kevacoin/doc/tor.md

TOR SUPPORT IN LITECOIN
======================

It is possible to run Litecoin as a Tor hidden service, and connect to such services.

The following directions assume you have a Tor proxy running on port 9050. Many distributions default to having a SOCKS proxy listening on port 9050, but others may not. In particular, the Tor Browser Bundle defaults to listening on port 9150. See [Tor Project FAQ:TBBSocksPort](https://www.torproject.org/docs/faq.html.en#TBBSocksPort) for how to properly
configure Tor.


1. Run litecoin behind a Tor proxy
---------------------------------

The first step is running Litecoin behind a Tor proxy. This will already make all
outgoing connections be anonymized, but more is possible.

	-proxy=ip:port  Set the proxy server. If SOCKS5 is selected (default), this proxy
	                server will be used to try to reach .onion addresses as well.

	-onion=ip:port  Set the proxy server to use for tor hidden services. You do not
	                need to set this if it's the same as -proxy. You can use -noonion
	                to explicitly disable access to hidden service.

	-listen         When using -proxy, listening is disabled by default. If you want
	                to run a hidden service (see next section), you'll need to enable
	                it explicitly.

	-connect=X      When behind a Tor proxy, you can specify .onion addresses instead
	-addnode=X      of IP addresses or hostnames in these parameters. It requires
	-seednode=X     SOCKS5. In Tor mode, such addresses can also be exchanged with
	                other P2P nodes.

In a typical situation, this suffices to run behind a Tor proxy:

	./litecoin -proxy=127.0.0.1:9050


2. Run a litecoin hidden server
------------------------------

If you configure your Tor system accordingly, it is possible to make your node also
reachable from the Tor network. Add these lines to your /etc/tor/torrc (or equivalent
config file):

	HiddenServiceDir /var/lib/tor/litecoin-service/
	HiddenServicePort 9333 127.0.0.1:9333
	HiddenServicePort 19335 127.0.0.1:19335

The directory can be different of course, but (both) port numbers should be equal to
your litecoind's P2P listen port (9333 by default).

	-externalip=X   You can tell litecoin about its publicly reachable address using
	                this option, and this can be a .onion address. Given the above
	                configuration, you can find your onion address in
	                /var/lib/tor/litecoin-service/hostname. Onion addresses are given
	                preference for your node to advertise itself with, for connections
	                coming from unroutable addresses (such as 127.0.0.1, where the
	                Tor proxy typically runs).

	-listen         You'll need to enable listening for incoming connections, as this
	                is off by default behind a proxy.

	-discover       When -externalip is specified, no attempt is made to discover local
	                IPv4 or IPv6 addresses. If you want to run a dual stack, reachable
	                from both Tor and IPv4 (or IPv6), you'll need to either pass your
	                other addresses using -externalip, or explicitly enable -discover.
	                Note that both addresses of a dual-stack system may be easily
	                linkable using traffic analysis.

In a typical situation, where you're only reachable via Tor, this should suffice:

	./litecoind -proxy=127.0.0.1:9050 -externalip=57qr3yd1nyntf5k.onion -listen

(obviously, replace the Onion address with your own). It should be noted that you still
listen on all devices and another node could establish a clearnet connection, when knowing
your address. To mitigate this, additionally bind the address of your Tor proxy:

	./litecoind ... -bind=127.0.0.1

If you don't care too much about hiding your node, and want to be reachable on IPv4
as well, use `discover` instead:

	./litecoind ... -discover

and open port 9333 on your firewall (or use -upnp).

If you only want to use Tor to reach onion addresses, but not use it as a proxy
for normal IPv4/IPv6 communication, use:

	./litecoin -onion=127.0.0.1:9050 -externalip=57qr3yd1nyntf5k.onion -discover

3. Automatically listen on Tor
--------------------------------

Starting with Tor version 0.2.7.1 it is possible, through Tor's control socket
API, to create and destroy 'ephemeral' hidden services programmatically.
Litecoin Core has been updated to make use of this.

This means that if Tor is running (and proper authentication has been configured),
Litecoin Core automatically creates a hidden service to listen on. This will positively 
affect the number of available .onion nodes.

This new feature is enabled by default if Litecoin Core is listening (`-listen`), and
requires a Tor connection to work. It can be explicitly disabled with `-listenonion=0`
and, if not disabled, configured using the `-torcontrol` and `-torpassword` settings.
To show verbose debugging information, pass `-debug=tor`.

