Hi, and thanks for replying! I have built another image, for Non-Exit relays.
Essentially, the Dockerfile is the same to the Dockerfile for build an Exit Relay, i have added the command for uncomment "ExitRelay 0" line in the torrc file.
I have modified the Hidden Service image too, providing only the Hidden Service without opening ports, reducing the attack surface.
Because the images are built separately, and Containers doesn't have persistent data by default, i'm testing the launch of a "relay swarm", which isn't the "Docker Swarm". The concept of a "Relay swarm" is to have multiple running relay containers on the same user machine, without any conflict.
The idea (i will testing it very soon) is possible, by pulling an image and running it multiple times, creating intermetiate containers.
A function like the "relay swarm" can be very useful, i don't know if this approach can be risky, so i'm preparing a script for launching only one type of relay swarm (middle or exit relays).
If there is no security concerns, this function will be a very key function for grow up the Network, because a user can run multiple relays at a time.
I'm presenting this project to the large community, so i can receive feedback and take actions in case of issues.
Kind regards,
Alessandro Fiori
Il giorno ven 29 mar 2019 alle ore 13:00 < tor-dev-request@lists.torproject.org> ha scritto:
Send tor-dev mailing list submissions to tor-dev@lists.torproject.org
To subscribe or unsubscribe via the World Wide Web, visit https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev or, via email, send a message with subject or body 'help' to tor-dev-request@lists.torproject.org
You can reach the person managing the list at tor-dev-owner@lists.torproject.org
When replying, please edit your Subject line so it is more specific than "Re: Contents of tor-dev digest..."
Today's Topics:
- Re: Docker images for help people to run Tor (Chelsea Holland Komlo)
- Re: Docker images for help people to run Tor (Alessandro Fiori)
- Re: Docker images for help people to run Tor (teor)
Message: 1 Date: Thu, 28 Mar 2019 05:46:57 -0700 From: Chelsea Holland Komlo me@chelseakomlo.com To: tor-dev@lists.torproject.org Cc: Alessandro Fiori alefiori3@gmail.com Subject: Re: [tor-dev] Docker images for help people to run Tor Message-ID: 554cdbb2a021c08e08faef91d3bcb9a2@chelseakomlo.com Content-Type: text/plain; charset=US-ASCII
Hi,
Thanks for this information and putting this together! Making relays easier to run is always a helpful thing to us.
We have a wiki page to aggregate relay infrastructure projects such as this. If you can add your projects to this page (and any required instructions), that would be great.
https://trac.torproject.org/projects/tor/wiki/community/relay_infrastructure
Thanks for the contribution! Chelsea
On 2019-03-27 21:18, Alessandro Fiori wrote:
Hi, I'm an Italian developer who want to help development and grow up the Tor network. I would like to share with you an idea to grow up the Tor Network. Working with Docker, i have released two images, a Tor Exit Relay image (named "tor-relay") and an image (named "torworld-template"). The idea is to use Docker and build images for facilitate users to run a Tor Relay or an Hidden Service. The two images are located on Docker Hub in this locations:
Tor Exit Relay: https://hub.docker.com/r/alessandrofiori/tor-relay Tor Machine Template: https://hub.docker.com/r/alessandrofiori/torworld-template
If you want to see how the images are built, please check the following Dockerfile
Tor Exit Relay:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/DockerFile-To...
Tor Machine Template:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/DockerFile-To...
If you want to see how i automate the build and push process, please check the following script:
Process with system cleanup:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/build-script....
Process for rolling release:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/build-rolling...
Actually i'm working in a Windows environment, i will release ubuntu scripts soon.
I would like to share with everyone, so if this can be helpful, this can be a starting point for build up images for help people to run relays or hidden services.
This kind of approach can be reduce costs for people who want to run a relay or an hidden service, and can be an help for building a more censorship-resistant platform, by using a Docker Swarm, and replicating instances.
Waiting for your reply as soon as possible, i'm very curious if this project can be helpful for Tor Project!
