[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: another seeming attack on my server's DirPort

To: or-talk@xxxxxxxxxxxxx, Mike Cardwell <tor@xxxxxxxxxxxxxxxxxx>
Subject: Re: another seeming attack on my server's DirPort
From: Scott Bennett <bennett@xxxxxxxxxx>
Date: Thu, 20 Dec 2007 23:53:35 -0600 (CST)
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Fri, 21 Dec 2007 00:53:49 -0500
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

     On Thu, 20 Dec 2007 13:11:15 +0000 Mike Cardwell <tor@xxxxxxxxxxxxxxxxxx>
wrote:
>Kyle Williams wrote:
>
>> This is just a theory, no hard facts to back it up.
>> When I'm messing around with Tor's ControlPort, I've noticed that my Tor 
>> traffic just hangs until whatever I'm doing on the ControlPort stops.  
>> There have been a couple of times where I do something very wrong on the 
>> controlport and Tor just "freezes" (does not route any traffic) until I 
>> close my connection with the ControlPort.   I'm wondering if the same is 
>> true for when someone is fetching descriptors from the DirPort?
>> 
>> Does Tor traffic "freeze" (not route traffic) until the Dirport 
>> completes its task?
>> 
>> Next guess...
>> If someone where to be attacking, oh say, a hidden service, and your 
>> node was the Introduction Point for that hidden service, then perhaps 
>> someone is trying to force the owner of the hidden service to choose a 
>> new introduction point.
>> 
>> What is the uptime of your node? 
>> Have you typically been running it for a long time?
>> If someone is DoSing your Dirport, why not just turn it off?
>
>Alternatively, if you've got an Apache reverse proxy in front of your 
>DirPort as described in the manual, you could perhaps implement per IP, 
>connection and bandwidth rate limiting with mod_cband. Just a thought.
>
     Nope.  No web servers at all.  In fact, tor is the only service I've
made available to the outside world.


                                  Scott Bennett, Comm. ASMELG, CFIAG
**********************************************************************
* Internet:       bennett at cs.niu.edu                              *
*--------------------------------------------------------------------*
* "A well regulated and disciplined militia, is at all times a good  *
* objection to the introduction of that bane of all free governments *
* -- a standing army."                                               *
*    -- Gov. John Hancock, New York Journal, 28 January 1790         *
**********************************************************************

Prev by Author: Re: another seeming attack on my server's DirPort
Next by Author: [OT] more from Cryptome on NSA, Windows firewals, mail services
Previous by thread: Re: another seeming attack on my server's DirPort
Next by thread: Snail Mail Onion Routing
Index(es):
- Author
- Thread