John

Do you do anything in reply?

Rob

On 29.08.2018 12:48, John Ricketts wrote:

For the non-automated emails I reply each time.

Same here. At one time I had written a generator script that fills in details of the complaining party, like IP addresses, and adds general descriptions about what Tor is, with links to facilitate further reading. Only very rarely the generated reply was not enough to satisfy or at least placate the complaining party. Unfortunately I can't seem find my script any more.

Automated complaints are a different matter. I don't feel the need to converse with Fail2ban or WebIron bots.

-Ralph

I am thankful that I have my own AS and IP space. I would even think about running mass relays like I do. I am running the reduced exit policy on all 50 of my relays and still get tons of automated stuff like you spoke about.

On Aug 29, 2018, at 08:32, Nathaniel Suchy <me@lunorian.ismailto:me@lunorian.is> wrote:

Almost never if you use the reduced exit policy or the browser only policy (only allowing 80,443,53).

Now, If you leave all ports open like Conrad and I do on most of our relays, a copyright enforcement company called Irdeto USA (the same people behind Denuvo Game DRM) will send you threats and harassment, ignore your replies, and contact upstreams directly rather than the contact on the SWIP Record - be rich and get your own ASN to get around this. Now, Irdeto's business strategy is a simple one they need only to flood your ISP's abuse department with as many automated DMCA Emails as possible until they get too many to ever hope to respond to and then try to get them to terminate your account. Depending on the ISP it'll work.

Cordially, Nathaniel Suchy

On Wed, Aug 29, 2018 at 8:49 AM Ralph Seichter <m16+tor@monksofcool.netmailto:m16%2Btor@monksofcool.net> wrote: On 29.08.2018 12:48, John Ricketts wrote:

For the non-automated emails I reply each time.

Same here. At one time I had written a generator script that fills in details of the complaining party, like IP addresses, and adds general descriptions about what Tor is, with links to facilitate further reading. Only very rarely the generated reply was not enough to satisfy or at least placate the complaining party. Unfortunately I can't seem find my script any more.

Automated complaints are a different matter. I don't feel the need to converse with Fail2ban or WebIron bots.

-Ralph _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.orgmailto:tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.orgmailto:tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Is Irdeto harassing you with DMCAs or just the hacking / forum spam complaints?

...

I am thankful that I have my own AS and IP space. I would even think about running mass relays like I do. I am running the reduced exit policy on all 50 of my relays and still get tons of automated stuff like you spoke about.

Now, If you leave all ports open like Conrad and I do on most of our relays, a copyright enforcement company called Irdeto USA (the same

...

replies, and contact upstreams directly rather than the contact on the SWIP Record - be rich and get your own ASN to get around this. Now, Irdeto's business strategy is a simple one they need only to flood your ISP's abuse department with as many automated DMCA Emails as possible until they get too many to ever hope to respond to and then try to get them to terminate your account. Depending on the ISP it'll work.

Own AS helps as with SWIP... you look like a biz / isp... the upper tiers are less likely to cut your connection unless bill unpaid, though you're hardly likely to actually be peering with them, so you're still somewhat subject to the smaller ISP FUD game. ISP meetups in every city, make friends.

Automated? Waste of time, filter into archive and ignore. Copied to upstream? Same unless relationship says otherwise. Handwritten? Stuff with a hello back and a Here's Tor template. Get cracked? Say thank you.

For the most part, it's all a game... bluster, corp i-dot t-cross fud, and whack a mole. Rarely to court in jurisdiction, which will happen or not no matter how you process mail. Simple incorporation filing solves that, fold in civil and reboot, unless jurisdiction is insane, for which you'd be insane to risk criminal jail to operate there non structured / defended / anon. Book counsel and plan before deploying. Or fight, isp rarely lose speech / proxy anyway.

Irdeto bittorrent and all others can go spin... https://www.techspot.com/news/76190-us-court-appeals-ip-address-isnt-enough-... http://cdn.ca9.uscourts.gov/datastore/opinions/2018/08/27/17-35041.pdf

Generally, automatia is noise to cancel, bluster back at fud threats with well collated set of links / info / education, maybe they end up converting using overlays and crypto lol, thank the occaisional helpful human, etc.

No best answer.

On Wed, Aug 29, 2018 at 9:32 AM Nathaniel Suchy me@lunorian.is wrote:

Almost never if you use the reduced exit policy or the browser only policy (only allowing 80,443,53).

I only run one exit relay, but this is also my experience. I use the reduced exit policy and also blacklist port 22 (SSH) and I haven't had any complaints in some time. However, the last time I tried opening up SSH, I _immediately_ got a half-dozen complaints about port-scanning. It's too bad; SSH is something people have good reasons to want to use over Tor. But I don't have time to respond to multiple complaints per day, so.

zw

On 30.08.18 22:07, Andrew Deason wrote:

For what it's worth, webiron has actually responded to my replies to their reports before. I'm not saying it's a great use of time arguing with them, but the replies are actually read by a human (at least, sometimes).

I've had a "discussion" with a WebIron employee once, where I patiently explained about Tor. It ended with him making stupid threats, and since that day I blacklisted W.I. on our mail servers. I think I posted about this experience here on the mailing list some years ago.

-Ralph