@Home Gets the Usenet Death Penalty

A reader wrote to us with the news that an UDP has been declared on @Home in news.admin.announce. You can read it on Deja.com for the full post. Interesting - let's see how long it takes @Home to respond to the UDP. Usually, this gets people attention pretty quickly, and I'll welcome any sort of respite from the spam flood of the last couple months. The penalty is due to begin 17:00 PST, Jan. 18, 2000.

UDP; an example of a self-moderating system

[ben_]

This is an interesting phenomenon - USENET has no central authority and no control centre, so if the UDP has the desired effect, then it's an example of anarchism actually working (for once; note - I'm not in any way an anarchist). It's also support for what your mother told you about bullies and annoying brothers and sisters - "ignore them and they'll get fed up and stop it". Thanks, mum!

Re:UDP; an example of a self-moderating system

[Aqualung]

While USENET has no central authority, there's still a centralized location to go for getting blocked domains, ie. whichever group determines who or what goes into the udpcancel list. It'd be nice to see this extended to other services, I'm not sure how feasable it would be. I suppose a centralized procmail filter database would be feasible... hmm....
----
Dave
Purity Of Essence

Re:UDP; an example of a self-moderating system

[slouie]

I'm extremely impressed by the USENET community's ability to get companies to respond quickly to spam complaints once UDP has been declared. Sanctions do work sometimes.

-S. Louie

Re:UDP; an example of a self-moderating system

[Bad+Mojo]

There are times when doing the opposite of what you intend is the better solution. Usenet (and other similar systems) can be a testament to this `law'.


Bad Mojo

Re:UDP; an example of a self-moderating system

[dufke]

I suppose a centralized procmail filter database would be feasible... hmm....

The RBL?
Off course, since Murphys law rules, I can't remember the URL to it, and I can't even remember what the letter stand for, but I know it's an email spam blacklist supported by many ISP.

If anyone has any real info on this, enlighten us!

dufke
-

Re:UDP; an example of a self-moderating system

[Roundeye]

I suppose a centralized procmail filter database would be feasible... hmm....

I'll go you one better (because if you're procmailing, the spammer has already wasted your resources) and point you to the MAPS Realtime BlackHole List.

Re:UDP; an example of a self-moderating system

[dufke]

Ok, ok... I'm an idiot. There is a link just a few posts down. Realtime Blackhole List.

dufke
-

Re:UDP; an example of a self-moderating system

[Manuka]

well, this is more like stuffing a rag in your sibling's mouth and taping it shut with duct tape and *then* ignoring them :)

Re:UDP; an example of a self-moderating system

What do you mean it's an example of "ignore them and they'll stop"? If you read the link to the UDP Faq, you'll see that only by *not ignoring* the spammers and actively cutting off their means of spamming actually does the trick.

Re:UDP; an example of a self-moderating system

Hardly - a better analogy would be shoving your noisy sibling out of your room and refusing to let him back in so you and your friends can talk without listening to him scream. He can still go talk to other people, just not you and your friends.

Re:UDP; an example of a self-moderating system

[Austenite]

it's an example of anarchism actually working


How is a large number of sysadmins co-operating in response to a common threat in a way formalised by the relevant newsgroups and FAQs an example of functioning anarchy?

Re:UDP; an example of a self-moderating system

[ppanon]

What about if they have been screaming at you, nonstop, for the last six months that their Pokemon collection is the best in the world and that you too could make money fast with a good Pokemon collection. If they have been doing this despite all entreaties to the fact that you don't care about Pokemon and you would like to get some sleep now, then the reaction may not be out of hand.

And I have been in this position. I was born with a tropical rash and (so I'm told) cried non-stop as a result. My parents had to close all (multiple) intervening doors between their bedroom and where I was to get any sleep (good lung power :-) ). I certainly understand why they did it. If I screamed no matter what they did and there was no way to tell whether anything was wrong based on my screaming, then them getting sleep deprived wouldn't help me get better and might negatively affect my care.

However I had no control over being born with a rash and wasn't sentient to do more than operate on instinct (pain=>scream), and ISPs have control over whether their servers and users are the source of spam. Ignore them until they shut up I say, and more power to you!

Re:UDP; an example of a self-moderating system

[Cvandal]

How is a large number of sysadmins co-operating in response to a common threat in a way formalised by the relevant newsgroups and FAQs an example of functioning anarchy?

Because each individual [company sysadmin] has the option to evaluate each threatened UDP independently, and act or not as they choose, with no coersion. There is no government authority involved.

Accurate Penalty Starting Date

[jezzball]

The death penalty will go into effect at the "close of business, 17:00 PST, on Tuesday, 18 January 2000 (19 Jan 2000 01:00:00 GMT)", not today as stated in the story.
ls: .sig: File not found.

What does this mean?

[gregstoll]

Not to sound ignorant, but what does this mean? I'm not familiar with the "Usenet Death Penalty"...

Check out Greg's Bridge Page!

Re:What does this mean?

[jezzball]

UDP Faq
That's the faq for the UDP.
ls: .sig: File not found.

Re:What does this mean?

