Re: [tor-relays] DoS stats from exits running 0.3.3.2-alpha

2018-02-17 Thread Tyler Johnson
Sometimes I get lost, and only now realize you wanted statistics from exit relays, my bad. As an operator of two guard relays that were impacted by the recent disruptive activity, the update has also made a difference. I'll just go crawl back under my rock now... On Feb 17, 2018 09:13, "

Re: [tor-relays] DoS stats from exits running 0.3.3.2-alpha

2018-02-17 Thread Tyler Johnson
Updated yesterday to 0.3.3.2-alpha on OpenBSD 6.2 with KISTLite scheduler and no firewall rules to hinder the onslaught. SVnode01 9CAFA2463A0DBE02847ED3405185CF67DA38BF8E Heartbeat: Tor's uptime is 17:59 hours, with 17370 circuits open. I've sent 330.92 GB and received 327.63 GB. Circuit

Re: [tor-relays] Api for atlas.torproject.org

2018-02-16 Thread Tyler Johnson
On Thu, Feb 15, 2018 at 7:26 PM, flipchan wrote: > Hey, > Im trying to write an ip checker script for a mail server/firewall and i > want to be able check if the ip is a tor relay, is their a api for looking > up ips on atlas.torproject.org ? > I found querying

Re: [tor-relays] Experimental DoS mitigation is in tor master

2018-01-31 Thread Tyler Johnson
at a first glance master (tor-0.3.3.1-alpha-42-g2294e330b) works like a charm here at a hardened stable Gentoo with vanilla kernel 4.14.16 at both Tor exit relays Is that with or without additional firewall rules to combat the abundant connection issues?

Re: [tor-relays] High number of simultaneous connections from a single host

2018-01-31 Thread Tyler Johnson
> > > > However I'm still interested in how to block this kind of abuse outside of > tor > itself. I'm looking to implement some iptables limiting and I'm wondering > how > the limits should be so that I don't deny normal tor traffic. > > Would a 10 connections per IP limit be OK? Should be higher

Re: [tor-relays] Good vsp providers

2018-01-19 Thread Tyler Johnson
So this is as good as it gets. > > > On 20 Jan 2018, at 01:45, Tyler Johnson <tylrcjh...@gmail.com> wrote: > > Even if RelayBandwidthRate is set to maximize the available bandwidth? > > > Yes. > RelayBandwidthRate is the maximum limit on your relay's traffic.

Re: [tor-relays] Good vsp providers

2018-01-19 Thread Tyler Johnson
Even if RelayBandwidthRate is set to maximize the available bandwidth? On Jan 19, 2018 08:07, "niftybunny" wrote: I got around 80-100mbit with an 200mbit VPS. Please remember: Tor will NOT use all your bw. So this is as good as it gets.

Re: [tor-relays] Good vsp providers

2018-01-19 Thread Tyler Johnson
Are the advertised bandwidths from online.net what you will see in actual practice? For instance, if one of their LTS servers comes with 300Mbps, will you get close to that throughput? I have a few servers with oneprovider.com (online.net reseller I believe) and it's about 1/10 what is

Re: [tor-relays] Setting myfamily

2018-01-04 Thread Tyler Johnson
Each relay only needs to list the other servers in its family; it doesn’t need to list itself, but it won’t hurt if it does. On Thu, Jan 4, 2018 at 12:26 PM, Fabian A. Santiago wrote: > When setting myfamily on a particular relay, do you list itself plus others > or

Re: [tor-relays] Recent wave of abuse on Tor guards

2017-12-22 Thread Tyler Johnson
resting to see Hetzner there … > > Markus > > > On 22. Dec 2017, at 16:14, Tyler Johnson <tylrcjh...@gmail.com> wrote: > > Out off 133 IPs blocked with my rather aggressive firewall ruleset: > > leaseweb.com - 26 > your-server.de - 66 > ip-54-36-51.eu - 17 > >

