Or just don't. It's possible that Tor on clearnet isn't reliably identified as Tor and it's abused somehow. And in that case the attacker just needs to cycle to different node. My tests were inconclusive in this question.