05.xhtml 12 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <!--
  3. h t t :: / / t /
  4. h t t :: // // t //
  5. h ttttt ttttt ppppp sssss // // y y sssss ttttt //
  6. hhhh t t p p s // // y y s t //
  7. h hh t t ppppp sssss // // yyyyy sssss t //
  8. h h t t p s :: / / y .. s t .. /
  9. h h t t p sssss :: / / yyyyy .. sssss t .. /
  10. <https://y.st./>
  11. Copyright © 2016 Alex Yst <mailto:copyright@y.st>
  12. This program is free software: you can redistribute it and/or modify
  13. it under the terms of the GNU General Public License as published by
  14. the Free Software Foundation, either version 3 of the License, or
  15. (at your option) any later version.
  16. This program is distributed in the hope that it will be useful,
  17. but WITHOUT ANY WARRANTY; without even the implied warranty of
  18. MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  19. GNU General Public License for more details.
  20. You should have received a copy of the GNU General Public License
  21. along with this program. If not, see <https://www.gnu.org./licenses/>.
  22. -->
  23. <!DOCTYPE html>
  24. <html xmlns="http://www.w3.org/1999/xhtml">
  25. <head>
  26. <base href="https://y.st./en/weblog/2016/03-March/05.xhtml" />
  27. <title>Relay service &lt;https://y.st./en/weblog/2016/03-March/05.xhtml&gt;</title>
  28. <link rel="icon" type="image/png" href="/link/CC_BY-SA_4.0/y.st./icon.png" />
  29. <link rel="stylesheet" type="text/css" href="/link/basic.css" />
  30. <link rel="stylesheet" type="text/css" href="/link/site-specific.css" />
  31. <script type="text/javascript" src="/script/javascript.js" />
  32. <meta name="viewport" content="width=device-width" />
  33. </head>
  34. <body>
  35. <nav>
  36. <p>
  37. <a href="/en/">Home</a> |
  38. <a href="/en/a/about.xhtml">About</a> |
  39. <a href="/en/a/contact.xhtml">Contact</a> |
  40. <a href="/a/canary.txt">Canary</a> |
  41. <a href="/en/URI_research/"><abbr title="Uniform Resource Identifier">URI</abbr> research</a> |
  42. <a href="/en/opinion/">Opinions</a> |
  43. <a href="/en/coursework/">Coursework</a> |
  44. <a href="/en/law/">Law</a> |
  45. <a href="/en/a/links.xhtml">Links</a> |
  46. <a href="/en/weblog/2016/03-March/05.xhtml.asc">{this page}.asc</a>
  47. </p>
  48. <hr/>
  49. <p>
  50. Weblog index:
  51. <a href="/en/weblog/"><abbr title="American Standard Code for Information Interchange">ASCII</abbr> calendars</a> |
  52. <a href="/en/weblog/index_ol_ascending.xhtml">Ascending list</a> |
  53. <a href="/en/weblog/index_ol_descending.xhtml">Descending list</a>
  54. </p>
  55. <hr/>
  56. <p>
  57. Jump to entry:
  58. <a href="/en/weblog/2015/03-March/07.xhtml">&lt;&lt;First</a>
  59. <a rel="prev" href="/en/weblog/2016/03-March/04.xhtml">&lt;Previous</a>
  60. <a rel="next" href="/en/weblog/2016/03-March/06.xhtml">Next&gt;</a>
  61. <a href="/en/weblog/latest.xhtml">Latest&gt;&gt;</a>
  62. </p>
  63. <hr/>
  64. </nav>
  65. <header>
  66. <h1>Relay service</h1>
  67. <p>Day 00364: Saturday, 2016 March 05</p>
  68. </header>
  69. <p>
  70. I did not sleep well last night.
  71. I woke up at about four and couldn&apos;t get back to sleep.
  72. </p>
  73. <p>
  74. I began my <a href="http://sbuk7aqcxkoyipwv.onion/">onion-to-clearnet</a> forwarding service today to aid in bypassing <abbr title="The Onion Router">Tor</abbr> blocks.
  75. I obviously can&apos;t use it myself, as my own <abbr title="Internet Protocol">IP</abbr> address acts as the exit, but perhaps someone can make use of it.
