Re: Scripted exclusion of nodes? [Was: How to remove some useless nodes]
Hello, You can get a list of all tornodes or only exit nodes on one of the following TorStatus sites: http://torstatus.all.de/ http://arachne.doesntexist.org/ https://arachne.doesntexist.org/ http://torstatus.blutmagie.de/ http://torstatus.cyberphunk.org/ http://tns.hermetix.org/ http://torstatus.kgprog.com/ https://torstatus.kgprog.com/ http://kradense.whsites.net/tns/ https://torstat.xenobite.eu/ Hope this helps! Ruediger Jackie schrieb: Sorry, I am a beginner, I still do not know how to get the whole exit list. I use "dig" according to this page, but it responses: ; <<>> DiG 9.4.1-P1 <<>> 209.137.169.81.6667.4.3.2.1.ip-port.exitlist.torproject.org ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51792 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;209.137.169.81.6667.4.3.2.1.ip-port.exitlist.torproject.org. IN A ;; AUTHORITY SECTION: exitlist.torproject.org. 44 IN SOA exitlist-ns.torproject.org. tordnsel.torproject.org. 0 1800 1800 1800 1800 I don't know if there is something wrong?
Re: Scripted exclusion of nodes? [Was: How to remove some useless nodes]
Sorry, I am a beginner, I still do not know how to get the whole exit list. I use "dig" according to this page, but it responses: ; <<>> DiG 9.4.1-P1 <<>> 209.137.169.81.6667.4.3.2.1.ip-port.exitlist.torproject.org ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51792 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;209.137.169.81.6667.4.3.2.1.ip-port.exitlist.torproject.org. IN A ;; AUTHORITY SECTION: exitlist.torproject.org. 44 IN SOA exitlist-ns.torproject.org. tordnsel.torproject.org. 0 1800 1800 1800 1800 I don't know if there is something wrong? - Original Message - From: "Marco Bonetti" <[EMAIL PROTECTED]> To: Sent: Tuesday, January 29, 2008 4:30 PM Subject: Re: Scripted exclusion of nodes? [Was: How to remove some useless nodes] On Tue, January 29, 2008 09:20, Pei Hanru wrote: I've long wondered if there is (will be) an option for excluding nodes solely at exit? http://exitlist.torproject.org/ You'll get the whole exit nodes list, then you can filter out unwanted nodes. ciao -- Marco Bonetti Slackintosh Linux Project Developer: http://workaround.ch/ Linux-live for powerpc: http://workaround.ch/pub/rsync/mb/linux-live/ My webstuff: http://sidbox.homelinux.org/ My GnuPG key id: 0x86A91047
Re: Scripted exclusion of nodes? [Was: How to remove some useless nodes]
On Tue, January 29, 2008 09:20, Pei Hanru wrote: > I've long wondered if there is (will be) an option for excluding nodes > solely at exit? http://exitlist.torproject.org/ You'll get the whole exit nodes list, then you can filter out unwanted nodes. ciao -- Marco Bonetti Slackintosh Linux Project Developer: http://workaround.ch/ Linux-live for powerpc: http://workaround.ch/pub/rsync/mb/linux-live/ My webstuff: http://sidbox.homelinux.org/ My GnuPG key id: 0x86A91047
Re: Scripted exclusion of nodes? [Was: How to remove some useless nodes]
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 2008-01-29 02:54 CST, F. Fox wrote: | Kraktus wrote: |> You can add |> ExcludeNodes NodeName1, NodeName2 |> to your torrc, where the NodeName1, etc. are the names of Chinese exit |> nodes that you are aware of. However, you much disallow each Chinese |> node separately; you can't exclude by country. | (snip) | | Sadly, China's government would likely spend the resources to constantly | "randomize" their nodes, one way or the other. | | Perhaps a script (set as a cron job?) could be used to find Chinese | nodes in the Tor directory on a regular basis, update the ExcludeNodes | section of the torrc, and do a "sudo killall -s SIGHUP tor" to load it. | I'll have to think it over... perhaps I could use it to get some | scripting practice? =;o) ExcludeNodes option will exclude nodes in the list from being used in the circuit -- not only at exit, but also at entry and middle. In my opinion, a node from China at entry or middle does no harm, and it has the potential benefit for a circuit of being in more jurisdictions. I've long wondered if there is (will be) an option for excluding nodes solely at exit? Hanru P.S. my practice for "removing useless nodes" is hardcoding a small number of fastest nodes in China into the ExcludeNodes option, and I've had almost no problem since. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (Cygwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHnuHYtHG285r2MGoRAm2yAJ92czdUc36Ey832XCNf7ocITTn/RACeP557 WyJRZSIzmUDjvBl+WutXYec= =cdbg -END PGP SIGNATURE-
Re: Scripted exclusion of nodes? [Was: How to remove some useless nodes]
F. Fox wrote on 29.01.2008 00:54: > Kraktus wrote: >> You can add >> ExcludeNodes NodeName1, NodeName2 >> to your torrc, where the NodeName1, etc. are the names of Chinese exit >> nodes that you are aware of. However, you much disallow each Chinese >> node separately; you can't exclude by country. > (snip) > > Sadly, China's government would likely spend the resources to constantly > "randomize" their nodes, one way or the other. I suppose they wouldn't as this don't make much sense from the economic POV. As topic-starter (sorry, I don't speak Chinese, and can't read his name) said, it makes no sense to use exit-nodes located in China to avoid the Great Firewall. Don't forget it shouldn't necessarily be caused by some purposeful Chinese government's actions to poison the Tor network with 'fake' nodes. Even if Tor-client uses some legitimate exit-node located in China, she will get censored content just because that's what exit-node is receiving from the ISP. > Perhaps a script (set as a cron job?) could be used to find Chinese > nodes in the Tor directory on a regular basis, update the ExcludeNodes > section of the torrc, and do a "sudo killall -s SIGHUP tor" to load it. > I'll have to think it over... perhaps I could use it to get some > scripting practice? =;o) > > (Do note that this is UNIX-centric; if you're using Vidalia [as the > original poster said], I don't think it would be that easy.) > -- SATtva | security & privacy consulting www.vladmiller.info | www.pgpru.com