[tor-relays] Attacker IP database

2 Aug 2013


      Is there any kind of compiled list of IPs that relay operators can refer to
that are known bad IPs (sources of brute force SSH attempts, etc.)? Is
there a reason to NOT block (drop) traffic from these IPs?
Here are some that I have seen recently trying to brute force common user
accounts and root password attempts:
198.50.197.98
220.161.148.178
223.4.217.47
199.187.125.250
175.99.95.252
62.64.83.38
125.209.110.234
37.235.53.172
Also, in general what are some good security practices to keep in mind
while running a Tor relay?
Thanks,
Bryan

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

[tor-relays] Attacker IP database