[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Whitelist

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Whitelist
From: Matthew Finkel <matthew.finkel@xxxxxxxxx>
Date: Wed, 24 Dec 2014 08:42:38 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 24 Dec 2014 03:43:01 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:date:to:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=MGMFHEADoBH4T1P1ytbNtQHWIVywxTeovhO1uZAyv58=; b=DZQw+/GaGF4NsHC0CpagNbPf+A0jgJAg5YBDrDt4Vvst7by4wTXUm19pRcr47O8alI HWhQyBBRB+fGxi9gLYDVYrClwxN04z/0tLJW/SMBSDj2nBtkA/I3sQgfvjKxJG8zzDtN P2cHXt76matbHzfwhVjf3Rjyxb75bDWdY9HYlC6724VsCuWqg7vEmjF/UlwM8c2aN4pu lQFEbQaYvLydZ6oCQkjTTVWgIJpjXdMtoaTpT+sal0OuGfhWrg7wl2mPD6dAyHqFXUoh H6C2Rg+hZy5H6X2biSPhajQ9IQHNoAC8wQWcCwabgvGccOli81dTPilN62uQQEtq6fBo 5hLA==
In-reply-to: <5499F8C0.7040708@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <5499F8C0.7040708@xxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.21 (2010-09-15)

On Tue, Dec 23, 2014 at 11:20:32PM +0000, Thomas White wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
> 
> Directory Authorities,
> 
> Can you please remove the following fingerprints/IP's from the
> blacklist as per my previous updates in tor-talk.
> 
> D78AB0013D95AFA60757333645BAA03A169DF722
> 6F545A39D4849C9FE5B08A6D68C8B3478E4B608B
> 5E87B10B430BA4D9ADF1E1F01E69D3A137FB63C9
> 0824CE7D452B892D12E081D36E7415F85EA9988F
> 35961469646A623F9EE03B7B45296527A624AAFD
> 1EA968C956FBC00617655A35DA872D319E87C597
> E5A21C42B0FDB88E1A744D9A0388EFB2A7A598CF
> 5D1CB4B3025F4D2810CF12AB7A8DDDD6FC10F139
> 1324EC51FBFA5FD1A11B94563E8D2A7999CD8F57
> 93CD9231C260558D77331162A5DC5A4C692F5344
> 

Hi Thomas,

I cannot speak for the directory authority operators, but removing
these fingerprints from each of their blacklist seems like a bad idea.
Whether or not your relays were compromised, it sounds like something
happened. Directory authorities accepting these keys again seems risky
(even assuming the hardware is secure). Generating new keys is probably
a better choice, unfortunately this will add additional overhead and
you'll obviously lose a few months reputation and stability-state, but
it shouldn't take long before the relays regain their flags and status
in the network.

Thanks for running these relays,
Matt
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Whitelist
  - From: Thomas White

Prev by Author: Re: [tor-relays] Tor Server - DDOS or High Load
Next by Author: Re: [tor-relays] Relay is down
Previous by thread: [tor-relays] Whitelist
Next by thread: [tor-relays] Tor Relay Operators Meetup at 31c3 *moved* - 28.12. 13:00
Index(es):
- Author
- Thread