On 10/29/2015 02:42 PM, Green Dream wrote:
(Oops, sorry, an errant keyboard shortcut sent the email too early.)
Mirimir: aside from the nickname, do you have any reason to believe it was out of the ordinary? The exit policy mostly only seems to allow non-encrypted services (80 but not 443, 143 but not 993), but that alone isn't enough to give it the BadExit flag:
https://trac.torproject.org/projects/tor/wiki/doc/ReportingBadRelays#Whatisa...
I had no reason to wonder about it, except for the name. But the fact that it only seems to allow non-encrypted services is suspicious.
I'm guessing that it is or was part of some research project that involves traffic interception.