Torservers.net Main Page

From WiredWingsWiki

Jump to: navigation, search

Wiki of http://www.torservers.net/

Feel free to edit !

Contents

Todo

From top to bottom. If you want to help go ahead :-)

  • tweak server to 39mb/s
  • better "donations" list (actual donations/costs)
  • FAQ
  • "about us" section: who we are/team, affiliated/supported organizations
  • improve and move wiki, add creative commons license
  • easier interface for donating
  • website translations
  • design: other icons, onion graphic, logo? anyone?
  • contact form with gpg encryption would be a nice thing to have

FAQ

  • Why donate to torservers.net when you can also donate to the tor project, i2p project etc => they fund development, we run nodes. :)
  • Who are you?

Abuse

Let us work on good answer for repeating situations. Hopefully, this will help other node operators, and maybe we can incorporate it into the torproject wiki section some day.

Statistics

US Server (100tb)

  • 01.08.2010 1x SpamCop (HTTP)
  • 31.07.2010 1x SpamCop (HTTP)
  • 30.07.2010 1x SpamCop (HTTP)
  • 27.07.2010 3x SpamCop (HTTP), 1x ComPro (Web Spam), 1x individual website about forum spam
  • 25.07.2010 2x SpamCop (HTTP)
  • 23.07.2010 1x SpamCop (HTTP)
  • 22.07.2010 3x SpamCop (HTTP)
  • 20.07.2010 3x SpamCop (HTTP)
  • 19.07.2010 changed policy, removed ESMTP ports
  • 18.07.2010 1x SpamCop (HTTP)
  • 17.07.2010 SpamHaus SBL listing warning
  • 16.07.2010 1x SpamCop (ESMTP)
  • 15.07.2010 3x SpamCop (HTTP), 1x SpamCop (ESMTP)
  • 14.07.2010 1x SpamCop (HTTP)
  • 13.07.2010 5x SpamCop (HTTP)
  • 12.07.2010 1x SpamCop (ESMTP)
  • 11.07.2010 1x SpamCop (ESMTP)
  • 08.07.2010 2x SpamCop (HTTP), 4x SpamCop (ESMTP)
  • 06.07.2010 port/web scans (individual contact)
  • 05.07.2010 1x SpamCop (ESMTP)
  • 04.07.2010 offending forum post (individual contact)
  • 03.07.2010 1x SpamCop (HTTP), 1x SpamCop (ESMTP)
  • 02.07.2010 1x SpamCop (ESMTP)
  • 01.07.2010 1x SpamCop (ESMTP), 1x SpamCop (HTTP)
  • 30.06.2010 1x SpamCop (ESMTP)
  • 29.06.2010 1x Forum spam, contacted by Individual; 1x SpamCop (HTTP), 1x SpamCop (ESMTP)
  • 28.06.2010 1x SpamCop (ESMTP spam)
  • 26.06.2010 1x SpamCop (HTTP spam), 1x MediaSentry (Torrent)
  • 23.06.2010 2x SpamCop (HTTP spam)
  • 22.06.2010 ~10x MediaSentry (Torrents), ~5x BayTSP, 5x SpamCop (HTTP Spam), 2xSpam
  • 21.06.2010 5x Torrents... MediaSentry + BayTSP
  • 19-20.6.2010 25x Torrents... MediaSentry + BayTSP
  • 18.6.2010 3x MediaSentry, Torrenting
    • Clash of the Titans, Sex and the City 2, Harry Potter and the Deathly Hallows Ebook
  • 17.6.2010 2x SpamCop, Spam
  • 16.6.2010 4x MediaSentry, Torrenting
    • Death at a Funeral, Clash of the Titans, Harry Potter Half-Blood Prince Ebook

AU server

  • 08.07.2010 1x MediaSentry
  • 29.06.2010 1x MediaSentry

Reply to Abuse (general)

Dear XYZ,

I am sorry that you have received spam sent through our Tor exit node at IP XXX.XXX.XXX.XXX.

Tor is a research project, funded by the National Science Foundation and previously DARPA (among others). Its primary goal is to provide people from hostile environments with encrypted and uncensored access to the Internet. For more than a third of the worlds population, the Internet is being either filtered or monitored. Every day, activists and bloggers are imprisoned or threatened for what we in the western countries see as a Human Right.

There are usage stats on the www.torproject.org website that show that more than 50000 users from China, Iran and similar regimes use Tor to access the Internet every day.

At www.torservers.net, we offer to run Tor nodes for people and organizations willing to help monetarily.

