Hi,
I've heard once of a non-exit relay getting seized because it was used as guard by a ransomware. We can't tell for sure, but maybe it's something alike: some kind of virus connecting to its control server over tor and choosing this relay as its guard, causing your ip to be flagged by some IDS. This is very much a guess, but I fail to see a better explanation.
Best regards,
On Tue, 11 Apr 2023 at 18:33, Finn finn@grimpe-holding.de wrote:
Hello everyone,
We are hosting multiple relays under our AS 210558 and received an email from a local police station in Germany requesting user data, nothing unusual.
The weird thing is, that the relay in question is only a relay and not an exit node since its creation (185.241.208.179) (https://nusenu.github.io/OrNetStats/w/relay/B67C7039B04487854129A66B16F5EE3C...) - anyone has an idea how this happens?
Best regards_______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays