[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] How to protect yourself from network scanning

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] How to protect yourself from network scanning
From: amki <sirhelmchen@xxxxxxxxx>
Date: Tue, 31 Jul 2012 19:18:49 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 31 Jul 2012 13:18:33 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:reply-to:from:date:message-id:subject:to:content-type; bh=e5yVdnlV9PnQeCZupYO7AAqzgsjaiHx5PHLLkuUh4ZE=; b=NNwtVyATVtJBE4OLkfkOtKwlb3Cy4aVkPdG8KoyQoZtd2CeOpR9kF+JOsJgUAarYFR jkE+exd8jQAioVKiwbkdj5E3gT7VIf8RlijfYi3jnCsdhDIQeTStNSF87YZgZq+xjYqf e90Yd+oSnN9CnqniQqHVBrGQ5dg1x2+GJbLEcG56zJVb5h9VyJjEi3iLXA8h5+z5RIY2 VmcT8oWSokhipa3/rpUEd8ojJApxKup0TkOs8+hTAqotUcrMylQnJAtfGQrE8MzH7jlc BMdNnwHXo99fzov7o3iMveezX5QqJkvQxZ0aOzdd2jNxZ224ZcRV/TCXwr7GdsiXZ0V7 rVJg==
List-archive: <http://lists.torproject.org/pipermail/tor-relays>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx

Hiho,

I am hosting a 3-5MB/s tor exit relay but as of today my hoster has
closed my server because of network scanning.
Is there a known proper way to protect yourself from being used as a
network scan relay?

I've thought about constructing iptables rules to limit the number of
SYN packets for the same host per second or such, but I'm not sure if
this is allowed or will get me flagged as a bad exit node.

My hoster is quite ok with us generating some abuse complaints per
month, but does not want to route network scanning traffic since it is
a severe load to their routers. Any help would be appreciated

Cheers
amki

-- 
"Whatever the reason you're on Mars, I'm glad you're there, and I wish
I was with you." - Carl Sagan
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] How to protect yourself from network scanning
  - From: grarpamp

Prev by Author: [tor-relays] nickname to fingerprint
Next by Author: Re: [tor-relays] Call for discussion: turning funding into more exit relays
Previous by thread: Re: [tor-relays] nickname to fingerprint
Next by thread: Re: [tor-relays] How to protect yourself from network scanning
Index(es):
- Author
- Thread