[BorgDrone]

It basically means that all usenet news to and from @home will be blocked.
so their news servers would become useless to their users.
---

Re:What does this mean?

[dartboard]

How about reading the article?

Re:What does this mean?

[Mr.+X]

Actually, it only affects the outgoing traffic from the *.home.com domain. Home.com users should still be able to read USENET, they just won't be allowed to post anything.

Re:What does this mean?

[QuMa]

To???? I don't think it's sensible or possible to control their newsfeed, but their posts are rejected.

Re:What does this mean?

[dmuth]

The Usenet Death Penalty (UDP) is when *all* articles from an offending site are summarily cancelled.

This may sound heavy handed, but from my experience (5 years as an anti-spammer now) the anti-spammers involved make every effort to contact the offending ISP and help them secure their news servers, report abusive users to them, etc. In essence, a UDP is something of last resort.

It should also be noted that this isn't some small cabal (TINC) of people trying to censor others, as participation in a UDP is voluntary. All you need to do to not participate is alias NNTP traffic with the "udpcancel" site in the path. Often however, the benefits of a UDP outweigh the disadvantages, and the UDPed site cleans up their act rather quickly.

Hope this helps.

Re:What does this mean?

[seanb]

The original message linked to on deja states:

Please see the Usenet Death Penalty FAQ, <http://www.stopspam.org/usenet/faqs/udp.html>.

The UDP, if effectively implemented, cuts off all users of that domain from being heard by the rest of usenet.

As an @home customer who sometimes uses usenet (and has complained about spam before) I am going to go write a letter to customer service now...

Re:What does this mean?

[Foogle]

Check out the link, but if you don't want to here's the gist: ISPs everywhere stop carrying news-posts from the offending network. Their users are therefore cut off from posting to usenet until the ISP cleans up their act.

-----------

"You can't shake the Devil's hand and say you're only kidding."

Re:What does this mean?

You did sound pretty ignorant, because if you'd read the usenet article that was linked to, you'd have seen a link to the UDP FAQ.

Re:What does this mean?

[asmussen]

I wouldn't be surprised if he DID try to read the article, but couldn't get to it. I've been trying to get to it for 10 minutes, but it's pretty well slashdotted.

Lighten up, with the I am so much better than you attitude, how 'bout it?

Re:What does this mean?

[paranoid.android]

Not when it's Slashdotted. I can't get to it.

Re:What does this mean?

Well the way Usenet/Newsgroup/NNTP's work is you post a message on your local ISP's NNTP and it gets sent to the master server (?) then passed along to all other servers. Some servers block binary messages (porn, warez, ect) some block certain newsgroup's themselves (AOL probably doesnt carry alt.aol.suck). If you get cut from the usenet feed, your NNTP server is pretty much useless and your customers will have to subscribe to a commerical server (which doesnt block anything) or they just might drop the service altogether. Of course on @Home you have no choice but to go with a commerical service. The Usenet was originally used to exange information via text based posts, but now its littered with spam porn pics. Automatic scripts keep the spam postings there, and there is no shortage of it either. I would assume that a good deal of @Home users post huge binary files like VCD's, Warez ISO's which may cause problems with other servers who may or may not be able to handle the load.

Re:What does this mean?

[BorgDrone]

sorry I guess I was misinformed, but where do they get their newsfeed ?
they have to get it from another server , don't they? can't that be cut off ?
---

Re:What does this mean?

[Uller-RM]

So it means that unless @Home cleans up their act, starting Tuesday of next week at 17:00pm, all participating Usenet servers (i.e. most ones out there) will dump all messages from @Home users into the bitbucket, not posting them.

@Home and all clients going through @Home Usenet servers become gagged until the upper echelon management finds out and orders an immediate change of policy on spam.

A UDP requires the participation of other USENET servers, but many, in fact most, servers are set up to automatically honor all UDPs by default.

Re:What does this mean?

[Tackhead]

Thank you for clarifying this. I echo your comments.

A UDP is not invoked lightly. It is invoked as a last resort against a set of servers that have resisted or ignored all reasonable requests to participate within the USENET community.

If @Home is incapable or unwilling to act as a responsible member of the USENET community, news admins are fully within their rights as owners of their news servers to reject traffic from @Home's users.

Similarly - by aliasing out the "udpcancel" site in the path, news admins who wish not to participate in the UDP are fully within their rights to ignore it.

This isn't about "censorship" or a "Cabal" (TINC). This is about the rights of news administrators to choose for themselves whether or not to accept traffic from a site that has demonstrated a clear inability or unwillingness to clean up its act.

To @Home users: The problem is with the management of the company who (poorly) administers your news servers. The proper course of action is to contact your @Home technical support or customer service reps and tell them that you want @Home's managment to authorize @Home's news administrators to take the actions required to bring @Home out of the UDP. While the rep you speak with on the phone can't help you, the message will eventually be heard by @Home management. While it's regrettable that the situation went as far as it did, the precedent for the UDP is good; UDPd firms generally do clean up their acts, and USENET is the better for it.

Re:What does this mean?

