tor-webwml.git

1) ## translation metadata

2) # Revision: $Revision$

3) # Translation-Priority: 3-low
4) 
5) #include "head.wmi" TITLE="A public TorDNSEL service" CHARSET="UTF-8"
6) <div id="content" class="clearfix">
7) 	<div id="breadcrumbs">

8)     <a href="<page index>">Home &raquo; </a>

9)     <a href="<page projects/projects>">Projects &raquo; </a>
10)     <a href="<page projects/tordnsel>">TorDNSEL</a>
11)   </div>

12) 	<div id="maincol">

13) 
14)     <!-- PUT CONTENT AFTER THIS TAG -->
15)     <h1>The public TorDNSEL service</h1>

16) 

17)     <h2>What is the TorDNSEL?</h2>

18) 

19)     <p>TorDNSEL is an active testing, DNS-based list of Tor exit nodes. Since Tor
20)     supports exit policies, a network service's Tor exit list is a function of its
21)     IP address and port. Unlike with traditional DNSxLs, services need to provide
22)     that information in their queries.</p>

23) 

24)     <p>Previous DNSELs scraped Tor's network directory for exit node IP addresses,
25)     but this method fails to list nodes that don't advertise their exit address in
26)     the directory. TorDNSEL actively tests through these nodes to provide a more

27)     accurate list.</p>
28) 

29)     <p>The full background and rationale for TorDNSEL is described in the official

30)     <a href="https://gitweb.torproject.org/tordnsel.git/tree/doc/torel-design.txt">design

31)     document</a>. The current service only supports the first query type mentioned
32)     in that document.</p>

33) 

34)     <h2>How can I query the public TorDNSEL service?</h2>

35) 

36)     <p>Using the command line tool dig, users can ask type 1 queries like so:</p>

37) 

38)     <pre>dig 209.137.169.81.6667.4.3.2.1.ip-port.exitlist.torproject.org</pre>

39) 

40)     <h2>What do the received answers mean?</h2>

41) 

42)     <p>A request for the A record
43)     "209.137.169.81.6667.4.3.2.1.ip-port.exitlist.torproject.org" would return
44)     127.0.0.2 if there's a Tor node that can exit through 81.169.137.209 to port
45)     6667 at 1.2.3.4. If there isn't such an exit node, the DNSEL returns
46)     NXDOMAIN.</p>

47) 

48)     <p>Other A records inside net 127/8, except 127.0.0.1, are reserved for future
49)     use and should be interpreted by clients as indicating an exit node. Queries
50)     outside the DNSEL's zone of authority result in REFUSED. Ill-formed queries
51)     inside its zone of authority result in NXDOMAIN.</p>

52) 

53)     <h2>How do I configure software with DNSBL support?</h2>

54) 

55)     <p>Users of software with built-in support for DNSBLs can configure the
56)     following zone as a DNSBL:</p>

57) 

58)     <pre>[service port].[reversed service
59)     address].ip-port.exitlist.torproject.org</pre>

60) 

61)     <p>An example for an IRC server running on port 6667 at IP address 1.2.3.4:</p>
62)     <pre>6667.4.3.2.1.ip-port.exitlist.torproject.org</pre>

63) 

64)     <h2>How reliable are the answers returned by TorDNSEL?</h2>

65) 

66)     <p>The current public service is operating on an experimental basis and hasn't
67)     been well tested by real services. Reports of erroneous answers or service
68)     interruption would be appreciated. Future plans include building a fault
69)     tolerant pool of DNSEL servers. TorDNSEL is currently under active
70)     development.</p>

71) 

72)     <h2>How can I run my own private TorDNSEL?</h2>

73) 

74)     <p>You can learn all about the code for TorDNSEL by visiting the <a

75)     href="http://p56soo2ibjkx23xo.onion/">official onion service</a> through

76)     Tor.</p>

77) 

78)     <p>You can download the latest source release from the <a

79)     href="http://p56soo2ibjkx23xo.onion/dist/tordnsel-0.0.6.tar.gz">onion

80)     service</a> or from a
81)     <a href="/tordnsel/dist/tordnsel-0.0.6.tar.gz">

82)     local mirror</a>. It's
83)     probably wise to check out the current revision from the darcs repository

84)     hosted on the aforementioned onion service.</p>

85) 
86)     <p>For more information or to report something useful, please email
87) the

88)     <tt>tordnsel</tt> alias on our <a href="<page about/contact>">contact page</a>.</p>
89)   </div>
90)   <!-- END MAINCOL -->
91)   <div id = "sidecol">
92) #include "side.wmi"
93) #include "info.wmi"
94)   </div>
95)   <!-- END SIDECOL -->
96) </div>
97) <!-- END CONTENT -->