[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: eliminating bogus port 43 exits
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: eliminating bogus port 43 exits
- From: Nils Vogels <bacardicoke@xxxxxxxxx>
- Date: Fri, 12 Jun 2009 23:14:12 +0200
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Fri, 12 Jun 2009 17:21:48 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=WMNr+qgYKfEiTc3P7FRllz2xDGCLS02mKRGVBGG4Bsw=; b=cNDPJcvH+dFDS6IfkP+LnOr6uSTVsxEho7YxGHQ80bvnXlqgHC5GEDpDj5RTeZuIUb gwS21GSkE/V3hA8sPtqzLtf9ytzs+6CUAheEMlEJnCJev+cgM4FNIqwdKLi3amEAvGLa 9jWKNPA6ddtwF+ThQwVBNzN0CGgLUZSnyV6JU=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=QWt13p1uvcegO+0VlPUkO+PbFsvAZbLQUWKTaWr1J1y0rrdAoS1iLLio2pgmoLm1mA kqqhQjDgwEHaskhUv1ZjPydkgqfpaWXYw+hhOuTZfzwWv4mJeuOP/VQOou4Z1H/gbUOl hii2riTzI3zoL6mXVw307mC2pqmCMn/PpNS2Y=
- In-reply-to: <200906120729.n5C7Tg1c026281@xxxxxxxxxxxxx>
- References: <200906120729.n5C7Tg1c026281@xxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
Hey Scott,
On Fri, Jun 12, 2009 at 9:29 AM, Scott Bennett<bennett@xxxxxxxxxx> wrote:
> I replaced the "ExitPolicy accept *:43" in my torrc file with the
> following:
>
> ###---Limited list of allowed whois exit addresses
> ExitPolicy accept 192.103.19.12:43 # whois access to whois.6bone.net
> ExitPolicy accept 192.149.252.44:43 # whois access to whois.arin.net
<etc>
I would like to suggest a functionality to make this a bit more easy:
Add support for dnsbl's to determine the exitpolicy. I know this would
be non-trivial to implement, especially given the possible abuse
scenario's and the fact that exitpolicy's are currently published in
the directory, but it would be great to have universal "known good"
and "known bad" destinations that exitnodes could use.
Greets,
Nils
--
Simple guidelines to happiness:
Work like you don't need the money,
Love like your heart has never been broken and
Dance like no one can see you.