[tor-relays] exit operators: overall DNS failure rate above 5% - please check your DNS

[Ralph Seichter]

On 20.10.18 10:33, Toralf Förster wrote:

> What about diversity? Running unbound at every Tor relay sounds like
> a bad idea.

Tor exits benefit from a caching, DNSSEC-capable resolver that is able
to handle the required load. Dnsmasq does not handle a high connection
count well. BIND9 and Unbound work fine, the latter being easier to
setup in a role that suits Tor.

-Ralph