I so far have got away with no abuse with quite a wide range of ports open, avoiding obvious abuse ports and only allowing port 80 to a single Class A, chosen belonging to a benign country/service: x.x.x.x/8:80 Gets the server listed as an exit. I have not seen, via arm, anyone use port 80 as an exit, but exit on 443 and the other open ports are used a lot.
Perhaps my ISP is eating the abuse. I doubt it
Gerry
-----Original Message----- From: tor-relays [mailto:tor-relays-bounces@lists.torproject.org] On Behalf Of Nagaev Boris Sent: 04 December 2017 12:58 To: tor-relays@lists.torproject.org Subject: Re: [tor-relays] So long and thanks for all the abuse complaints
On Mon, Dec 4, 2017 at 12:39 PM, teor teor2345@gmail.com wrote:
Blocking port 80 isn't safe for users: it doubles the number of exits that they must use, which doubles their risk of a malicious exit.
The risk of using port 443 is much lower than the risk of using port 80, because information passed through 443 port is normally encrypted and authenticated.
How does the number of exits being affect the risk for users (given only 443 port is used)? IIUC the more servers the better, because harder to spy on a significant part of them.
-- Best regards, Boris Nagaev _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays