[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] suspicious "Relay127001" relays

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] suspicious "Relay127001" relays
From: Ivan Markin <twim@xxxxxxxxxx>
Date: Wed, 06 Jul 2016 02:29:00 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 06 Jul 2016 04:52:43 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1467772180; bh=LBX4AFqux4en+4Qr1vpGnxvMhdrhUe89T3+iewA4EnQ=; h=Subject:To:References:From:Date:In-Reply-To:From; b=Im2WES+WtRdPZVBGDRRhmSzE1cpW3KYb3rYi72F6fEPkl5mwCYTs+zbeFYSWVXaUR NBt1GOZB4ekfqYC8BNr/gwIIUTXOUSoj+3OXyV/g297TidLUIgPZdIoxdtp+XhPNYG QA5z98GxXy0H3D+e5B500/WnKVdXB8dkQoiPt20Q=
In-reply-to: <577BC83A.1030602@kalidasa.klamath.ch>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <0fb7f8368eca0836758eb182382da6cf@riseup.net> <8224c67f-228b-6535-9c4f-660cdcca63c8@openmailbox.org> <973AE493-820C-4177-8F39-2F8BB8137B90@riseup.net> <577BC83A.1030602@kalidasa.klamath.ch>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

simon:
> If I understood the documentation correctly, as a node operator I can't
> blacklist hosts individually (unless I'm putting them into MyFamily,
> which I don't want to).

AFAIK, there is no option in tor itself to exclude relays from the routing.

But you're still able to restrict connections with these nodes using
plain blocking at your firewall. So circuits through these relays are
not able to be built anymore. [Note also, that it makes performance
poorer compared to the case when it's defined by policy].

In case of PF it looks like:

{{{
table <bad-onions> { 0.0.0.0 }

block in quick on egress from <bad-onions> to any
block out quick on egress from any to <bad-onions>
}}}

--
Ivan Markin
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] suspicious "Relay127001" relays
  - From: Andreas Krey
- Re: [tor-relays] suspicious "Relay127001" relays
  - From: grarpamp
- Re: [tor-relays] suspicious "Relay127001" relays
  - From: Sebastian Hahn

References:
- Re: [tor-relays] suspicious "Relay127001" relays
  - From: nusenu
- Re: [tor-relays] suspicious "Relay127001" relays
  - From: Xza
- Re: [tor-relays] suspicious "Relay127001" relays
  - From: simon

Prev by Author: Re: [tor-relays] suspicious "Relay127001" relays
Next by Author: Re: [tor-relays] interesting tor platform string or tor bug?
Previous by thread: Re: [tor-relays] suspicious "Relay127001" relays
Next by thread: Re: [tor-relays] suspicious "Relay127001" relays
Index(es):
- Author
- Thread