Re: [tor-relays] Avoiding sinkholes
Hi Ramo, Thanks for running an exit! You will run into similar trouble again and again, unfortunately. My suggestion: Get a second IP, or even better, don't share the same VPS. -- Moritz Bartl https://www.torservers.net/ ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Avoiding sinkholes
On Fri, Mar 28, 2014 at 08:36:06AM +0300, r...@goodvikings.com wrote: It's on that list since at some point a botnet talking through tor to its CC server used my exit node to do so Actually, it could easily have been a computer security researcher who used Tor to access that address, not realizing the collateral damage he was triggering. A growing number of malware researchers and antivirus companies use Tor to reach various parts of the Internet, because otherwise the bad guys recognize their IP address and special-case them. As Moritz says, this is alas not an easy game to win. Not long ago I learned that the .mil domain refuses to hear any packets from my computer, which runs one of the directory authorities (and it's not even an exit relay!). That meant my postfix became convinced that all mails to or from .mil addresses were spam, since their name doesn't resolve. Bad news for the Navy researchers who are signed up to, say, the petsymposium.org mailing lists. The real fun is going to start when these blacklists try to bully us by blacklisting the whole /24 nearby, in hopes that our neighbors will lean on us to cut it out. I still enjoy rereading http://paulgraham.com/spamhausblacklist.html as linked from https://www.torproject.org/docs/faq-abuse#TypicalAbuses --Roger ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Avoiding sinkholes
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, Mar 28, 2014 at 06:48:21AM +0100, Moritz Bartl wrote: Hi Ramo, Thanks for running an exit! Thanks. I've been running one for ages, but the appreciation is always nice. You will run into similar trouble again and again, unfortunately. This is the first time I've known this to happen, I've had this configuration for ... probably 2 years? My suggestion: Get a second IP, or even better, don't share the same VPS. Not sure why a second IP never occurred to me. Good idea. Cheers Damian -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (GNU/Linux) iQEcBAEBAgAGBQJTNRudAAoJEAXQWoW8lug/hk0H/i+/azfb/CYn31v+UXoYc9NF zMqQUFTeJSiLrXU43QLPb/RLG5XyBWRZNZcoBwdU0x6m4MmoNHg4QpA+HTRWzzUo aQj+ieUcQ1EWm2NZ7Q/ovuYMYyYP38/Y3aUID5sRr0vEYupKNwsztf3VDFjyJziK jsP6BVug0jeBuac5q42t6dk8w4CUUNQRlamvhRFQBMWJJPaMd+MPKNwYcf8eNELO sH96/iTx/kvNBEgueHQyttXa2zcEg3ErhabqdMCSOHIUp7y09T+97Plx6qy9iNL/ eTXf75ZT/57ELzmhrWLXTAdLuGy52yNwwDParI2+w+Q1v61freEobFy5wCA3jZs= =Jjoz -END PGP SIGNATURE- ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
