Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Brave Debian/Ubuntu repositories block Tor? #1451

Closed
Mikaela opened this issue Oct 8, 2018 · 2 comments
Closed

Brave Debian/Ubuntu repositories block Tor? #1451

Mikaela opened this issue Oct 8, 2018 · 2 comments
Labels
closed/works-for-me

Comments

@Mikaela
Copy link

Mikaela commented Oct 8, 2018

Description

When attempting to check for updates on Debian (Testing) by running apt update over Tor, the Brave repository very often fails with 403 Forbidden. I think this is, because it's blocking Tor exit nodes.

Steps to Reproduce

  1. Install tor and apt-transport-tor if they aren't already installed.
  2. Comment the last line of /etc/apt/sources.list.d/brave-browser-dev.list
  3. copy the file as anything else ending to .list and prepend tor+ to the address in order to use apt-transport-tor.

My /etc/apt/sources.list.d/brave-buster.list:

deb [arch=amd64] tor+https://s3-us-west-2.amazonaws.com/brave-apt buster main
deb [arch=amd64] tor+https://brave-browser-apt-dev.s3.brave.com/ buster main

Actual result:

Err:9 tor+https://brave-browser-apt-dev.s3.brave.com buster InRelease          
  403  Forbidden [IP: 127.0.0.1 9050]
...
E: Failed to fetch tor+https://brave-browser-apt-dev.s3.brave.com/dists/buster/InRelease  403  Forbidden [IP: 127.0.0.1 9050]                                  
E: The repository 'tor+https://brave-browser-apt-dev.s3.brave.com buster InRelease' is no longer signed.                                                       
N: Updating from such a repository can't be done securely, and is therefore disabled by default.                                                               
N: See apt-secure(8) manpage for repository creation and user configuration details.

Expected result:

No errors from apt, update checks and upgrades are successful.

Reproduces how often:

Always, I think I have seen this for a week or at least multiple days.

Brave version (chrome://version info)

0.56.2 / 0.24.0-1, but N/A

Reproducible on current release:

Yes to both or N/A

Website problems only:

N/A

Additional Information
@bbondy bbondy added this to the 1.x Backlog milestone Oct 16, 2018
@rebron rebron removed this from the 1.x Backlog milestone Feb 7, 2019
@fmarier
Copy link
Member

fmarier commented Mar 31, 2022

One thing that does work (I'm using it on my laptop) is to use the (newish) Onion service directly:

deb [signed-by=/usr/share/keyrings/brave-browser-archive-keyring.gpg arch=amd64] tor+https://brave-browser-apt-release.s3.brave4u7jddbv7cyviptqjc7jusxh72uik7zt6adtckl5f4nwy2v72qd.onion/ stable main

@fmarier
Copy link
Member

fmarier commented Mar 31, 2022

I'm going to close this old issue because the infrastructure has changed significantly since it was filed (it moved cloud providers for example), and there is a work-around with the official .onion now.

However, if you prefer not to use the .onion and you're still having problems when pulling updates on Tor, please reopen and we'll investigate.

@fmarier fmarier closed this as completed Mar 31, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
closed/works-for-me
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@fmarier @Mikaela @bbondy @rebron