may relays could hard- implement some common exitting ips like those from torproject and tails? to take some exit-load from the network. for example activate exitting by gaining guard to some trustet ips or implement an torrc-option commonexit 0/1
Am Donnerstag, 3. September 2015 07:09 schrieb Tim Wilson-Brown - teor teor2345@gmail.com:
On 3 Sep 2015, at 14:55, tor-server-creator@use.startmail.com wrote: hi, what do you think about high restricted exits? i thought about solely accept some single ips.
In order to be assigned the Exit flag, a relay needs to exit to at least a IPv4 /8 netblock, on at least two ports from 80, 443, and 6667. Clients are also unlikely to use your relay as an Exit unless it has the Exit flag. (Clients preemptively build circuits to general-purpose exits, and use those circuits when they need to make an Exit connection.)
like so accept:*
berlin.ftp.media.ccc.de http://berlin.ftp.media.ccc.de: 195.54.164.50 2001:67c:20a0:5:0:0:0:cccc
eff.org http://eff.org 69.50.225.155 2607:f258:102:3:0:0:0:2
disconnect.me http://disconnect.me 54.221.221.253 107.21.253.239 50.19.226.59
startpage.com http://startpage.com 212.121.101.8 89.146.4.146 145.131.132.79
tails.boum.org http://tails.boum.org 204.13.164.188
torproject.org http://torproject.org 2001:41b8:202:deb:213:21ff:fe20:1426 2620:0:6b0:b:1a1a:0:26e5:4810 2001:858:2:2:aabb:0:563b:1e28 38.229.72.16 82.195.75.101 86.59.30.40 93.95.227.222 154.35.132.70 reject *.*
isnt it a bad idea? will i be flagged as bad exit by reducing exit like so^? wouldnt it take some load from the network while excude all complains cause this are tor-friendly ips?
thanks meanwhile
Am Freitag, 21. August 2015 02:23 schrieb s7r s7r@sky-ip.org:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hello, In the last 48 hours we went under the 'psychological' threshold of 1000 Exit Relays in the consensus. Right now, Thu Aug 20 23:57:02 UTC 2015, we have: 6234 Running relays 954 Exit relays I think we can improve this balance. Let's do it! This is a call for everyone: Please run Exit relays, or if you are running a middle relay turn it into an Exit relay! I have been running high capacity Exit relays for a very long time, and I tell you it's not a headache and it will not attract any problems if you just take care of the abuse complaints. During this very long time, 98% of the abuse complaints were automated messages which can safely be ignored (fail2ban notifications, portscans, web CMS plugins sending reports about http fetches, etc.) and the rest were from very nice people who didn't know what Tor is and how it works, but after explaining to them they actually liked the idea - gives you a really nice feeling. Only 2 times I have received email from law enforcement agents (which are just normal people like us, doing a hard job) - a complete and clear explanation was all that it took for them to fully understand and eliminate any doubt that the server in question is somehow interesting to them. Tor is _legal_ in all sane countries! We as a community are here and I give you my word that me and others will personally assist, in the measure and ways we can, whoever runs into troubles because of running an exit, which is highly unlikely. It is recommended to reject in your policy port 25 (it's not needed and it will blacklist you for spam messages if you leave it open). Allow all other ports, or use the reduced exit policy from torproject.org http://torproject.org if you want to allow only what is highly necessary. Don't think any longer about it ;)
- Email me directly any time if you need technical support in
setting things up, hardening the server or need a customized setup adapted to certain conditions.
- Email me directly any time if you have the funds needed to run
a Tor exit relay but don't know how to set it up, where to get it from or don't want to rent and run it under your real name.
- Email me directly any time if you need instructions about how
to deal with abuse complaints and short templates for replies. For live chat come on IRC, OFTC network, #tor channel. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQEcBAEBCAAGBQJV1m+CAAoJEIN/pSyBJlsRhD8H/3NpZniYVIELenCvxKNKIEeR J6hvSIwsAJUzlk+Hm5v74f7uzeXoLwA8z/FtzKCBVACOvUoCo1b4/2hF3wBMDfcw CsSZC0AkkIdF+4ePSIsjAU8giOr2uXkCS9CSoRyDnIebmyx5RkSnFDXgTg6/QLJT YJBuTrAA2anxqCHmqL9xHEDM40JhTMP6N6CR3aR4CCPkVOeELyyLTSgb637rZzUs EuRkliktZifirhENxOHzvMVv4D4X60lXeSo1i347gdPwTGuNpiL5fPu+ET0E1sTh Ol8Prvi6XP9yBojW7Up0q1y6083JkguLTbxQDomnqEYT7LCCqAFVBwdc1xWUdg0= =kFIY -----END PGP SIGNATURE----- _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Tim Wilson-Brown (teor) teor2345 at gmail dot com PGP: 968F094B (ABFED1AC & A39A9058 expire 15 Sep 2015)
teor at blah dot im OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F (From 1 Sep 2015)