Delivery-Date: Wed, 10 Sep 2014 14:30:27 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.9 required=5.0 tests=BAYES_00,DKIM_ADSP_ALL,
	DKIM_SIGNED,RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id D99F51E0F04;
	Wed, 10 Sep 2014 14:30:25 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 632722C162;
	Wed, 10 Sep 2014 18:30:22 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 0542F2AA75
 for <tor-talk@lists.torproject.org>; Wed, 10 Sep 2014 18:30:19 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at eugeni.torproject.org
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id qZ9DP-kABhWG for <tor-talk@lists.torproject.org>;
 Wed, 10 Sep 2014 18:30:18 +0000 (UTC)
Received: from latitanza.investici.org (latitanza.investici.org
 [82.94.249.234])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "smtp.autistici.org",
 Issuer "Autistici/Inventati Certification Authority" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id C7DD5288C8
 for <tor-talk@lists.torproject.org>; Wed, 10 Sep 2014 18:30:18 +0000 (UTC)
Received: from [82.94.249.234] (latitanza [82.94.249.234]) (Authenticated
 sender: griffin@cryptolab.net) by localhost (Postfix) with ESMTPSA id
 AD62A1207E4; Wed, 10 Sep 2014 18:30:13 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cryptolab.net;
 s=stigmate; t=1410373814;
 bh=01sxTyIKuOhHm3aLYwXXNUHORAC/00EJi4KCb1lctuc=;
 h=In-Reply-To:References:Subject:From:Date:To;
 b=su1I2kP/CxwvLRsSSBHhRW0Ymplwk6JvOMIX+sTmnchh5OSkEsw7gkdaf9+60M85D
 8cYbDiQ7QT84ejqkpfVRc+ZLVZ0OQjabq+F20sLHBdIhQTl0bpUd+msyz6QvwtB4iR
 t+7T99fj0xD8oyP1bUoYKET8YA/CTOa69DWq+KVI=
User-Agent: K-9 Mail for Android
In-Reply-To: <54104007.9070407@cyblings.on.ca>
References: <4dbf80e1a3ae8b182a15ea2af6fa10dc@openmailbox.org>
 <20140814001854.GO8819@moria.seul.org>
 <cd0f0f8d006df59c665f6e8cba21e16f@openmailbox.org>
 <540D5911.1060506@riseup.net>
 <7f4a7e28fce1849455b0d162fddf059f@cryptolab.net>
 <540D685A.9080600@riseup.net>
 <c31b4308564c424f53838ac19d02a2cc@cryptolab.net>
 <540FBDB9.30509@technoskald.me>
 <d99a66e76527ecf9696bd35286fa4cc0@cryptolab.net>
 <54104007.9070407@cyblings.on.ca>
MIME-Version: 1.0
From: Griffin Boyce <griffin@cryptolab.net>
Date: Wed, 10 Sep 2014 14:24:15 -0400
To: tor-talk@lists.torproject.org,krishna e bera <keb@cyblings.on.ca>
Message-ID: <e7008465-3b2b-4883-a811-e72f3c8e9f24@email.android.com>
X-Content-Filtered-By: Mailman/MimeDel 2.1.15
Subject: Re: [tor-talk] Wired Story on Uncovering Users of Hidden Services.
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>



krishna e bera <keb@cyblings.on.ca> wrote:
>Would it be better to have a separate firewall appliance to ensure the
>hidden service box cannot be as easily DDoS'd or exploited?

No, this can be done very effectively with software firewalls. Though some people are doing more with authenticated hidden services. Some people also divide server and tor processes in some interesting ways.

>>   - Don't run a hidden service host.
>
>I dont understand this one.  What is a hidden service operator if not
>someone who runs a hidden service host?

Don't run a hosting service for others to use. Several people have tried, with varying levels of fail. It's not a good idea. Best-case scenario, you spend a lot of time administrating and removing abusive/illegal content. Worst-case scenario, you're legally liable for the content others post.

~ Griffin
-- 
"Hackers are not rockstars. You know who are rockstars? ROCKSTARS."
~Dan Kaminsky
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

