[tor-talk] Securing a Relay - chroot
CACook at quantum-sci.com
CACook at quantum-sci.com
Fri May 27 13:44:36 UTC 2011
On Thursday 26 May, 2011 06:44:19 CACook at quantum-sci.com wrote:
> On Thursday 26 May, 2011 05:37:06 Eugen Leitl wrote:
> > Why don't you like Linux vserver? My relay did some 350 GByte/day,
> > in a vserver guest on a low-end Atom box.
>
> It must necessarily share the network setup with the host, and so the LAN class C since I can't set up the router downstream with multiple IPs. Not secure. Also it would have the same firewall settings, and that is not acceptable either.
So nobody's actually thought about security for a relay and the need for a relay to be in the same class C as the LAN in order to access the router? What can be done?
More information about the tor-talk
mailing list