Running a Bitcoin Tor exit node

[findftp]

So I'm running a tor relay node from home for a while and was tempted to be an exit node.
You might be familiar with the raid stories from people running an exit node.
Now I know port 80 and 443 are popular exit ports, but what would be the risk of running a bitcoin exit node?
I already activated my node on 8332-8333 to be an exit but did not have any traffic on it yet afaics.

What risk do I take other than possible bandwidth complains from my ISP?
I mean, I also have free 2.4 an 5 GHz Wifi enabled on my router (limited bandwidth and no access to LAN)

[1714660703]

1714660703

[1714660703]

1714660703

[1714660703]

1714660703

[achow101]

You have the risk of having illegal activity being routed through your node and could have your ISP attempt to shut you down, police come and seize or question, or requests from police to release data even though you don't have it. However, the Tor Project does have legal advice for these situations and you can always contact the EFF for legal help also.

You might also have the risk of people trying to attack your computer in order to damage the Tor network. I would advise using a secure OS such as Whonix.

[tspacepilot]

So I'm running a tor relay node from home for a while and was tempted to be an exit node.
You might be familiar with the raid stories from people running an exit node.
Now I know port 80 and 443 are popular exit ports, but what would be the risk of running a bitcoin exit node?
I already activated my node on 8332-8333 to be an exit but did not have any traffic on it yet afaics.

What risk do I take other than possible bandwidth complains from my ISP?
I mean, I also have free 2.4 an 5 GHz Wifi enabled on my router (limited bandwidth and no access to LAN)

I'm trying to figure out how the two notions are related.  Your topic says "bitcoin tor exit node" which I guess means "a bitcoin node and a tor exit node on the same computer".  Is that right?  Your post (and the first reply to it) seem to be talking about the risks of running a tor exit node.  I guess I just can't figure out how running the bitcoin node on the same computer is related (except that it's going to use a lot of memory and bandwidth on that computer).  Help me out.

[findftp]

You have the risk of having illegal activity being routed through your node

What traffic can be routed through my node other than bitcoin if I'm only an exit for ports 8332 and 8333?
I know, people could try to connect to a webserver listening at 8333 though my node and send threats and do illegal activity, but the chance of a webserver running at 8333 is extremely small.
For example, it's not possible to threat someone by email, webmail or forum through my node with standard ports. Am I right?

What illegal bitcoin traffic could be routed through my node?

You might also have the risk of people trying to attack your computer in order to damage the Tor network. I would advise using a secure OS such as Whonix.

It is running on a google TV stick booted with linaro linux. It's the only thing running on that device.

[findftp]

So I'm running a tor relay node from home for a while and was tempted to be an exit node.
You might be familiar with the raid stories from people running an exit node.
Now I know port 80 and 443 are popular exit ports, but what would be the risk of running a bitcoin exit node?
I already activated my node on 8332-8333 to be an exit but did not have any traffic on it yet afaics.

What risk do I take other than possible bandwidth complains from my ISP?
I mean, I also have free 2.4 an 5 GHz Wifi enabled on my router (limited bandwidth and no access to LAN)

I'm trying to figure out how the two notions are related.  Your topic says "bitcoin tor exit node" which I guess means "a bitcoin node and a tor exit node on the same computer".  Is that right?  Your post (and the first reply to it) seem to be talking about the risks of running a tor exit node.  I guess I just can't figure out how running the bitcoin node on the same computer is related (except that it's going to use a lot of memory and bandwidth on that computer).  Help me out.

It is basically a tor relay node. But the only ports I marked as an exit are 8332 and 8333.
You can be an exit for various protocols (ports) but I only chose to be a bitcoin exit node because the risks of being an exit node for ports 80, 443, 25 and a bunch of others.

[achow101]

What traffic can be routed through my node other than bitcoin if I'm only an exit for ports 8332 and 8333?
I know, people could try to connect to a webserver listening at 8333 though my node and send threats and do illegal activity, but the chance of a webserver running at 8333 is extremely small.
For example, it's not possible to threat someone by email, webmail or forum through my node with standard ports. Am I right?

