<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Hi,<br>
<br>
I got the same message yesterday, I asked leaseweb to put our exit
node(hviv103) in a "dirty" ip-block and asked sectoor for a
clarification on what happened. No reply to date of any party.<br>
<br>
For now, I have shutdown the server.<br>
<br>
Sorry to hear :(<br>
<br>
Best,<br>
Jurre<br>
<br>
On 05/21/2015 09:36 PM, blaatenator wrote:<br>
</div>
<blockquote cite="mid:555E33DB.30805@openmailbox.org" type="cite">
<meta http-equiv="content-type" content="text/html;
charset=windows-1252">
Hi all,<br>
<br>
FYI: Yesterday I got the notice below from Leaseweb. I picked them
because Leaseweb is mentioned in the <a moz-do-not-send="true"
href="https://trac.torproject.org/projects/tor/wiki/doc/GoodBadISPs">Good/Bad
ISP</a> post. <br>
Apparently a blacklist named SECTOOR added a whole IP block of
Leaseweb to block my Exit relay. Since this list is used by some
bigger corporations, it got some other customers in trouble and
they asked me to restrict the mentioned ports. <br>
<br>
I understand the reasoning and can't blame them for asking my I
guess (and since most relevant ports are not mentioned I guess it
is not too bad), but I found it a bit weird that a whole subnet is
being listed.<br>
<br>
On 05/20/2015 03:20 PM, Lesley Koomen wrote:> Dear sir, madam,<br>
> <br>
> It appears you are hosting a TOR node on your LeaseWeb IP
address.<br>
> This has resulted in the block of a (part) LeaseWeb IP
subnet. (/24)<br>
> As the subnet is added on the SECTOOR blacklist<br>
> (<a moz-do-not-send="true" class="moz-txt-link-freetext"
href="http://www.sectoor.de/tor.php">http://www.sectoor.de/tor.php</a>)
this is affecting customers in the same<br>
> range as yourself.<br>
> <br>
> The SECTOOR blacklist is e.g. implemented by Hotmail, Live
and Gmail.<br>
> This results in other customers not being able to longer use
the mail<br>
> services of these companies.<br>
> Sectoor TOR DNSBL lists every IP address which is known to
run a tor<br>
> server and allow their clients to connect to one of the
following ports:<br>
> <br>
> * Port 25<br>
> * Port 194<br>
> * Port 465<br>
> * Port 587<br>
> * Port 994<br>
> * Port 6657<br>
> * Ports 6660-6670<br>
> * Port 6697<br>
> * Ports 7000-7005<br>
> * Port 7070<br>
> * Ports 8000-8004<br>
> * Port 9000<br>
> * Port 9001<br>
> * Port 9998<br>
> * Port 9999<br>
> <br>
> <br>
> Therefore, we kindly, yet urgently ask you to disable the
connection to<br>
> the mentioned ports within 24 hours. Failure to comply and
respond<br>
> (confirm) to this warning, will result in a block of your
involved IP<br>
> address(es).<br>
> <br>
> Thank you for your co-operation and understanding.<br>
> <br>
> <br>
> <br>
> Kind regards,<br>
> <br>
> Lesley Koomen<br>
> Team Manager Abuse Prevention<br>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
tor-relays mailing list
<a class="moz-txt-link-abbreviated" href="mailto:tor-relays@lists.torproject.org">tor-relays@lists.torproject.org</a>
<a class="moz-txt-link-freetext" href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays</a>
</pre>
</blockquote>
<br>
</body>
</html>