From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Tremer To: development@lists.ipfire.org Subject: Re: [PATCH 1/4] Tor: allow multiple countries to be selected for Exit relays Date: Fri, 06 Nov 2020 10:49:18 +0000 Message-ID: <87064171-0BD2-43BF-B772-76BBEC48973A@ipfire.org> In-Reply-To: <88bdbdd4-1418-1be0-6240-3123ca64c00c@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============4069794420800129564==" List-Id: --===============4069794420800129564== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Hello, Great idea to extend the Tor add-on. I believe we could have a brief blog article about this, too. Please do not f= orget to update the Wiki. Before I merge this, I would like to have some feedback from someone who has = tested this. I would like to have more people touching a patch before it is a= ctually being merged, so that we can iron out problems earlier. There must be some Tor users here :) Please test :) -Michael > On 4 Nov 2020, at 21:28, Peter M=C3=BCller wro= te: >=20 > This extends the functionality of the Tor CGI in order to be able to > select multiple countries for possible Exit relays, which is - in terms > of anonymity - less worse than limiting all Tor circuits to a single > country. >=20 > For example, a user might want to avoid Exit relays in more than one > country, and permit Tor to use Exit relays elesewhere, and vice versa. >=20 > Signed-off-by: Peter M=C3=BCller > --- > html/cgi-bin/tor.cgi | 26 +++++++++++++++++++++----- > 1 file changed, 21 insertions(+), 5 deletions(-) >=20 > diff --git a/html/cgi-bin/tor.cgi b/html/cgi-bin/tor.cgi > index 7447bd791..3db4bc22c 100644 > --- a/html/cgi-bin/tor.cgi > +++ b/html/cgi-bin/tor.cgi > @@ -2,7 +2,7 @@ > ###########################################################################= #### > # = # > # IPFire.org - A linux based firewall = # > -# Copyright (C) 2013-2019 IPFire Team = # > +# Copyright (C) 2007-2020 IPFire Team = # > # = # > # This program is free software: you can redistribute it and/or modify = # > # it under the terms of the GNU General Public License as published by = # > @@ -319,9 +319,16 @@ END > > > > - > > END > + > + # Convert Exit/Guard country strings into lists to make comparison easier > + my @exit_countries; > + if ($settings{'TOR_EXIT_COUNTRY'} ne '') { > + @exit_countries =3D split(/\|/, $settings{'TOR_EXIT_COUNTRY'}); > + } > + > my @country_codes =3D &Location::database_countries($db_handle); > foreach my $country_code (@country_codes) { > # Convert country code into upper case format. > @@ -332,8 +339,8 @@ END >=20 > print "\n"; > @@ -678,8 +685,17 @@ sub BuildConfiguration() { >=20 > if ($settings{'TOR_EXIT_COUNTRY'} ne '') { > $strict_nodes =3D 1; > + my $countrylist; > + > + for my $singlecountry (split(/\|/, $settings{'TOR_EXIT_COUNTRY'})) { > + if ($countrylist eq '') { > + $countrylist =3D "{" . lc $singlecountry . "}"; > + } else { > + $countrylist =3D $countrylist . "," . "{" . lc $singlecountry . "}"; > + } > + } >=20 > - print FILE "ExitNodes {$settings{'TOR_EXIT_COUNTRY'}}\n"; > + print FILE "ExitNodes $countrylist\n"; > } >=20 > if ($settings{'TOR_USE_EXIT_NODES'} ne '') { > --=20 > 2.26.2 --===============4069794420800129564==--