[tor-relays] >23% Tor exit relay capacity found to be malicious - call for support for proposal to limit large scale attacks
nusenu
nusenu-lists at riseup.net
Mon Jul 6 20:54:09 UTC 2020
Scott Bennett:
> Your proposed method of delaying the problem would impose a labor burden
> on the tor project as well
If we assume that malicious relay activity is impacted I'd assume that the time saved
using the proposal might as well outweight the time spend on bad-relays@
After implementation the proposal does not require resources from The Torproject
besides publishing of the registry.
> Why would
> an automated solution not work?
I believe the email verification can be automated completely.
Also the mailing of letters can be automated but if - let's say 10 - letters/year are send
I'm not sure it is worth it.
> That would be a fast reaction and would not depend
> upon multiple human actions.
There is no human interaction involved in the proposal to enforce a cap. The cap would be "on by default"
and lifted after verification is passed.
> You might also implement a "repeat offender"
> policy, whereby if the authorities lifted a relay's Exit flag more than n times
> within a month, a BadExit flag would be applied in addition, which then (and
> only then) would require the operator to contact the tor project about it.
Malicious actors usually come back with new relays (new keys, new IPs)
after they got cough.
--
https://mastodon.social/@nusenu
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20200706/64af5516/attachment.sig>
More information about the tor-relays
mailing list