[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Default Exit Policy
- To: or-talk@xxxxxxxxxxxxx
- Subject: Default Exit Policy
- From: Nathaniel Dube <njdube@xxxxxxxxx>
- Date: Thu, 22 May 2008 23:59:28 -0500
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Fri, 23 May 2008 01:00:08 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:from:to:subject:date:user-agent:content-type:content-transfer-encoding:content-disposition:message-id; bh=7xV5arK6Oy23Hmb1EVBSDie85vqXMkI+Lvhuz76XccA=; b=tHH/Y8LRMzqhoAs7NwacqAZXrCRgp/KfNZKFsRipbqk1gYil2YDmi+5ZN/6E6imRZqBpUW49ekrwcs4pgm99sZHnzuqLsdmUYT3+Ph/mJv8zN1kjk2AlvcYJu4e0d2JuklGRahaxCQXADmAfpRy5D2lTBf8jjW1byNuOz3zrLw0=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=from:to:subject:date:user-agent:content-type:content-transfer-encoding:content-disposition:message-id; b=mHnE3n+OfMxcMZKPWoeOYy+RWyRlm/s374C63K+qlGnGIx3CjKx4ofrWbRF20ZJHDLpxOWSvI2gf+jPnz8dbr/hibyuiUDm3ghbsgwF4qaKgLVK6VT4wgO8frL2fb2/bAN6/gbr82mY4IIdopSOJ8YnqzI2az+AKHD4GqRAu+fA=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: KMail/1.9.9
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I was looking at my server's stats at https://torstatus.kgprog.com and noticed
that it has an exit policy that I didn't put in my config file. For
example...
reject 0.0.0.0/8:*
reject 169.254.0.0/16:*
reject 127.0.0.0/8:*
reject 192.168.0.0/16:*
reject 10.0.0.0/8:*
reject 172.16.0.0/12:*
reject 75.63.1.109:*
reject *:25
reject *:119
reject *:135-139
reject *:445
reject *:465
reject *:563
reject *:587
reject *:1214
reject *:4661-4666
reject *:6346-6429
reject *:6699
reject *:6881-6999
accept *:*
The only part of that I have in my config file is [accept *:*]. Is the rest
some kind of defaults? I noticed one of the defaults is [reject *:587] which
I'm wondering why that would be in the defaults. That ports is used for
sending secure email. Port 25 I can understand but 587?! I use that port
for gmail. I have two gmail accounts. One is this one which is tied to my
real name. The other isn't and I use with Thunderbird and the torbutton
addon. I've noticed that sometimes I can't send email and sometimes I can.
It all depends on the current circuit. After seeing the defaults exit policy
I can see why I've been having the issues with my email.
The point of this email?! I wish to understand the rational of having the
defaults block ports used for secure encrypted protocoles.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4-svn0 (GNU/Linux)
iD8DBQFINk83vsn/sQCIOqQRAn8nAKCHtbwbJgzK5LWyKdVOY7YaxgV1uwCeN78A
WSa9RDSj0/XcXGlqy2KhUnA=
=PtV5
-----END PGP SIGNATURE-----