[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Is this a Tor exit node connecting to me?
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Is this a Tor exit node connecting to me?
- From: Pei Hanru <peihanru@xxxxxxxxx>
- Date: Sun, 25 Mar 2007 18:20:10 +0800
- Delivered-to: archiver@seul.org
- Delivered-to: or-talk-outgoing@seul.org
- Delivered-to: or-talk@seul.org
- Delivery-date: Sun, 25 Mar 2007 06:20:29 -0400
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=VckK2KS0malmBvqGQicK2MfSZktSRuWmsjZRjVjp2ZIIVVf28aPLaQJvnH0sQYVkWwvqLvFj2pTtmoDTn3ThqSa5n79Bntz/pguDU/+eddnlW2ja7bJx5y4K1J9dIL2TScH0RN5EK8JchRGrSG+o3VvlHEPzExYNWqIwOe1MRkE=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=HZJew4Uc73GCOctkUqUy3EXZmt6XXp5IKzRbtq6LVKwdKQLl8o4+CtJKCOJ1dAFPZQbICy0cAgC7nIRY6Y2AKytPvPv3aZuDdGSfaC0s18RAHY1xgnqqfdnJNIqim66pK0IUCYV6IWcj8XwiprtkgzhXlx5/RCiqFrhYtPEAR4k=
- In-reply-to: <20070324183248.55690DA81F@mailserver7.hushmail.com>
- References: <20070324183248.55690DA81F@mailserver7.hushmail.com>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Thunderbird 1.5.0.10 (Windows/20070221)
On 2007-3-25 2:32 CST(UTC+8), Joseph B. Kowalski wrote:
> So anyways, I have implemented a Tor DNSBL server interface. The
> address of the DNSBL is "tor.dnsbl.nighteffect.us".
Cool!
> Here are some details on how to use it:
>
> ==============================================
>
> The DNSBL server responds to two different types of 'A' record
> queries:
>
> 1) The first type is to simply provide an answer as to whether a
> given IP is an active Tor server or not. So, assuming the DNSBL
> domain name is 'tor.dnsbl.nighteffect.us', and you want to check if
> IP '1.2.3.4' is a Tor server, you would send the following 'A'
> record query:
>
> 4.3.2.1.tor.dnsbl.nighteffect.us
>
> Note that the octets of the IP address have been reversed, like a
> PTR record, only this is an 'A' request.
>
> If '1.2.3.4' is an active Tor server, the DNSBL server will respond
> with a '127.0.0.2' 'A' record. If '1.2.3.4' is NOT an active Tor
> server, the DNSBL server will respond with a 'Non-Existent Domain
> (NXDOMAIN)' error.
A small issue. When I query the DNSBL server for my slow, middleman only
(reject *:*) server, it returns 127.0.0.2. Is it a good idea to include
non-exit Tor servers in this list?
Hanru