[tor-relays] DoS attack on Tor exit relay

teor teor at riseup.net
Wed Jul 31 23:28:28 UTC 2019


Hi,

> On 1 Aug 2019, at 02:27, Larry Brandt <lbrandt at cni.net> wrote:
> 
> Yes, I have fail2ban installed but the attack is focused on my ORPort 9001.  Similarly, I have an external firewall but it permits 9001 port passage.

If you're trying to prevent too many connections, you can adjust the
DoS torrc options:
DoSConnectionEnabled 1
DoSConnectionMaxConcurrentCount 1
DoSConnectionDefenseType 2

If that works, try adjusting DoSConnectionMaxConcurrentCount a bit
higher: 10 or 25 are good values.

T

--
teor
----------------------------------------------------------------------

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20190801/7311026b/attachment-0001.sig>


More information about the tor-relays mailing list