Unfortunately, Tor can be used for malicious reasons, too. I have already blocked all ports including SMTP and ESMTP except of well-known ports like HTTP port 80. The Tor architecture allows relay operators like us to filter access to destinations on IP/Port basis. The problem with that is that your spammer will just use one of the other Tor exit nodes. You can find information on how to properly block all Tor exit traffic, if you decide to do so, on https://www.torproject.org/faq-abuse.html.en

Thank you for your understanding. If you have more questions, let me know!

Yours sincerely,

Reply to own ISP/Data Center

Regarding abuse and my server: We're a group of privacy enthusiasts running Tor exit nodes against censorship and filtered Internet access in oppressed countries. I have ordered through NAME, he knows about the issue with Tor nodes and DMCA complaints. Please forward future complaints to XY to avoid delays.

For more information on that issue, see http://www.torservers.net/abuse.html

It would be great of you to provide RWHOIS or SWIP to further improve processing. I can see both in the control panel at Softlayer and I hope that you can offer it soon.

Thank you for being part of this!

Reply to ISP about repeating BayTSP/MediaSentry complaints

Thank you for forwarding this. I am already in contact with X Y of BayTSP/MediaSentry. I am protected through DMCA §512 (a) and exempt from filing a Counter Notification, which is only required if you store/host any infringing material after DMCA §512 (c).

This has been cleared with BayTSP/MediaSentry already. Unfortunately, they seem to be unable or unwilling to disable their fully automated scans and reports. There is no indication that their scanner actually tries do download any material, so this is not a report of an actual infringement at all.

Any content that came from or through my computers merely passed through your network, so DMCA 512(a) applies. Under DMCA 512(a), you are immune from money damages for copyright infringement claims if you maintain "a policy that provides for termination in appropriate circumstances of subscribers and account holders of the service provider's system or network who are repeat infringers." If you have and implement such a policy, you are free from fear of copyright damages. As for what makes a reasonable policy, as the law says, it's one that only terminates subscribers who are repeat infringers. A notice claiming infringement is not the same as a determination of infringement. The notification you received is not proof of any copyright infringement, and it certainly is not proof of the "repeat infringement" that is required under the law before you need to terminate my account. I have not infringed any copyrights and do not intend to do so.

Therefore, you continue to be protected under the DMCA 512(a) safe harbor, without taking any further action.

If you are still unsure about this, please see the statement drafted by EFF lawyers at https://www.torproject.org/eff/tor-dmca-response.html and our own public statement at http://www.torservers.net/abuse.html

Reply to data center not able or willing to understand Tor

On 23.06.2010 16:59, admin@ISP wrote: Hi, Please see update from DATACENTER; "This does not address the violation at hand. Your customer will need to prevent this activity from happening. The sheer volume of DMCA complaints coming in on this server are unacceptable. If your client does not take measures to prevent this type of abuse going forward then we shall reserve the right to suspend services to this server.

Hi, I have additional information for DATACENTER, written by US copyright lawyers, from https://www.torproject.org/eff/tor-dmca-response.html : I would like to assure you that, contrary to the assertions in the notice, 1) I am not hosting or making available the claimed infringing materials, and 2) you are already protected by the Digital Millennium Copyright Act's ("DMCA") safe harbor from any liability arising from this complaint. The notice is incorrect, probably based upon misunderstandings about law and about some of the software I run.

First, in terms of legal liability, this notice does not create any risk for you as a service provider. As you know, the DMCA creates four "safe harbors" for service providers to protect them from copyright liability for the acts of their users, when the ISPs fulfill certain requirements. (17 U.S.C. 512) The DMCA's requirements vary depending on the ISP's role. You may be most familiar with the "notice and takedown" provisions of DMCA 512(c), but those apply only to content hosted on your servers, or to linking and caching activity. The "takedown notice" provisions do not apply when an ISP merely acts as a conduit. Instead, the "conduit" safe harbor of DMCA 512(a) has different and less burdensome requirements, as the D.C. Circuit Court of Appeals held in RIAA v. Verizon (see http://www.eff.org/legal/cases/RIAA_v_Verizon/opinion-20031219.pdf) and the Eighth Circuit Court of Appeals confirmed in RIAA v. Charter (see http://www.eff.org/IP/P2P/Charter/033802P.pdf).

Here, any content that came from or through my computers merely passed through your network, so DMCA 512(a) applies. Under DMCA 512(a), you are immune from money damages for copyright infringement claims if you maintain "a policy that provides for termination in appropriate circumstances of subscribers and account holders of the service provider's system or network who are repeat infringers." If you have and implement such a policy, you are free from fear of copyright damages, period.

