Hello I would like to understand how I can change the onion address of my umbrel server. This is of interest because it is potentially compromised (unlikely in practice, but I would like to be safe). I see indirect mention of this here:
“If an address is compromised you can rotate it manually by SSHing in and removing the private key for that hidden service and restarting your Umbrel”
However I have not seen detailed description of the steps there or elsewhere. Could someone please elaborate?
That private key is in ~/umbrel/tor/data/web folder if you SSH into your Umbrel node – so the file you want to delete is the hs_ed25519_secret_key.
To make 100% sure that it’s the correct onion address you can check by cat hostname within that folder, and compare it with the onion address given under the Umbrel dashboard > Settings > ‘Tor / Remote access’.
If no new hs_ed25519_secret_key was created, perhaps Tor is looking at the other files that’s already there? Tor is supposed to create these files automatically afaik.
Since you already started deleting things, perhaps also delete the rest of the files in that web folder to see if Tor finally creates them again.
Perhaps the web ui picks up the address from that hostname file in there which you might not have deleted. Hopefully if Tor re-creates all files, the new one will get picked up
If I share my Electrs Tor address, do I lose any privacy or sacrifice any security?
For example: I want to let some friends and family connect their Sparrow wallet to my node so I send them my Tor address. Am I putting anything at risk by sharing that with them? or publicly? Can I let strangers connect to my node via Tor?
Can someone eavesdrop on me and somehow compromise my privacy or see my addresses, wallet balance, transactions, etc?
I don’t have any money on the node itself but I do have my Sparrow wallet connected to it via local.