[tor-relays] My VPS relay has just been hacked

Libertas libertas at mykolab.com
Sun Oct 26 01:39:15 UTC 2014

For what it's worth, there's an operational security document on the Tor


However, that document covers more advanced techniques mostly intended
for serious attackers such as government agencies. Others have already
mentioned to you the simplest options, which should keep you safe from
automated botnet hackers. These include: allow only public key
authentication on SSH, use fail2ban or sshguard, update frequently, and
don't run anything unnecessary (a torrent client, an HTTP/FTP server).

Some relevant links:

https://help.ubuntu.com/community/SSH/OpenSSH/Keys (if you're only going
to read/do one thing, make it this)



More information about the tor-relays mailing list