[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Is this a Tor exit node connecting to me?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Is this a Tor exit node connecting to me?
From: Pei Hanru <peihanru@xxxxxxxxx>
Date: Sun, 25 Mar 2007 18:20:10 +0800
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Sun, 25 Mar 2007 06:20:29 -0400
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=VckK2KS0malmBvqGQicK2MfSZktSRuWmsjZRjVjp2ZIIVVf28aPLaQJvnH0sQYVkWwvqLvFj2pTtmoDTn3ThqSa5n79Bntz/pguDU/+eddnlW2ja7bJx5y4K1J9dIL2TScH0RN5EK8JchRGrSG+o3VvlHEPzExYNWqIwOe1MRkE=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=HZJew4Uc73GCOctkUqUy3EXZmt6XXp5IKzRbtq6LVKwdKQLl8o4+CtJKCOJ1dAFPZQbICy0cAgC7nIRY6Y2AKytPvPv3aZuDdGSfaC0s18RAHY1xgnqqfdnJNIqim66pK0IUCYV6IWcj8XwiprtkgzhXlx5/RCiqFrhYtPEAR4k=
In-reply-to: <20070324183248.55690DA81F@mailserver7.hushmail.com>
References: <20070324183248.55690DA81F@mailserver7.hushmail.com>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 1.5.0.10 (Windows/20070221)

On 2007-3-25 2:32 CST(UTC+8), Joseph B. Kowalski wrote:
> So anyways, I have implemented a Tor DNSBL server interface. The 
> address of the DNSBL is "tor.dnsbl.nighteffect.us".

Cool!

> Here are some details on how to use it:
> 
> ==============================================
> 
> The DNSBL server responds to two different types of 'A' record 
> queries:
> 
> 1) The first type is to simply provide an answer as to whether a 
> given IP is an active Tor server or not. So, assuming the DNSBL 
> domain name is 'tor.dnsbl.nighteffect.us', and you want to check if 
> IP '1.2.3.4' is a Tor server, you would send the following 'A' 
> record query:
> 
> 4.3.2.1.tor.dnsbl.nighteffect.us
> 
> Note that the octets of the IP address have been reversed, like a 
> PTR record, only this is an 'A' request.
> 
> If '1.2.3.4' is an active Tor server, the DNSBL server will respond 
> with a '127.0.0.2' 'A' record. If '1.2.3.4' is NOT an active Tor 
> server, the DNSBL server will respond with a 'Non-Existent Domain 
> (NXDOMAIN)' error.

A small issue. When I query the DNSBL server for my slow, middleman only
(reject *:*) server, it returns 127.0.0.2. Is it a good idea to include
non-exit Tor servers in this list?

Hanru

References:
- Is this a Tor exit node connecting to me?
  - From: Joseph B. Kowalski

Prev by Author: Re: Building tracking system to nab Tor pedophiles
Next by Author: Re: Free Software and Torpark (was: Ultimate solution)
Previous by thread: Is this a Tor exit node connecting to me?
Next by thread: Re: Is this a Tor exit node connecting to me?
Index(es):
- Author
- Thread