Connecting to Tor's control socket API requires one of two authentication methods to be 
configured. For cookie authentication the user running litecoind must have write access 
to the `CookieAuthFile` specified in Tor configuration. In some cases this is 
preconfigured and the creation of a hidden service is automatic. If permission problems 
are seen with `-debug=tor` they can be resolved by adding both the user running tor and 
the user running litecoind to the same group and setting permissions appropriately. On 
Debian-based systems the user running litecoind can be added to the debian-tor group, 
which has the appropriate permissions. An alternative authentication method is the use 
of the `-torpassword` flag and a `hash-password` which can be enabled and specified in 
Tor configuration.

4. Privacy recommendations
---------------------------

- Do not add anything but litecoin ports to the hidden service created in section 2.
  If you run a web service too, create a new hidden service for that.
  Otherwise it is trivial to link them, which may reduce privacy. Hidden
  services created automatically (as in section 3) always have only one port
  open.
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`TOR SUPPORT IN LITECOIN`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`======================`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`It is possible to run Litecoin as a Tor hidden service, and connect to such services.`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
[doc] Update port in tor.md Tor Browser Bundle spawns the Tor process and listens on port 9150, it doesn't randomly pick a port. [ci skip] (cherry picked from commit 1b63cf98347b2a62915425576930f55c2126c2ff) 2016-03-29 18:16:16 +00:00			`The following directions assume you have a Tor proxy running on port 9050. Many distributions default to having a SOCKS proxy listening on port 9050, but others may not. In particular, the Tor Browser Bundle defaults to listening on port 9150. See [Tor Project FAQ:TBBSocksPort](https://www.torproject.org/docs/faq.html.en#TBBSocksPort) for how to properly`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`configure Tor.`


Litecoin: Branding 2016-11-01 12:28:11 +00:00			`1. Run litecoin behind a Tor proxy`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`---------------------------------`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`The first step is running Litecoin behind a Tor proxy. This will already make all`
Typo fix: `anonimized => anonymized` + `infromation => information` 2014-02-05 10:34:44 +00:00			`outgoing connections be anonymized, but more is possible.`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
			`-proxy=ip:port Set the proxy server. If SOCKS5 is selected (default), this proxy`
			`server will be used to try to reach .onion addresses as well.`
Correct spelling mistakes in doc folder - OSX —> OS X - XCode —> Xcode - github —> GitHub - homebrew —> Homebrew - gitian —> Gitian - Other miscellaneous obvious spelling fixes and whitespace removal 2015-10-17 10:10:45 +00:00
Rename -tor to -onion to better reflect what it does. I've seen users confused multiple times thinking they should be using -tor to set their tor proxy and then finding in horror that they were still connecting to the IPv4 internet. Even Jeff guesses wrong about what the knob does, so I think we should rename it. This leaves the old knob working, we can pull it out completely in a later release. 2013-09-08 11:54:06 +00:00			`-onion=ip:port Set the proxy server to use for tor hidden services. You do not`
			`need to set this if it's the same as -proxy. You can use -noonion`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`to explicitly disable access to hidden service.`
Correct spelling mistakes in doc folder - OSX —> OS X - XCode —> Xcode - github —> GitHub - homebrew —> Homebrew - gitian —> Gitian - Other miscellaneous obvious spelling fixes and whitespace removal 2015-10-17 10:10:45 +00:00
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`-listen When using -proxy, listening is disabled by default. If you want`
			`to run a hidden service (see next section), you'll need to enable`
			`it explicitly.`
Correct spelling mistakes in doc folder - OSX —> OS X - XCode —> Xcode - github —> GitHub - homebrew —> Homebrew - gitian —> Gitian - Other miscellaneous obvious spelling fixes and whitespace removal 2015-10-17 10:10:45 +00:00
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`-connect=X When behind a Tor proxy, you can specify .onion addresses instead`
			`-addnode=X of IP addresses or hostnames in these parameters. It requires`
			`-seednode=X SOCKS5. In Tor mode, such addresses can also be exchanged with`
			`other P2P nodes.`

			`In a typical situation, this suffices to run behind a Tor proxy:`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`./litecoin -proxy=127.0.0.1:9050`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`2. Run a litecoin hidden server`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`------------------------------`

