[tor-relays] improving the badexit flag process

Philipp Winter phw at nymity.ch
Tue Jul 15 14:24:35 UTC 2014


On Mon, Jul 14, 2014 at 10:32:27PM +0000, Nusenu wrote:
> How long does it usually take to detect a newly started badexit?

I have an unfinished code branch which should handle continuous
scanning.  Ideally, that would make it possible to detect bad relays
within a couple of hours.

> quote: "we scanned all exit relays several times a week."
> So I guess less than 2days to detect a new malicious exit?

It depends on when you run it.  At this point, I run it every other day.

> Did your scanner detect this occurrence (D9B6E8F3) before it has been
> reported on this mailing list?

No, I didn't run it before this email showed up.

> Is there already a mailing list for automated scan result alerts?
>  - I haven't found one.

No.

> What do you think about creating one where every scanner sends its
> alerts to?
> (something similar to the consensus-health ML)

There are still several issues which have higher priority but that might
be useful.

Cheers,
Philipp


More information about the tor-relays mailing list