[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: iptables and tor

To: or-talk@xxxxxxxxxxxxx
Subject: Re: iptables and tor
From: M <maillist@xxxxxxxxxxxx>
Date: Sun, 10 Feb 2008 20:34:16 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sun, 10 Feb 2008 13:34:00 -0500
In-reply-to: <20080210160342.GB30397@xxxxxxxxxxxxxxxxxxxxxxxx>
References: <47AE403E.6070805@xxxxxxxxxxxxxxxxxxx> <20080210160342.GB30397@xxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mozilla-Thunderbird 2.0.0.9 (X11/20080109)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1




>> On Sat, Feb 09, 2008 at 07:07:26PM -0500, dante@xxxxxxxxxxxxxxxxxxx wrote 0.8K bytes in 21 lines about:
>> : Has anyone given any thought as to what firewall rules to use on a linux
>> : system running a tor server?  Besides the usual attacks against the
> 
> In general, how would you protect a server with a public IP without tor?  
> 

Common "default deny and allow only specified" rules which is used by
any admin who has common sense? Can't think of anything else.

Only allow incoming tcp traffic to Tor's dir- and listeningport and deny
everything else?

M

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHr0OoeaKwdrf2V0oRAhAlAJ45+6vNvT6xBKyCbl9pbLqsRiZAOwCaAiR1
0uCBRAj1VeQboDFCvDRQK1U=
=i2EJ
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: iptables and tor
  - From: Csaba Kiraly

References:
- iptables and tor
  - From: dante
- Re: iptables and tor
  - From: phobos

Prev by Author: Re: "Your system clock just jumped" on Debian+VMware ESX
Next by Author: Re: Tor relay shutted down by ISP
Previous by thread: Re: iptables and tor
Next by thread: Re: iptables and tor
Index(es):
- Author
- Thread