  76. Unfortunately, I set up the website for the server over <abbr title="Hypertext Transfer Protocol">HTTP</abbr> instead of <abbr title="Hypertext Transfer Protocol Secure">HTTPS</abbr>.
  77. I much prefer <abbr title="Hypertext Transfer Protocol Secure">HTTPS</abbr>, but a lot of onionlanders don&apos;t.
  78. This service is for them, not me, and encryption is already supplied by <abbr title="The Onion Router">Tor</abbr>, so I&apos;ll do it their way.
  79. I&apos;ve also decided to use the high ports, not the low ports, for forwarding.
  80. Many of the low ports have specific services that they are assumed to run.
  81. If I end up needing one of those ports after I&apos;ve already assigned it for forwarding, it will be too late.
  82. As such, I&apos;ve decided to use the ports in the 49152-65535 range, as they are currently defined as ports that will not be assigned any specific service.
  83. If the <abbr title="Internet Assigned Numbers Authority">IANA</abbr> decides to change this, some network changes will be to be expected, so there won&apos;t be any issues with me reclaiming ports; it wasn&apos;t my fault, I took reasonable precautions.
  84. <a href="https://opalrwf4mzmlfmag.onion/">Wowaname</a> suggested allowing other people to share their <abbr title="Internet Protocol">IP</abbr> addresses in the same way, using my onion to forward to random volunteer machines in a round-robin-type way.
  85. I&apos;m not sure who would volunteer, but it seems like it would be easy to set up on their end.
  86. The simplest way would probably be to set up port forwarding in their home router configuration.
  87. They wouldn&apos;t even need to install <abbr title="The Onion Router">Tor</abbr>, though of course I recommend installing and using <abbr title="The Onion Router">Tor</abbr> to everyone.
  88. I thought about adding freenode to my forwarding configuration, but due to the fact that I don&apos;t want to play &quot;favorites&quot; with <abbr title="The Onion Router">Tor</abbr>-haters, I didn&apos;t want to add any specific services until they were requested.
  89. <a href="https://ronsor.net/">Ronsor</a> quickly suggested <a href="ircs://sbuk7aqcxkoyipwv.onion:49152/">freenode</a> (once people were actually awake), so that resolved that issue.
  90. </p>
  91. <p>
  92. While discussing ways to get multiple <abbr title="Internet Protocol">IP</abbr> addresses to be usable for relay service, wowaname and I were discussing on <a href="ircs://kitsune6uv4dtdve.onion:6697/%23Volatile">#Volatile</a> how nice round robin support for onion addresses.
  93. One hidden service node can relay to multiple servers, but multiple hidden service nodes cannot use the same onion address like can be done in <abbr title="Domain Name System">DNS</abbr>.
  94. Cathugger knew of an article about <a href="https://www.benthamsgaze.org/2015/11/17/scaling-tor-hidden-services/">horizontal scalability of hidden services</a>.
  95. With the techniques the author suggests, it is possible to get up to sixty separate machines at separate locations to receive requests meant for a single onion address.
  96. These sixty machines are all registered with the <abbr title="The Onion Router">Tor</abbr> network without any changes to the underlying infrastructure.
  97. The only things changed are on the machines that hold the private onion key.
  98. It sounds a bit difficult to deploy and custom code is needed, but it might get people thinking about the need to share onion addresses between machines like this.
  99. It might lead to changes in how <abbr title="The Onion Router">Tor</abbr> fundamentally handles hidden services.
  100. Even if it doesn&apos;t lead to changes, it provides an option for large services that really need more room to grow on the <abbr title="The Onion Router">Tor</abbr> network.
  101. </p>
  102. <p>
  103. When the local community college said that they would send me a gift card, I assumed that it was a use-anywhere prepaid type of gift card.
  104. That was a naïve assumption on my part.
  105. The card arrived in the mail today and it&apos;s a gift card for their in-house book store.
  106. As the card dosen&apos;t have much on it and I don&apos;t know if I&apos;ll be attending this school, it&apos;s little more than an amusing novelty item.
