[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Following best-practices for tor exit-node on RIPE

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Following best-practices for tor exit-node on RIPE
From: Moritz Bartl <moritz@xxxxxxxxxxxxxx>
Date: Wed, 24 Aug 2011 17:06:59 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 24 Aug 2011 11:07:21 -0400
In-reply-to: <4E522A9E.3010408@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4E522A9E.3010408@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows NT 5.1; rv:5.0) Gecko/20110624 Thunderbird/5.0

Am 22.08.2011 12:08, schrieb Alexandre Girard:

I'm trying to open a new tor exit node on tetaneutral.net - associative
ISP in Toulouse, France - and I've got a question after reading the
best-practices available on this page:
https://blog.torproject.org/blog/tips-running-exit-node-minimal-harassment

On point 5, it describe how to change the contact email on an IP.

Tetaneutral has a range of IP, and we can use 1 IP for the tor exit
node. The description about the contact mail concerns ARIN, does someone
know how to do it on RIPE?

Thank you for your question. Now I finally forced myself to update thewiki entry at https://www.torservers.net/wiki/hoster/inquiry


Here's the new section on RIPE:

With RIPE, it works even better than with ARIN as most people respectthe WHOIS entry there without going directly for the upstream record. Inour experience, this happens a lot with ARIN. But - my guess is due tosome stricter regulations by RIPE - less ISPs are willing to reassignRIPE IPs.Some reports, like Shadowserver reports, get sent to the AS, so WHOISdoes not help against those. With luck you can get your ISP to ignore orauto-forward them to you.

If you don't have "mtner" and "person" handles for your Tor exits, usethe wizard at https://apps.db.ripe.net/startup/ or manually create themat https://apps.db.ripe.net/webupdates/select-type.html

You need at least one mtner and one "person" handle. Tell your ISP tocreate an "inetnum" record linking those handles. You should suggestapprioriate "desc", "remarks" and "country" entries. RIPE does notrequire this country to be the location of your server, nor yourlocation. Your ISP might want either your location or the serverslocation in there. If you want to confuse GeoIP, you can specify anothercountry. It is also possible to list more than one country, but be awarethat it takes several months for GeoIP services to pick up changes (ifthey ever do) and that you won't be able to edit the "inetnum" recordyourself.


Maintainer record example:
http://apps.db.ripe.net/whois/lookup/ripe/mntner/ZWIEBELFREUNDE.html
Person example:
http://apps.db.ripe.net/whois/lookup/ripe/person-role/MB22990-RIPE.html
inetnum example:
https://apps.db.ripe.net/dbweb/search/query.html?searchtext=77.247.181.160

Additional RIPE Documentation for ISPs (if they don't know how to dotheir stuff, helps sometimes to pass this on):*http://www.ripe.net/lir-services/resource-management/faq/internet-resources#faq_22

* http://www.ripe.net/ripe/docs/ripe-489

Hope this helps! Let me know if it works, feel free to add more info tothe wiki page (world editable).


--
Moritz Bartl
https://www.torservers.net/
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Following best-practices for tor exit-node on RIPE
  - From: Alexandre Girard

Prev by Author: [tor-talk] Torservers.net Meetups in Dresden (3.9. and 15.10.)
Next by Author: [tor-talk] Possible Attack on Tor speed?
Previous by thread: [tor-talk] Following best-practices for tor exit-node on RIPE
Next by thread: [tor-talk] Torservers.net Meetups in Dresden (3.9. and 15.10.)
Index(es):
- Author
- Thread