[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] torslap!

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] torslap!
From: Andreas Krey <a.krey@xxxxxx>
Date: Thu, 2 May 2013 20:45:36 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 02 May 2013 14:45:54 -0400
In-reply-to: <6EEEE23B-0F28-4E9C-8DBD-F64C856C3D97@xxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <mailman.11.1367496001.22172.tor-talk@xxxxxxxxxxxxxxxxxxxx> <6EEEE23B-0F28-4E9C-8DBD-F64C856C3D97@xxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mutt/1.4.2.1i

On Thu, 02 May 2013 13:19:59 +0000, Lucia Liljegren wrote:
...
> Because these "not attackers"  are guessing addresses they tend to hit my 404 page which is dynamic and does some checks. When I detect an IP doing this sort of stuff,  I use Cloudflare's API and ban the IP 7 days .

You mean, when I set up a bit of link farming, you will block Googlebot? :-)

...
> What's the proposal under Torslap?  I check the IP that's fingerprinting, and if it's TOR, I make it pass a "proof or work", and then let it continue to scan? That can't be what you are suggesting.   So what are you suggesting. 

The proof of work would be bound to a login, not an IP. The idea being
that one is only allowed to put content (aka 'comment') when such a
proof exist, and the proof would be declared invalid if the account
is being found spamming.

Apparently there are way too few exit nodes (especially fast ones
that get selected often).

If there a reason you block for several days? I don't see how that
would help much. As opposed to not directly blocking but instead
reversing source and destination address in packets coming from
such IPs. :-)

Andreas

-- 
"Totally trivial. Famous last words."
From: Linus Torvalds <torvalds@*.org>
Date: Fri, 22 Jan 2010 07:29:21 -0800
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] torslap!
  - From: Lucia Liljegren

Prev by Author: Re: [tor-talk] Browsing in the office
Next by Author: Re: [tor-talk] torslap!
Previous by thread: Re: [tor-talk] torslap!
Next by thread: Re: [tor-talk] torslap!
Index(es):
- Author
- Thread