recent tor stream timeout errors...

Eugen Leitl eugen at leitl.org
Thu Dec 22 13:56:44 UTC 2005


On Thu, Dec 22, 2005 at 02:03:48PM +0100, Tristan Helmich wrote:

> Perhaps it is possible to detect typical P2P usage and ban it from the
> tor network?

I understand the new default exit policy already blocks P2P
(BT included) standard  ports.

My explicit exit policy looks like

ExitPolicy reject 0.0.0.0/255.0.0.0:*
ExitPolicy reject 169.254.0.0/255.255.0.0:*
ExitPolicy reject 127.0.0.0/255.0.0.0:*
ExitPolicy reject 192.168.0.0/255.255.0.0:*
ExitPolicy reject 10.0.0.0/255.0.0.0:*
ExitPolicy reject 172.16.0.0/255.240.0.0:*
ExitPolicy reject *:25
ExitPolicy reject *:119
ExitPolicy reject *:135-139
ExitPolicy reject *:445
ExitPolicy reject *:465
ExitPolicy reject *:587
ExitPolicy reject *:1214
ExitPolicy reject *:4661-4666
ExitPolicy reject *:6346-6429
ExitPolicy reject *:6699
ExitPolicy reject *:6881-6999
ExitPolicy accept *:*

IIRC Roger said this has been implicit default for a while.

-- 
Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
______________________________________________________________
ICBM: 48.07100, 11.36820            http://www.ativel.com
8B29F6BE: 099D 78BA 2FD3 B014 B08A  7779 75B0 2443 8B29 F6BE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20051222/ae149a71/attachment.pgp>


More information about the tor-talk mailing list