/g/ - Technology
install openbsd
[Make a Post]1. Install Tor and obfs4proxy
2. Add lines "BridgeRelay 1" "ServerTransportPlugin obfs4 exec /usr/bin/obfs4proxy managed" "ServerTransportListenAddr obfs4 ip:port" optional line "ServerTransportOptions obfs4 iat-mode=1" if you want private bridge then add "PublishServerDescriptor 0"
3) Run Tor Bridge
Clients have to use line from /var/lib/tor/pt_state/obfs4_bridgeline.txt as their Bridge line where IP and port are substituted with ServerTransportListenAddr ones.
iat-mode options controls obfuscation and lightly documented, refer to source code.
In case of a private bridge you can safely bind ORPort to localhost as clients connect via Transport (obfs4), that will remove the possibility of discovery by network scan.
Non-private bridge needs world-accessible ORPort for bridge authority.
You mean a Tor bridge for others to use or your own personal one? Have you considered Whoonix if the latter?
>>4108
>>4112
yeah I am going to run this bridge as a private bridge for my own personal use. The objective being that I could hide the fact that I'm using tor from my ISP and prevent Gov agencys from monitoring the first and exit relay of a tor network and discovering my true IP adresss. I remmeber reading about whoonix in Jolly Roger’s Security Guide for Beginners but dont remmeber anything about it. I thought whoonix was just a linux disto, how would you go about hosting a private tor bridge on it?
Just to provide a refrence, this is the intial guide that I am basing mine off of. It's outdated and differs from the offical Torproject documents. The one I'm making will be streamlined for the Debian stable stretch linux disto. Does anyone know how to fix the error messages from my origanal post in the OP
>>4113
Whoonix is interesting because it is a Linux distribution that requires two computers. The first is the gateway that appears to be the direct contact with your wired connection and the computer through which your other computer, the workstation, funnels all of its traffic through. The gateway runs tor and the workstation is the computer you use. Apparently it is very secure and difficult to track, particularly if you use a VPN on the workstation which will allow you to use VPN over tor. It has layers of protection. Your choice, however, a bridge seems pretty swell too.
>>4119
http://kkkkkkkkkk63ava6.onion/wiki/VirtualBox/XFCE
Not sure about connecting two computers, you can use Gateway and Workstation on the same host.
>>4114
>Does anyone know how to fix the error messages from my origanal post in the OP
The links are dead.
File: 943d17438b0451845fa67b4e9b1664571f46d93dbd11a4499b9c1f49b34e80a4.jpg (dl) (331.58 KiB)

>>4096
Can you just ask questions like this at Debian forums dude? I don't use Debian personally.
>apt install tor deb.torproject.org-keyring
This most probably means that you want to install packages "tor" and "deb.torproject.org-keyring", especially based on the error report, which states there is no "deb.torproject.org-keyring" package.
Refer to your "aptitude" manual on what is supposed to happen with that command, figure out what you actually want and see if this package is supposed to be a thing, if that ever was a thing (judging by what the guide says, it was actually).
Like, it looks to me right now like you didn't use loonix before at all, in all honesty, and now you try to write guides.
>>4128
Here are official instructions how to install Tor in deb-based distro: http://qrmfuxwgyzk5jdjz.onion/docs/debian.html.en
>> 4096 I have they haven't gotten a reply. Honestly I don't care what distro I use, i just want a step by step guide to installing a obfs4 tor bridge. I'm currently testing it on a old laptop but hope to intall it on a rasberie pi once I get eveything working. All of the offical guides by the tor project don't seem to have all the step or are missing them. It be great to have a step by step guide all in one place
File: 2bb3a92fae0e4472be2e249ed0a4eb429c1d706c022e653bd84f21d7d25dfe60.jpg (dl) (315.20 KiB)

