[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] Is it safe to run an exit node from a VPS provider?

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] Is it safe to run an exit node from a VPS provider?
From: Sindhudweep Sarkar <sindhudweep.sarkar@xxxxxxxxx>
Date: Tue, 13 Aug 2013 09:04:10 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 13 Aug 2013 09:04:24 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=T6GETclrNeuFLKtuq2yS2yaZPXqt435DDAUA7gimy9g=; b=gj02GuLohLP3w3t0oNYBO6UnwqJkpixZ4CRR04fahvmKRtyKZ49RMCzaD9AL0YgY0u Nc1hiJN4StF4QUlsn9HOJMz+vuaa8ewlD2Yf30jGDC+y54aZrKY8H0rc573b+pVO9ByH j5p+uzOr6O6S0vd2TdR/9zBPP29oWxO+ac36SWR6bJ/yAxtTM5HLBFh6CQxRj3iOCHqe 8obSpJx7jmhS38qjUy9N/6vZ48vimkgnYC4baPc5f2kKskyzLHMSt/42BpI3aqSM1kft UcNA5QUtv5H6jT/w0U2lls0/7JawDwHWgG47KZijfbEAiX+a85PSTQ+FbaCakUVmJTmK Eocg==
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi,

Over the past month I've been running a tor exit relay in a spare VPS machine that I am not using.

It occurs to me know that this was probably a very poor idea, as I can't control the physical access to the machine or encrypt private key.

In the good bad ISPs page, I see that some cloud providers are listed (aws, etc). This implies that such a practice is okay, but If linode or a malicious party wanted to read the contents of /var/lib/tor/keys I don't think they'd have any difficulty whatsoever. How do folks secure their relay's keys on a vps environment? Or should I shutdown this relay and run a relay only when I am sure the keys are secured?

-JB

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Is it safe to run an exit node from a VPS provider?
  - From: Moritz Bartl
- Re: [tor-relays] Is it safe to run an exit node from a VPS provider?
  - From: Roman Mamedov
- Re: [tor-relays] Is it safe to run an exit node from a VPS provider?
  - From: Steve Snyder

Prev by Author: Re: [tor-relays] Tor Exit Node - DDOS
Next by Author: Re: [tor-relays] Is it safe to run an exit node from a VPS provider?
Previous by thread: Re: [tor-relays] Raspberry Pi Relay Node Performance
Next by thread: Re: [tor-relays] Is it safe to run an exit node from a VPS provider?
Index(es):
- Author
- Thread