[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Network Scan through Tor Exit Node (Port 80) - PORTSCAN

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Network Scan through Tor Exit Node (Port 80) - PORTSCAN
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Wed, 9 Mar 2011 03:57:02 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 09 Mar 2011 03:57:15 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=mK1SEC5j7Itz4Myw9K9cEl2fRJL1CyLYWV202x5VB3U=; b=jc4LhFIoUhE2X0VpN4le6qzHAVCHbNrZ/jJKUMShE9p98oJ+cPZT5GlO9cBmaOnN0u RrQTkL76oDt4Nh3aR0ihTK+hNr1C7zWlcXiAnHLOTXqrFnPull9lRqqkHaZAhG2ScBs4 Zbsmr/VfX8QAtl8x8/+5rNTPG2WbUtQ3RA0v0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=xf0C2cOswpMRFBBEdwkcZ+bNAcnOQTZk3+8oLGuvO46AplHxMVkZSzS7kA1rnYnzrF H2KaiuMVLcFa2ZgX4IH1UXjIgQgsHup+CyzdIHzPHzQALiVbMmuR/Z9JPtazcdVbXJdz 7TkEf+mP0ZLofg8YcxaSZw8grsdtquNlAeZYs=
In-reply-to: <4D773833.30206@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for support and questions about running Tor relays \(exit, non-exit, bridge\)." <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <201103081004.p28A4DNm014704@xxxxxxxxxxxxx> <20110308183512.15c203c7@xxxxxxxxx> <4D773833.30206@xxxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx

> Why do you consider a portscan to be an attempt to gain unauthorized
>> access to your computer?
>
> The management of the portscan it's really a pain, i got my server on
> Hetzner.de disconnected again due to portscan getting out from my TOR
> exit node.
>
> We *really* need to find a technical way to be able to detect and block
> outgoing portscan from the TOR exit nodes.

As Tor exits are a curious mix of common carrier and end user
in this case... If of concern, I'd simply suggest the application of an IDS
and blocking system to your exit traffic. Bro, Snort, filters, some other
applicable system, whatever it may be. There is certainly precedent
for doing so in a common carrier agnostic fashion in other areas
of the internet, no reason that Tor must be any different. And no reason
that such application would have any adverse affect on the underlying
principles of Tor to which we all might ascribe.
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- Re: [tor-relays] Network Scan through Tor Exit Node (Port 80)
  - From: Scott Bennett
- Re: [tor-relays] Network Scan through Tor Exit Node (Port 80)
  - From: Robert Ransom
- Re: [tor-relays] Network Scan through Tor Exit Node (Port 80) - PORTSCAN
  - From: Fabio Pietrosanti (naif)

Prev by Author: Re: [tor-relays] Network Scan through Tor Exit Node (Port 80)
Next by Author: Re: [tor-relays] about the balls of steel level of relay nodes
Previous by thread: Re: [tor-relays] Network Scan through Tor Exit Node (Port 80) - PORTSCAN
Next by thread: Re: [tor-relays] Network Scan through Tor Exit Node (Port 80) - PORTSCAN
Index(es):
- Author
- Thread