Skip to main content

H/T to Omir the Storyteller for this idea, I think it's a great one. Now I need your help. The idea that Omir had was to roll a custom Linux Live CD that does one thing; creates a proxy that Iranians can use to connect and transmit photos and words outside the influence of their government. It got me thinking that in the world we live in, technology and access to the internet are going to play a HUGE part in future political events, no matter where they play out in the world. Having a Live CD out there that does this, and could be easily adapted for use in other countries (by altering the IP block below) could be a great tool for the freedom of information worldwide.

This diary is not really a political one, beyond the politics of wanting to let the Iranian people communicate freely. Basically, I'm just asking any Linux-minded Kossacks out there to lend me their expertise, if they like.

Almost everyone out there has a computer at home that is idle during the day. And I imagine many people on this site, like me, are wondering what they could do to help Iran right now, how they can contribute. If we could create what I'm describing, it would be as simple as popping a CD in ther computer, restarting it, and sending an email. The following is the text of my post to the Ubuntu forum, where I have thus far received no concrete instructions, just a vague direction to something called "remastersys." I know DKos ain't tech support, but I thought perhaps I'd find some people more willing to help.

Note that this also includes most of a post from: http://blog.austinheap.com/...

The reason for quoting it whole is that the server it resides on is getting hammered today, and I wanted to make sure it stays accessible. All credit goes to the author for the information in the sub-quote.

I'm interested in creating a custom Ubuntu distro that would include very little in the way of features; the only thing it would really be any good for is creating Proxies using Squid to assist bloggers in Iran in connecting to the internet around government IP restrictions.

The goal would be to create a live CD that a non-technical person could simply place into a computer with an internet connection, and it would produce a few lines of feedback including the Proxy IP address and some instructions on how (and how not) to distribute it. No graphical interface, no filesystems mounted (except the CD, obviously) really nothing but the bare minimum needed to get a proxy up and running, and give the user some limited (like, 2-3 paragraphs at most) instructions about what to do next.

The world is changing fast, and the last few political uprisings have been coordinated largely on the backs of social networking sites like Twitter and Facebook. I imagine that the future holds more of the same. In times of heavy-handed government control of Internet access, people trying to get the truth out, in words and photos, should be afforded every possible opportunity to do so. I'd like to establish this as a tool that could be deployed in time of need to those who need it.

Here's a brief description of how to install and start the service on an existing Linux installation:

If you’re using CentOS/Redhat, it’s pretty straight forward to setup a proxy and help give access to those in Iran who are being censored.

Login as root and run the following:

yum install squid

nano -w etcsquid/squid.conf

Inside the code editor search (Control-W) for the line "http_access deny all" and change it to "http_access allow all". This will make your proxy open and accessible to the world. If you would like to limit your proxy to Iranian IP blocks, you want to change "http_access deny all" to read "http_access allow TRUSTED" add a line (BEFORE the http_access line to setup an access control list [ACL]). This ACL line that defines TRUSTED should read:

acl TRUSTED src 62.60.128.0/17 62.193.0.0/19 62.220.96.0/19 77.36.128.0/17 77.77.64.0/18 77.104.64.0/18 77.237.64.0/19 77.237.160.0/19 77.245.224.0/20 78.38.0.0/15 78.109.192.0/20 78.110.112.0/20 78.111.0.0/20 78.154.32.0/19 78.157.32.0/19 78.158.160.0/19 79.127.0.0/17 79.132.192.0/19 79.170.144.0/21 79.175.128.0/18 80.66.176.0/20 80.69.240.0/20 80.71.112.0/20 80.75.0.0/20 80.191.0.0/16 80.242.0.0/20 80.253.128.0/20 80.253.144.0/20 81.12.0.0/17 81.28.32.0/20 81.28.48.0/20 81.31.160.0/20 81.31.176.0/20 81.90.144.0/20 81.91.128.0/20 81.91.144.0/20 82.99.192.0/18 82.115.0.0/19 83.147.192.0/18 84.47.192.0/18 84.241.0.0/18 85.9.64.0/18 85.15.0.0/18 85.133.128.0/17 85.185.0.0/16 85.198.0.0/18 86.109.32.0/19 87.107.0.0/16 87.247.160.0/19 87.248.128.0/19 89.144.128.0/18 89.165.0.0/17 89.221.80.0/20 89.235.64.0/18 91.98.0.0/15 91.184.64.0/19 91.186.192.0/19 91.206.122.0/23 91.208.165.0/24 91.209.242.0/24 91.212.16.0/24 91.212.19.0/24 91.212.252.0/24 92.42.48.0/21 92.50.0.0/18 92.61.176.0/20 92.62.176.0/20 92.242.192.0/19 93.110.0.0/16 93.190.24.0/21 94.74.128.0/18 94.101.128.0/20 94.101.176.0/20 94.101.240.0/20 94.139.160.0/19 94.182.0.0/15 94.184.0.0/17 94.232.168.0/21 94.241.128.0/18 95.38.0.0/16 95.80.128.0/18 95.81.64.0/18 95.82.0.0/18 95.82.64.0/18 95.130.56.0/21 95.130.240.0/21 188.34.0.0/16 188.93.64.0/21 188.121.96.0/19 188.121.128.0/19 188.136.128.0/17 188.158.0.0/15 193.189.122.0/23 194.225.0.0/16 195.146.32.0/19 212.16.64.0/19 212.33.192.0/19 212.50.224.0/19 212.80.0.0/19 212.95.128.0/19 212.120.192.0/19 213.176.0.0/19 213.176.32.0/19 213.176.64.0/18 213.195.0.0/18 213.207.192.0/18 213.217.32.0/19 213.233.160.0/19 217.11.16.0/20 217.24.144.0/20 217.25.48.0/20 217.64.144.0/20 217.66.192.0/20 217.66.208.0/20 217.146.208.0/20 217.172.96.0/19 217.174.16.0/20 217.218.0.0/15

