From 72aeb7f222542d76d329506ef8359634a97848ec Mon Sep 17 00:00:00 2001 From: Shannon Appelcline Date: Wed, 22 Jul 2020 14:14:26 -1000 Subject: [PATCH] first draft --- 14_2_Changing_Your_Bitcoin_Hidden_Services.md | 63 ++++++++++++++----- 1 file changed, 47 insertions(+), 16 deletions(-) diff --git a/14_2_Changing_Your_Bitcoin_Hidden_Services.md b/14_2_Changing_Your_Bitcoin_Hidden_Services.md index c9c9d4f..aaf78e6 100644 --- a/14_2_Changing_Your_Bitcoin_Hidden_Services.md +++ b/14_2_Changing_Your_Bitcoin_Hidden_Services.md @@ -1,30 +1,61 @@ -# Chapter 12.2: Changing Your Bitcoin Hidden Services +# Chapter 14.2: Changing Your Bitcoin Hidden Services -In this chapter we will show you how to create or change your local Bitcoin Hidden Service. To archieve this we need to add current user to tor or debian-tor group to guarantee that Bitcoin daemon can sets up an automatic hidden service on the first startup if it's correclty configured. Bitcoind will create a file called onion_private_key in the data directory. Further check if file control.authcookie exists like this: +> :information_source: **NOTE:** This is a draft in progress, so that I can get some feedback from early reviewers. It is not yet ready for learning. +You've got a working Tor service, but if you want you can make changes to it. + +## Reset Your `bitcoind` Onion Address + +If you ever want to reset your onion address for `bitcoind`, just remove the `onion_private_key` in your data directory, such as `~/.bitcoin/testnet`: ``` -~$ ll /run/tor/control.authcookie --rw-r----- 1 debian-tor debian-tor 32 jun 26 09:44 /run/tor/control.authcookie +$ rm onion_private_key +``` +Wehn you restart, a new onion address will be generated: +``` +2020-07-22T23:52:27Z tor: Got service ID pyrtqyiqbwb3rhe7, advertising service pyrtqyiqbwb3rhe7.onion:18333 +2020-07-22T23:52:27Z tor: Cached service private key to /home/standup/.bitcoin/testnet3/onion_private_key ``` -To avoid see a message like this in debug log file you need to add your current user to debian-tor group like this: - -debug.log +## Reset Your RPC Onion Address +If you want to reset your onion address for RPC access, you similarly delete the `HiddenServiceDirectory` and restart Tor: ``` -2020-05-15T16:49:20Z tor: Authentication cookie /run/tor/control.authcookie could not be opened (check permissions) +$ sudo rm -f /var/lib/tor/standup/ +$ sudo /etc/init.d/tor restart ``` -``` -~$ sudo usermod -a -G debian-tor [CHANGE_MY_USER] -``` +> :warning: **WARNING:** Reseting your RPC onion address will disconnect any mobile wallets or other services that you've connected using the Quicklink API. Do this with extreme caution. -If you're running a older version Tor like 0.2.7 add this lines to /etc/tor/torrc file: +## Forcing `bitcoind` to Use Tor +Finally, you can force `bitcoind` to use onion by adding the following to your `bitcoin.conf`: ``` -HiddenServiceDir /var/lib/tor/bitcoin-service/ -HiddenServicePort 8333 127.0.0.1:8333 -HiddenServicePort 18333 127.0.0.1:18333 +proxy=127.0.0.1:9050 +listen=1 +bind=127.0.0.1 +onlynet=onion ``` -If you're running Tor version 3 bitcoind will configurate hidden services automatically to listen on. If you want to change your onion id delete file onion_private_key located in bitcoin data dir. +You will then need to add onion-based seed nodes or other nodes to your setup, once more by editing the `bitcoin.conf`: +``` +seednode=address.onion +seednode=address.onion +seednode=address.onion +seednode=address.onion +addnode=address.onion +addnode=address.onion +addnode=address.onion +addnode=address.onion +``` +Afterward, restart `tor` and `bitcoind` +You should now be communicating exlusively on Tor. But, unless you are in a hostile state, this level of anonymity is probably not required. It also is not particularly recommended: you might greatly decrease your number of potential peers, inviting problems of censorship or even correlation. And, this setup may give you a false sense of anonymity that really doesn't exist on the Bitcoin network. + +> :warning: **WARNING:** This setup is untested! Use at your own risk! + +## Summary: Changing Your Bitcoin Hidden Services + +You probably won't need to fool with your Onion services once you've investigated them but in case you do, here's how to reset a Tor address that has become compromised or to move over to exclusive-Tor use for your `bitcoind`. + +## What's Next? + +Continue "Understanding Tor" with [14.3: Adding SSH Hidden Services](14_3_Adding_SSH_Hidden_Services.md).