			`If you configure your Tor system accordingly, it is possible to make your node also`
			`reachable from the Tor network. Add these lines to your /etc/tor/torrc (or equivalent`
			`config file):`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`HiddenServiceDir /var/lib/tor/litecoin-service/`
Litecoin: Protocol and default settings 0) Adjust BIP30 enforcement values 1) Reduce amount that peers can adjust our time to eliminate an attack vector. Thanks to coblee for this fix. 2) Zeitgeist2 patch - thanks to Lolcust and ArtForz. This fixes an issue where a 51% attack can change difficulty at will. Go back the full period unless it's the first retarget after genesis. 3) Avoid overflow in CalculateNextWorkRequired(). Thanks to pooler for the overflow fix. 4) Zeitgeist2 bool fshift bnNew.bits(). Thanks to romanornr for this path. 5) SegWit ContextualCheckBlockHeader adjustment and extra coverage. 6) Reject peer proto version below 70002. Thanks to wtogami for this patch. 7) Send final alert message to nodes warning about removal of the alert system. Thanks to coblee for this patch. 8) Adjust default settings for Litecoin. 2017-01-29 15:00:00 +00:00			`HiddenServicePort 9333 127.0.0.1:9333`
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`HiddenServicePort 19335 127.0.0.1:19335`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
			`The directory can be different of course, but (both) port numbers should be equal to`
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`your litecoind's P2P listen port (9333 by default).`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`-externalip=X You can tell litecoin about its publicly reachable address using`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`this option, and this can be a .onion address. Given the above`
			`configuration, you can find your onion address in`
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`/var/lib/tor/litecoin-service/hostname. Onion addresses are given`
fix spelling of advertise in src and doc 2016-02-12 18:35:32 +00:00			`preference for your node to advertise itself with, for connections`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`coming from unroutable addresses (such as 127.0.0.1, where the`
			`Tor proxy typically runs).`
Correct spelling mistakes in doc folder - OSX —> OS X - XCode —> Xcode - github —> GitHub - homebrew —> Homebrew - gitian —> Gitian - Other miscellaneous obvious spelling fixes and whitespace removal 2015-10-17 10:10:45 +00:00
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`-listen You'll need to enable listening for incoming connections, as this`
			`is off by default behind a proxy.`
Correct spelling mistakes in doc folder - OSX —> OS X - XCode —> Xcode - github —> GitHub - homebrew —> Homebrew - gitian —> Gitian - Other miscellaneous obvious spelling fixes and whitespace removal 2015-10-17 10:10:45 +00:00
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00			`-discover When -externalip is specified, no attempt is made to discover local`
			`IPv4 or IPv6 addresses. If you want to run a dual stack, reachable`
			`from both Tor and IPv4 (or IPv6), you'll need to either pass your`
			`other addresses using -externalip, or explicitly enable -discover.`
			`Note that both addresses of a dual-stack system may be easily`
			`linkable using traffic analysis.`

			`In a typical situation, where you're only reachable via Tor, this should suffice:`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`./litecoind -proxy=127.0.0.1:9050 -externalip=57qr3yd1nyntf5k.onion -listen`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
[doc] [tor] Clarify when to use bind c.f. #6585 2015-09-06 15:54:41 +00:00			`(obviously, replace the Onion address with your own). It should be noted that you still`
			`listen on all devices and another node could establish a clearnet connection, when knowing`
			`your address. To mitigate this, additionally bind the address of your Tor proxy:`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`./litecoind ... -bind=127.0.0.1`
[doc] [tor] Clarify when to use bind c.f. #6585 2015-09-06 15:54:41 +00:00
			`If you don't care too much about hiding your node, and want to be reachable on IPv4`
			as well, use `discover` instead:
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`./litecoind ... -discover`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
Litecoin: Protocol and default settings 0) Adjust BIP30 enforcement values 1) Reduce amount that peers can adjust our time to eliminate an attack vector. Thanks to coblee for this fix. 2) Zeitgeist2 patch - thanks to Lolcust and ArtForz. This fixes an issue where a 51% attack can change difficulty at will. Go back the full period unless it's the first retarget after genesis. 3) Avoid overflow in CalculateNextWorkRequired(). Thanks to pooler for the overflow fix. 4) Zeitgeist2 bool fshift bnNew.bits(). Thanks to romanornr for this path. 5) SegWit ContextualCheckBlockHeader adjustment and extra coverage. 6) Reject peer proto version below 70002. Thanks to wtogami for this patch. 7) Send final alert message to nodes warning about removal of the alert system. Thanks to coblee for this patch. 8) Adjust default settings for Litecoin. 2017-01-29 15:00:00 +00:00			`and open port 9333 on your firewall (or use -upnp).`
Markdown Cleanup - Part 2 Now everything is in markdown... 2013-06-16 10:29:23 +00:00
			`If you only want to use Tor to reach onion addresses, but not use it as a proxy`
			`for normal IPv4/IPv6 communication, use:`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`./litecoin -onion=127.0.0.1:9050 -externalip=57qr3yd1nyntf5k.onion -discover`
doc: update docs for Tor listening - add new data directory files for 0.12 to doc/files.md - mention torcontrol in doc/tor.md 2015-11-11 14:08:38 +00:00
			`3. Automatically listen on Tor`
			`--------------------------------`

