpeQMGG9FCRORTqSv/5AaKNZozHOWxY3BMCrHN KkpvbmFzIEZyaWVkbGkgPGpvbmFzZnJpZWRsaUBkYW53aW4xMjEwLmRlPsKRBBMWCAA5FiEE 6st4IabzCerwRhZuShSOOrQ47GgFAmHk8LMFCQWjmoACGwMFCwkIBwIGFQgJCgsCBRYCAwEA AAoJEEoUjjq0OOxo75gBAMjoCY1GJhJsZiiLvzENX8HyYGW3Gg+N8VkVpCWjfJdqAQDHud3t XHQM4IGRlnCgslAoieRGxb8pJGq9MPiFa5k7Ac44BGHk8LMSCisGAQQBl1UBBQEBB0BRDnRC NeenLjUNRnl/TAueK/7BB9eDcqpbv/bswE9bTwMBCAfCfgQYFggAJhYhBOrLeCGm8wnq8EYW bkoUjjq0OOxoBQJh5PCzBQkFo5qAAhsMAAoJEEoUjjq0OOxoje0A/iRtaH9UFrdYEo33qq+Z iXgRcwZezy8xEO/Fkg7YCMGcAPwOS6da9hghUHHBfhVSiA05mIQ2V+g4dAf5eKJ81MTgAw==
Cc: Jonas Friedli <jonasfriedli@xxxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 07 Jun 2022 15:28:46 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=danwin1210.de; s=20211204-rsa; t=1654614956; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:autocrypt:autocrypt; bh=wTDfnE/IPkWm+JXp9eCRMootp9IqEKWdAvFQvAZxCPo=; b=qxO+Vlb+9t/TGSpiNyGIPNvG3xQTtjF3IBGxaARjZlFGJvV/5OF+39WYSVzADFlxZIRZ3a OcyQh70BC97AID0/tbL4bzKwTLf2QRdT2LuFK7IUf+9NFg3AJNXYu2YMqIR3ynDFmSR9U5 /VMUdFbwclZ15HrG06UpcUIJgBxckUt6crVdrvxjiW/zPq8Tm1ftX2Mhj4gO70r77nG94N bHyo5VvopssAMk2pDt+mBNaBZYuihPBSYR8+/Rz4jMjezECkpe9sP4aYVq/Fc+gfXfP5IP FTyg37NcdpLa7vGKXbtaBLruXY+zIt3J9Nk1/aE6hXEEAUMkBQRc/j3vKpeXQA==
Dkim-signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=danwin1210.de; s=20211204-ed25519; t=1654614956; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:autocrypt:autocrypt; bh=wTDfnE/IPkWm+JXp9eCRMootp9IqEKWdAvFQvAZxCPo=; b=qnGaPJpU0AGDh5kPgemRY7Q6HVnbhBAmmE40D33yxXkV9cOKafmuTICqpbZEKyqoz6+Y2w NXTn9EODua/ssbDg==
In-reply-to: <5877632.GYCQ3OsFd9@w530>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <49747692-45DE-425C-868B-DC197B5C97E4@hxcore.ol> <5877632.GYCQ3OsFd9@w530>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

apt update ; apt install tor apt-transport-tor -y

sed -i's/https:\/\/deb.debian.org/tor+http:\/\/2s4yqjx5ul6okpp3f2gaunr2syex5jgbfpfvhxxbbjwnrsvbk5v3qbid.onion/g'/etc/apt/sources.listsed -i's/https:\/\/security.debian.org/tor+http:\/\/5ajw6aqf3ep7sijnscdzw77t7xq4xjpsy335yb2wiwgouo7yfxtjlmid.onion/g'/etc/apt/sources.listecho "debtor+http://apow7mjfryruh65chtdydfmqfpj5btws7nbocgtaovhvezgccyjazpqd.onion/torproject.orgbullseye main" >>/etc/apt/sources.list.d/deb.torproject.org.listecho "deb-srctor+http://apow7mjfryruh65chtdydfmqfpj5btws7nbocgtaovhvezgccyjazpqd.onion/torproject.orgbullseye main" >>/etc/apt/sources.list.d/deb.torproject.org.list

apt update ; apt install gpg gpg-agent torsocks wget -y

torsocks wget -qO-http://apow7mjfryruh65chtdydfmqfpj5btws7nbocgtaovhvezgccyjazpqd.onion/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc|gpg --import

gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add -




##

# source :http://jvgypgbnfyvfopg5msp6nwr2sl2fd6xmnguq35n7rfkw3yungjn2i4yd.onion

In particular, once you have the apt-transport-tor package installed,the following entries should work in your sources list for a Debian system:

debtor+http://2s4yqjx5ul6okpp3f2gaunr2syex5jgbfpfvhxxbbjwnrsvbk5v3qbid.onion/debianbuster maindebtor+http://2s4yqjx5ul6okpp3f2gaunr2syex5jgbfpfvhxxbbjwnrsvbk5v3qbid.onion/debianbuster-updates maindebtor+http://5ajw6aqf3ep7sijnscdzw77t7xq4xjpsy335yb2wiwgouo7yfxtjlmid.onion/debian-securitybuster/updates main

#debtor+http://2s4yqjx5ul6okpp3f2gaunr2syex5jgbfpfvhxxbbjwnrsvbk5v3qbid.onion/debianbuster-backports main




lists@xxxxxxxxxxxxxxx:

On Tuesday, May 3, 2022 7:31:46 AM CEST Keifer Bly wrote:

So I am running a tor relay on Debian, but no matter what when updating tor
there is an “updating from such a respiritpry can’t be done securely and is
therefore disabled by default”. Here is the log


In addition to the outdated certificates, you get Tor for Ubuntu and not
Debian:

Get:1 http://security.debian.org buster/updates InRelease [65.4 kB]

Hit:2 http://deb.debian.org/debian buster InRelease

Get:3 http://deb.debian.org/debian buster-updates InRelease [51.9 kB]

Get:4 http://deb.debian.org/debian buster-backports InRelease [46.7 kB]

Ign:5 http://ftp.de.debian.org/debian stretch InRelease

Hit:6 http://ftpde.debian.org/debian stretch Release

I would delete the outdated Debian stretch archives.

Ign:7 http://deb.torproject.org/torproject.org trusty InRelease

Ign:8 http://deb.torproject.org/torproject.org trusty Release


Trusty? Why are you using Tor for Ubuntu? For Debian Buster you should also
use the buster archive:

deb https://deb.torproject.org/torproject.org buster main


_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Attachment: OpenPGP_0x4A148E3AB438EC68.asc
Description: OpenPGP public key

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Prev by Author: Re: [tor-relays] Weird spike in written bytes per second
Next by Author: Re: [tor-relays] bridge issue
Previous by thread: Re: [tor-relays] Will pay but need someone
Next by thread: [tor-relays] Invalid certificate chain! Re: [warn] Received a bad CERTS cell: Link certificate does not match TLS certificate
Index(es):
- Author
- Thread