What illegal bitcoin traffic could be routed through my node?

Sorry, I misunderstood the OP, I thought that you were running an exit node that had the standard ports open.

There shouldn't be anything illegal coming through since those ports are specialized and unused except for Bitcoin.

I'm trying to figure out how the two notions are related.  Your topic says "bitcoin tor exit node" which I guess means "a bitcoin node and a tor exit node on the same computer".  Is that right?  Your post (and the first reply to it) seem to be talking about the risks of running a tor exit node.  I guess I just can't figure out how running the bitcoin node on the same computer is related (except that it's going to use a lot of memory and bandwidth on that computer).  Help me out.

I believe that the OP is saying that he wants to run a Tor exit node that caters specifically to Bitcoin nodes because it only has ports 8332 and 8333 open.

[tspacepilot]

So I'm running a tor relay node from home for a while and was tempted to be an exit node.
You might be familiar with the raid stories from people running an exit node.
Now I know port 80 and 443 are popular exit ports, but what would be the risk of running a bitcoin exit node?
I already activated my node on 8332-8333 to be an exit but did not have any traffic on it yet afaics.

What risk do I take other than possible bandwidth complains from my ISP?
I mean, I also have free 2.4 an 5 GHz Wifi enabled on my router (limited bandwidth and no access to LAN)

I'm trying to figure out how the two notions are related.  Your topic says "bitcoin tor exit node" which I guess means "a bitcoin node and a tor exit node on the same computer".  Is that right?  Your post (and the first reply to it) seem to be talking about the risks of running a tor exit node.  I guess I just can't figure out how running the bitcoin node on the same computer is related (except that it's going to use a lot of memory and bandwidth on that computer).  Help me out.

It is basically a tor relay node. But the only ports I marked as an exit are 8332 and 8333.
You can be an exit for various protocols (ports) but I only chose to be a bitcoin exit node because the risks of being an exit node for ports 80, 443, 25 and a bunch of others.

I got it now.  Your goal is that if someone wants to use bitcoin over TOR, they can exit at your node.  You aren't running bitcoin on this computer, you're just allowing traffic to exit.  I think I understand now and sorry for the confusion. 

I'm not too clear on the use case for that, because if I want to send a transaction anonymously, can't I just use a tor http connection to broadcast the transaction on, say, blockchain.info's public api?

[findftp]

I got it now.  Your goal is that if someone wants to use bitcoin over TOR, they can exit at your node.  You aren't running bitcoin on this computer, you're just allowing traffic to exit.

Yep, that's it.

 I think I understand now and sorry for the confusion.  

No probs, could have been my non native english style of writing ;-)

I'm not too clear on the use case for that, because if I want to send a transaction anonymously, can't I just use a tor http connection to broadcast the transaction on, say, blockchain.info's public api?

Probably you could, but life is all about choices ;-)

And mainly I'm running these ports as an exit because I hope to get marked as an exit node (without having much extra risk) and therefor have a chance of collecting more bitcoins because I'm listed at oniontip
Running the node (with a very shitty connection) as a relay for a few months didn't get me *any* satoshis (altough there were donations to others).
I hope to increase my chances by getting the exit flag and increasing my bandwidth a bit.

Like I said, it running on a spare google TV stick and is consuming a few watts (likely less than 5 watt)
I would love to have some satoshis collected this way, only for the fun of it.

[dserrano5]

I'm not too clear on the use case for that, because if I want to send a transaction anonymously, can't I just use a tor http connection to broadcast the transaction on, say, blockchain.info's public api?

Probably you could, but life is all about choices ;-)

bc.i is a centralised service, bound to disappear at some point in the (maybe distant) future. We shouldn't rely on centralised services, as convenient as they may be. Better to sendrawtransaction to your nearest onion node.

