Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Hidden Service down/unreachable #985

Open
willcl-ark opened this issue Jul 11, 2023 · 10 comments
Open

Hidden Service down/unreachable #985

willcl-ark opened this issue Jul 11, 2023 · 10 comments

Comments

@willcl-ark
Copy link
Member

As reported by @TNTBOMBOM in bitcoin/bitcoin#28054 the bitcoincore.org hidden service http://6hasakffvppilxgehrswmffqurlcjjjhd76jgvaqmsg6ul25s7t3rzyd.onion/ is currently unreachable using Tor Browser.

I have verified that it is unreachable, and many other Tor websites remain accessible, indicating that it is not a problem with the Tor network itself.
@willcl-ark willcl-ark mentioned this issue Jul 11, 2023
Closed
1 task
@katesalazar
Copy link
Contributor

repro

@fanquake
Copy link
Member

fanquake commented Oct 4, 2023

@willcl-ark Is this still the case?

@willcl-ark
Copy link
Member Author

@fanquake it is still the case for me.

You get the nice "onion available" button if you visit the http site using Tor browser, but it never loads that way either (of course, it's the same address)

image

The operation timed out when attempting to contact 6hasakffvppilxgehrswmffqurlcjjjhd76jgvaqmsg6ul25s7t3rzyd.onion.

@willcl-ark
Copy link
Member Author

Hidden service still appears to be down for me :(

@katesalazar
Copy link
Contributor

katesalazar commented Nov 27, 2023 via email

@BenWestgate BenWestgate mentioned this issue Mar 24, 2024
Closed
@BenWestgate
Copy link

Still down.

@Nurmagoz
Copy link

Meow?!

@f321x
Copy link

f321x commented Nov 20, 2024
edited
Loading

still down here :(
Screen Shot 2024-11-20 at 11 32 55 AM

@Sjors
Copy link
Member

Sjors commented Jan 3, 2025
edited
Loading

It's still down. If it can't be fixed, then we should remove the suggested Tor browser redirect:

bitcoincore.org/_includes/head.html

Line 14 in f1d9b75

<meta http-equiv="onion-location" content="http://6hasakffvppilxgehrswmffqurlcjjjhd76jgvaqmsg6ul25s7t3rzyd.onion{{ page.url }}" />

@willcl-ark
Copy link
Member Author

Yeah, it seems a (slight) shame that it seems to be difficult to fix, but broken is worse than nothing?

It is also possible to access the clearnet site via an exit node. Although this feels worse, in reality users should be verifying their downloads using GPG not trusting any particular web addresses. If they are doing gpg verification then the impact of dropping the hidden service is pretty minimal, minus:

  • exit node risks
    • MITM attacks (in theory mitigated by GPG)
    • other exit node attacks
  • longer round-trip circuits

I did make an attempt a few weeks ago at a "simple Tor proxy" which could be deployed to a droplet. I'm assuming the current Tor site is hosted stacked with the clearnet site making maintenance difficult, and my standalone proxy therefore aims to make management/deployment (possibly) easier. A running example of that is at the bottom of README.md. NB that this is a demo site, not in any way official, and likely contains all manner of critical hidden service misconfigurations etc.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@Sjors @fanquake @willcl-ark @Nurmagoz @f321x @katesalazar @BenWestgate