[or-cvs] r14160: Revert tcp reset recommendation. It breaks 'connection refus (website/trunk/docs/en)
mikeperry at seul.org
mikeperry at seul.org
Sun Mar 23 19:53:37 UTC 2008
Author: mikeperry
Date: 2008-03-23 15:53:37 -0400 (Sun, 23 Mar 2008)
New Revision: 14160
Modified:
website/trunk/docs/en/tor-doc-relay.wml
Log:
Revert tcp reset recommendation. It breaks 'connection
refused' notification for exit nodes, and some newer
firewalls have moved to other TCP breakage mechanisms
anyways.
Modified: website/trunk/docs/en/tor-doc-relay.wml
===================================================================
--- website/trunk/docs/en/tor-doc-relay.wml 2008-03-23 02:30:22 UTC (rev 14159)
+++ website/trunk/docs/en/tor-doc-relay.wml 2008-03-23 19:53:37 UTC (rev 14160)
@@ -282,18 +282,7 @@
</p>
<p>
-
-17. (Unix only.) You may also want to improve accessibility of your node in
-censored locations by dropping TCP resets to its IP. Many national and
-institutional firewalls operate by killing TCP connections that contain
-censored keywords or byte patterns. On Linux, blocking these connection
-resets is accomplished by running
-'iptables -I INPUT -d your.tor.ip -p tcp --tcp-flags RST RST -j DROP'.
-
-</p>
-
-<p>
-18. If you installed Tor via some package or installer, it probably starts
+17. If you installed Tor via some package or installer, it probably starts
Tor for you automatically on boot. But if you installed from source,
you may find the initscripts in contrib/tor.sh or contrib/torctl useful.
</p>
More information about the tor-commits
mailing list