And mainly I'm running these ports as an exit because I hope to get marked as an exit node

In order to be eligible for the Exit flag, you need to be an exit for at least 2 ports among 80, 443 and 6667. You're not going to get Exit by being an exit for bitcoin only. This doesn't mean, though, that your exit ports will remain unused. It only means that clients won't be preemptively opening circuits through your node—they will only do when 8333 is requested, and your node is chosen among the possible alternatives.

[findftp]

I'm not too clear on the use case for that, because if I want to send a transaction anonymously, can't I just use a tor http connection to broadcast the transaction on, say, blockchain.info's public api?

Probably you could, but life is all about choices ;-)

bc.i is a centralised service, bound to disappear at some point in the (maybe distant) future. We shouldn't rely on centralised services, as convenient as they may be. Better to sendrawtransaction to your nearest onion node.

And mainly I'm running these ports as an exit because I hope to get marked as an exit node

In order to be eligible for the Exit flag, you need to be an exit for at least 2 ports among 80, 443 and 6667. You're not going to get Exit by being an exit for bitcoin only. This doesn't mean, though, that your exit ports will remain unused. It only means that clients won't be preemptively opening circuits through your node—they will only do when 8333 is requested, and your node is chosen among the possible alternatives.

Well, there goes my dream   lol
But I'll probably let those ports running as an exit anyway.
Thanks for the info.

[achow101]

Well, there goes my dream   lol
But I'll probably let those ports running as an exit anyway.
Thanks for the info.

You will still be a tor node, and that will help the tor network.

[dserrano5]

Well, there goes my dream   lol

As went mine back in the day .

But I'll probably let those ports running as an exit anyway.

Please do. There is a shortage of exits, and not all of them allow 8333. Thank you!

[tspacepilot]

I'm not too clear on the use case for that, because if I want to send a transaction anonymously, can't I just use a tor http connection to broadcast the transaction on, say, blockchain.info's public api?

Probably you could, but life is all about choices ;-)

bc.i is a centralised service, bound to disappear at some point in the (maybe distant) future. We shouldn't rely on centralised services, as convenient as they may be. Better to sendrawtransaction to your nearest onion node.

Thanks, I think I understand the use-case and the motivation now.  I may actually look into that oniontip link, I use tor regularly for http but I haven't considered looking into running a tor node myself.  Cheers, guys!

[notlist3d]

I'm not too clear on the use case for that, because if I want to send a transaction anonymously, can't I just use a tor http connection to broadcast the transaction on, say, blockchain.info's public api?

Probably you could, but life is all about choices ;-)

bc.i is a centralised service, bound to disappear at some point in the (maybe distant) future. We shouldn't rely on centralised services, as convenient as they may be. Better to sendrawtransaction to your nearest onion node.

Thanks, I think I understand the use-case and the motivation now.  I may actually look into that oniontip link, I use tor regularly for http but I haven't considered looking into running a tor node myself.  Cheers, guys!

One thing has stopped me and it's the kinda traffic you get through tor.  If you are a exit node sadly a lot abuse it for things you don't want associated with.

If you have a static IP address I would not do it as it might get you flagged all over.    If dynamic IP then you can change it so not as big as deal.

So it could make your web browsing a pain.  And that does not even talk about possible legal issues if they do something "bad" through your exit node.

[tspacepilot]

One thing has stopped me and it's the kinda traffic you get through tor.  If you are a exit node sadly a lot abuse it for things you don't want associated with.

If you have a static IP address I would not do it as it might get you flagged all over.    If dynamic IP then you can change it so not as big as deal.

So it could make your web browsing a pain.  And that does not even talk about possible legal issues if they do something "bad" through your exit node.

I have only a dynamic IP, but you make a good point to think twice.  I believe in freedom but there are definitely some things that go down on the internet that I wouldn't want to be associated with.  I'll think about this before acting.   Cheers!

[dserrano5]

One thing has stopped me and it's the kinda traffic you get through tor.  If you are a exit node sadly a lot abuse it for things you don't want associated with.

Except that this thread is all about being an exit to the bitcoin port only. The chances that nasty traffic goes directed to 8333 are pretty much nil.