Kind regards (and thanks for your hard work) Alessandro Fiori _______________________________________________ tor-dev mailing list tor-dev@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev
Message: 2 Date: Thu, 28 Mar 2019 23:57:46 +0100 From: Alessandro Fiori alefiori3@gmail.com To: Chelsea Holland Komlo me@chelseakomlo.com Cc: tor-dev@lists.torproject.org Subject: Re: [tor-dev] Docker images for help people to run Tor Message-ID: <CAP6e1PnzqMRXdGmnF1U=oZqA2s69gdY= Wc+D4LSzPsygbYckNw@mail.gmail.com> Content-Type: text/plain; charset="utf-8"
Hi, and thanks for reply! I added a line in the dedicated page, and modified the README.md on GitHub for more specific informations to the users.
I've decided to release two scripts (I'm releasing for Ubuntu too), for run an Exit Relay or Hidden Service then, with Docker image.
If needed, let me know if there would be useful releasing an image of a Non-Exit-Relay.
I will add more informations in the following days, for more explanations and specific infos about building process. I have decided to release only scripts or text file (for build process and pull process), and no binaries, to keep processes transparent and controllable.
The next step for me is writing to forums and IRC, so people can review the configurations. I would like to meet the best practices to provide a robust and secure service under all aspects.
Another further step will be to contact Docker and try to achieve the "Verified Publisher" or "Official Image" status, to keep the User Trust up.
Official Images have automated security scans, so it can be a benefit to community.
I hope this can be useful, let me know!
Kind regards (and thanks for your hard work... really!)
Il giorno gio 28 mar 2019 alle ore 13:46 Chelsea Holland Komlo < me@chelseakomlo.com> ha scritto:
Hi,
Thanks for this information and putting this together! Making relays easier to run is always a helpful thing to us.
We have a wiki page to aggregate relay infrastructure projects such as this. If you can add your projects to this page (and any required instructions), that would be great.
https://trac.torproject.org/projects/tor/wiki/community/relay_infrastructure
Thanks for the contribution! Chelsea
On 2019-03-27 21:18, Alessandro Fiori wrote:
Hi, I'm an Italian developer who want to help development and grow up the Tor network. I would like to share with you an idea to grow up the Tor Network. Working with Docker, i have released two images, a Tor Exit Relay image (named "tor-relay") and an image (named "torworld-template"). The idea is to use Docker and build images for facilitate users to run a Tor Relay or an Hidden Service. The two images are located on Docker Hub in this locations:
Tor Exit Relay: https://hub.docker.com/r/alessandrofiori/tor-relay Tor Machine Template: https://hub.docker.com/r/alessandrofiori/torworld-template
If you want to see how the images are built, please check the following Dockerfile
Tor Exit Relay:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/DockerFile-To...
Tor Machine Template:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/DockerFile-To...
If you want to see how i automate the build and push process, please check the following script:
Process with system cleanup:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/build-script....
Process for rolling release:
https://raw.githubusercontent.com/randomtable/ChimeraOS/master/build-rolling...
Actually i'm working in a Windows environment, i will release ubuntu scripts soon.
I would like to share with everyone, so if this can be helpful, this can be a starting point for build up images for help people to run relays or hidden services.
This kind of approach can be reduce costs for people who want to run a relay or an hidden service, and can be an help for building a more censorship-resistant platform, by using a Docker Swarm, and replicating instances.
Waiting for your reply as soon as possible, i'm very curious if this project can be helpful for Tor Project!
Kind regards (and thanks for your hard work) Alessandro Fiori _______________________________________________ tor-dev mailing list tor-dev@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev
Hi,
(Please try to reply to the thread, not the digest!)
On 30 Mar 2019, at 11:51, Alessandro Fiori alefiori3@gmail.com wrote:
Because the images are built separately, and Containers doesn't have persistent data by default, i'm testing the launch of a "relay swarm", which isn't the "Docker Swarm". The concept of a "Relay swarm" is to have multiple running relay containers on the same user machine, without any conflict.
The idea (i will testing it very soon) is possible, by pulling an image and running it multiple times, creating intermetiate containers.
A function like the "relay swarm" can be very useful, i don't know if this approach can be risky, so i'm preparing a script for launching only one type of relay swarm (middle or exit relays).
If there is no security concerns, this function will be a very key function for grow up the Network, because a user can run multiple relays at a time.
Tor only allows 2 relays per IPv4 address.
T
-
Alessandro Fiori -
teor