[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] abuse email for non-exit relay (masergy)

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] abuse email for non-exit relay (masergy)
From: "x9p" <tor.relays@xxxxxxxxxx>
Date: Fri, 22 Sep 2017 03:41:16 -0300
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 22 Sep 2017 02:41:35 -0400
Importance: Normal
In-reply-to: <0500B01D-3485-4F15-B09F-947A38AC1713@gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <1664292459.4855.1506034147895@office.mailbox.org> <0500B01D-3485-4F15-B09F-947A38AC1713@gmail.com>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: SquirrelMail/1.4.23 [SVN]

>
> There are two ways this can happen:
>
> Someone set up a tor relay on the "client", and your relay connected
> to it.
>
> Someone is using the hidden service rendezvous protocol to ask non-exit
> relays to scan non-tor IP addresses. Specifying a remote address is a
> feature of the protocol. We have mitigations in place in newer tor
> relay versions to stop scanning of local addresses, and to provide
> limited information to the scanning client.
>

While the subject is not cleared, I suggest firewall rules to stop the
communication between ORPort and RFC1918 ranges.

x9p


_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] abuse email for non-exit relay (masergy)
  - From: teor

References:
- [tor-relays] abuse email for non-exit relay (masergy)
  - From: relay 000
- Re: [tor-relays] abuse email for non-exit relay (masergy)
  - From: teor

Prev by Author: Re: [tor-relays] Would you also like to have family-level atlas pages?
Next by Author: Re: [tor-relays] Any IP allocations available out there?
Previous by thread: Re: [tor-relays] abuse email for non-exit relay (masergy)
Next by thread: Re: [tor-relays] abuse email for non-exit relay (masergy)
Index(es):
- Author
- Thread