👮 major
irc2p
#i2p-dev #i2pd-dev #ls2 #saltr
ilita
#4rum #acetonevideo #dev #retroshare #torrent #video2p
IRCaBot 2.1.0
GPLv3 © acetone, 2021-2022
#saltr
/2026/05/16
~dr|z3d
@RN
@T3s|4
@T3s|4_
@eyedeekay
@orignal
@postman
@zzz
%acetone
%mareki2p
%snex
+Atticfire
+FreefallHeavens
+Onn4l7h
+Onn4|7h
+fa
+marek22k
+onon_
+profetikla
+qend-irc2p
+r00tobo
+sexy
+uop23ip
Arch
Danny
Irc2PGuest21708
Irc2PGuest28384
Irc2PGuest4937
Irc2PGuest66257
Irc2PGuest75631
Irc2PGuest99986
Over1
RTP_
Watson
ahiru
anontor
cims
i2potus
interesting
justaperson
lokzz
luvme3
mahlay
makoto
n2_
nilbog
not_bob_afk2
pinotto
poriori
r00tobo[2]
rednode
sahil
uberius
user_ygg2_
zzz can't remember who reported the 1000 form key limit on snark? should be fixed
onon_ Guys, can I consult with you on one important issue?
dr|z3d Maybe nyaaaguy.
dr|z3d you don't need to ask, onon_, just spit it out :)
dr|z3d "don't ask to ask, just ask!"
onon_ I want to make automatic selection of trusted peers for destination.
onon_ Do you think it’s worth replacing a trusted node that has gone offline with a new random one? Or leave the list unchanged and hope to return online?
dr|z3d Depends how large your pool of trusted nodes is.
onon_ It is equal to the sum of incoming and outgoing tunnels. That is approximately 10.
onon_ If you select a new node, over a long period of time the situation will arise that all trusted routers in the list will have high uptime.
dr|z3d You could also set a window where you keep the trusted peer in your pool, ping him, and if there's no response after 10 minutes or however long you decide, mark him as down but keep pinging so he gets ignored until he's back online.
dr|z3d Whatever you do, if the peer's offline, you want to flag him as such so you don't attempt to build tunnels with him.
onon_ zzz, yr opinion?
onon_ Another question is whether to add your RI to this list. To avoid the exception method.
onon_ Need to re-login
zzz yeah the trickiest part of using trusted peers is when they reject or fail to respond
onon_ If you change inaccessible nodes to new ones, then the attacker can keep the node online 24/7 and with a high probability this router will be included in the list of trusted ones.
dr|z3d what's your definition of trusted? it sounds like you might be looking a profiling?
onon_ Trusted ones in this context are those that can be chosen for the first node in the chain.
onon_ For long-lived services, we cannot allow the entire pool of available transit nodes to be used
zzz I assume either manual or same-family or by IP; anything else is harder
onon_ Since this allows an attacker to de-anonymize a hidden service using active probing attacks.
zzz thats why we have slices
onon_ What parameters do you use to create these slices?
zzz inbound.randomKey=80itAoiZ4NDBzDOKK-ILot3Br3k-s1q4~g7-~s43e6M= outbound.randomKey=GJuf69oNm1NbfqpYvUIksKFMUe26x4s-wxXBvnEKDGk=
zzz but thats only for persistence across restarts, not required, we'll generate new keys if not specified
onon_ It looks like this is the simplest option.
zzz ProfileOrganizer.java: return ((int) SipHashInline.hash24(k0, k1, peer.getData())) & 0x03; <--- 4 slices
zzz or go full tor-style with a guard node
onon_ Yes, that's why I sit and think about how best to do it.
onon_ In any case, you need to give the user freedom of choice, but here's what to choose by default...
onon_ While we're on the subject, maybe you can answer me one more question. How can java-router determine the loss of connection on a route?
onon_ Only using tunnel tests?
John hello
John i am back after a long time
John and i made some discoveries on my i2p port problem
John for some reason after my internet router was changed upnp ceased to work with i2p
John and my open ports for i2p only let i2p work barely
onon_ Or he can determine this at the ratchet session level
zzz onon: ratchet layer acks, bundled delivery status messages
John however for some reason connecting to i2p eepsites seems to be unreliable
John it can work sometimes but not sometimes
John the only thing i've been able to connect to reliably is the i2p irc
John for some reason i can connect to eepsites fine on my phone but on my pc its taking too long
onon_ zzz, What is the request interval?
John any clue why this is happening?
John is it because of user error or something else
RN_ *** checks crystal ball... ***
John also both on phone and pc there seems to be too little participating peers
RN_ you need to unplug it and plug it in again
John the ethernet cable?
zzz onon_, I'll have to research and get back to you
John i am confused
John who is talking to whom?
