Michael Holstein wrote >I do believe one Russian exit node (was/is?) doing that .. by posting >usernames/passwords (I guess they're dunning dsniff or whatever on their >TOR box and piping the output to a webserver). >Their stated motivation for this was to drive home the point about >end-to-end encryption, but I question their methods, which brings me to >ExcludeNodes .. a handy config variable ;) woowoo Thats a pretty nasty way of making that point. After most web sites on the open internet dont support encryption, unless you are making a payment. The problem with using excludenodes is that we all have to do it as individuals - which is a whole lot of work. In a system using a network wide exclusion (unverifiednodes etc) the primary level protectionj is done for us. And we would also all have to do our own "watching" for dangerous nodes. There's no WARNING system in place. Its a whole lot of work we now need to do. As yet nobody has given the ips of these loggin nodes yet and we've been talking about this for a couple of days. Shall I just exclude every node in the usa if i go to a us site? Will that work?