[tor-relays] DoS attack on Tor exit relay
teor
teor at riseup.net
Wed Jul 31 23:28:28 UTC 2019
Hi,
> On 1 Aug 2019, at 02:27, Larry Brandt <lbrandt at cni.net> wrote:
>
> Yes, I have fail2ban installed but the attack is focused on my ORPort 9001. Similarly, I have an external firewall but it permits 9001 port passage.
If you're trying to prevent too many connections, you can adjust the
DoS torrc options:
DoSConnectionEnabled 1
DoSConnectionMaxConcurrentCount 1
DoSConnectionDefenseType 2
If that works, try adjusting DoSConnectionMaxConcurrentCount a bit
higher: 10 or 25 are good values.
T
--
teor
----------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20190801/7311026b/attachment-0001.sig>
More information about the tor-relays
mailing list