RN_ I'm teasing John. you have not given near enough info for anyone to make any useful conclusions
onon_ John, just install i2pd
John what info do you want
onon_ And use it
John i dont trust i2pd onon
onon_ why
John worries about the i2pd devs placing too much trust in the russian government and potential russian government involvement
onon_ Ahh, ok
John anyways what info could i give you RN to help
John i have been trying to fix i2p these past days
John and trying to connect to i2p and failing
John until now
RN_ well, not just me. but, all the relevant info. OS, install method, my you think there is a problem, what you have tried, what you have looked up
RN_ you mentioned too few participating... how many is that?
John 1 at best most of the time
RN_ *why you think there is a problem*
John it rarely gets above 1
John ever since my router was upgraded and changed
John usually it stays at 0
RN_ you say sites load slow... that may be normal... they will rarely load as fast as outernet sites... there's a trade off for anonymity...
John and connecting to eepsites most of the time is non functional as i2p usually gives up or it takes too slow
John i know but i2p has given errors to me before about giving up building circuits
John and it is taking too long
John compared to my expected time
John which while was long is not as long as i am currently having to deal with
John the i2p irc is the only thing that i can connect reliably to it seems like
John i installed java i2p using the official jar file from the i2p website if i remember correctly
John my OS is artix linux with the init system openrc
John artix linux is arch linux but with other init systems instead of systemd
John however i find it weird that eepsites can load on my phone but not on my pc
John but that only happened after i connected to the i2p irc
John before that it was refusing to load any i2p websites
RN_ so your phone is connecting to the i2prouter on your pc?
John no
RN_ then they are separate things
John i was starting i2p on my phone
RN_ 1 to 0 is VERY low
RN_ you likely have a reachability problem
John yeah but what happened
John it is the same isp and the old router worked
John but these problems appeared after the router was changed for a better one
John then upnp ceased to work with i2p
RN_ which "router" do you mean was changed? your wifi-router?
John yes my wifi router
RN_ then it clearly is not a "better" one if it breaks functionality
T3s|4 John: which version of java does Artix provide? Run `java -version`
John i'm using openjdk 26 if i remember correctly but i can check
RN_ have you opened the secret port tcp/udp on the new wifi-router?
John yes
John thats why i can even be here
John upnp seems to not work with i2p on the new wifi router
RN_ have you confirmed it is open with a site like grc.com's shields up?
John and for some reason it only works if udp and tcp use the same port
John if you try seperating the tcp and udp port it breaks for some reason
RN_ (do not use your proxy settings in browser when testing reachability with shields up)
John and no i havent
John andd how do i test that
RN_ so don't put them on different ports
John i didnt
John this time
RN_ use a regular (not proxied) browser, go to grc.com, find speedtest, do the custom test so you can check your secret port. if it doesn't show open then it is blocked somewhere
John ok
T3s|4 John: 26 is fine, the latest on real Arch = OpenJDK 64-Bit Server VM (build 26.0.1, mixed mode, sharing)
dr|z3d if you're firewalled, you won't see many participating tunnels.
dr|z3d and if you have access to your wifi-router, which you do, port-forwarding is more robust than UPnP.
dr|z3d if your isp router can port forward to a mac address, great, otherwise you'll probably need to configure the host running i2p to have a static ip address.
John yes but i opened the ports to try to open that firewall
John also where is speedtest on grc
John i cant find it
John i am confused
John i see shields up but no speedtest
RN_ you mean you "opened the port IN that firewall" ?
John yes if i am correct
John though port forwarding
RN_ you want shields up... maybe I made a typo earlier
RN_ sorry about that
RN_ juggling a few things here
John also how would you port forward to a mac? the port forwarding section of my router only gives me ip addresses of the devices connected to the router and i dont know if theres an option to port forward to mac addresses
John i can bind specific ip addresses to specific devices but i havent tried doing that yet
RN_ make sure the computer has a static IP and forward by IP address then.
RN_ as T3s|4 said
RN_ you need to bind the ip address on that computer, so the port forwarding will work
John do i try binding a ip address to my pc and restarting the i2p router to see if that fixes it?
RN_ bind whatever ip it already has, so things don't start over from scratch...
dr|z3d bind the host to a specific ip address (static ip allocation) and then forward your external tcp/udp port to it.
John yeah i'll bind the same ip as its currently using in the port forward section
John let me shutdown the i2p router and try doing that and then turn the i2p router again
dr|z3d same port for tcp/udp and then you should be able to forward both udp/tcp traffic to the host on the designated port.
RN_ if you use the ip it already has no restart should be needed
RN_ restarting the i2prouter too frequently is not a good thing
dr|z3d welcome to #saltr, Bailux
Irc2PGuest91209 i binded my ip however eepsites still didnt work for some reason
Irc2PGuest91209 wait
John ok i am back[
John anyways
John i binded my ip yet eepsites didnt work
John and participating peers is still low
John and i was confused by grc's shields up results
John it didnt say if it was firewalled or not if i am correct
dr|z3d should indicate status in the sidebar.
