18:08:00 #startmeeting 18:08:00 Meeting started Mon Oct 26 18:08:00 2015 UTC. The chair is anadahz. Information about MeetBot at http://wiki.debian.org/MeetBot. 18:08:00 Useful Commands: #action #agreed #help #info #idea #link #topic. 18:08:14 hello again :) 18:08:15 OK then I start a mini-meeting sbs 18:08:27 mrphs: heh 18:08:28 anadahz: lol 18:09:06 Well the reason that I haven't yet released lepidopter is AWS 18:09:37 i hear the api key is expired 18:09:38 I guess ooni collector is going to receive a vast amount of data if I sent a release announcement 18:10:34 BUT i can sent a link to people that would like to test it 18:10:55 mrphs: indeed and I 've no access there 18:11:20 mrphs: as hellais mentioned in the previous meeting :P 18:11:30 does hellais have it? or have we lost access? 18:11:45 uh i missed half of that one and didnt read the backlog sorry :D 18:12:00 mrphs: hellais has access but not funds on the AWS account 18:12:22 i see. just read it 18:13:29 if anyone can help me to freed up some process cycles I can fire the OONI cluster at the university and get rid of AWS and extra costs! 18:15:08 anadahz: which kind of help do you need? 18:15:14 atm working on ooni-sysadmin stuff to automate some of the tasks i.e create an ooni-backend 18:15:28 sbs: ^ on this for instance 18:16:01 i hope to have it ready tonight but needs some testing 18:16:22 Do either of you need a hand with anything I might be able to help with? 18:16:36 anadahz: ok, cool, we can talk about this offline (once we manage to establish a proper OTR session) 18:16:55 I'd also learn what anadahz mentioned. let's make sure we document it for the future refrence :) 18:17:01 hodgepodge: I can setup the server hardware but I 'll need a recipe for the software 18:17:12 s/also/also want to/ 18:17:13 hello, i'm just listening in again this week 18:17:37 but could probably fix the mixed-content warnings on the site if that is considered important 18:17:52 vtduncan: please do! 18:18:22 hodgepodge: We have like 5 servers at a rack waiting to be used 18:18:39 Do you mean that you need someone to write an Ansible playbook, or Puppet task to deploy the backend? 18:18:46 hodgepodge: yes 18:18:54 or even something custom 18:19:06 * mrphs files #8 #9 and #10 on github for lepidopter 18:19:25 hodgepodge: in order to have the ooni infrastructure up and running 18:19:40 Okay, I could give that a shot. I won't be home during the week until roughly midnight your time, though. What steps would be involved? 18:20:04 e.g. an instance of ooni-backend to serve as a collector 18:20:49 It looks like there is an Ansible playbook here, that would need to be adapted? https://github.com/TheTorProject/ooni-sysadmin 18:20:55 hodgepodge: the ooni-backend is ready 18:20:58 hodgepodge: yes 18:21:08 hodgepodge: based on this https://github.com/TheTorProject/ooni-pipeline 18:21:16 mrphs: thx! 18:22:15 we could use Core OS for the servers 18:22:18 Oh, gotcha. So you want to switch to a permanent Hadoop cluster at the university in lieu of using an ad-hoc AWS lambda cluster. 18:22:27 hodgepodge: yes 18:22:49 hodgepodge: so that we 'll stop needing to pay AWS 18:23:01 \o/ 18:23:10 the grant will finish at some point 18:23:22 That makes sense, I was going to recommend switching to a cheap VPS for certain services. Mine is only $7/month and gives 3GB RAM, 1TB/u/d 18:23:31 Gotcha. 18:23:43 and we could use the AWS grant for dev testing 18:24:11 hodgepodge: that's a very good price for a 1T VPS 18:24:16 hodgepodge: where do you get that?! :D 18:24:20 If you want to go for Docker/kubernetes + CoreOS it shouldn't be too difficult to port the existing Ansible playbooks. 18:24:28 It's from Chicago VPS. They use OpenVZ IIRC. 18:24:29 1 sec. 18:25:38 It might be worthwhile to abandon AWS S3 as well, in my opinion. The same workflow should be easy to achieve with a relational database, or a NoSQL database. 18:25:45 But, that's another thing. 18:26:43 hodgepodge: atm we need this ASAP so we could 1-3 servers temporarily until we manage to setup the real OONI cluster 18:27:24 right now these servers are literally in place, powered off and doing nothing 18:27:33 If you need another server, I can provide access to mine. 18:28:10 hodgepodge: thx a lot as I said the university servers would suffice 18:28:30 since there are bare-metal 18:29:51 It looks like the VPS was acquired as part of a promotion, so there isn't anything similar available for ChicagoVPS. This site aggregates promos though: http://lowendbox.com/ (good for dev. boxes) 18:31:19 Oh, awesome. ooni-b has a vagrant box. 18:32:04 anyone else would like to share anything before closing this meeting? 18:32:11 sbs? 18:32:14 anadahz: yes 18:32:31 I am making great progesses towards measurement-kit for android 18:32:57 I have nearly finished the JNI API and am already testing it with a test application that was not published on github yet 18:33:00 EOF 18:33:10 sbs: excellent! 