GRPC Onion service connection - Githubissues

neogeno / shango-lightning-wallet

Shango Lightning Wallet

66 stars 4 forks source link

GRPC Onion service connection #74

Open seth586 opened 5 years ago

seth586 commented 5 years ago

Shango authenticates and works on same subnet (home LAN)

I have a tor onion service configured for a remote connection to my lnd GRPC interface: /usr/local/etc/tor/torrc config:

HiddenServiceDir /var/db/tor/lnd_rpc/
HiddenServiceVersion 2
HiddenServiceAuthorizeClient stealth sethnexus6
HiddenServicePort 10009 127.0.0.1:10009

lnd.conf

[Application Options]
nat=true
alias=xxx
listen=0.0.0.0:9735
restlisten=0.0.0.0:8082
tlsextraip=0.0.0.0
rpclisten=0.0.0.0:10009

Result of cat /var/db/tor/lnd_rpc/hostname reads out onion address and client cookie, which are entered into android app orbot.

Shango settings / connect LND node:

Home
http://123456789.onion:10009
(Server Macaroon Hex)

Expected result would be a connection. Is this supported? Am I doing it correct? This would be a lot more secure than opening port 10009, plus it would fix dynamic IP issues, NAT issues, dos attacks, etc.

Just to make sure I am configured correctly, using the same onion service mapped to a webserver port in the same localhost, it worked using orfox android onion browser.

neogeno commented 5 years ago

This will be addressed in the release for June 2019