[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
From: Dave Warren <davew@xxxxxxxxxxxx>
Date: Thu, 13 Aug 2015 19:23:08 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 13 Aug 2015 22:28:36 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple; d=hireahit.com; s=MD-20140321; t=1439518992; x=1440123792; q=dns/txt; h=Message-ID: Date:From:User-Agent:MIME-Version:To:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; bh=tUADEPiyN xUThwx81Qn5xKwxd8UftVb5TX2LeCg/ny8=; b=M8i6bYBjh9Z3ZU3rf6rou2ViY 4apToq7xDe1/cwO6abA1K5q203ErE+zhLO+rscT4FsZayzMcdIgFLKaeQo5g5fIp YJeamEoLhle5iN9hIx/NExgDc529A6EzIQRB4Whacln0TQY6QOBX4OZ34JQE/SPw gz1+Ab2O4nrW28w9sg=
In-reply-to: <alpine.LRH.2.02.1508131739330.8078@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <55C59BBA.2020700@xxxxxxxxxxxxxxx> <CAD2Ti2963Oiin8ZWdR5Pc4RrmEfteN2X0MtBAUMdQ6uQuPm1jA@xxxxxxxxxxxxxx> <CAAd2PDJSmAR8UBLa62yzQTd4tF9S46q2cZgH0ErxtOyYH531Ww@xxxxxxxxxxxxxx> <1439101342-sup-8277@xxxxxxxxxxxxxxxxxxxxx> <20150812234512.GE2384@xxxxxxxxxxxxxx> <CAD2Ti28+=dSmwqe_ZtJSDMZ1N-AJ5Lp=5OA6HpNHakhfwe1uMg@xxxxxxxxxxxxxx> <20150813074017.GF2384@xxxxxxxxxxxxxx> <alpine.LRH.2.02.1508131739330.8078@xxxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:25.4) Gecko/20150524 FossaMail/25.1.5

On 2015-08-13 19:00, Aaron Hopkins wrote:

I try to avoid storing any raw per-flow data to disk. At the scale I'm
operating, I can't store it for very long, and walking through itagain is
too slow.  If I wanted to throw more hardware at netflow log processing,
it's at least possible to do, though. Of the people I've heard doingthis,they are mostly paranoid companies (not ISPs) who want to be able totracesecurity incidents after the fact.

I was surprised how many companies had enough traffic to retroactivelydetermine whether HEARTBLEED had previously been exploited. Neat, butscary.


--
Dave Warren
http://www.hireahit.com/
http://ca.linkedin.com/in/davejwarren


_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: nusenu
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: grarpamp
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: Green Dream
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: Sharif Olorin
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: Mike Perry
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: grarpamp
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: Mike Perry
- Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
  - From: Aaron Hopkins

Prev by Author: Re: [tor-relays] Calling for more Exit Relays
Next by Author: Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
Previous by thread: Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
Next by thread: Re: [tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
Index(es):
- Author
- Thread