It makes me happy but alas it was forwarded to me by the provider and didn't include an email address... so now I can not reply, SIGH
Question: this has come from port 22 usage - how important is this port to the general population? Thoughts...
Regards,
Paul
I created a new Exit some days ago and only allowed Ports 53, 80, 443 for Exit. Last Provider shut down my Exit because of many complaints.
Am 11.10.2017 um 11:38 schrieb Paul Templeton paul@coffswifi.net:
It makes me happy but alas it was forwarded to me by the provider and didn't include an email address... so now I can not reply, SIGH
Question: this has come from port 22 usage - how important is this port to the general population? Thoughts...
Regards,
Paul
tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
On Wed, 11 Oct 2017 09:38:22 +0000 (UTC) Paul Templeton paul@coffswifi.net wrote:
It makes me happy but alas it was forwarded to me by the provider and didn't include an email address... so now I can not reply, SIGH
I believe in such case you are supposed to reply to your provider, usually to indicate that the problem the abuse report relates to "has been dealt with" and will not repeat. In case of a Tor Exit you cannot guarantee that, aside from removing port 22 from your exit policy.
Question: this has come from port 22 usage - how important is this port to the general population? Thoughts...
There was a mini discussion recently on that, with the general consensus seeming to be that keeping it open is more trouble than it's worth. https://lists.torproject.org/pipermail/tor-relays/2017-October/013188.html
Thanks Roman,
I believe in such case you are supposed to reply to your provider
I will
There was a mini discussion recently on that, with the general consensus seeming to be that keeping it open is more trouble than it's worth. https://lists.torproject.org/pipermail/tor-relays/2017-October/013188.html
I'll drop port 22
Regards,
Paul
Hi Paul,
On 11/10/2017 13:28, Paul Templeton wrote:
I believe in such case you are supposed to reply to your provider
I will
For my experience, I do the same.
There was a mini discussion recently on that, with the general consensus seeming to be that keeping it open is more trouble than it's worth. https://lists.torproject.org/pipermail/tor-relays/2017-October/013188.html
I'll drop port 22
You may be interested in these Reduced Exit Policies: https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy
there are several of them which are progressively strictest and stricter.
Cristian
So far I have had no abuse emails or complaints after two months on a new server, using the longer suggested reduced policy list, but I do exclude 80, which seems safer but limits the role as an exit. But 443 open. I closed other potential abuse ports such as 22, 8080, 5900.
It's not the complaints that worry me, but the reaction of the ISP with any complaints, so best avoided until I can afford to be my own ISP.
What are the risks of abuse reports in opening up a wide range of high port numbers as an exit say 20,000-50,000?
Gerry
-----Original Message----- From: tor-relays [mailto:tor-relays-bounces@lists.torproject.org] On Behalf Of Cristian Consonni Sent: 12 October 2017 11:10 To: tor-relays@lists.torproject.org Subject: Re: [tor-relays] Just got my first Abuse email :-)
Hi Paul,
On 11/10/2017 13:28, Paul Templeton wrote:
I believe in such case you are supposed to reply to your provider
I will
For my experience, I do the same.
There was a mini discussion recently on that, with the general consensus seeming to be that keeping it open is more trouble than it's worth. https://lists.torproject.org/pipermail/tor-relays/2017-October/013188 .html
I'll drop port 22
You may be interested in these Reduced Exit Policies: https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy
there are several of them which are progressively strictest and stricter.
Cristian _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Hello,
I will suggest to first reply to the abuse email, rather than using a reduced exit policy.
Many times ISPs or abuse email senders (even in automated abuse emails) are happy with any response that they can show to their upstream provider or abuse reporter.
Dr Gerard Bulger:
So far I have had no abuse emails or complaints after two months on a new server, using the longer suggested reduced policy list, but I do exclude 80, which seems safer but limits the role as an exit. But 443 open. I closed other potential abuse ports such as 22, 8080, 5900.
It's not the complaints that worry me, but the reaction of the ISP with any complaints, so best avoided until I can afford to be my own ISP.
What are the risks of abuse reports in opening up a wide range of high port numbers as an exit say 20,000-50,000?
From: 'https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy'
"Since bittorrent clients can be run on any port, and most of them pick random ports, every port you add to your exit policy increases the probability of a bittorrent client using your exit node to connect to a monitored peer that is listening on that port. This means that enabling ranges of ports is especially bad, unfortunately. Each new port adds 1/65535 (or even more if eg. the port numbers listen below are preferred to use for torrent traffic b/c they are well known now) to your risk of getting DMCA takedowns. The privileged ports (1-1024) have a smaller risk of getting DMCA takedowns."
Also have a look at the IANA registered ports: https://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers#Registered_po...
~Vasilis
tor-relays@lists.torproject.org
-
Cristian Consonni -
Dr Gerard Bulger -
Paul Templeton -
Roman Mamedov -
Vasilis -
Volker Mink