From mboxrd@z Thu Jan  1 00:00:00 1970
From: ng0 <contact.ng0@cryptolab.net>
Subject: Re: documentation/behavior unclear of (tor-hidden-service)
Date: Mon, 6 Mar 2017 18:00:30 +0000
Message-ID: <20170306180030.ginyp6tywg2jcpps@abyayala>
References: <20170304155916.slok53nrcporwwat@abyayala>
	<20170304162126.urcuuh6b5wg3eequ@abyayala> <87innmww4z.fsf@gnu.org>
	<20170306120820.libvu2akv34jmrrd@abyayala>
	<20170306081900.4802e21b@khaalida>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Return-path: <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:4830:134:3::10]:35823)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <contact.ng0@cryptolab.net>) id 1ckvrg-00061q-E8
	for guix-devel@gnu.org; Mon, 06 Mar 2017 11:52:05 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <contact.ng0@cryptolab.net>) id 1ckvrc-0002Of-Fs
	for guix-devel@gnu.org; Mon, 06 Mar 2017 11:52:04 -0500
Received: from perdizione.investici.org ([2001:41d0:2:33d0::19]:64598)
	by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
	(Exim 4.71) (envelope-from <contact.ng0@cryptolab.net>)
	id 1ckvrc-0002O5-6e
	for guix-devel@gnu.org; Mon, 06 Mar 2017 11:52:00 -0500
Content-Disposition: inline
In-Reply-To: <20170306081900.4802e21b@khaalida>
List-Id: "Development of GNU Guix and the GNU System distribution."
	<guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-devel/>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
	<mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org
Sender: "Guix-devel" <guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org>
To: dian_cecht@zoho.com
Cc: guix-devel@gnu.org

On 17-03-06 08:19:00, dian_cecht@zoho.com wrote:
> On Mon, 6 Mar 2017 12:08:20 +0000
> ng0 <contact.ng0@cryptolab.net> wrote:> 
> > Maybe someone else can try and implement this, I only know what'S
> > needed for running the relay but can't do it at the moment ;)
> 
> Just for reference sake:
> https://www.torproject.org/docs/tor-doc-relay.html.en
> 
> What is the policy on creating/modifying firewalls? Would any relay
> service be allowed to automatically reconfigure the firewall to allow
> a relay to run? Does the sysadmin have to configure it theirself
> (English really needs gender-neutral pronouns.)? Does anything else in

themselves, there are gender neutral pronouns in english.

> GuixSD modify the firewall at this point?

No, there are no services for iptables or nftables at this point. And
from my experience they are not needed for a relay. Okay, they would be
useful to increase security and to see how how Chinese government
officials and their automated services want to get into your server, but
it's not really necessary for the relay.
The relays are just some definitions in the torrc, and that's it.

I would only ask people who currently or previously ran a tor relay,
maybe even with Guix/GuixSD, to work on this. You can't break anything,
but to test it would be good. Which is something I can't do currently.

> These all feel like rather important questions to me that need
> answering before anyone does this.
> 
>