[tor-relays] does it make sense to close unused ports at a tor relay with iptables ?

Tim Wilson-Brown - teor teor2345 at gmail.com
Thu Apr 28 09:14:18 UTC 2016

> On 28 Apr 2016, at 18:21, Toralf Förster <toralf.foerster at gmx.de> wrote:
> Signed PGP part
> Me do wonder, if it has an advantage or not.

Ports in, or ports out?

Closing inbound ports is a security precaution, but don't close ssh by mistake!

Closing outbound ports is a bad idea, because other Tor relays can choose any port for their ORPort and DirPort.


Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 842 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20160428/b85e964f/attachment.sig>

More information about the tor-relays mailing list