As for what makes a reasonable policy, as the law says, it's one that only terminates subscribers who are repeat infringers. A notice claiming infringement is not the same as a determination of infringement. The notification you received is not proof of any copyright infringement, and it certainly is not proof of the "repeat infringement" that is required under the law before you need to terminate my account. I have not infringed any copyrights and do not intend to do so. Therefore, you continue to be protected under the DMCA 512(a) safe harbor, without taking any further action.

Hope this helps! Thank you for being part of this, helping censored and oppressed citizens.

BayTSP requesting DMCA counter notification

Dear Moritz Bartl of TorServers.net, We are in receipt of the attached Counter Notification communication from you. However, we are unable to process it as it does not meet the legal requirements for a proper Counter Notification. With regard to your legal status regarding the DMCA, please point us to your DMCA Designated Agent form filing with the US Copyright Office.

Thank you, in advance, for your time and cooperation. We look forward to your response.

Kind regards, X Y Compliance Administrator Bay TSP, Inc.

Thank you for getting back to me. After looking at the issue and the relevant paragraphs again, I'm quite certain that I don't have to present a valid DMCA Counter Notification after all. See https://www.torproject.org/eff/tor-legal-faq.html.en for more information.

Server configuration

OS

  • Debian 64bit

Virtual Machines

  • Tor nodes in separate VMs (two each)
    • Proxmox, currently expimenting with both OpenVZ and KVM
    • limit traffic? Iptables script or is there something fancy?

Tor Configuration

  • package management => upgrade multiple nodes with one tor compile, how exactly
  • where's the announce for unstable releases?
  • unstable release
  • multiple nodes for high bandwidth, tor not good on multicore (see blutmagie/discussion)
    • use different configurations per node, to eg. use more bandwidth for standard port exit policy?
      • suggestion: 20-22,53,79-81,110,143,443,465,563,706,873,993,995,8008,8080,8888
      • chat ports: 1863 (MSN), 5190 (aim), 5050 (yahoo), 5222-5223 (xmpp/gchat)
    • somehow filter/throttle p2p traffic?
      • i don't like the idea of touching the traffic (moritz)
    • current policy taken from blutmagie: reject 25, 43, 119, 135-139, 445, 465, 587, 1214, 4661-4666, 6346-6429, allow everything else
  • compile with openbsd-malloc and latest openssl

Monitoring

  • currently Cacti for graphs
  • how can i get (emergency) monitoring info to my (German) cellphone?
  • watchscripts for Tor, auto restart/reboot? => monit?

Extras/Open Discussions

  • VPN - openVPN?
  • I2P Reseed Mirror?
  • Tor Directory Server?
  • anonymous mail, one-time email addresses? nobody seems interested, probably enough on the net already... ;-)

Misc

  • DNS server: own + rootservers => independent of provider DNS

Hosters

Each of these has been contacted for partnership in Tor hosting and been told about abuse problems etc. Suggest hosters and I will contact them.

ISP Location SWIP/RWHOIS offer/orientation comment
100tb US N $200: 100TB outbound, 20ct/GB extra, Quad Xeon 3220, 8GB RAM, 2x500GB 100tb understands, they datacenter Softlayer doesn't (complained about massive amount of DMCA spam)
FDCservers US N/Y $200: 100mbit 33TB up 33TB down, Duo 8400, 4GB RAM, 500GB 24h response time to abuse; also complained about massive amount of DMCA spam
2Host US N/Y $150: 100TB out, 100TB in, Quad Q9550, 4GB RAM, 2x500GB custom whois no problem, abuse should be okay; cheap offers at webhostingtalk
Santrex FR/US/DE/UK Y $160 10TB 24h-48h response time
Sh3lls US Y $90 10mbit, $300 100mbit "timely" reaction
Netrouting NL N €50 10mbit E2220, 2GB "timely" reaction
Rapidswitch UK N 100€ 10TB As long as the use of the server abides by these guidelines it is ok. Please note that if we do receive an abuse report for the server we can suspend it.
Sh3lls US Y $90 10mbit, $300 100mbit "timely" reaction; also see https://secure.sh3lls.net/viewticket.php?tid=318437&c=vGvu5uwz
Serverconnect NL  ? 220€ 10TB  ?
Shinjiru MY Y $190 1500GB tor sponsor, privacy hoster malaysia
Cinipac eg. IRAN  ? 130€ 3000GB privacy hoster
Carat CA  ? 300€ 10TB known privacy hoster
PRQ NL Y too expensive ex thepiracypay hoster

Provider Independent IP Space

  • turns out that smaller nets than 256 are not routed, you have to at least use 25% of all IPs, and they all have to be routed to the same ISP
    • use IPs for bridges
Retrieved from "http://www.wiredwings.com/wiki/index.php5?title=Torservers.net_Main_Page"
Personal tools