You can now launch a hidden server (all traffic in/out through Tor) just as easily as a clearnet server using the web launcher. Just select Tor from the networking mode dropdown. Preferably, use the web launcher over our Tor Hidden Service.
LimitationsJust like in the original announcement, there are a ton of caveats with Hidden Hosting.
- It's more expensive. I have seen no service like this on the market. It is a premium service for those who want the best possible anonymity. This is designed that I could continue to run it even if SporeStack was shut down through the legal system.
- Using the web launcher or
--operating_system (some OS) --ssh_key_file ~/.ssh/id_rsa.pubon the SporeStack Python 3 CLI, your operating systems are much more limited.
- It's going to be less reliable.
- Given the nature of the hosting, while you can use top up on some hidden hosts, preferably create new ones to replace your own old ones. They may be destroyed for any number of instances. For instance, our hidden hosts use a one time encryption that if the power is pulled on the host or it kernel panics, data is gone for good.
- Sizes are very limited.
- OS installs may fail, especially because they're running over Tor which is less reliable.
- OS installs will probably take 20-30 minutes
- All of these things aside, if you're accessing this site through our .onion, it's using one of two servers that automatically replace and configure themselves every week. Does it require some poking? Yes. Does it work most of the time? Yes.
Size limitations (as of right now)
- 5GiB of disk.
- 2GiB of memory.
- 1 core (for security reasons).
OS limitations (last updated 2019-08-28)If you are not using iPXE and want the easiest way possible, your OS numbers are limited.
- Debian 10: debian-10
- Debian 9: debian-9
- CoreOS Stable (requires 2GiB of memory): coreos-stable
sporestackv2 serialconsole yourhostnameafter you've launched your server through the CLI. Or, copy/paste the JSON provided from the web launcher output to
~/.sporestackv2/(your hostname).jsonand then run the serialconsole command. Ideally, start it earlier rather than later. If it fails, you will likely have to run
cat youripxescript.ipxe | sporestackv2 ipxescript (your hostname); sporestackv2 stop (your hostname); sporestackv2 start (your hostname).
Full CLI launch example without directly using iPXE:
sporestackv2 launch Your_Internal_Hostname --api_endpoint http://spore64i5sofqlfz5gq2ju4msgzojjwifls7rok2cti624zyq3fcelad.onion --ipv4 tor --ipv6 tor --disk 5 --days 1 --currency XYZ --operating_system debian-9 --ssh_key_file ~/.ssh/id_rsa.pub
If you want to use Hidden Hosting with bigger servers, or a whole bunch of them, contact us first and we will see if we can tailor the product to you depending on your expected demand.