Hi,
a directory authority IP-address on the DFRI network was recently reported for hosting malware and abuse reports was sent out to several mail addresses. Not only to abuse@dfri.tld as one would hope.
The reason seems to have been malware using Tor connecting to the IP while analyzed in a sandbox.
With the introduction of fallback directories abuse reports may become an issue for non-exit nodes. Just a heads up.
Regards, Johan https://www.dfri.se
tor-relays@lists.torproject.org