25 Nov
2017
25 Nov
'17
8:14 p.m.
The subject of this new thread is detecting network attack upon tor network / relays itself.
You report is users using tor's exits / exit traffic from relays, which would be excluded from such monitoring, most absolutely in any identifiable manner.
If the exit traffic bothers you, exitpolicy reject 8888 or whatever else makes up the issue. It should go away after time for new descriptor to pass around.