[tor-relays] botnet? abusing/attacking guard nodes
Santiago
santiagorr at riseup.net
Wed Dec 20 14:10:16 UTC 2017
El 19/12/17 a las 11:13, teor escribió:
…
> If there are 65535 connections open from a source IP, and they all go to
> Tor Guards, and the clients weight connections according to Guard
> probability, then the largest guard will have 0.91% of 65535 connections,
> or approximately 597.
>
> Most guards would see 10-200 connections per IP.
…
My relay B33BFA9AA0005730C1C0E8F7E6F53CF3C5716BD6 is not currently
tagged as Guard, and I am seeing more than twenty IPv4s with more than
10 connections, and one with 147. Should that be considered normal for a
non-guard relay?
Cheers,
-- Santiago
More information about the tor-relays
mailing list