for those not allowing exiting - reasonably safe ports

Daniel mysticone at foxybanana.com
Thu Feb 2 06:37:59 UTC 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

They won't necessarily use your node to launch DoS attacks.  They'll
annoy the heck out of people on IRC, abuse channels and users, etc., and
then in frustration the people they've annoyed will then launch a DoS
attack against you.  Either that, or they complain to your ISP and you
run the risk of being shut down.

Daniel

Glymr Darkmoon wrote:
> hm weird, i've only got those ports open on mine, but i have
> rate-limited it to half my outbound traffic speed (which is 64kbit), so
> i dunno. i think 3kb/s doesn't allow much in the way dos attacking
> anyway. haven't had a problem yet.
> 
> On Wed, 1 Feb 2006 22:23:32 -0800, "Greg Hewgill" <ghewgill at gmail.com>
> said:
>> On 2/1/06, Glymr Darkmoon <glymr_darkmoon at ml1.net> wrote:
>>> probably one should add 6667 and 6601 and 994 for irc, irc also does not
>>> do file transfers on these ports... 706 for silc as well
>>
>> Allowing an IRC exit node just about got me shut down by my hosting
>> provider. IRC is a popular avenue for abuse and will invite serious DoS
>> attacks against your tor node.
>>
>> Greg Hewgill
>> http://hewgill.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFD4ajHwumGY7kXWaMRAgAVAJ9EFWseERNBdZkIrEOuyB0yDgkYcgCfVRbt
Gr/sN1iTaPjPgRGOf4e8msc=
=2gYu
-----END PGP SIGNATURE-----



More information about the tor-talk mailing list