[tor-dev] Putting onion services behind a third-party TCP proxy

14 Aug 2019


      Hi all,
When deploying an onion service, I noticed some problem that the ip address
of my machine that runs tor daemon is exposed to the Tor network which is
vulnerable to the DDoS attack if someone knows my ip address.
So I'm thinking putting the tor daemon behind some third party TCP proxy
that will protect me from this kind of DDoS attack.
What do you think if I want to implement a feature that forward all the
onion service traffic to the TCP proxy before going to the Tor network?
The protocol that I'm thinking is TCP Proxy Protocol [1]
[1] https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

[tor-dev] Putting onion services behind a third-party TCP proxy