[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] WannaCry fallout FYI

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] WannaCry fallout FYI
From: niftybunny <abuse@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Sun, 14 May 2017 21:54:55 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 14 May 2017 15:55:14 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1494791698; l=7300; s=domk; d=to-surf-and-protect.net; h=In-Reply-To:To:References:Date:Subject:Mime-Version:Content-Type: From; bh=MSgYaRYxlJ37njNGr1N0YGBVB+Hy87agfKJMerBjDxM=; b=LpMnvXDWKeODEzHIZPrcbt50E7B5j5F5gTMfShR/ENgU6dF2JVpuTg8X8TtwgAY+Qm G9e1dG9ej1F5DGOCka8t2ZfYgn26Vy7AO2vEMLj7fp/qUJksOEBw1Dtu+77BViheOH6K TVzLWcj62s5Lwj1HK/isVx++znRWpwh+2GHtQ=
In-reply-to: <ACF5A948-2B0B-4EDD-847C-1240AC71BB17@brazoslink.net>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <ACF5A948-2B0B-4EDD-847C-1240AC71BB17@brazoslink.net>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

>Known TOR exit nodes are listed within the Security Intelligence feed of ASA Firepower devices. Enabling this to be blacklisted will prevent outbound communications to TOR networks.

Wait, what?

niftybunny

abuse@xxxxxxxxxxxxxxxxxxxxxxx

Where ignorance is bliss, 'Tis folly to be wise.

Thomas Gray

On 14. May 2017, at 21:45, Jon Gardner <toradmin@xxxxxxxxxxxxxx> wrote:

From the SNORT folks...

http://blog.talosintelligence.com/2017/05/wannacry.html?m=1

".... Additionally, organizations should strongly consider blocking connections to TOR nodes and TOR traffic on network. Known TOR exit nodes are listed within the Security Intelligence feed of ASA Firepower devices. Enabling this to be blacklisted will prevent outbound communications to TOR networks."

<><
Jon L. Gardner
Mobile: +1 979-574-1189
Email/Skype/Jabber: jon@xxxxxxxxxxxxxx
AIM/iChat/MSN: jlg@xxxxxxx
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] WannaCry fallout FYI
  - From: John Ricketts
- Re: [tor-relays] WannaCry fallout FYI
  - From: Mirimir
- Re: [tor-relays] WannaCry fallout FYI
  - From: Roger Dingledine

References:
- [tor-relays] WannaCry fallout FYI
  - From: Jon Gardner

Prev by Author: Re: [tor-relays] A Naïve Question About ARM
Next by Author: Re: [tor-relays] WannaCry fallout FYI
Previous by thread: [tor-relays] WannaCry fallout FYI
Next by thread: Re: [tor-relays] WannaCry fallout FYI
Index(es):
- Author
- Thread