francesco M. munafò - 2017-07-03 15:58:56
“Blocking the access of users that use the Tor network may be one way to inhibit the abuse of sites by criminals and people with bad intentions.“
Also shutting down your own server is one way to do so!
THIS IS SO BAD IN 1000s OF WAYS
Just a few samples:
- IPs come and go, you will end up locking out legitimate users and pissing off random people.
- An IP address is not a computer!!! If you lock an IP because once it was a TOR node you may be locking an entire subnetwork. My IP is shared with a whole network of residential cable subscribers.
- The Tor network has been used more often yo hide the identity of legitimate users from abusive governments (China?) than few criminals. You may shut down entire countries while helping to make the world a worse place. TOR is more for freedom fighters, botnets for cyber criminals (see below). Why would you want to do that.
- TOR is a free project to HELP people be free, you are referring to it as a bunch of criminals... WTF???
- Why would anyone want to block a user in general, if it has legitimate access to your site? That is unless you are Netflix and try to impose some sort of country based copyright limitation (you should probably avoid it, anyway). And if it doesn't have legitimate access, then, TOR or not, you should block him.
- It just doesn't work. If it did work Netflix would use this trick and block you from using content from abroad. It will make you feel it works, but TOR users will connect anyway (just change IP untill they get a new one you don't have) and legitimate users will get cut off (with no hope). LISTS DO NOT WORK.
- Attackers and criminals use botnets, they pilot unknown user infected computers to perform malicious acts. They have millions of clean IP addresses of ordinary network users. They don't need TOR! If a DOS attack or a brute force came from a few listed IP addresses your site should notice (1000 accesses from the same IP), you don't need to check an obsolete list of TOR network nodes.
JUST DON'T!