  107. Still, it got me to submit my feedback for their orientation.
  108. I was going to do that anyway, but this helped make sure I did it in a timely manner.
  109. </p>
  110. <p>
  111. Our mother, Cyrus, Vanessa, and I volunteered at a spaghetti-serving fund raiser today.
  112. We told them that we were there to help, then waited a couple hours for them to be ready for help.
  113. We were pretty much just wasting time unable to do anything, so we asked if they even needed us.
  114. They told us that they didn&apos;t even want our help.
  115. Why didn&apos;t they just tell us that from the beginning? While I was waiting, I thought about the fact that my <a href="/en/domains/accessed574tizbu.onion.xhtml">accessed574tizbu</a> onion would have been a cool address for my forwarding service because it helps people access malicious servers, but I&apos;m going to continue using my <a href="/en/domains/sbuk7aqcxkoyipwv.onion.xhtml">sbuk7aqcxkoyipwv</a> onion.
  116. </p>
  117. <p>
  118. It seems that Ronsor will be away for three weeks.
  119. </p>
  120. <p>
  121. Wowaname decided that she wanted her <abbr title="The Onion Router">Tor</abbr>-to-IRC2P onion to be &quot;listed&quot; on my forwarding service.
  122. It seemed pretty strange to me.
  123. I&apos;m not sure she understood that it was a forwarding service, not a listing of forwarding services.
  124. However, it seemed like it could be of benefit to <abbr title="The Onion Router">Tor</abbr> users, as it does provide access to a service not normally reachable over <abbr title="The Onion Router">Tor</abbr>, so I went with it.
  125. However, I didn&apos;t want it to look like my forwarding service was not up to forwarding to other darknets and that this burden had to fall to others.
  126. To fix this, I set up <abbr title="Invisible Internet Project">I2P</abbr> on my server and forwarded one of my onion ports to <a href="irc://sbuk7aqcxkoyipwv.onion:49153/">IRC2P</a> as well.
  127. If I chance upon any other services similar to mine, I&apos;ll add them to my list and forward to their destinations in parallel.
  128. A little redundancy doesn&apos;t hurt.
  129. While the onion-to-clearnet ports are nice for getting access to places without giving into their ridiculous anti-privacy agendas, the onion-to-other-darnet ports are nice for convenience.
  130. </p>
  131. <p>
  132. As I was installing <a href="apt:i2p"><abbr title="Invisible Internet Project">I2P</abbr></a> on my server, I decided to install it <a href="https://geti2p.net/en/download/debian#debian">from a package</a>, unlike on my client machine.
  133. Installation went fine, but I found that <abbr title="Invisible Internet Project">I2P</abbr>&apos;s package, being from a non-Debian party, is not set up to start itself as a system service.
  134. You still need to run <code>i2prouter start</code> to start it each time you start the system, unless you script something to take care of that.
  135. <abbr title="Invisible Internet Project">I2P</abbr>&apos;s strange (in my opinion) setup of binding ports to services made it ridiculously easy to forward between darknets.
  136. It also didn&apos;t hurt that one of the default port bindings was pointed directly to the service that I needed in this case.
  137. </p>
  138. <hr/>
  139. <p>
  140. Copyright © 2016 Alex Yst;
  141. You may modify and/or redistribute this document under the terms of the <a rel="license" href="/license/gpl-3.0-standalone.xhtml"><abbr title="GNU&apos;s Not Unix">GNU</abbr> <abbr title="General Public License version Three or later">GPLv3+</abbr></a>.
  142. If for some reason you would prefer to modify and/or distribute this document under other free copyleft terms, please ask me via email.
  143. My address is in the source comments near the top of this document.
  144. This license also applies to embedded content such as images.
  145. For more information on that, see <a href="/en/a/licensing.xhtml">licensing</a>.
  146. </p>
  147. <p>
  148. <abbr title="World Wide Web Consortium">W3C</abbr> standards are important.
  149. This document conforms to the <a href="https://validator.w3.org./nu/?doc=https%3A%2F%2Fy.st.%2Fen%2Fweblog%2F2016%2F03-March%2F05.xhtml"><abbr title="Extensible Hypertext Markup Language">XHTML</abbr> 5.1</a> specification and uses style sheets that conform to the <a href="http://jigsaw.w3.org./css-validator/validator?uri=https%3A%2F%2Fy.st.%2Fen%2Fweblog%2F2016%2F03-March%2F05.xhtml"><abbr title="Cascading Style Sheets">CSS</abbr>3</a> specification.
  150. </p>
  151. </body>
  152. </html>