View All Products
Compute
Storage
Databases
Networking
Developer Tools
Delivery
Security
Services
Industries
Pricing
Community
Engage With Us
Community Questions Possible Tor node
Log in to Ask a Question

Possible Tor node

Hi,

I noticed my CPU average has increased of late and there are lots of apache2 processes running now. netstat -a shows a bunch of tor-exit and torrentflame addresses and I suspect someone's using my server without my consent.

Does anyone have any good resources I could use to confirm and/or correct this please?

thanks,
Kris

1 Reply

Linode Staff

Hi Kris,

I did some digging on this and came across the following information that might prove helpful:

Set up a usage policy on your network || Deep packet inspection

https://www.reddit.com/r/sysadmin/comments/69r8p5/how_to_block_torrenting_on_a_network/

The above Reddit thread goes over things like setting up a usage policy on your network, and performing "deep packet inspection". For example:

My opinion is that this isn't a technical issue - it's a policy issue. Make all your users sign a usage policy that explicitly bans the use of file-sharing networks and systems, including BitTorrent, and ensure that appropriate punishments can be enforced should people violate that policy.

Set up a Reduced Exit Policy:

The Tor Project provides firewall options for a reduced exit policy on their site, which "allows as many Internet services as possible while still blocking the majority of TCP ports."

https://trac.torproject.org/projects/tor/wiki/doc/ReducedExitPolicy

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Log in to Reply
Community Code of Conduct