phobos's blog

New releases read more »

• On July 4th, we released Tor Browser Bundle 1.3.7 for Microsoft Windows. This is a security update for Firefox and Pidgin. The changes are: update to Firefox 3.5.10 and Pidgin Instant Messenger 2.7.1r2 to fix some security issues.
• On July 6th, we released Tor Browser Bundle 1.0.8 for GNU/Linux distributions. This fixes a number of security issues with included software. The updates include:
  • Update libpng to 1.4.3 (see CVE-2010-1205)
  • Update Firefox to 3.5.10
  • Update HTTPS Everywhere to 0.2.1

On July 22, we released the latest version of the Tor Browser Bundle for Windows. It contains updates to Firefox and Pidgin to address security issues.

The bundles can be found at https://www.torproject.org/torbrowser/

The full changelog is:

version 1.3.8: Released 2010-07-22
update Firefox to 3.5.11

version 1.3.9: Released 2010-07-22
update Pidgin to 2.7.2

Tor 0.2.2.14-alpha greatly improves client-side handling of circuit build
timeouts, which are used to estimate speed and improve performance. We
also move to a much better GeoIP database, port Tor to Windows CE,
introduce new compile flags that improve code security, add an eighth
v3 directory authority, and address a lot of more minor issues.

https://www.torproject.org/download

Packages will be appearing over the next few days or weeks. (We've decided
to start announcing alpha versions when they're released, rather than
waiting for all the packages first.)

Changes in version 0.2.2.14-alpha - 2010-07-12
o Major bugfixes:
- Tor directory authorities no longer crash when started with a
cached-microdesc-consensus file in their data directory. Bugfix
on 0.2.2.6-alpha; fixes bug 1532.
- Treat an unset $HOME like an empty $HOME rather than triggering an
assert. Bugfix on 0.0.8pre1; fixes bug 1522. read more »

New releases read more »

• On June 1, we released the latest Tor Browser Bundle for Linux, version 1.0.7. This is a compatibility release to allow the bundle to work on a wider variety of Linux distributions.
• On June 2, updated the Vidalia bundle for OS X PowerPC to include Vidalia 0.2.9.
• On June 14, we released orbot 0.0.8. This is a maintenance release to fix issues discovered with Android 2.2.
• On June 17, Tor and the EFF released a Firefox extension called HTTPS Everywhere. The goal is to enable encrypted website viewing by default. More about this release at https://blog.torproject.org/blog/https-everywhere-firefox-addon-helps-yo....
• Damian continues to improve and release new versions of ARM, the console-based anonymizing relay monitor, http://www.atagar.com/arm/. Consider it to be like the graphical control application, Vidalia, for relays without a graphical environment.

On July 4th, we released Tor Browser Bundle 1.3.7 for Microsoft Windows. This is merely a security update release for Firefox and Pidgin. You can download this at https://torproject.org/torbrowser.

The only changes are:

• update to Firefox 3.5.10 to fix some security issues
• update to Pidgin 2.7.1r2 to fix some security issues

You've flooded the blog and tor-assistants with lots of cries for help about Tor, Freegate, Ultrasurf, and a slew of VPNs all being blocked. Sometimes this is through MTN Nigera, sometimes not.

http://www.herdict.org/web/explore/country/NG suggests access is a 50/50 chance for some sites.

https://trac.torproject.org/projects/tor/wiki/TheOnionRouter/TorFAQ#Iins.... That FAQ entry is a fine place to start. Telling us Tor doesn't work lets us know there is a problem. Sending in logs from Message Log would be a great start. We need to know what Tor records while trying to connect to the Tor Network.

Someone could further startup Wireshark and record the entire session of Tor starting up and ultimately failing to connect to the Tor Network. read more »

New releases

On May 26, Tor Browser Bundle for Microsoft Windows is updated to include the newer Vidalia 0.2.9. This fixes some issues with character set handling, and adds Vietnamese as a new language.

On May 31, we released Tor Browser Bundle for Linux 1.0.6. It contains the following updates:

• Add arch to tarball name so there's no collision
• Add libpng for Arch Linux
• Add HTTPS Everywhere extension
• Update Qt to 4.6.2
• Update Vidalia to 0.2.9
• Update NoScript to 1.9.9.80

On June 1st, we released Tor Browser Bundle for Linux 1.0.7. It uses an older glibc for better compatibility with older linux distributions.

On May 20, we released Vidalia 0.2.9. Fixes include Qt 4.6.2 compatibility, new cert, and some new translations. You can download it at https://www.torproject.org/vidalia/. Packages are slowly being updated to include this version of Vidalia.
The full changelog is: read more »

Tor 0.2.1.26 addresses the recent connection and memory overload problems we've been seeing on relays, especially relays with their DirPort open. If your relay has been crashing, or you turned it off because it used too many resources, give this release a try.

This release also fixes yet another instance of broken OpenSSL libraries that was causing some relays to drop out of the consensus.

Available for download at https://www.torproject.org/easy-download

Changes in version 0.2.1.26
Major bugfixes:

• Teach relays to defend themselves from connection overload. Relays
  now close idle circuits early if it looks like they were intended
  for directory fetches. Relays are also more aggressive about closing
  TLS connections that have no circuits on them. Such circuits are
  unlikely to be re-used, and tens of thousands of them were piling
  up at the fast relays, causing the relays to run out of sockets read more »