Skip to content

v7.0.0

Compare
Choose a tag to compare
@Enkidu-6 Enkidu-6 released this 08 Mar 00:54
· 10 commits to main since this release
c06ed79

Modified rules to deal better with the current ongoing attack.

  • Most scripts were rewritten to make them cleaner and got rid of some bugs
  • The number of connections from Snowflake servers are now also included in conntrack.sh .
  • The list of IPs with more than two connections is now also sorted by the number of connections.
  • The number of allowed connections for Multi-OR relays was reduced as once a multi-OR server is attacked they can pass on a huge amount of data to other relays by creating multiple connections from each of their Tor instances.
  • Added a new rule to disconnect the IPs in the block list as soon as possible, not allowing them to hold on to the existing allowed connections even though they're blocked.
  • The above new rule is the only rule added by the scripts to the default INPUT chain. Since the INPUT chain - unlike the mangle - might have your personal rules as well, we do not clear it with the -F command. Instead we only remove the specific rule during the refresh and update process to avoid interfering with your existing rules.
  • The installation process is now a lot more straight forward and requires minimal effort on your part.
  • The new download.sh is the only file you need to run initially. It will take you through all the steps and applies the rules after you answer a few questions.
  • The script will download all the files in the Repository to $PWD/tor. No need to clone the Repository or download the files yourself.
  • The script attempts to search for the existing ipv4.txt anywhere on your system and if found, will give you the option to upgrade from a previous version or simply start over.
  • The script will check for your OS Release and if you are running on Ubuntu or Debian, it will install ipset and conntrack using apt, as they don't come with the OS by default. You no longer need to install them yourself.

Please feel free to ask for help in the discussion section of the Repo and let me know how the scripts work or don't work for you.