stuff making it around the exit policy?
Whysyn
whysyn at ericspeaks.com
Mon Jun 25 15:40:02 UTC 2007
In troubleshooting another problem on my server this morning, I found
what is apparently traffic that circumvents the ExitPolicy...
netstat output:
tcp 0 0 66.219.161.166:42132 131.215.166.198:6882
ESTABLISHED 26815/tor
66.219.161.166 is a secondary address on my box that does nothing but
tor. What gives?
Here is a copy of my ExitPolicy from torrc:
ExitPolicy reject 0.0.0.0/255.0.0.0:*
ExitPolicy reject 169.254.0.0/255.255.0.0:*
ExitPolicy reject 127.0.0.0/255.0.0.0:*
ExitPolicy reject 192.168.0.0/255.255.0.0:*
ExitPolicy reject 10.0.0.0/255.0.0.0:*
ExitPolicy reject 172.16.0.0/255.240.0.0:*
ExitPolicy accept *:53 # dns
ExitPolicy accept *:80 # http
ExitPolicy accept *:110 # pop3
ExitPolicy accept *:143 # imap
ExitPolicy accept *:443 # https
ExitPolicy accept *:993 # imap w/ ssl
ExitPolicy accept *:995 # pop3 w/ssl
ExitPolicy accept *:1863 # msn im
ExitPolicy accept *:5050 # yahoo im
ExitPolicy accept *:5101 # yahoo im
ExitPolicy accept *:5060 # msn im
ExitPolicy accept *:5190 # aolim
ExitPolicy reject *:*
Thanks guys!
~Whysyn
More information about the tor-talk
mailing list