[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Relay security, re: local network

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Relay security, re: local network
From: Andy Isaacson <adi@xxxxxxxxxxxxx>
Date: Tue, 1 Oct 2013 12:08:54 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 01 Oct 2013 15:09:07 -0400
In-reply-to: <5244159D.8020607@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <52430AEC.1070804@xxxxxxxxxx> <524326E1.8060603@xxxxxxxxx> <5244109E.8060508@xxxxxxxxx> <5244159D.8020607@xxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.20 (2009-06-14)

On Thu, Sep 26, 2013 at 02:08:13PM +0300, Joe wrote:
> I'll have to reconsider, then. I assume middle relays see less
> traffic than exits?

I don't think that's true, currently it seems we need more middle nodes
than exit nodes based on my reading of the network statistics.

> I also keep reading exits are desperately needed

Generally true, but non-exit (middle) nodes are also needed.

> and i do have bandwidth to spare for an exit, about 10 mbit. I would
> also be running the exit through a VPN, so my own IP would not be
> published,

If you do this, I hope you can keep us updated here on the list with how
well it's working!  In theory a VPN should have some problems with Tor,
but I'm very curious to see how well it actually works.

> and GUFW would block all outgoing traffic to LAN from the
> computer running the exit. All other ports would be blocked as well,
> and since it's routed through a VPN, i wouldn't even need to open
> any ports in my own hardware firewall, but at the VPN provider's end
> instead. I do have permission from the provider to run an exit.
> 
> Still, i'm now hesitant. Thanks for the replies.

Given that you have permission from the provider, I don't see any reason
not to run a middle or even an exit node.  The network firewalling
you've described should mitigate any risk internal to your network.

-andy
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Prev by Author: Re: [tor-relays] Reimbursement of Exit Operators
Next by Author: Re: [tor-relays] hardware accelerated crypto
Previous by thread: Re: [tor-relays] Reimbursement of Exit Operators
Next by thread: Re: [tor-relays] Relay security, re: local network
Index(es):
- Author
- Thread