git ssb


3+

Dominic / scuttlebot



%vxVWbNVthqqMKdr86PQ1Es4lrwrJw6FNhA5PbB0/UGk=.sha256

%vxVWbNVthqqMKdr86PQ1Es4lrwrJw6FNhA5PbB0/UGk=.sha256
Opencryptop opened this issue on 12/22/2016, 12:34:37 AM

I noticed that the --tor-only flag also refuses connections from localhost. so no whoami, patch*, etc..

can somebody verify? i'll try to look into secret-stack.

re %AHqgeMr...: cc @arj

%vPwBKtzuSIT+ZlXSZF2rn3fbEmG15Mr5aKIqNeFpAcQ=.sha256 cryptop · 12/22/2016, 12:52:23 AM

ok it's like I thought. as a simple fix you can do this:

x220(master|✚1) % git diff                                                                                                                           ~/secret-stack
diff --git a/index.js b/index.js
index b782265..90eb27b 100644
--- a/index.js
+++ b/index.js
@@ -139,7 +139,10 @@ module.exports = function (opts) {
       ]

       if (opts["tor-only"])
-          protocols = [[Onion({server: false}), shs]]
+        protocols = [
+          [Net({port: port, host: "::"}), shs],
+          [Onion({server: false}), shs]
+        ]

       var ms = MultiServer(protocols)
%jsxu5t/LGsxmb1TiIZyTQ91sXOLgnUmt/9EtTG/Zt3A=.sha256 cryptop · 12/22/2016, 12:53:19 AM

though.. if i do this.. does it reach out over clear net? ideally it would only listen for clients locally and also use tor for outgoing connections.

also: disable udp broadcast

%chkam/Qj+rgnCLCNVdWWY/aSUZ58fXQctSZc9hMbTvw=.sha256 arj · 12/22/2016, 8:24:25 AM

Seems like you are correct in that it doesn't work locally. I made this for my pub which has no need to talk to other sbot instance on localhost and that works fine.

I tested the patch you posted and that does not work.

I'll see if we can do something else.

%GvDRvo6pHwJDOtra7aR7pn2v/urV34n++8PIWUAoIL8=.sha256 arj · 12/22/2016, 9:33:01 AM

This works @cryptop :)

https://github.com/ssbc/secret-stack/pull/13

%7uuJLRcjEITnMUJQ0SRcxsRYPg/7JtJEfWeYXrGKb+E=.sha256 arj · 12/22/2016, 9:43:31 AM

I'm running with the patch now and it connects to mindeco.de besides my own pub. Is this yours @cryptop and do you have tor running on your pub?

The really wierd thing is that I've been moving over to a Chromebook and have been running patchbay for the last week or so but it has been running really slow and often simply refuses connections so I have to restart sbot. But with --tor-only and this patch everything is running much more smoothly. Loading my feed is much faster and I havn't seen any problems yet. Any idea why that could be @dominic?

%a3whBuz7T8wFU+aR1D7TuOoGbAlKTk7ix0OJxQnODcs=.sha256 arj · 12/22/2016, 9:45:11 AM

Ahh it is running tor right? asf2e525q57piquz.onion

%KO2iusYOmHzPgaQjCdX8Qi43ac95kA119UihH9TwXCg=.sha256 Dominic · 12/22/2016, 11:19:15 AM

it would be easy to add options to net/ws multiserver plugins that reject connections that are not localhost, or not same network.


Built with git-ssb-web