[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Policy on filtered ExitNodes??

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Policy on filtered ExitNodes??
From: ADB <firefox-gen@xxxxxxxxxx>
Date: Sun, 14 Aug 2005 00:21:11 -0700
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Sun, 14 Aug 2005 03:21:30 -0400
In-reply-to: <20050814070023.GB26373@localhost.localdomain>
References: <20050814053302.91239.qmail@web31506.mail.mud.yahoo.com> <20050814070023.GB26373@localhost.localdomain>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent:

I disabled transparent squid proxying on my firewall-router box, which this tor server is behind. All told, it had been working without a hitch for so many months that I'd actually forgotten that it was even there! Sorry guys. BTW, my filtering isn't malicious, but it's now back on port 800 where its default is (the distro is a custom firewalling package, don't ask).

~Andrew Del Vecchio

Matthias Fischmann wrote:

mike, squid is not a filter, but a web cache.  but you are right: if
you use tor, you need to trust that the exit node you end up with
doesn't do malicious filtering, and you don't have much support for
that trust.  worse, even good exit nodes change your perception of the
internet because sites react on client IPs and adapt their content.

but i guess you just have to live with that.  anyways i think it's
still better to look through a differnet filter every day than always
through the same...  (-:

matthias



On Sat, Aug 13, 2005 at 10:33:02PM -0700, Mike Bergeron wrote:

To: or-talk@xxxxxxxx
From: Mike Bergeron <dontravieso@xxxxxxxxx>
Date: Sat, 13 Aug 2005 22:33:02 -0700 (PDT)
Subject: Policy on filtered ExitNodes??

Hello, all.  This is my first post, so don't flame me too badly if I
say something out of place.

I just discovered today that at least one Tor server acting as an exit
node (powerpenguin61) is or was running on a filtered machine; i.e.,
all requests that exit from that node must satisfy something called
Squid, for appropriateness, or you receive an error page telling you
how bad you are for trying to go to some forbidden place!

In my opinion, such servers are worse than not being on Tor, because
now I must discover them through trial and error and add them to my
ExcludeNodes list (at least until there is some sort of
ExcludeExitNodes option) in order to have the privilege of filtering my
own web content or going to a website whose name is in any way
salacious.

Do the Powers That Be have an opinion on the matter.  Seems to me that,
without exclusively open exits, any group of people could get Tor,
advertise exit, and then filter the crap out of what anyone can use Tor
for....  Pretty easy attack, if you ask me....

Just my $0.02.

Mike

__________________________________ 
Yahoo! Mail 
Stay connected, organized, and protected. Take the tour: 
http://tour.mail.yahoo.com/mailtour.html

References:
- Policy on filtered ExitNodes??
  - From: Mike Bergeron
- Re: Policy on filtered ExitNodes??
  - From: Matthias Fischmann

Prev by Author: Script for starting private Tor networks
Next by Author: Re: Tor nodes question
Previous by thread: Re: Policy on filtered ExitNodes??
Next by thread: Re: Policy on filtered ExitNodes??
Index(es):
- Author
- Thread