>>4134
If that is addressed to me, then here you go.
Your problem is that aptitude (Debian package manager) cannot find that "keyring" package for whatever reason, and that package is supposed to be pulled from that Tor Project-maintained repo you add earlier by editing sources.list. And now, I have NO idea why without some serious troubleshooting (judging by your levels of incompetence, no offense), it might be that you messed up something entirely different, it might be that Tor folks don't provide that package anymore (not with that exact package name anyway), it might be something else about aptitude system I don't know about.
Now onto some maybe useful advice. The thing is, that keyring package looks like it's for the package verification system, which is not strictly necessary. Like, it may be needed in some particular case; what it does, essentially, is making sure nobody in-between the key owner and yourself (hosters, MitMs) has messed with the package. That's why the packages in production-quality distros get cryptographically signed. But you may have no need for it, really. That would throw the actual security of the guide out of the window (like, it looks pretty secure so far, making sure apt connections are https etc), but it will get the job done: all you need is "apt install tor" and voila, you have tor installed. Now, if that's not an option, you have to figure out why the package cannot be found. Like, you might not have strict need for it, but it says there "fresh keys", so you may have trouble updating if you don't. Now, I say "may" because I have NO idea how Tor folks do it. Maybe they don't do it anymore, and their keys are supposed to be supplied somehow else. So, well, you might need to hit Tor forums as well.
>>4138 Thank you for your response I really do appreciate the help for a linux newfag like myself. Would it be beneficial to follow a guide for new linux users to learn how to use the terminal and etc, I don't have alot of expirence and like you said am quite incompetet. I've tried many diffrent linux guides on youtube and google but they don't seem to have anything relavent pertaning to the problem im facing now such as verification packets being missing. Do you know of any newfag linux guides that could educate me on the OS sufficently to troubleshoot problems like this. I will also hit up the tor fourms as you suggested. Thanks again!
>>4134 Also after browsing some forms and talking in some chat room. I got the advice to search the tor project so I ran this command
apt update && apt search torproject
and got Get:1 http://security.debian.org/debian-security stretch/updates InRelease [94.3 kB]
Hit:2 https://deb.torproject.org/torproject.org stretch InRelease
Fetched 94.3 kB in 1s (65.0 kB/s)
Reading package lists... Done
Building dependency tree
Reading state information... Done
All packages are up to date.
Sorting... Done
Full Text Search... Done
Everything seemed right and I made sure I followed the instructions but still the keyring packet didn't come through so I ran this command to try and manually downlaod it
curl -o a.deb https://deb.torproject.org/torproject.org/pool/main/d/deb.torproject.org-keyring/deb.torproject.org-keyring_2018.08.06_all.deb; dpkg -i a.deb; rm a.deb
and got these logs
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 4922 100 4922 0 0 2676 0 0:00:01 0:00:01 --:--:-- 2676
Selecting previously unselected package deb.torproject.org-keyring.
(Reading database ... 58886 files and directories currently installed.)
Preparing to unpack a.deb ...
Unpacking deb.torproject.org-keyring (2018.08.06) ...
Setting up deb.torproject.org-keyring (2018.08.06) ...
but
I belive it went thought and got the keyring packet but since it was manually done it won't update the keyring automaticly. Isn;t this a major security issue?
I also searched the tor fourms for advice but to no avail
sorry for asking for personal tech support but I'd like to debug this guide so I can post a working one for the rest of nanochan.
>>4192
>since it was manually done it won't update the keyring automaticly. Isn;t this a major security issue?
It isn't, it'll update after you add torproject repository. Did you read http://qrmfuxwgyzk5jdjz.onion/docs/debian.html.en#ubuntu ? Did you add torproject repositry to /etc/apt/sources.list or /etc/apt/sources.list.d/ ? It tells how to add repository and how to install the keyring package. You need manually introduce the key to apt-key before you can install deb.torproject.org-keyring via apt. You went other way around and curl'ed it and installed via dpkg, thats ok.
>>4193
>Hit:2 https://deb.torproject.org/torproject.org stretch InRelease
Line tells that you indeed added the repo to sources. So everything fine then, you can install packages from the repo and deb.torproject.org-keyring will update from it.
But it better not to show this roundabout way of adding repo in your guide, better to follow official torproject docs.
File: ee99efed59843d870db4b7bb21d443c586f1020c296ac5fd47b35361dd88c06d.jpg (dl) (354.82 KiB)

>>4190
No problem.
>Would it be beneficial to follow a guide for new linux users to learn how to use the terminal and etc
It boils down to learning a certain subset of programs and learning the shell (shell programming, shell scripting). That knowledge wouldn't have helped you with your particular problem though.
>pertaning to the problem im facing now such as verification packets being missing
Because this is NOT a generic problem, DUH.
>Do you know of any newfag linux guides that could educate me on the OS sufficently to troubleshoot problems like this.
I believe you could just use a book. Just lookup something like "UNIX shell programming" and you will find something.
Also, shell is retarded, basically. The basic thing with it is just you type "command arg1 arg2 arg3", hit Enter and your command is executed with them arguments. THAT'S IT, and you already know how it works.
As for other stuff, you really should read man pages and probably some documentation devs provide on the Web.
If you want to learn (at least) what components are used in a typical GNU/Linux system, I suggest you to build (and boot!) LFS at least once, looking up and reading what each command does, and eventually, maybe even look more in depth into each component (then you'll realize Linux is a steaming pile of shit and needs to go xD).
>I will also hit up the tor fourms as you suggested
Learn about "how to ask questions the smart way" first. xD
>>4192
>dpkg -i
Shame on me for not suggesting this, but it should be available through the apt command.
>since it was manually done it won't update the keyring automaticly. Isn;t this a major security issue?
Well, one thing about keyring is that it really shouldn't be updated that often.
But yes, I do believe so too. If aptitude doesn't see it, it is likely to not see it later, when you need to update. Just to be sure you could remove the package and try to install with "apt install" again. BTW, I dunno the current Debian, but there used to be a difference between "apt-get install" "aptitude install" etc. Though I don't believe that would make a difference.
>>4194
>So everything fine then, you can install packages from the repo and deb.torproject.org-keyring will update from it.
As I said earlier, the manual package installation shouldn't make a difference and I believe aptitude won't find the package nor updates for it.
It would be cool to know what might prevent the package from being found even.
[Catalog][Overboard][Update]
[Reply]21 replies
Hey /g/, I'm trying to write a guide to set up a Tor bridge and run it off a "trusted friend's" network but I'm having diffuclty intalling it myself. I have posted what I have so far of the guide to the pastebin link https://pastebin.com/KniDPavg. I'm having problems when I get to step 6 in my guide and type apt update and apt install tor deb.torproject.org-keyring. I keep getting these error messages https://pastebin.com/AjduWKxB. Once this guild is fully completed and troubleshooted it would be good to put in the board sticky thread or on a wiki if we have one. Also this can be a Tor disscusion genral I guess.