Re: Automated threat messages force limitation of Exit Policy (Softlayer)
Hi, Out of curiosity, what exit policy are you now using? Perhaps we want to standardize on a policy that is effective at reducing these complaints. At the moment, I allow ports 20-22,53,79-81,110,143,443,706,873,993, 995,8008,8080,. Feel free to suggest others. If you've filed the counternotice, maybe suggest your ISP just blackhole future mails from the abuse sender? For each mail passed on to me, I also answered to 100TB.com so they could close their ticket and pass that information on to Softlayer. In every mail, I told them that I am sorry for so many automated complaints coming in, that they should not turn my server off because of these 'spam' mails, and that it would be great to SWIP my IP range. No replies. As far as I know, they never got their test case. Too bad. I am willing to step in, but I am not located in the US, which seems to be a requirement. Being able to tell your ISP that the EFF will defend you in this unlikely situation might also help your position with them. I am not so sure, as they didn't react to anything I passed on to them regarding my legal status. I am now trying again to get them to SWIP an IP range for me. -- Moritz Bartl http://www.torservers.net/ *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Automated threat messages force limitation of Exit Policy (Softlayer)
On Wed, Jun 23, 2010 at 5:49 AM, Moritz Bartl t...@wiredwings.com wrote: Hi, Out of curiosity, what exit policy are you now using? Perhaps we want to standardize on a policy that is effective at reducing these complaints. At the moment, I allow ports 20-22,53,79-81,110,143,443,706,873,993, 995,8008,8080,. Feel free to suggest others. I don't know if this will help or not, but in the states, my ISP provider calls me when they get a complaint. They tell me what the complaint was about, I get the ports the issues came thru and what they were. All except the last one were Torrents. The last one was allegedly email spamming. I started to explain, but realized that they would just turn off my service for not correcting the problem. In my case the EFF legal notice didn't work as they didn't care about it. Their main concern wee the complaints recieved from my ip addy. ( It could also just be their way of intimidation ). What I did on the Torrents was to turn off the ' misc services exit ' ( tho I would have liked to keep it running there and may try again and see how many if any complants come thru with the ports blocked ) and block the specific ports that were reported. On the email, I just blocked the specific port. That so far has taken care of those issues. ( fingers crossed ) I have yet to receive an actual abuse notice in the mail or via email. Like I said not sure if this will help in your case, but it has worked for me. Jon *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Automated threat messages force limitation of Exit Policy (Softlayer)
On Wed, Jun 23, 2010 at 9:03 AM, Jon torance...@gmail.com wrote: I don't know if this will help or not, but in the states, my ISP provider calls me when they get a complaint. They tell me what the complaint was about, I get the ports the issues came thru and what they were. All except the last one were Torrents. The last one was allegedly email spamming. [snip] (IANAL) FWIW, it appears that a provider which fails to let you respond in objection to a DMCA complain loses their §512.g.1 [1] indemnity. Providers forcing you to take down legal but complaint generating services is really against the intent and letter of the law. Sadly, playing hard-ball with the ISP isn't likely to do you any good, since they can just find another reason to terminate your service. ISTM that every exit operator should probably make the effort to SWIP their blocks prior to the generation of these nasty-grams in order to head off this problem. [1] http://www.law.cornell.edu/uscode/html/uscode17/usc_sec_17_0512000-.html *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Automated threat messages force limitation of Exit Policy (Softlayer)
If you can get SoftLayer to do SWIP on the IP address/range assigned to you, that will offload their complaint person and let you handle everything automatically. Agreed. Having the whois info for your TOR box come to you as an ORG-ABUSE will offload a lot of this from Softlayer. BayTSP, et.al. don't bother doing ASN lookups, they complain by IP whois. BayTSP/MediaSentry/etc have heard all the excuses, including when they tagged my printer as serving up movies; they don't care. True. We get tons of them for nonexistant IP ranges. They never answer any questions about it. The response is probably then catalogued for some future court case. As are all of the bogus notices and supporting documentation that nothing has ever occupied that IP address. Cheers, Michael Holstein Cleveland State University *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Automated threat messages force limitation of Exit Policy (Softlayer)
Hi, BayTSP/MediaSentry/etc have heard all the excuses, including when they tagged my printer as serving up movies; they don't care. I fully expect they don't even read the responses, just check that a response was received. The response is probably then catalogued for some future court case. I'm not sure it was the most clever thing to do, but I wanted to have this cleared up. After sending a mail to five different BayTSP addresses, they finally came back to me, asking for my DMCA Designated Agent form filing with the US Copyright Office. They also said my counter notification doesn't meet the legal requirements... -- Moritz Bartl http://www.torservers.net/ *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: Torlock - a simple script to prevent outgoing packets from bypassing Tor.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 This is a really useful script. I was working on user-based iptables filtering a while back while creating a hidden service setup guide. This seems like it could be modified fairly easily to torify any programs run by a user. In other words, allow unfettered access to tor and the web by other users and then for the torify user, only allow access to Tor. The torify program that comes with Tor is useful for individual programs but IIRC it does not kill DNS leaks. Ringo On 03/01/2010 10:04 AM, Irratar wrote: Hello. I have created a simple Bash script to prevent any data from bypassing Tor when Tor is running. I started it to use just for myself, but now I think it will be better to share it with other users of Tor. This script, named Torlock, does the following things when used to start Tor: - Creates a special user named torlock by default (if you run it first time or have removed that user after previous Tor session). - Uses Iptables to block network access for everyone except for torlock. - Setuids to torlock and starts Tor. Tor will be started in background mode, and its output redirected to a file. When used to stop Tor, it stops Tor, unlocks network access, and (optionally) removes torlock user. More information is in included text file. Even more can be obtained by reading the script. It is small, simple, and easy to make sure it's not backdoored. The script can be downloaded from Sourceforge: http://sourceforge.net/projects/torlock/files/ Inspite of its simplicity, Torlock saved me at least twice when I forgot to switch Torbutton on. With best regards, Irratar. *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/ -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkwi2JoACgkQETpif9i/srpMEQCggJGwpxRjxXH/iO1Atf2miq7i RLcAn29wseNgukC6do2CUkIJtEZu6CUF =k5d9 -END PGP SIGNATURE- *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/