I turned on some logging on my firewall today to help troubleshoot and
issue and noticed a load of connections from external addresses to port
9050 on my exit node. I don't think that should be publicly accessible. Am
I wrong about it being publicly accessible and does anyone else see lots of
be
sending some abuse emails and writing a new fail2ban rule!
Thanks,
Greg
On Thu, Feb 27, 2014 at 8:40 PM, Roger Dingledine a...@mit.edu wrote:
On Thu, Feb 27, 2014 at 11:39:55PM +0100, Jeroen Massar wrote:
On 2014-02-27 23:12, Greg W wrote:
I turned on some logging on my firewall today
Dingledine a...@mit.edu wrote:
On Fri, Feb 28, 2014 at 09:22:10AM -0600, Greg W wrote:
Roger,
You've confirmed my thoughts. I suspected that some people were bulk
scanning relays/exits looking for open proxies too which is why I was
curious if any other operators were seeing this. Thus
What are the IPs connecting to you? I've been watching my firewall logs
here recently and see several hosts from several distinct subnets
consistently trying to connect to TOR related ports.
On Fri, Mar 14, 2014 at 5:50 AM, I beatthebasta...@inbox.com wrote:
One of mine is being DDOSed today.
It is firewalled. I should have said connection attempts in my first
email.
On Sun, Mar 23, 2014 at 12:09 PM, Tora Tora Tora t...@allthatnet.com wrote:
On 02/28/2014 11:14 AM, Greg W wrote:
Are you suggesting that the IP's making the connections are potentially
exit nodes (they're not, I've