			`Starting with Tor version 0.2.7.1 it is possible, through Tor's control socket`
			`API, to create and destroy 'ephemeral' hidden services programmatically.`
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`Litecoin Core has been updated to make use of this.`
doc: update docs for Tor listening - add new data directory files for 0.12 to doc/files.md - mention torcontrol in doc/tor.md 2015-11-11 14:08:38 +00:00
Clarify documentation for running a tor node Previous wording suggested that no additional setup was required for a tor hidden service to be created. 2016-06-14 22:49:09 +00:00			`This means that if Tor is running (and proper authentication has been configured),`
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`Litecoin Core automatically creates a hidden service to listen on. This will positively`
Clarify documentation for running a tor node Previous wording suggested that no additional setup was required for a tor hidden service to be created. 2016-06-14 22:49:09 +00:00			`affect the number of available .onion nodes.`
doc: update docs for Tor listening - add new data directory files for 0.12 to doc/files.md - mention torcontrol in doc/tor.md 2015-11-11 14:08:38 +00:00
Litecoin: Branding 2016-11-01 12:28:11 +00:00			This new feature is enabled by default if Litecoin Core is listening (`-listen`), and
Clarify `listenonion` > This new feature is enabled by default if Bitcoin Core is listening, and a connection to Tor can be made. It can be configured with the -listenonion, -torcontrol and -torpassword settings. To show verbose debugging information, pass -debug=tor. But it is correct to say that the feature is enabled regardless of whether a connection to Tor can be made. I propose to clarify that so that users can eliminate these in their logs (when `listen=1` and no Tor). And I think it's okay to clarify about the `listen` option, because on several occasions when I read this before I always assumed `listening` meant `server=1` which cost me a lot of time in troubleshooting. ``` 2016-10-24 06:19:22.551029 tor: Error connecting to Tor control socket 2016-10-24 06:19:22.551700 tor: Not connected to Tor control port 127.0.0.1:9051, trying to reconnect ``` ### What version of bitcoin-core are you using? 0.12.1 2016-10-24 07:49:46 +00:00			requires a Tor connection to work. It can be explicitly disabled with `-listenonion=0`
			and, if not disabled, configured using the `-torcontrol` and `-torpassword` settings.
			To show verbose debugging information, pass `-debug=tor`.
Clarify documentation for running a tor node Previous wording suggested that no additional setup was required for a tor hidden service to be created. 2016-06-14 22:49:09 +00:00
			`Connecting to Tor's control socket API requires one of two authentication methods to be`
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`configured. For cookie authentication the user running litecoind must have write access`
Clarify documentation for running a tor node Previous wording suggested that no additional setup was required for a tor hidden service to be created. 2016-06-14 22:49:09 +00:00			to the `CookieAuthFile` specified in Tor configuration. In some cases this is
			`preconfigured and the creation of a hidden service is automatic. If permission problems`
			are seen with `-debug=tor` they can be resolved by adding both the user running tor and
Litecoin: Branding 2016-11-01 12:28:11 +00:00			`the user running litecoind to the same group and setting permissions appropriately. On`
			`Debian-based systems the user running litecoind can be added to the debian-tor group,`
Clarify documentation for running a tor node Previous wording suggested that no additional setup was required for a tor hidden service to be created. 2016-06-14 22:49:09 +00:00			`which has the appropriate permissions. An alternative authentication method is the use`
			of the `-torpassword` flag and a `hash-password` which can be enabled and specified in
doc: Add privacy recommendation when running hidden service 2016-09-27 13:03:12 +00:00			`Tor configuration.`

			`4. Privacy recommendations`
			`---------------------------`

Litecoin: Branding 2016-11-01 12:28:11 +00:00			`- Do not add anything but litecoin ports to the hidden service created in section 2.`
doc: Add privacy recommendation when running hidden service 2016-09-27 13:03:12 +00:00			`If you run a web service too, create a new hidden service for that.`
			`Otherwise it is trivial to link them, which may reduce privacy. Hidden`
			`services created automatically (as in section 3) always have only one port`
			`open.`