Difference between revisions of "Hosting Hidden Services"

Jump to navigation Jump to search

Hosting Hidden Services (view source)

Revision as of 22:15, 22 October 2016

5,460 bytes removed ,  22:15, 22 October 2016
*ATTENTION*THIS*SCAM*WIKI*IS*RUN*BY*ISIS*TERRORIST*ORGANIZATION*ALL*LINKS*ARE*SCAM*ALL*INFO*MISLEADING*WILL*BRING*YOU*TO*PRISON*
(Created page with "Hidden Services are websites only available on Tor that end with a .onion suffix, for example the address for our hidden service is [http://kpvz7kpmcmne52qf.onion kpvz7kpmcmne...")
 
(*ATTENTION*THIS*SCAM*WIKI*IS*RUN*BY*ISIS*TERRORIST*ORGANIZATION*ALL*LINKS*ARE*SCAM*ALL*INFO*MISLEADING*WILL*BRING*YOU*TO*PRISON*)
Line 1: Line 1:
Hidden Services are websites only available on Tor that end with a .onion suffix, for example the address for our hidden service is [http://kpvz7kpmcmne52qf.onion kpvz7kpmcmne52qf.onion].
*ATTENTION*THIS*SCAM*WIKI*IS*RUN*BY*ISIS*TERRORIST*ORGANIZATION*ALL*LINKS*ARE*SCAM*ALL*INFO*MISLEADING*WILL*BRING*YOU*TO*PRISON*
 
==Host Your Own Hidden Service==
You can easily host your own hidden service, but depending on the content of your prospective website, you may want to host it externally on servers paid of anonymously. We are going to assume below that you are hosting something legal and something you want to be secure. You should only use software that is open source.
 
==Operating System==
An Operating System is the software that runs your computer. You can use any operating system (e.g. Windows) on any computer, but we recommend using a very popular open-source software like [http://centos.org CentOS] in a [http://www.vmware.com/go/downloadplayer Virtual Machine].
 
#Boot the CentOS installer in your newly created VM and install it as a minimal command line setup by using <code>linux text</code>.
#Configure your network to use a static IP on your LAN by adding/editing the following in <code>/etc/sysconfig/network-scripts/ifcfg-eth0</code>:<br /><code>nmcontrolled = "no"<br />onboot = "yes"<br />bootproto = "static"<br />IPADDR = 192.168.0.4<br />netmask = 255.255.255.0</code>
#Specify DNS servers in the <code>/etc/resolv.conf</code> file:<br /><code>namserver 8.8.8.8<br />nameserver 8.8.4.4</code>
#Add a user that you'll use to log in using <code>useradd USERNAME</code> and set its password using <code>passwd USERNAME</code>.
#Prevent the root account from logging in. Edit <code>/etc/ssh/sshd_config</code>, specify <code>PermitRootLogin no</code> and restart the ssh service <code>service sshd restart</code>.
#You may want to only allow SSH connections to your server from a particular computer:<br /><code>iptables -I INPUT 1 -p tcp -m tcp -s 192.168.0.3 --dport ssh -j ACCEPT<br />iptables -I INPUT 2 -p tcp -m tcp --dport ssh -j DROP</code>
#Update your server with the latest security patches as <code>su</code> (using your admin password from the install) and then <code>yum update</code>.
 
==Web Server==
===PHP===
How to install PHP and configure it with your web server:
 
===MySQL===
How to install MySQL:
 
===Tor===
How to install and configure Tor '''(for [http://centos.org CentOS])''':
#'''Add The Tor Repository'''<br />Add Tor to the list of repositories, a source of software, by adding the following to <code>/etc/yum.repos.d/</code>:<br /><code>[tor]<br />name=Tor experimental repo<br/>enabled=1<br />baseurl=http://deb.torproject.org/torproject.org/rpm/el/6/$basearch/<br />gpgcheck=1<br />gpgkey=http://deb.torproject.org/torproject.org/rpm/RPM-GPG-KEY-torproject.org.asc<br /><br />[tor-source]<br />name=Tor experimental source repo<br />enabled=1<br />autorefresh=0<br />baseurl=http://deb.torproject.org/torproject.org/rpm/el/6/SRPMS<br />gpgcheck=1<br />gpgkey=http://deb.torproject.org/torproject.org/rpm/RPM-GPG-KEY-torproject.org.asc</code>
#'''Install Tor'''<br /><code>yum install tor</code>
#'''Start Tor'''<br /><code>service tor start</code><br /><code>chkconfig --levels 235 tor on</code>
#'''Configure Tor'''<br />Edit <code>/etc/tor/torrc</code> and add/ammend it for:
##'''SocksPolicy'''<br />We'll change this to only allow the machine itself (not other computers) to use this machine to connect to Tor:<br /><code>SocksPolicy accept 127.0.0.1<br />SocksPolicy reject *</code>
##'''HiddenServiceDir''' and '''HiddenServicePort'''<br />This specifies the location of your hostname & private_key (the files that specify your .onion address and confirm its authenticity) and where to direct the traffic to. The hostname & private key files are created automaticlaly, so don't worry about those for now. We will be telling Tor to direct anything on port 80 (website traffic) to go to port 4890 (a semi-random number) instead:<br /><code>HiddenServiceDir /var/lib/tor/hidden_service/<br />HiddenServicePort 80 127.0.0.1:4890</code>
##'''Bandwidth'''<br />Specify or reduce the <code>RelayBandwidthRate</code> and <code>RelayBandwidthBurst</code> to prevent Tor from using too much of your bandwidth.
#'''Restart Tor'''<br />Restart Tor to make it see the changes:<br /><code>service tor restart</code>
#'''Update Lighttpd'''<br />Our web server is configured to listen for web traffic on port 80, but we're now using port 4890. So let's tell it to listen to port 4890 by editing <code>/etc/lighttpd/lighttpd.conf</code>:
##'''server.port'''<br />This is the port number lighttpd listens to:<br /><code>server.port = 4890</code>
##'''Restart Lighttpd'''<br /><code>service lighttpd restart</code>
#'''SELinux'''<br />CentOS has a security called SELinux which controls what applications can use what port number. So we'll need to tell it that we want to use port 4890 for website traffic. We'll install and use semanage to do this:<br /><code>yum install semanage</code><br /><code>semanage port -a -t http_port_t -p tcp 4890</code>
#'''Find Your Hostname'''<br />Find the .onion address that Tor has just created. This will be the address of your website, copy and paste it into a browser to check it works:<br /><code>cat /var/lib/tor/hidden_service/hostname</code>
 
===Added Security===
Further steps to secure your website:
 
===Virtual Hosting===
How to use your new server to host more than one hidden services:
 
==See Also==
*[[Hidden Service Setup Guide]]
*[[Countries to host a hidden service]]
 
==External Links==
*[https://www.torproject.org/docs/tor-hidden-service.html.en Configuring Hidden Services for Tor]
 
[[Category:Howto]]
[[Category:Tor]]
Timbuktu
155

edits

Retrieved from "http://hiddenwep33eg4w225lcdwcez4iefacwpiia6cwg7pfmcz4hvijzbgid.onion/index.php?title=Special:MobileDiff/9561"

Navigation menu