If you have a static IP address I would not do it as it might get you flagged all over.    If dynamic IP then you can change it so not as big as deal.

I don't think this makes a difference. Your ISP knows who you are anyway.

[notlist3d]

One thing has stopped me and it's the kinda traffic you get through tor.  If you are a exit node sadly a lot abuse it for things you don't want associated with.

Except that this thread is all about being an exit to the bitcoin port only. The chances that nasty traffic goes directed to 8333 are pretty much nil.

If you have a static IP address I would not do it as it might get you flagged all over.    If dynamic IP then you can change it so not as big as deal.

I don't think this makes a difference. Your ISP knows who you are anyway.

I don't mean to take away from idea of a bitcoin through tor it's a interesting idea.  I'm all for spreading the network.

And I appolgize if it did not come out right.   I mean for example if you have a static IP and it's a exit node and some one spams, or does boting with google.   It would be a pain to have to type capatcha all the time on google if your node was used for bad.  Being flagged from sites as a bad IP. 

But I guess you are right if no one put's other traffic through that port it would not matter. And of course ISP i agree no matter what IP they have a record.

[tspacepilot]

I don't mean to take away from idea of a bitcoin through tor it's a interesting idea.  I'm all for spreading the network.

And I appolgize if it did not come out right.   I mean for example if you have a static IP and it's a exit node and some one spams, or does boting with google.   It would be a pain to have to type capatcha all the time on google if your node was used for bad.  Being flagged from sites as a bad IP. 

But I guess you are right if no one put's other traffic through that port it would not matter. And of course ISP i agree no matter what IP they have a record.

In my experience, I have to type in a captcha to use google whenever I'm browsing with TOR.   You don't have to be doing bad stuff to be forced by google to solve a captcha.  Sorry in advance if I misunderstood you somewhere.

[notlist3d]

I don't mean to take away from idea of a bitcoin through tor it's a interesting idea.  I'm all for spreading the network.

And I appolgize if it did not come out right.   I mean for example if you have a static IP and it's a exit node and some one spams, or does boting with google.   It would be a pain to have to type capatcha all the time on google if your node was used for bad.  Being flagged from sites as a bad IP. 

But I guess you are right if no one put's other traffic through that port it would not matter. And of course ISP i agree no matter what IP they have a record.

In my experience, I have to type in a captcha to use google whenever I'm browsing with TOR.   You don't have to be doing bad stuff to be forced by google to solve a captcha.  Sorry in advance if I misunderstood you somewhere.

The reason is the IP's have been flagged by google.   If your IP is not flagged you can search without needing to do a capatcha.   Granted running tor does not mean it will happen. (espically this tor will be just bitcoin traffic it sounds like).

This is what might happen if "bad traffic" is sent to your exit node - https://support.google.com/websearch/answer/86640?hl=en

[tspacepilot]

I don't mean to take away from idea of a bitcoin through tor it's a interesting idea.  I'm all for spreading the network.

And I appolgize if it did not come out right.   I mean for example if you have a static IP and it's a exit node and some one spams, or does boting with google.   It would be a pain to have to type capatcha all the time on google if your node was used for bad.  Being flagged from sites as a bad IP. 

But I guess you are right if no one put's other traffic through that port it would not matter. And of course ISP i agree no matter what IP they have a record.

In my experience, I have to type in a captcha to use google whenever I'm browsing with TOR.   You don't have to be doing bad stuff to be forced by google to solve a captcha.  Sorry in advance if I misunderstood you somewhere.

The reason is the IP's have been flagged by google.   If your IP is not flagged you can search without needing to do a capatcha.   Granted running tor does not mean it will happen. (espically this tor will be just bitcoin traffic it sounds like).

This is what might happen if "bad traffic" is sent to your exit node - https://support.google.com/websearch/answer/86640?hl=en

Oh, right, I see what you mean.  If you got flagged while running an exit node then you might have to deal with those captchas even while browing not through tor, because your IP would be tor-marked.  Sorry, I think my brain is only running on half-speed today.