[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Automatic vulnerability scanning of Tor Network?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Tue, 20 Dec 2011 21:57:43 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 20 Dec 2011 21:57:57 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=uiJAHNXogvQ8SVNhNwDiB6fI7j7hpQxEoAyOgAs+jYY=; b=GBekWHa8GW6KWsnowT0+5L43gxzUDB9EUgmlhIDr8J1uoX4W9rSz5bAyvXqTXLK2As z7AqYZItFGcK6JyEmBIixjbRF2/V6rXxRvEaKwXSFJDYjbI+o7n40At0ClrwfbdV4dB/ CMuRbjWNzbQR8ZsVD9EcdOtiz8HMqGxiOpyQ8=
In-reply-to: <201112202323.06434.klaus.layer@xxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4EF04331.20708@xxxxxxxxxxxxxxx> <CAD8GWstvNas1A8oqPUmruHGFSHvPkGaER+3WdjHa910ZZoqC-w@xxxxxxxxxxxxxx> <201112202323.06434.klaus.layer@xxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

>> Which is why I stopped running a relay - waaaay too many people poking
>> at my machine. ÂIn retrospect I was probably just incredibly naive,
>> but when I put up a tor relay I was expecting to just relay tor
>> traffic. ÂI did not sign up to be the target of any wannabe pen
>> tester.
>
> For me it is quite clear that by setting up a tor relay I highly expose the
> server and make it target for scanning and more. Therefore I am personally
> happy with scanning my servers by tor friendly people. I don't regard this an
> attack but as a helpful service to the community of tor relay operators.

Putting these two another way...
The internet is probed a hundred times a day for any number of
reasons. Any IP you light up is subject to it. And not only that,
but it will have active, intentional and evil exploits thrown at it.
Anyone not knowing this seriously needs to find a sniffer and
run it.

So to the people who whine of being packeted like it's some sort
of outrage... get real and shut up. If it bothers you, report it.
Others are happy throwing up a filter (or not) and forgetting it.
And if you get cracked, or receive a friendly vulnerability email,
consider it a blessing. The net is just noise in logs rarely read.

What are you going to do when someone reads this thread
and decides to do the project anyway? What if they do it
anonymously for fun? What if they are already doing it? What
if you don't know about it?

Welcome to the net.
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Fabio Pietrosanti (naif)
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Lee
- Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
  - From: Klaus Layer

Prev by Author: Re: [tor-talk] tor-exit running ntop
Next by Author: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
Previous by thread: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
Next by thread: Re: [tor-talk] Automatic vulnerability scanning of Tor Network?
Index(es):
- Author
- Thread