From mboxrd@z Thu Jan 1 00:00:00 1970 From: ng0 Subject: Re: documentation/behavior unclear of (tor-hidden-service) Date: Mon, 6 Mar 2017 18:00:30 +0000 Message-ID: <20170306180030.ginyp6tywg2jcpps@abyayala> References: <20170304155916.slok53nrcporwwat@abyayala> <20170304162126.urcuuh6b5wg3eequ@abyayala> <87innmww4z.fsf@gnu.org> <20170306120820.libvu2akv34jmrrd@abyayala> <20170306081900.4802e21b@khaalida> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:35823) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ckvrg-00061q-E8 for guix-devel@gnu.org; Mon, 06 Mar 2017 11:52:05 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ckvrc-0002Of-Fs for guix-devel@gnu.org; Mon, 06 Mar 2017 11:52:04 -0500 Received: from perdizione.investici.org ([2001:41d0:2:33d0::19]:64598) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1ckvrc-0002O5-6e for guix-devel@gnu.org; Mon, 06 Mar 2017 11:52:00 -0500 Content-Disposition: inline In-Reply-To: <20170306081900.4802e21b@khaalida> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: dian_cecht@zoho.com Cc: guix-devel@gnu.org On 17-03-06 08:19:00, dian_cecht@zoho.com wrote: > On Mon, 6 Mar 2017 12:08:20 +0000 > ng0 wrote:> > > Maybe someone else can try and implement this, I only know what'S > > needed for running the relay but can't do it at the moment ;) > > Just for reference sake: > https://www.torproject.org/docs/tor-doc-relay.html.en > > What is the policy on creating/modifying firewalls? Would any relay > service be allowed to automatically reconfigure the firewall to allow > a relay to run? Does the sysadmin have to configure it theirself > (English really needs gender-neutral pronouns.)? Does anything else in themselves, there are gender neutral pronouns in english. > GuixSD modify the firewall at this point? No, there are no services for iptables or nftables at this point. And from my experience they are not needed for a relay. Okay, they would be useful to increase security and to see how how Chinese government officials and their automated services want to get into your server, but it's not really necessary for the relay. The relays are just some definitions in the torrc, and that's it. I would only ask people who currently or previously ran a tor relay, maybe even with Guix/GuixSD, to work on this. You can't break anything, but to test it would be good. Which is something I can't do currently. > These all feel like rather important questions to me that need > answering before anyone does this. > >