I took the EFF Tor challenge as a kick to setup a Tor relay on one of my servers.
Since the Tor developers do provide more up2date packages than my Debian distribution, I added their repository first:
# add the repository echo "deb http://deb.torproject.org/torproject.org squeeze main" >> /etc/apt/sources.list # import the key gpg --keyserver keys.gnupg.net --recv 886DDD89 gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | apt-key add - # update apt-get update # install package to keep the Tor signing key up2date apt-get install deb.torproject.org-keyring # install Tor itself apt-get install tor
Then a quick edit of the configuration file.
This is mine:
ORPort 9001 Address torrelay.beastiebytes.com Nickname beastiebytesrelay RelayBandwidthRate 100 KB # Throttle traffic to 100KB/s (800Kbps) RelayBandwidthBurst 200 KB # But allow bursts up to 200KB/s (1600Kbps) AccountingMax 1 GB AccountingStart day 00:00 ContactInfo 0x069DD13C Sven Tantau <firstname.lastname@example.org> ExitPolicy reject *:* # no exits allowed
Make sure that the domain for the 'Address' resolves.
The 'ExitPolicy' line defines that there won't be any connections to the public internet.
btw: There is no need to put anything into ContactInfo. The 0x069DD13C is the ID of my gpg key in case you are wondering..
Last step is to restart the Tor service:
Take a look into the logfile at /var/log/tor
It should show you something like this:
Your Tor server's identity key fingerprint is 'beastiebytesrelay D4B34BD14DCFA9EE95C92D0DCD2875F2B91FF96E' ... Tor has successfully opened a circuit. Looks like client functionality is working. ... Now checking whether ORPort 188.8.131.52:9001 is reachable... (this may take up to 20 minutes -- look for log messages indicating success) ... Self-testing indicates your ORPort is reachable from the outside. Excellent. Publishing server descriptor. ... Performing bandwidth self-test...done.
After one or two hours, you should be able to find your relay at GLOBE. Just search for the Nickname or the fingerprint of your relay.
Here is mine: Details for beastiebytesrelay.
Do you have a better/nicer way? Does this make sense to you? Something missing? Something wrong?
Let me know via: semi analog pingback
phone: +49 22 47 90 80 250
mobile/signal: +49 157 3131 4424
GPG/PGP-Key: (pub 4096R/069DD13C 2014-02-13) local copy pgp.mit.edu
GPG/PGP-Key: fingerprint: 9BAD 94D3 9176 5BD1 F64F 542E 37E4 3542 069D D13C