[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Time Warner bad / VPS recommendations
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Time Warner bad / VPS recommendations
- From: Mitar <mmitar@xxxxxxxxx>
- Date: Tue, 10 Feb 2009 17:29:29 +0100
- Cc: Praedor Atrebates <praedor@xxxxxxxxx>
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Tue, 10 Feb 2009 11:29:33 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=MEY8no/1JoOryXy5j3goAUMTZ7UY/WWPhoTfDINA2bU=; b=bDH7FANobi1CuQ8qlWlH/IEY8OsE7kLFEZTBeBVtfuk8gvAGpvZWRgcwkQQhwSAGUy k3vhgDOEjZEVNkVNW8+5qBkA/wts/G8dj56UmbUPpnkkrbg2TFu27vhHkWGt2jUVJEfU rsar2HVp6Bthpz0LbwitN9TvK2FpQKEdO3cgU=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=fEf4KirJU9F9jr2+s88K+QxVSsucKYOQ+V13OkMoAMJz1I7Wjt5M9jM6tbgHz3CuKX 4zr700ucAuMBAwLTKvA5Gz346/2L3atVOsEj+WCpBmisp44XJAHn5dewNv5OLmuQ+3Jo hdrjw273eUNDJvHGS8PNgXQ/iP/FEBfYqvZFs=
- In-reply-to: <200902100236.n1A2ah6R016788@xxxxxxxxxxxxx>
- References: <200902100236.n1A2ah6R016788@xxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
Hi!
On Tue, Feb 10, 2009 at 3:36 AM, Scott Bennett <bennett@xxxxxxxxxx> wrote:
> Please go read the tor man page again. Specifically, you should reread
> the material on the ExitPolicy statement in the torrc file. The proper way
> to prevent exits on port 80 is to use an ExitPolicy that rejects port 80 for
> whatever destination IP addresses the operator wishes to reject from port 80
> exits. It really is not very complicated in concept or difficult to do.
In practice there is a problem: ExitPolicy is limited in size. So for
example default allow all with a long list of denied IPs (for example
Bittorrent trackers) is not possible. I have tried and failed. Sadly.
Mitar