Show threadKevin Karhan Feb 10

@nay the problem with #IRC bouncers is that hosters hate that even more than @torproject / #Tor *and #Cryptocurrency #mining or any #Cryptojacking & #malware.

  • As in: Many will literally fire customers just for using Port 6667 and/or 6697

  • The same Hosters have no issues with people mining #Shitcoins that'll flood their Network and burn through NVMe-SSDs like #Solana or people running #ExitNodes from their Network!

The only thing that (tho deservedly!) gets them to cancel VPSes is hosting CSAM…

Show threadKevin Karhan May 2, 2025

@jherazob @leberschnitzel they already exist...

I think it's bad #TechPopulism to think that #Anubis will fix all the issues.

Just block all the #GAFAMs ASNs & #hosters that host #Scrapers so the industry cracks down harder on them than on #IRC, #Tor #ExitNodes, #CSAM & #BitTorrent combined!

Kevin Karhan :verified: (@[email protected])

@[email protected] what we should do is *literally* [block](https://github.com/greyhat-academy/lists.d/blob/main/scrapers.ipv4.block.list.tsv) all the #scapers network-wide (as per IP block allocation) and #DROP all traffic to/from them, because #Anubis requiring #JavaScript makes it #ableist and bricking #TUI browsers like #LynxBrowser... - #OnionServices on #Tor / @[email protected] show [how it's done…](https://infosec.space/@kkarhan/114437837120770551)

Infosec.Space
Kevin Karhan Feb 21, 2025

@clubchonky personally, I disagree to an extent.

@torproject / #Tor is well battle-tested and combat-hardened and using #OnionServices works just fine, as none of the traffic leaves through #ExitNodes...

Kevin Karhan Jan 10, 2025

@gameplayer @atomicpoet it's not that simple.

  • Shure the average cybercriminal can use some hijacked routers and desktops as a proxy for their carding fraud but that doesn't scale with huge amounts of traffic and ISPs do combat proxy use by explicitly checking traffic for it and banning such setups as per ToS.

In fact, many ISPs will forcibly disconnect customers if they detect they run an open proxy or tor exit node.

Kevin Karhan Nov 9, 2024

@tasket I don't say @tor#Tor is perfect - far from it.

BUT an #OnionService is way easier to conceal, shield and secure than a #SurfaceWeb site.

  • Also the main disadvantage of Tor is speed and the fact that @torproject publishes their #ExitNodes, so blocking Tor users is too easy.

Needless to say that there may be different scenarios and it takes individual assessment of needs, capabilities and #ITsec, #InfoSec, #OpSec & #ComSec to the point that I think it's important to teach people to make that decision instead of blanket VPN shilling...

#DontBlockTor

Kevin Karhan Oct 7, 2024

Q: Is there any Hoster that doesn't block or ban @torproject ?

I could understand it if they don't want #ExitNodes and subsequent traffic to taint their rep, but they literally #ban #Tor entirely regardless if #OnionService, #Relay or a private #Bridge.

#DontBlockTor #Bridges

Terms & Conditions | Legal | Contabo

View Contabo's terms & conditions and other legal pages

Show threadKevin Karhan Nov 30, 2023

@landley I just use #Tor and since they all treat @torproject users as #Torrorist|s, that makes things easy...

I've not yet taken a look at Kaizushi's #ExitKit for private #ExitNodes cuz that'll basically be a better option to a #VPN...

Otherwise, I'd consider working to get something like a #pfSense on a #VPS at like Hetzner...

Show threadKevin Karhan Oct 12, 2023

@torproject not to mention it's kinda sad that #TorBulkExitList still doesn't list #IPv6 #ExitNodes to this day.

That issue is 7 years (!!!) old.
https://gitlab.torproject.org/tpo/anti-censorship/bridgedb/-/issues/19997 via @isis

https://check.torproject.org/torbulkexitlist

BridgeDB's get-tor-exits script doesn't account for IPv6 (#19997) · Issues · The Tor Project / Anti-censorship / BridgeDB · GitLab

As Arlo pointed out on the tor-dev mailing list, the exit-addresses script running on check.torproject.org doesn't include IPv6 exit addresses, making anything that...

GitLab
Show threadKevin Karhan Oct 2, 2023

@kobayashi90 @signalapp @tfunken depends...

Again: #MonoclesChat + #Orbot and one of many #XMPP servers and you get #secure comms and even if the provider/admins are held and gunpoint and forced to log everything, all they see are #Tor #ExitNodes and/or other @torproject Tor nodes and only scrambled stuff...

https://github.com/greyhat-academy/lists.d/blob/main/xmpp.servers.list.tsv

lists.d/xmpp.servers.list.tsv at main · greyhat-academy/lists.d

List of useful things. Contribute to greyhat-academy/lists.d development by creating an account on GitHub.

GitHub
Kevin Karhan Jun 3, 2023

@stanford @fluepke EXAKT!

Weil für #Tor #ExitNodes gibt's ne #blocklist:
https://github.com/greyhat-academy/lists.d/blob/main/blocklists.list.tsv#L15

lists.d/blocklists.list.tsv at main · greyhat-academy/lists.d

List of useful things. Contribute to greyhat-academy/lists.d development by creating an account on GitHub.

GitHub