Re: [tor-relays] Recent wave of abuse on Tor guards

2017-12-22 Thread Tyler Johnson
Out off 133 IPs blocked with my rather aggressive firewall ruleset: leaseweb.com - 26 your-server.de - 66 ip-54-36-51.eu - 17 That was in < 24hrs. On Dec 22, 2017 3:38 AM, "niftybunny" wrote: > Short answer: > > https://i.imgur.com/8QLptcz.png > > Around 15000 -

Re: [tor-relays] Too many connections warning

2017-12-07 Thread Tyler Johnson
I believe this warning describes a lack of available file descriptors, limiting the amount of connections your tor relay is able to make. ulimit -n is exactly the command you want to use to raise that limit from your current 1024. What exactly that number should be, I couldn't say, but you could

Re: [tor-relays] Tor t-shirts

2017-10-20 Thread Tyler Johnson
On Oct 20, 2017 14:38, "Vasilis" wrote: Has everyone eligible for a Tor t-shirt got one already? What is the criteria for said eligibility? ___ tor-relays mailing list tor-relays@lists.torproject.org

Re: [tor-relays] Email suggesting to send DNS requests to a specific open DNS

2017-09-12 Thread Tyler Johnson
This guy sure is persistent! Check out this recent thread: https://lists.torproject.org/pipermail/tor-relays/2017-September/012934.html On Sep 12, 2017 11:17, wrote: > Hello, > > Recently, I installed a new Tor exit node. A few days later, I received an > email on the

Re: [tor-relays] Would you also like to have family-level atlas pages?

2017-09-11 Thread Tyler Johnson
I realize now why I don't tend to voice my opinion on these lists... I'm an idiot :( After seeing the below example, I think it's a great idea. Sorry for the noise On Sep 11, 2017 21:37, "John Ricketts" wrote: Roger, The kind folks at Nos Oignons gave me the code. I still

Re: [tor-relays] *.old files in ./keys are too new

2017-07-19 Thread Tyler Johnson
Are you sure about that? On Jul 19, 2017 13:47, "Toralf Förster" wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > I do wonder, why the *.old files are newer than their counterparts: > > - -rw--- 1 tor tor 887 Jul 15 21:51 secret_onion_key > - -rw---

Re: [tor-relays] Bandwidth Accounting troubles

2017-04-02 Thread Tyler Johnson
> > This seems to be an internal state management issue. > I have opened ticket #21810 to track it. > https://trac.torproject.org/projects/tor/ticket/21810 > > I would like to confirm tor's behaviour when this happens: > > Is there something listening on 185.92.223.3:8080? > Is it this tor

Re: [tor-relays] Bandwidth Accounting troubles

2017-04-01 Thread Tyler Johnson
> > I would like to confirm tor's behaviour when this happens: > > Is there something listening on 185.92.223.3:8080? No, there doesn't seem to be: $ netstat -an -p tcp -f inet | grep LISTEN tcp 0 0 *.443 *.*LISTEN tcp 0 0

Re: [tor-relays] Bandwidth Accounting troubles

2017-03-28 Thread Tyler Johnson
On 3/24/17, teor <teor2...@gmail.com> wrote: > >> On 22 Mar 2017, at 07:46, Tyler Johnson <tylrcjh...@gmail.com> wrote: >> >> Hello! >> >> I've enabled bandwidth accounting on my tor relay, but encountering >> issues when the relay attempts to

Re: [tor-relays] Tor Relay On Pfsense 2.3.3-RELEASE-p1 (amd64)

2017-03-28 Thread Tyler Johnson
On 3/28/17, Edwin Garzón wrote: > Hi all. > Need you help, > I have pfsense *2.3.3-RELEASE-p1* (amd64) and > pkg install tor: > pkg: No packages available to install matching 'tor' have been found in the > repositories > > I want to install a Tor relay > > Thank > A

[tor-relays] Bandwidth Accounting troubles

2017-03-21 Thread Tyler Johnson
Hello! I've enabled bandwidth accounting on my tor relay, but encountering issues when the relay attempts to wake from hibernation Mar 20 23:47:25 tcj Tor[74346]: Bandwidth soft limit reached; commencing hibernation. No new connections will be accepted Mar 20 23:52:30 tcj Tor[74346]: