Domain: rosinstrument.com
Stories and comments across the archive that link to rosinstrument.com.
Comments · 15
-
Re:was he looking for it?those things exist outside China;
It's amazing how many open proxies (even socks, connect,
...) exist in China. Just check your usual sources , proxy-list.net, publicproxyservers, or the all-time favorite rosinstrument (check several times a day, list cycles).And contrarily to popular belief you can search for words such as Tibet, Falun Gong or Tienanmen even using those proxies... (as well as use those proxies to put such words on a suitable unsecure ASP IIS server...).
Also, the very fact that the Chinese authorities needed to contact Yahoo to get the info seems to be proof that the Great Firewall of China is not as great as it is made out to be (or else the Chinese authorities could have gleaned the info much more discreetly from their firewall logs...)
-
Re:Tracking?
Frauders use public and hacked proxies found on sites like this one http://tools.rosinstrument.com/proxy/ to hide their identity and use multiple IPs.
Or they could get an AOL dialup account and have access to millions of ambiguous AOL IP addresses. -
It's only illegal if you're caught...Any "affiliate" in the USA who distributes this code is begging to be prosecuted.
Not if he follows some elementary rules of safety:
- Hotmail e-mail addresses
- Payment via (Fethard and ) Western-Union
- Don't put the iframe code onto your own website (D'uh...). There's enough IIS/ASP/SqlServer sites out there for the taking. And that way, you not only teach desktop users that using a secure OS is important, webmasters get the same lesson!
- Oh, and before I forget: every Web access related to your new business (reading/sending hotmail, scheduling Fethard payments, acquiring new ASP sites) needs to be done via an open proxy
-
Re:Didja all catch...(Having said that, I can't see what any of this has to do with the DMCA. But hey, libel cases are expensive. Why bother suing, when you can just say the magic words and make any website dissappear?)
Next hoax: send a fake DMCA letter to the provider of the real dow site. If spun right, this could be mucho fun (just pretend that dow-chemical.com is the real site, and dow is the forgery...). Caution: Use an open proxy when pulling this off. Indeed impersonating a lawyer is a serious crime in most jurisdictions...
-
here's how you fix their little red wagon...
If zap2it is banning the ip of your screen scraper, not a problem. Run it through a proxy like those found on freely-available lists like this. Or, just have your friend set up a proxy for you on her own computer elsewhere on the net. Since you'll be scraping from a remote IP, they'll never know which visitor is your screen scraper.
Of course, they could deal with you by breaking up their format of the data... in that case, things get more tricky. -
Ironically enough...
...Brazil is also the home of plenty of convenient open proxies which can be used to disguise your location whenever you need to "surf" anonymously...
-
Re:chinese proxy?
Oh, and by the way, if there are others who want to see for themselves , here is the list of all chinese IP ranges and a list of proxies to cross-reference with the former. Have fun
:-) -
Fight The ManI fully support Wayne's Proxy Censorship Avoidance Site, which is quoted as saying:
I am an advocate of free speech, full disclosure etc., of course. But that's not all. The Internet wizards are watching this censorship movement overall and think they have it under control. They have built in low-level protocols (in very clever ways) which ensure that censorship cannot work . But, in my opinion, they have forgotten that most people don't have their skills or knowledge. Sure, unless a country 'cuts the wire' there are ways to bypass the censorship. Sure, if there's an information flow into and out of a country, you can always get information you want, in spite of any attempt at censorship - and do it undetected. BUT it requires skills. Very few sites on the Internet tell you how to do it. This site attempts to redress this deficiency.
So, as long as China has Internet, the Chinese can circumvent censorship. Unfortunately, this creates sort of a chicken-and-egg problem, where Chinese are uneducated thanks to government censorship, and thus do not possess the required knowledge to bypass censor systems. I provide the following links for those interested:- Angelfire mirror 1 of Wayne's
- Angelfire mirror 2 of Wayne's
- Arabhackers.org Mirror of Wayne's
- Rosinstruments Free Public Proxy Servers List
- Multiproxy
To the Chinese Government: don't think you can get away with this. We are watching you. Remember the IIS fuck China worm? Remember when Americans penetrated Chinese censorship sites. One particularly activist group is the Cult of The Dead Cow, as they are involved with a US-Canada-Europe anti-China-human-rights-abuses hacking group, the Hong Kong Blondes.
Its only a matter of time until the Internet disappears in China, and the Chinese government succumbs under its own agenda.
-
Re:Why bother? Thieves can just guess.Usually, attempting to do this ("guessing" credit card numbers) would rack up rather high charge backs fees for each failed attempt. Those chargeback fees are exactly intended to foil such guesswork. The idea of makeing up numbers (with checksum matching) is fairly old, and has been used by spamfighters to "punish" spamvertised sites (pretend to buy an article, supply a bogus cc number, do it early, do it often, use open proxies, and watch as the outfit goes out of business due to chargeback fees).
However, what makes the scam your are linking to interesting, is not the fact that the criminals were brute forcing the numbers, but rather than they were using merchant accounts other than their own to do it. That way, some unsuspecting victim was stuck with the bill, rather than themselves. It was more an exploit of authorize.net's online card validation system than a problem with the credit cards themselves.
-
Lots of ways to work around your ISPs.
Proxy servers, They might not be cacheing 8080 or other Proxy ports. Check http://tools.rosinstrument.com/proxy/
Bouncers - You set this program on an external server on a port thats not filtered. You just point your browser at this IP/port and your outside your filtered isp. Check www.freshmeat.net
SSH, tunnel or route from an external box.
