[tor-relays] Can you double check my exit policy for usefulness while minimizing complaints

Nate Homier tor at universal-mechanism.org
Tue Apr 9 18:35:39 UTC 2013


I was wondering if I have a good compromise between not allowing
BitTorrent and allowing enough ports to be useful.  Here's mine.

ExitPolicy accept *:119 # accept nntp as well as default exit policy
ExitPolicy accept *:22  # ssh
ExitPolicy accept *:80 # www
ExitPolicy accept *:443 # www secure
ExitPolicy accept *:110 # pop3
ExitPolicy accept *:143 # imap
ExitPolicy accept *:995 # pop3 secure
ExitPolicy accept *:6660-6669 # irc
ExitPolicy accept *:6697 # irc ssl
ExitPolicy accept *:7000-7001 # irc ssl
ExitPolicy accept *:706 # silc
ExitPolicy accept *:1863 # msn
ExitPolicy accept *:5050 # yahoo messenger
ExitPolicy accept *:5190 # various im programs
ExitPolicy accept *:5222 # various im programs
ExitPolicy accept *:5223 # various im programs
ExitPolicy accept *:8300 # im
ExitPolicy accept *:8888 # www
ExitPolicy accept *:465 # smtps (SMTP over SSL)
ExitPolicy accept *:993 # imaps (IMAP over SSL)
ExitPolicy accept *:994 # ircs (IRC over SSL)
ExitPolicy reject *:* # no exits allowed

How does this compare with this policy located here:
https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy

Should I use the official Tor reduced policy or is mine good enough to
be useful while minimizing complaints.

Nate


More information about the tor-relays mailing list