[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] can dirport be disabled on fallback directory?

To: tor-relays@xxxxxxxxxxxxxxxxxxxx, tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] can dirport be disabled on fallback directory?
From: starlight.2017q4@xxxxxxxxxxx
Date: Sat, 19 May 2018 10:28:50 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 19 May 2018 10:30:30 -0400
In-reply-to: <6.2.5.6.2.20180518121657.04bff340@binnacle.cx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <6.2.5.6.2.20180518121657.04bff340@binnacle.cx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Dirport is a handy convenience, but is not essential to proper
functioning of the network.  Put a connection rate-limit on
dirport and it stopped the abuser cold.  Dirport traffic went
from 15% of total back down to 1-2% where it belongs.

Nonetheless the questions posed are valid.



At 12:25 5/18/2018 -0400, starlight.2017q4@xxxxxxxxxxx wrote:
>Lately seeing escalating abuse traffic on the relay dirport, now up to 20k rotating source IP addresses per week.
>
>The simple solution is to disable dirport, but the relay is a fallback directory and I don't want to make a change that will negatively affect the relay's ability to function as such.  Would 
>disabling dirport be a problem?
>
>also:
>
>can a non-advertised dirport be left configured for local-system use while the public advertised dirport is disabled?
>
>does a command utility or method exist for querying dirport documents via tunnelled-dir-server?  including miscellanous documents such as
>
>/tor/status-vote/current/consensus.z
>/tor/keys/all.z
>/tor/server/all.z
>/tor/extra/all.z
>
>/tor/server/fp/<fp1>+<fp2>+<fp3>.z
>/tor/extra/fp/<fp1>+<fp2>+<fp3>.z
>/tor/micro/d/<hash1>-<hash2>.z
>/tor/keys/fp/<v3ident1>+<v3ident2>.z
>
>thanks!
>

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] can dirport be disabled on fallback directory?
  - From: Felix

References:
- [tor-relays] can dirport be disabled on fallback directory?
  - From: starlight . 2017q4

Prev by Author: Re: [tor-relays] DirPort DOS activity against Fallback Directories
Next by Author: Re: [tor-relays] can dirport be disabled on fallback directory?
Previous by thread: [tor-relays] can dirport be disabled on fallback directory?
Next by thread: Re: [tor-relays] can dirport be disabled on fallback directory?
Index(es):
- Author
- Thread