Really, If you cant go through it, go around it, either with software or networking.
-
Well, if crime fighters fight crime and fire fighters fight fire, what do freedom fighters fight? They never mention that part to us, do they? - George Carlin -
Re:Robots.txt
One thing to keep in mind is that much email address harvesting it done from cheap dialup accounts over short periods. Harvester vendors want to sell software to dumb users who think they are collecting "free" lists to spam at. These spiders don't have the option of working slowly or jumping IPs and are easy pray for Robotcop.
Actually, they do have the option, they just need to be rewritten to take advantage of it. What we have here is an arms race; its only a matter of time before email siphoning bots have proxy-bouncing built into them. :\ Then well need to do something else to keep them away, which theys find a way through once again. -
Re:Spam blocks are unfairOk, but you're still missing the point. Say you want to do business in Hong Kong. When you're located there you have a certain number of choices for ISPs and if the scheme works anything like it does in the USA you have to sign a multiyear contract.
Ok, so before signing a multi-year contract, first make sure whether it is in your best interest to tie yourself into such a long-running agreement or not. Computers are a fast-moving business, and what is a good deal today, may not be a good deal tomorrow. Keeping the option to move makes good business sense.
Then, companies come and go all the time. Especially, in such a fast moving industry such as internet connectivity, you can never know whether your supplier will still be around in five years. Something to consider before doing an advance payment for five years.
Say a year into your 5 year contract the spam crowd decides the whole class b of your upstream ISP is evil and shouldn't be able to email.
Ok, so you have a contract with your ISP. In that contract, they guaranteed you connectivity. If they cannot follow up with their end of the deal for whatever reason, sue them. And if you didn't actually pay for the five years of service in advance, just move over to some better connected supplier. A little spine can go a long way.
And please, have you ever used a hotmail account?
Not really, except when I wanted to say something in an anonymous and untracable way. You have to use it together with an open proxy though, or else your browser's IP will give you away. But hotmail is just one example, which I picked because of its well-knowness. Zillions of other free e-mail services, such as yahoo.com exist though. Take your pick.
First, I don't like the interface, second, it is a spam magnet.
Starting to like the taste of your own medicine?
Antispam blocking has too much collateral damage.
Life isn't fair. But we know that. If you notice that your mail can no longer reach its intended destinations, complain to your ISP. You are their customer. You have a contract with them. They need your money. And, what's best, you speak their language, so they can't just pull an "ethikul biznizman" on you.
For every one spammer you hit you're hitting a hundred people who don't even comprehend the reason they're being blocked.
Ok, in that case, these hundred people will do the logical thing to do in such a situation: complain to their ISP. And if their complaints are not followed up to, they take their business elsewhere.
I don't understand why SO much time has been devoted to kludging the current system instead of redesigning the email system to prevent spam in the first place.
If that was actually done, your e-mail connectivity problems would still not be solved: your backwater ISP wouldn't notice that the world around it had switched e-mail delivery protocols, and your mails would bump into a taller wall than ever before...
I think most of you people who can nonchalantly talk about spam blocking not being a problem have never had the occasion to be in the collateral damage.
I think most people who nonchalantly talk about spam not being a problem never had the occasion to be in the collateral damage. Like receiving over thousand bounced mails per day, because some moron sino-spammer thought it smart to use your e-mail in his forged From field of his missives, so you, not him would get all the bounces and remove messages.
Have never had the antispam community thumb their nose at you.
Have never had spam-friendly ISP's thumb their nose at you? I tell you what: as long as you are not a paying customer of an ISP, they owe you nothing, and some do not hesitate to tell you so. It's an unfortunate fact of life that in our world of fiduciary responsibility to the shareholders, companies only start listening when you hit them in their pocketbook. Now, starting to understand why causing collateral damage among the paying customers of rogue ISPs makes so much sense?
And, some of those wonderful block lists you support are just as shady as spammers. Take a look at how SPEWS works. They don't even give a real contact point.
That's probably done just to keep the lame whiners away. If you have a real issue with SPEWS, just post to news.admin.net-abuse.mail, and you will either be told why the block is still justified, or they'll eventually take it away.
-
Re:Real problem targeting spamSure, there will be spam that also has you send you money to China/Afganistan etc, but that will make the spam much less profitable, as most people won't do so. Lastly, most people will use credit cards, and I assume that most SPAM scams are frauds too, so the chargebacks will be hell for the spam beneficiary.
Chargebacks will be especially nice when spam fighters start submitting hundreds of bogus orders, with made up CC numbers. Perfectly safe if you use an open proxy, and pretty effective too (as long as the check digit matches, but it is easy to produce matching numbers...): for verification beyond check digit, the spammer has to pass card number, expiration date and billing/shipping address to his card processing firm before he can know the thing is bogus, but for each card check that turns out negative, it gives the spammer a black mark. Eventually, he'll be kicked...
-
If the government were to begin "purification"...
I seriously think that Chinese governmental "information purification" wouldn't really have a great effect. Chinese citizens could just use public proxy servers or a host of other tools to circumvent any attempt the chinese government were to make.
Perhaps the only real step the Chinese government could take would be to "purify" the cafés in earnest, or, in other words, get rid of them completely.
-
BessWanna see what Bess block and dosn't block?
Here is a list of some (all?) servers they use. Just set your browser to use one of them like a proxy server (since they are).
Funny thing, when useing Bess, that page is blocked!
_ _ _
I was working on a flat tax proposal and I accidentally proved there's no god.