FAQ or exonerator should mention DNSel
I've been wondering "how do i check if a batch of IPs is a tor exit node" quite a few times in my life, but not often enough to just remember it. plus, it keeps changing.
This FAQ entry is a good start:
https://support.torproject.org/#relay-operators_facing-legal-trouble
It points at https://exonerator.torproject.org/ which goes to https://metrics.torproject.org/exonerator.html which does provide a way to check a single IP. But I have 70 of them here!
Startpage sends me to this Stack Exchange question:
https://serverfault.com/questions/874327/how-can-i-check-if-ip-is-a-tor-exit-node
... which, unsurprisingly, sends us to our old website:
https://www.torproject.org/projects/tordnsel.html.en
... which points at exitlist.torproject.org
which doesn't work anymore:
anarcat@angela:~$ dig +short 81.167.67.80.exitlist.torproject.org
anarcat@angela:~$
the proper record is dnsel.tpo:
anarcat@angela:~$ dig +short 81.167.67.80.dnsel.torproject.org
127.0.0.2
This answer gets it better:
https://serverfault.com/a/1081354/153231
... and also mentions the bulk exit list which is way easier than bouncing around DNS...
So I think the FAQ should be expanded. In fact, there should be a "how do I tell if an IP is a Tor exit relay" question altogether, not just "i'm in legal trouble", which seems like a dubious way to approach the problem, and a separate question.