Full Disclosure mailing list archives
Re: Tool Release - Tor Blocker
From: Michael Holstein <michael.holstein () csuohio edu>
Date: Mon, 05 Jun 2006 09:18:27 -0400
Recently our servers were hacked by a tor user and we were unable to prosecute due to not being able to trace the source as the user was using this malicious piece of software to keep his/her anonymity.
TOR isn't malicious. Privacy is a precious thing these days.Don't blame TOR because you failed to secure your Apache install. Your .sig line is funny, considering just blocking TOR with a 403 is really just smoke and mirrors.
To mitigate most tor attackers we've written an apache module designed to give tor users a 403 error when visiting a specific website. We suggest all administrators whom do not wish a malicious tor user to visit and possibly deface their website to enable the usage of this module. This may not get all attackers, but hopefully it raises the security bar just a little bit more to safeguard ourselves from hackers.
Why not just use mod_access_rbl and something like : http://www.ahbl.org/notices/tor.php
/mike. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Tool Release - Tor Blocker, (continued)
- Re: Tool Release - Tor Blocker Jacob Weeks (Jun 03)
- Re: Tool Release - Tor Blocker Tonnerre Lombard (Jun 03)
- RE: Tool Release - Tor Blocker php0t (Jun 03)
- Re: Tool Release - Tor Blocker Bill Weiss (Jun 03)
- Re: Tool Release - Tor Blocker Bill Weiss (Jun 03)
- Re: Tool Release - Tor Blocker Marco Ermini (Jun 03)
- RE: Tool Release - Tor Blocker Dixon, Wayne (Jun 05)
- Re: Tool Release - Tor Blocker John Sprocket (Jun 03)
- Re: Tool Release - Tor Blocker mz4ph0d (Jun 05)
- Re: Tool Release - Tor Blocker Tonnerre Lombard (Jun 03)
- Re: Tool Release - Tor Blocker Jason Areff (Jun 03)
- RE: Tool Release - Tor Blocker php0t (Jun 03)
- Re: Tool Release - Tor Blocker Randal T. Rioux (Jun 04)
- Re: Tool Release - Tor Blocker Giancarlo Razzolini (Jun 05)