node.js - Why do I get "SOCKS connection failed. Connection not allowed by ruleset" for some .onion sites? -

-

i'm experimenting node , socks5-https-client. reason, tor hidden service (.onion) sites return connection error.

for example, connecting duckduckgo (3g2upl4pq6kufc4m.onion) works , returns html.

however, connecting pirate bay (uj3wazyk5u4hnvtk.onion) or torch (xmh57jrzrnw6insl.onion) returns...

error: socks connection failed. connection not allowed ruleset.

what error mean? how can avoid it?

here's code reproduce it:

var shttps = require('socks5-https-client');  shttps.get({     hostname: '3g2upl4pq6kufc4m.onion',     path: '',     sockshost: '127.0.0.1',     socksport: 9150,     rejectunauthorized: false }, function(res) {     res.setencoding('utf8');     res.on('readable', function() {         console.log(res.read()); // log response console.     }); });

the error seems caused 0x02 value in field 2 of server response.

in summary

the servers you're failing access don't support https. in other words, port 443 closed. tor's error message unhelpful.

if security needs permit it, can fix falling socks5-http-client.

steps took conclude that

your code got me same results on 64-bit linux tor 0.2.5.10, socks5-https-client 1.0.1, node 0.12.0.

i grepped socks5-https-client's codebase error , got hit in dependency socks5-client on line. translates underlying socks connection's error code human-readable message. wikipedia's explanation of socks5 error codes lines that, unhelpfully vague

i found related tor bug report 5 years ago complaining similar error, same type of socks connection. turns out error means server rejected connection.

just confirm, tcpinged tpb on port 443 (https) through tor. doesn't reply tcp syn, , fails same consistently confusing error:

$ torify tcping uj3wazyk5u4hnvtk.onion 443 [mar 22 22:40:59] error torsocks[18560]: connection not allowed ruleset (in socks5_recv_connect_reply() @ socks5.c:520) error: uj3wazyk5u4hnvtk.onion port 443: software caused connection abort

their port 80 (http) replies though:

$ torify tcping uj3wazyk5u4hnvtk.onion 80 uj3wazyk5u4hnvtk.onion port 80 open.

consequently, code works me if use socks5-http-client instead of socks5-https-client.


Comments

Post a Comment

Popular posts from this blog

java - Could not locate OpenAL library -

-
i writing game using slick2d library, uses lwjgl. lwjgl version 2.9.3. using netbeans 8. i tried adding sounds game, example music track on main menu. problem is, exception when run game, despite game still compiling , running except sound of course: sat mar 21 01:23:57 edt 2015 error:could not locate openal library. org.lwjgl.lwjglexception: not locate openal library. @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:102) @ org.lwjgl.openal.al.create(al.java:206) @ org.newdawn.slick.openal.soundstore$1.run(soundstore.java:295) @ java.security.accesscontroller.doprivileged(native method) @ org.newdawn.slick.openal.soundstore.init(soundstore.java:292) @ org.newdawn.slick.music.<init>(music.java:156) @ org.newdawn.slick.music.<init>(music.java:75) @ view.mainmenu.init(mainmenu.java:58) i didn't include rest of error states error happens in game code. the...
Read more

c++ - Delete matches in OpenCV (Keypoints and descriptors) -

-
i want check scene image against 2 train images. that, detect features , compute descriptors of both training images. before detecting, computing , matching scene image, delete matches of train1 , train2. because these matches won't facilitate matching of scene image train1 , train2. so, match train1 train2 , vector of matches trainidx , queryidx. how can delete these matches in keypoints-vector , descriptor matrix of train1 , train2? best regards, dwi i have done below: std::vector<cv::keypoint> keypoints[2]; cv::mat descriptor[2]; std::vector< cv::dmatch > matches; /* write code generate keypoints, descriptors , matches here... keypoint[0] -> train image 1 keypoints keypoint[1] -> train image 2 keypoints descriptor[0] -> train image 1 descriptors descriptor[1] -> train image 2 descriptors matches -> matched between train image 1 , 2 */ // logic keep unmatched keypoints , corresponding descriptor...
Read more

sorting - opencl Bitonic sort with 64 bits keys -

-
i used nvidia sdk bitonic sort , works great me. 32 bits (uint) need ulong keys. have typically 2^14 keys @ time , power of 2. searched on not find kernel designed ulong. i tried modified nvidia sdk bitonic sort using ulong keys not work. kernel not crash after de call clenqueuendrangekernel got error : cl_invalid_command_queue can tell me how modify bitonic sort or radixsort, or can sort ulong keys? i running nvidia quadro 4000 opencl 1.1 cuda 6.5.20 full_profile used original nvidia sdk bitonicsort.cl i used"ulong" keys , value input , ouput instead of "uint" thanks helping i made work-around suit need. used 30 bits of key , 18 high bits of value sorting. changed comparators (2 lines): '#define mask 0xffffc000 // suit need from this: if( (*keya > *keyb) == dir ) this: if(((*keya > *keyb)||((*keya == *keyb)&&((*vala & mask)> (*valb & mask)))) == dir ) it works fine. but, still, it's work-a...
Read more