18:33:29 sbs: thx for the report as well 18:33:48 ^ wrt mini-hackathon 18:34:09 andresazp: I can sent you a link to lepidopter 18:34:21 sbs: how crazy would it be to have something similar on ios? 18:34:32 im asking since ios does stuff in a more isolated manner 18:34:37 mrphs: actually there is already a ios app 18:34:50 https://github.com/measurement-kit/measurement-kit-app-ios 18:34:51 sbs: hook me up!! 18:35:02 dope 18:35:21 anadahz: do you mean a buit image? 18:35:22 andresazp: it would be nice if we could fix that so that we can do cross-compile build. IIRC this a qemu issue 18:35:31 andresazp: yes 18:37:09 andresazp: look at the backlog some lines above why i haven't released publicly the image yet 18:37:19 mrphs: what is missing in both ios and android is the capability to run tor, however I am also working on that using as blueprint the way in which cpaproxy runs tor 18:37:32 mrphs: (i.e., in a thread) 18:37:51 sbs: i believe ios9 lets you run tor and proxy it. some folks are working on it. 18:38:16 sbs: there's also a tor library for ios, where you can run tor within the app 18:38:53 ios9 adds this feature where you get access to network layer and can let other apps use tor 18:40:08 mrphs: I've heard about this cool new capability on iOS... in theory the app should/will be able to use whathever tor is available, but I'd like to have it inside as a fallback for when you have the application and don't want to also install tor as a proxy 18:40:35 yes 18:40:36 perfect 18:40:45 12,15anadahz: Carlos, has been really the guy working on that front las few months, he was avay for a few deys but he’s back later today. 18:40:46 12,15I would very much take you up up on the image offer, even if we get it to build soonish. (hardware-wise we are pretty much set) 18:40:47 12,15We should have a couple of guys joining out local team this week. 18:41:24 ouch what happened to your terminal x_X 18:42:08 mrphs: can you point me at the tor library for ios? 18:42:31 anadahz: is it safe to say we'll have a release announcement for the raspi image within next month? 18:42:51 sbs: sure. a second. 18:43:05 mrphs: also, do you know whether the proxing of tor on ios is for all connections or selective? 18:43:08 mrphs: thanks 18:43:21 mrphs: it depends when OONI infra is ready 18:43:45 mrphs: but if we have our own collectors and backends we don't need the official release 18:44:46 re mixed-content: had a quick check and it needs somebody with deploy access 18:45:15 there are some things I can clean up in a pull request but ultimately it will need to be deployed either way 18:45:51 sbs: https://github.com/ChatSecure/OnionKit and https://github.com/ursachec/CPAProxy 18:45:57 in the future it might be easier to point DNS for ooni.torproject.org to github pages 18:46:06 vtduncan: I have access to deploy but only for the torproject website 18:46:11 if we can find the right person to make that change 18:46:27 vtduncan: in fact, i think it's easier the other way around 18:46:36 vtduncan: to point everything to ooni.tpo 18:47:34 ok, as long as there is somebody to ping to push updates then that works too 18:49:00 mrphs: thanks for the pointers! (didn't knew about the first, was aware of the second) 18:49:24 sbs: but i believe both need some serious peer-reviews 18:49:42 sbs: yeah, the first one i think is what chatsecure is already using for their ios app 18:50:07 mrphs: ack! since I need something that works cross platform I was thinking about reading both of them and doing something similar but way simpler 18:51:43 vtduncan: do we need gh access for that? 18:52:06 sbs: pls let us know of your findings and interesting experiments 18:52:24 sbs: where we == the tor community 18:52:27 mrphs: ah, yes! now that I've seen the repos I recall I also briefly skimmed through it... IIRC it is similar in concept to cpaproxy; in any case I will review both and let you know 18:52:31 mrphs: sure! 18:52:49 thank you! 18:53:10 anadahz: don't think so, just someone to clone the repo, run hugo and copy contents to the web server 18:54:16 anadahz: publish.sh looks like it is only used for deploying to gh pages 18:54:41 so I'm not sure if there is another script for deploying to ooni.tpo 18:54:56 maybe just rsync 18:56:54 vtduncan: this is the script https://github.com/TheTorProject/ooni-sysadmin/blob/master/update-website.sh 18:57:33 aha 18:59:06 anadahz: cool! 18:59:32 anadahz: do you know what is this static-master-update-component thing? 18:59:40 juga: hi! 19:00:26 there are a few changes I can make so that accidental changes in baseURL no longer breaks things 19:00:39 vtduncan: awesome! 19:00:55 so I will prepare a PR in the near future 19:01:03 sbs: I assume this update ooni.torproject.org in all mirrors 19:01:26 hopefully that will help no matter where it gets deployed to 19:05:00 * sbs is going to leave soon 19:05:44 shall we call it the end of the meeting? 19:07:47 mrphs: yes 19:08:01 #endmeeting