John it said stealth
dr|z3d attracting peers to use you for transit tunnels will take time, maybe several hours or more.
dr|z3d then you've enabled hidden mode?
John no i didnt
John unless by mistake
John but i could be wrong
dr|z3d If you're in hidden mode, you'll see precisely 0 participating tunnels. check /confignet
dr|z3d also disable laptop mode if you enabled that accidentally.
John i checked and hidden mode is not enabled
John laptop mode isnt enabled either
dr|z3d oh, stealth, you mean on grc.
dr|z3d what does your sidebar indicate? firewalled or ok?
dr|z3d > welcome to #saltr, bailux
John it says the status is stealth
John i could have gone on the wrong test but i am not sure
dr|z3d can we forget about grc. focus on your router console.
John alright
John what do you want me to do there
dr|z3d <dr|z3d> what does your sidebar indicate? firewalled or ok?
John ipv4 ok ipv6 firewalled
dr|z3d ok, good, progress.
dr|z3d UPnP disabled?
John no its enabled
dr|z3d you may also want to either disable ipv6 on confignet, or ensure port-forwarding is handling ipv6 connections in your wifi-router.
John there is no option to select ipv6 in the port forward section if i remember correctly
dr|z3d disable ipv6 on /confignet, and assuming you're correctly port-forwarding, also disable UPnP by switching to 'Use SSU IP Address detection only"
John ok
dr|z3d then restart your router.
John oh and the ip and hostname seems to be a ipv6 ip address for udp
John should i replace that with the auto detected ipv4 ip address from tcp?
John or leave as is?
dr|z3d auto-detect.
dr|z3d that way when your isp cycles your public ip address you won't need to do anything.
John good news and bad new
John news*
John theres more participating tunnels now
John but the eepsites are still taking too long to loa
John load
John and now its stuck at testing the network
dr|z3d check known working eepsites. try zzz.i2p and notbob.i2p and i2pd.i2p
John zzz.i2p didnt load
John Error code: 503 Service Unavailable - Unable to build tunnels for the client
uop23ip how many known do you have John ?
John 1093
John now what
John oh and i2pd.i2p gave the same error as zzz.i2p
onon_ just install i2pd...
onon_ I have nothing to do with Putin or Russia in general, you can believe me.
John no because i dont trust it
John what about the gost encryption
John i worry about that being implemmentated
John as it could have intentional flaw
onon_ This is just one of the options for leaseset's signature.
onon_ Which is not used by default
John what about the i2pd devs trusting the russian government too much
John i worry about that too[
onon_ I don't trusting the russian government too much
John yes but what about the rest
onon_ orignal too
John how can i confirm if your correct
John i want to really be sure
onon_ I don’t know how to prove this to you either.
onon_ The only option for you is to study the i2pd source codes. To make sure there are no backdoors.
John that is possible
John problem is i dont know much C++
onon_ Perhaps some AI agents can help you with this.
John they can be very unreliable and hallucinate and possibly let backdoors slip though
onon_ But they are still often wrong.
RN_ dear scammer, please tell me how to verify that you are not a scanner, kthanks, signed gullible
John thats what i am worried about
John i am trying to be cautious
John anyway
John notbob.i2p didnt load either
RN_ take responsibility and check for yourself. you'll have to learn stuff, but put on your big boy pants and do it.
John same 503 error
John i have been trying to learn C and C++ but i suffer with procrasination
RN_ is your browser changing http into https?
John yes
RN_ that is a universal ailment. LOL
John but i made sure the https proxy is the same as the http one
RN_ do not the https
John yes it is RN
RN_ http on I2P with like one legit exception
RN_ so you need to tweak your browser to not 'fixup' into https
RN_ I forget the about:config lines for firefox... but you can find them on your favorite search engine
RN_ dr|z3d, 503 comes from the server, right?
John i made a https exception for notbob.i2p
John hopefully that fixes it
John hopefully notbob loads
RN_ no. the only https exception should be the I2P git instance
RN_ do not use https on I2P
John i meant like stop the browser from converting http to https
RN_ yes, find the config to stop it doing that... brave google dogpile... wherever you like to search
John i use librewolf
RN_ I'm sure there's a config since that is moz based
onon_ browser.fixup.fallback-to-https = false
onon_ dom.security.https_only_mode_pbm = false
John ok done hopefully that fixes it
onon_ browser.urlbar.autoFill Disable
John oh theres more
RN_ there's quite a few reccomended adjustments
RN_ but onon_ just gave you three that should help a lot
John which ones
RN_ are you asking me? what are you asking?
John well you answered it already
John now i am just waiting for notbob
John notbob.i2p
John error 503
John now what
onon_ i2pd...