88 lines
3.2 KiB
Ruby
88 lines
3.2 KiB
Ruby
#
|
|
# Author:: Richard Klafter (<rpklafter@yahoo.com>)
|
|
# Cookbook Name:: tor
|
|
# Attributes:: default
|
|
#
|
|
|
|
|
|
#######################################
|
|
# General config section
|
|
#######################################
|
|
|
|
# The directory for keeping all the keys/etc
|
|
default['tor']['DataDirectory'] = "/var/lib/tor"
|
|
|
|
# The minimum log level to log. Possible values include debug, info, notice, warn, and err.
|
|
default['tor']['MinLogLevel'] = "notice"
|
|
|
|
# Where logs should be written. Valid values include a path to a file or "syslog"
|
|
default['tor']['LogDestination'] = "/var/log/tor/log"
|
|
|
|
# List of 'address:port' to open tor socks proxy on. Defaults to disabled
|
|
# Example: ['127.0.0.1:9050'] opens socks proxy on 9050 accessible to only the local machine
|
|
default['tor']['SocksPorts'] = ['9050']
|
|
|
|
#######################################
|
|
# Hidden Services config section
|
|
#######################################
|
|
# Desc: hidden services tor should expose
|
|
# Example:
|
|
# default['tor']['hiddenServices'] = {
|
|
# 'HIDDEN_SERVICE_NAME':{
|
|
# 'HiddenServiceDir' => '/var/lib/tor/some_service/', #default is /var/lib/tor/HIDDEN_SERVICE_NAME/
|
|
# 'HiddenServicePorts' => ['80 127.0.0.1:80'] #x y:z says to redirect requests on port x to the address y:z
|
|
# }
|
|
# }
|
|
default['tor']['HiddenServices'] = {}
|
|
|
|
#######################################
|
|
# Relay config section
|
|
#######################################
|
|
|
|
# If true tor will act as a relay
|
|
default['tor']['relay']['enabled'] = false
|
|
|
|
# What port to advertise for incoming Tor connections
|
|
default['tor']['relay']['ORPort'] = '9001'
|
|
|
|
# The IP address or full DNS name for incoming connections to your relay.
|
|
default['tor']['relay']['Address'] = nil
|
|
|
|
# If you have multiple network interfaces, you can specify one for outgoing traffic to use
|
|
default['tor']['relay']['OutboundBindAddress'] = nil
|
|
|
|
# A handle for your relay, so people don't have to refer to it by key
|
|
default['tor']['relay']['Nickname'] = "IDidntEditTheConfig"
|
|
|
|
# Limit how much relayed traffic you will allow in kilobytes (not bits)
|
|
default['tor']['relay']['RelayBandwidthRate'] = nil
|
|
|
|
# Limit how much relayed traffic you will allow for bursts in kilobytes (not bits)
|
|
default['tor']['relay']['RelayBandwidthBurst'] = nil
|
|
|
|
# ContactInfo you can be reached at
|
|
# Example: "0xFFFFFFFF Random Person nobody AT example dot com"
|
|
default['tor']['relay']['ContactInfo'] = nil
|
|
|
|
# Sets the exit node policy for tor defaults to no exit
|
|
# Exampe: ['accept *:6660-6667','reject *:*'] # allow irc ports but no more
|
|
default['tor']['relay']['ExitPolicy'] = ['reject *:*']
|
|
|
|
# Set to 1 to run a bridge relay
|
|
default['tor']['relay']['BridgeRelay'] = 0
|
|
|
|
# Set to 0 to run a private bridge relay
|
|
default['tor']['relay']['PublishServerDescriptor'] = 1
|
|
|
|
# If true tor relay will server as a directory mirror
|
|
default['tor']['relay']['Directory'] = false
|
|
|
|
# "address:port" from which to mirror directory information
|
|
default['tor']['relay']['DirPort'] = "9030"
|
|
|
|
# If true a blob of html will be returned on your DirPort explaining Tor.
|
|
# To send a custom HTML blob specify its full path, example "/etc/tor/tor-exit-notice.html"
|
|
default['tor']['relay']['DirPortFrontPage'] = nil
|
|
|
|
# If you run more than one tor node add keyids for other tor nodes
|
|
default['tor']['relay']['MyFamily'] = [] |