Re: [tor-relays] Amazon abuse report

2013-11-05 Thread Paritesh Boyeyoko
Gonna throw this out there. I've seen it written ealier that in certain jurisdictions Tor operators are protected under the DMCA by being classed as a "common carrier", same as ISPs. Is that correct? If so, well ISPs rate limit or QoS certain types of traffic all the time, usually at peak tim

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread jj tor
Sorry for the confusión, the exact line in my torrc is "Socksport 0", so, SOCKS port is closed. Moreover, I haven't got any exit rule towards port 9050 Even if I block this traffic using iptables, I am very curious about why the server is receiving that huge amount Maybe, because my relay's exit

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread Thomas Hand
What is the fingerprint of your exit node, maybe someone here can take a look? Also, use iptables! If it is a dedicated VPS then drop anything you dont recognize, leaving only Tor ports (9001,9030 default) and maybe a service port like 22 for SSH for something. Port 9050 should not be visible from

Re: [tor-relays] Amazon abuse report

2013-11-05 Thread gq
Access to tails does not depend on any specific transfer protocol such as torrents correct? Could it not be made available on a hidden service, a website. an email or ftp server within tor? On 11/4/2013 11:45 PM, Nelson wrote: From all that I have read in these lists not all exit nodes

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread Luther Blissett
On Tue, 2013-11-05 at 09:36 +0100, jj tor wrote: > Sorry for the confusión, the exact line in my torrc is "Socksport 0", so, > SOCKS port is closed. Moreover, I haven't got any exit rule towards port > 9050 > > Even if I block this traffic using iptables, I am very curious about why > the server

Re: [tor-relays] Amazon abuse report

2013-11-05 Thread Gordon Morehouse
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 gq: > Access to tails does not depend on any specific transfer protocol > such as torrents correct? > > Could it not be made available on a hidden service, a website. an > email or ftp server within tor? An http hidden service with the .onion link

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread Paritesh Boyeyoko
@jj tor The fact that your relay is refusing connections says that the port isn't open, which is a good thing. I suspect that persons unknown have port scanned your VPS, realised that you have Tor running (on standard ports) and is speculatively using a bot to (hopefully) connect to the SOCKS

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread jj tor
Hello again, indeed, the port 9050 is closed, but not filtered. I've set up a drop rule in the VPS firewall( Parallels Plesk Panel) on this port, but it's not working fine. I am amazed by all the amount of this kind of traffic, more than 700 packets/second. According to Kent Backman, this is the

[tor-relays] exit and skype

2013-11-05 Thread Jan Hendrik den Besten
Boy, now I am in trouble... I run an exit node from my home address for a few weeks now, but my gf starts complaining she cannot use Skype anymore to chat with her mum. I understand Microsoft blocks all tor exits from accessing Skype. Is there anything I can do except converting the exit into a r

Re: [tor-relays] exit and skype

2013-11-05 Thread Lars Noodén
On 11/05/2013 09:00 PM, Jan Hendrik den Besten wrote: > Boy, now I am in trouble... > > I run an exit node from my home address for a few weeks now, but my gf > starts complaining she cannot use Skype anymore to chat with her mum. > > I understand Microsoft blocks all tor exits from accessing Sky

Re: [tor-relays] exit and skype

2013-11-05 Thread Ryan Winner
Use Google Hangouts. On Tue, Nov 5, 2013 at 9:54 AM, Lars Noodén wrote: > On 11/05/2013 09:00 PM, Jan Hendrik den Besten wrote: > > Boy, now I am in trouble... > > > > I run an exit node from my home address for a few weeks now, but my gf > > starts complaining she cannot use Skype anymore to c

Re: [tor-relays] exit and skype

2013-11-05 Thread Zack Becker
I would recomend against google hangouts(even though its more widely used) because google isn't private On 11/5/2013 11:59 AM, Ryan Winner wrote: Use Google Hangouts. On Tue, Nov 5, 2013 at 9:54 AM, Lars Noodén > wrote: On 11/05/2013 09:00 PM, Jan Hendrik

Re: [tor-relays] exit and skype

2013-11-05 Thread David Huerta
Linphone is a decent alternative too if you need video chat. On Tue, Nov 5, 2013 at 2:54 PM, Lars Noodén wrote: > On 11/05/2013 09:00 PM, Jan Hendrik den Besten wrote: > > Boy, now I am in trouble... > > > > I run an exit node from my home address for a few weeks now, but my gf > > starts compl

Re: [tor-relays] exit and skype

2013-11-05 Thread Jan Hendrik den Besten
> On Tue, Nov 5, 2013 at 2:54 PM, Lars Nood?n wrote: > > > On 11/05/2013 09:00 PM, Jan Hendrik den Besten wrote: > > > Boy, now I am in trouble... > > > > > > I run an exit node from my home address for a few weeks now, but my gf > > > starts complaining she cannot use Skype anymore to chat wit

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread I
Ip tables are a mystery to me.Can someone either explain them or point to a complete explanation, please?Robert  "Also, use iptables! If it is a dedicated VPS then drop anything you dont recognize, "leaving only Tor ports (9001,9030 default) and maybe a service port like 22 for SSH for "somethi

Re: [tor-relays] Amazon abuse report

2013-11-05 Thread Gordon Morehouse
Kevin C. Krinke: >> On Nov 4, 2013, at 7:13 PM, Nelson >> wrote: >> >> I do believe there is a benefit to Torrents as many of us can >> attest to, ex: fast downloads of different Linux distros; but if >> your use of Torrents is in fact legit then why use Tor for >> downloading your legal con

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread Gordon Morehouse
On Tue, 5 Nov 2013 20:10:09 +0100, jj tor wrote: > Hello again, > > > indeed, the port 9050 is closed, but not filtered. I've set up a drop rule > in the VPS firewall( Parallels Plesk Panel) on this port, but it's not > working fine. > > I am amazed by all the amount of this kind of traffic, m

Re: [tor-relays] Amazon abuse report

2013-11-05 Thread Gordon Morehouse
Er, the quoting on my last post was incorrect, it should look like this: > Kevin C. Krinke: > > >> On Nov 4, 2013, at 7:13 PM, Nelson > >> wrote: > >> > >> I do believe there is a benefit to Torrents as many of us can > >> attest to, ex: fast downloads of different Linux distros; but if > >

Re: [tor-relays] exit and skype

2013-11-05 Thread Gordon Morehouse
On Tue, 05 Nov 2013 12:04:56 -0800, Zack Becker wrote: > I would recomend against google hangouts(even though its more widely > used) because google isn't private I'll say! Quite rather the opposite of private in all senses! Recovering Google services addict, Gordon M. > > > On 11/5/201

Re: [tor-relays] exit and skype

2013-11-05 Thread Kevin C. Krinke
On 2013-11-05 8:27 PM, Gordon Morehouse wrote: > > Recovering Google services addict, > Gordon M. > +1 -- Kevin C. Krinke GnuPG - 851662D2 - 0x18C67F61851662D2 http://kevin.c.krinke.ca/851662D2.asc signature.asc Description: OpenPGP digital signature _

Re: [tor-relays] Traffic in port 9050 in a relay (denial of service attack?)

2013-11-05 Thread Andreas Krey
On Tue, 05 Nov 2013 14:09:40 +, Thomas Hand wrote: ... > Also, use iptables! If it is a dedicated VPS then drop anything you dont > recognize, What for? The ports that you want to block are rejected by the kernel anyway, as there is no one listening. (The minor added protection that malware ne