Default Exit Policy
Nathaniel Dube
njdube at gmail.com
Fri May 23 04:59:28 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I was looking at my server's stats at https://torstatus.kgprog.com and noticed
that it has an exit policy that I didn't put in my config file. For
example...
reject 0.0.0.0/8:*
reject 169.254.0.0/16:*
reject 127.0.0.0/8:*
reject 192.168.0.0/16:*
reject 10.0.0.0/8:*
reject 172.16.0.0/12:*
reject 75.63.1.109:*
reject *:25
reject *:119
reject *:135-139
reject *:445
reject *:465
reject *:563
reject *:587
reject *:1214
reject *:4661-4666
reject *:6346-6429
reject *:6699
reject *:6881-6999
accept *:*
The only part of that I have in my config file is [accept *:*]. Is the rest
some kind of defaults? I noticed one of the defaults is [reject *:587] which
I'm wondering why that would be in the defaults. That ports is used for
sending secure email. Port 25 I can understand but 587?! I use that port
for gmail. I have two gmail accounts. One is this one which is tied to my
real name. The other isn't and I use with Thunderbird and the torbutton
addon. I've noticed that sometimes I can't send email and sometimes I can.
It all depends on the current circuit. After seeing the defaults exit policy
I can see why I've been having the issues with my email.
The point of this email?! I wish to understand the rational of having the
defaults block ports used for secure encrypted protocoles.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4-svn0 (GNU/Linux)
iD8DBQFINk83vsn/sQCIOqQRAn8nAKCHtbwbJgzK5LWyKdVOY7YaxgV1uwCeN78A
WSa9RDSj0/XcXGlqy2KhUnA=
=PtV5
-----END PGP SIGNATURE-----
More information about the tor-talk
mailing list