[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] 7 relays gone because of spammers

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] 7 relays gone because of spammers
From: Speak Freely <when2plus2is5@xxxxxxxxxx>
Date: Thu, 26 Feb 2015 15:24:07 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 26 Feb 2015 10:24:19 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1424964249; bh=VHwha+WIey93VCWwbY3r6yIqQ9/TFeRJDc7fPpsPqas=; h=Date:From:To:Subject:References:In-Reply-To:From; b=lqdecObyiCKk/jMKddlR25ieGbmA+uRXGEnlaEeinMSwurKikgRlcaDOcTTd6ZcYu 8cbqgemWOvXWUKa9sPRTQDKOIHSUIdAI3oBqqvz02o/rSCtfMic2EM/u/JI2Glb0U8 HhNEcY/W28AXV/RWX1XcEobToE6yTG/HUIE1atto=
In-reply-to: <CANkaMAnQk2cL6H77T4LMyTiC_cwU1Be_uqmi0g=apWi-XLvyhQ@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <54ee160f.9080502@xxxxxxxxxx> <54EE188D.9080704@xxxxxxxxxxx> <F3899BB6B13.0000046Dbeatthebastards@xxxxxxxxx> <CANkaMAnQk2cL6H77T4LMyTiC_cwU1Be_uqmi0g=apWi-XLvyhQ@xxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi ZEROF,

I had fail2ban, harden (which includes tiger, tripwire, logcheck, plus
MANY others), all the fancy log checkers, rkhunter and clamav,
unattended-upgrades, and had all logs emailed to me on a daily basis. It
was tedious to go through, but I was trying to do my due diligence.

I disabled root login, changed ssh port (security through obscurity -
damn right, but I kept it in the privileged range.)
-------------------
Each password was a minimum of 32 characters, alphanumeric plus symbols.
No two passwords were alike, or remotely similar.
(No, I didn't use keys :@)

I checked "how secure is my password", and this is the result:
	It would take a desktop PC about
	21 quattuordecillion years
	to crack your password

I had to look quattuordecillion up, as my spell checker doesn't know
what it means. In the US, it means 1, followed up 45 zeros.
(In the UK it is 10^84, but I believe the website is American so I'm
sticking with ^45)
---------------
I disabled as many services as I could reasonably tolerate. I removed
world rights to as much as I could think. I did everything I could think
of to make each VPS effectively useless except for running a Tor relay.

My firewall matched my Reduced Exit Policy, plus my "secret" ssh port.

----
I never thought about the honey-pot... That's a good one.


Speak Freely
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] 7 relays gone because of spammers
  - From: cacahuatl
- Re: [tor-relays] 7 relays gone because of spammers
  - From: jason
- Re: [tor-relays] 7 relays gone because of spammers
  - From: justaguy

References:
- Re: [tor-relays] 7 relays gone because of spammers
  - From: Josef Stautner
- Re: [tor-relays] 7 relays gone because of spammers
  - From: I
- Re: [tor-relays] 7 relays gone because of spammers
  - From: ZEROF

Prev by Author: Re: [tor-relays] 7 relays gone because of spammers
Next by Author: Re: [tor-relays] 7 relays gone because of spammers
Previous by thread: Re: [tor-relays] 7 relays gone because of spammers
Next by thread: Re: [tor-relays] 7 relays gone because of spammers
Index(es):
- Author
- Thread