Turn off logging by adding these two lines:

access_log none

cache_store_log none

Save the config file and as root issue the following command to start the Squid proxy server:

service squid start

Please don’t run this on a machine that you’re worried about or is used for production sites; and take basic security precautions, ie: moving SSH off the default port, using iptables, etc.

Obviously, the commands would be different, but I don't even know where to start in terms of stripping stuff out of an Ubuntu distro, adding Squid, anything.

I'm appealing to this community, so if this sounds like a worthy project, I'd love it if someone could help me out.

Can anyone tell me how to begin?

So how about it, Kossacks? Anyone out there up to the challenge? I imagine if we could get the thing done, re-pack the ISO of the live CD as a Torrent, and advertise it on Twitter it could be all over the world in a day. I can't imagine the file size would be much more than 50-100 megs, just enough for the Kernel and some very limited other stuff, plus whatever dependencies Squid has... Again, this is not my area of expertise, I know just enough to be dangerous, and I'm looking for help.

Who's coming with me?

Originally posted to Surly Cracker on Tue Jun 16, 2009 at 05:58 PM PDT.

EMAIL TO A FRIEND X
Your Email has been sent.
You must add at least one tag to this diary before publishing it.

Add keywords that describe this diary. Separate multiple keywords with commas.
Tagging tips - Search For Tags - Browse For Tags

?

More Tagging tips:

A tag is a way to search for this diary. If someone is searching for "Barack Obama," is this a diary they'd be trying to find?

Use a person's full name, without any title. Senator Obama may become President Obama, and Michelle Obama might run for office.

If your diary covers an election or elected official, use election tags, which are generally the state abbreviation followed by the office. CA-01 is the first district House seat. CA-Sen covers both senate races. NY-GOV covers the New York governor's race.

Tags do not compound: that is, "education reform" is a completely different tag from "education". A tag like "reform" alone is probably not meaningful.

Consider if one or more of these tags fits your diary: Civil Rights, Community, Congress, Culture, Economy, Education, Elections, Energy, Environment, Health Care, International, Labor, Law, Media, Meta, National Security, Science, Transportation, or White House. If your diary is specific to a state, consider adding the state (California, Texas, etc). Keep in mind, though, that there are many wonderful and important diaries that don't fit in any of these tags. Don't worry if yours doesn't.

You can add a private note to this diary when hotlisting it:
Are you sure you want to remove this diary from your hotlist?
Are you sure you want to remove your recommendation? You can only recommend a diary once, so you will not be able to re-recommend it afterwards.
Rescue this diary, and add a note:
Are you sure you want to remove this diary from Rescue?
Choose where to republish this diary. The diary will be added to the queue for that group. Publish it from the queue to make it appear.

You must be a member of a group to use this feature.

Add a quick update to your diary without changing the diary itself:
Are you sure you want to remove this diary?
(The diary will be removed from the site and returned to your drafts for further editing.)
(The diary will be removed.)
Are you sure you want to save these changes to the published diary?

Comment Preferences

Subscribe or Donate to support Daily Kos.

Click here for the mobile view of the site