Bug 198821
| Summary: | https://forums.freebsd.org/ not accessible from Tor exit nodes | ||
|---|---|---|---|
| Product: | Services | Reporter: | Yuri Victorovich <yuri> |
| Component: | Forums | Assignee: | freebsd |
| Status: | Closed Works As Intended | ||
| Severity: | Affects Many People | CC: | forum-admins |
| Priority: | --- | ||
| Version: | unspecified | ||
| Hardware: | Any | ||
| OS: | Any | ||
https://forums.freebsd.org/threads/posting-to-the-forums-and-tor-filtering.45486/ If you know of specific Tor IPs that are blocked, run them through http://stopforumspam.com/ or a general blacklist check like http://whatismyipaddress.com/blacklist-check. We are basically "slaving" off of these blacklists, which prevents an enormous amount of attacks and abuse. I see no reason to change that. Like the thread states: we are not targeting Tor nodes in any way, but they have a tendency to end up on spam prevention blacklists, and we don't feel obligated to talk to those. If a Tor node is removed from blacklists, they automatically gain access to the forums within a couple of hours. But there is no reason to prevent read-only access from any IPs. How can read-only access be used to attack? You can prevent most of abuse by only requiring valid login/password, that were registered from non-blacklisted IPs. Then there is no need to prevent regular access even from blacklisted IPs. Many people are privacy-freaks, and tor-freaks, and the current state makes them very unhappy about FreeBSD. The blacklisting takes place outside of the forums, so there is simply no access to these IP addresses whatsoever. If read-only access is all that is required, I don't see where the privacy issues for these 'many people' actually lie. Any old proxy will do (as long as it isn't abused for spam and blacklisted). I see no need to consider this a problem that the forum staff needs to appropriate and accommodate. I don't see why you prevent people with valid login credentials to access forums through tor. By its nature all exit nodes will likely always be blacklisted. Read-only access shouldn't be a concern abuse-wise, and write access with valid credentials also shouldn't be a problem. The way how this issue is currently handled is simply too crude. @bugmeister: This is not a bug. Feel free to close. |
> $ telnet forums.freebsd.org 443 > <...skipped...> > Escape character is '^]' > Connection closed by foreign host Connections are established and then immediately closed. FreeBSD shouldn't be unfriendly to tor (like Yelp).