[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] HoneyPot?

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] HoneyPot?
From: Mirimir <mirimir@xxxxxxxxxx>
Date: Thu, 29 Oct 2015 15:18:57 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 29 Oct 2015 17:19:19 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1446153548; bh=aCrKDiz1m9sVV2ylgdNkQBSR4AWQDcxUcpsuvYrPra0=; h=Subject:To:References:From:Date:In-Reply-To:From; b=Uso4EIdYXl14ta4OsJhF8iLy54fgebNlHPcwcwLBaI1WvWmLgZJKmX68z1HU6/gYs UHrtsqJbTsecZlCm6xn8/GYDZcMgZVM1LnA7O522kWFVIeISv+vFqCTpAAars77NeN OLGznTR4AANRbMwQxJHLd0zQdqyX+D3y6pXLLRmc=
In-reply-to: <20151029210542.GH18574@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <5632800D.8060501@xxxxxxxxxx> <CAAd2PD+J5ap_3ysgJBUey9L=O5nm__m8VFP1jjmNEqWon5GtRA@xxxxxxxxxxxxxx> <20151029210542.GH18574@xxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0

On 10/29/2015 03:05 PM, Mike Perry wrote:
> Green Dream:
>> Mirimir: aside from the nickname, do you have any reason to believe it was
>> out of the ordinary? The exit policy mostly only seems to allow
>> non-encrypted services (80 but not 443, 143
> 
> A while ago we were actively marking nodes that only allowed
> non-encrypted services as BadExit, since there were no satisfactory
> explanations given as to why nodes should need this policy.
> 
> Back then, the most common explanation people gave was "I need the
> ability to block traffic that looks evil." Unfortunately, all mechanisms
> available to do this will also end up blocking legitimate content at
> some rate. Nobody was using anything more advanced than snort-style
> regular expressions that matched things that happened to look like
> exploits.
> 
> FWIW, I am personally in favor of reinstating such a policy. I doubt the
> situation has changed.

I concur. Peeking at exit traffic violates Tor integrity, no?
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] HoneyPot?
  - From: Mirimir
- Re: [tor-relays] HoneyPot?
  - From: Green Dream
- Re: [tor-relays] HoneyPot?
  - From: Mike Perry

Prev by Author: Re: [tor-relays] HoneyPot?
Next by Author: Re: [tor-relays] HoneyPot?
Previous by thread: Re: [tor-relays] HoneyPot?
Next by thread: Re: [tor-relays] HoneyPot?
Index(es):
- Author
- Thread