[mOdQuArK!]

Does this mean that the @Home users will be the only people who get to read the spam which the @Home network is responsible for propagating?

Re:What does this mean?

[JackDeth]

For the most part. Them and anyone using servers that are not participating in the UDP...

Re:What does this mean?

[QuMa]

The people who provide them could of course cut of the feed entirely, but @home would take their business elsewhere. It's impossible to stop them from getting a newsfeed from someone, as long as one person is prepared to give them a feed. However, if only one admin is prepared to carry their articles, that means that the rest of the internet never sees their messages.

Re:What does this mean?

[hemp]

Check out for history and more info (warning put on your sunglasses before going to this site!):

http://www.sputum.com/cns/index.html

Re:What does this mean?

[Bishop]

what does it mean to "alias" NNTP traffic? Specifically, what does the following from the UDP mean?

UDPs are enforced by site administrators and spam cancelers around the world, who either cancel the messages directly, or pathhost alias the sites so that their news software no longer accepts nor propagates articles which originate at the site under UDP.

Re:What does this mean?

[dmuth]

Disclaimer: I am not a Usenet or NNTP guru. That being said...

>what does it mean to "alias" NNTP traffic?

Okay, every posting to Usenet have a "Path:" header in it, and each site that processes the post ads its name in, so you can see what path the post took.

Now, the way a UDP works, the cancel messages that are sent (which "cancel" other posts, or remove them from news servers that process them), those cancels have the string "udpcancel" in the path.

So, if you want to ignore the UDP, you could "alias out" that string, and your news server would drop those cancel messages and only those cancel messages. The term alias essentially tells the news server "hey, the system 'udpcancel' is an alias for this host, so ignore posts that contain that string". It's a hack, but it works. :-)

UDP Starts on the 18th, not the 12th.

[Postmaster+General]

FYI... "Because of this lack of response to serious, ongoing problems, even when they have been pointed out repeatedly, a full active Usenet Death Penalty will go into effect at the close of business, 17:00 PST, on Tuesday, 18 January 2000 (19 Jan 2000 01:00:00 GMT)."

It's about time

[Sentsix]

And he saw what he and done and said "it is good". Now, if only the same action could be applied to post from *.aol, the people in the streets would rejoice!

The Midnight Watch - All the news that's fit to ridicule:

Re:It's about time

And hotmail, and deja, and webtv. If anything, all four of these domains are worse offenders than @home.

Re:It's about time

[jeremy+f]

The people who post messages from AOL aren't generally spammers, just stupid ;)

Re:It's about time

[rhaig]

regarding deja...

if informed about users causing problems, we can (and do) revoke their posting privs.

If you're seeing such the volume of spam that you;re claim to, then you should let our helpdesk know (help@deja.com)

Re:It's about time

[istartedi]

AOL has at least 10 times as many subscribers as the next largest ISP, so unless their spamming is proportionatly greater than the other ISPs, they shouldn't get a UDP.

Same thing goes for US Robotics modems. When I worked in tech support I used to think they were the worst, until I took into consideration that USR has a huge market share

the UDP begins on January 18, not January 12

[mdillon]

the UDP begins at 17:00 PST on January 18, 2000, not on January 12, 2000.

Correction:

[Raffy]

According to the article, the UDP doesn't start for another week:
Usenet Death Penalty will go into effect at the close of business, 17:00 PST, on Tuesday, 18 January 2000 (19 Jan 2000 01:00:00 GMT).

Presumably to give @home a chance to become YclueK compliant?
Rafe

V^^^^V

People still use USENET?

[Mark+F.+Komarinski]

I've been on the Internet for 11 years now (c'mere kid and pull my finger). But seriously, I remember when I could read about 50 newsgroups in 1/2 hour and most of the messages were not spam in any sense of the word.

The last time I read USENET was gosh..almost 2 years ago. Full of spam, threads that went all over the place, crossposting galore. I have since given up and am using /..

What would problably work in this day and age would be a WDP (Web Death Penalty). Block port 80 from and to known ISPs that spam. Boy will that get people's attention.

Re:People still use USENET?

[jnazario]

blocking web access to spammers and ISP's that allow spamming, that's kinda neat, actually. i think the customer complaints would quickly rack up and force businesses to take quick action.

one of the ever persistent problems for an email server admin is spam. it just taks up space for everyone; imagine what it's like to not have only your email inbox flooded, but countless others (say 100 or 10,000 or more). every day, several times. the onus was taken on by mail admins to block spamming, both at the server level (ie relays) and receiving it (ie through the RBL). and it works pretty well. usenet could easily have a similar situation.

i think if a large number of sites really did band together and update their ACLs for port 80 access, they'd be set for killing unresponsive ISP's. oh,m and security incidents that go without a reply are even worse than spam. and a lot of ISP's (ie uu.net) really don't do shit about complaints all too often.

Re:People still use USENET?

[hwolfe]

Actually, uu.net was pretty good about responding to spam complaints. However, I haven't had any spam from someone using them in quite a while, so perhaps things have gone downhill, but I doubt it. Also, be sure to send the complaints to abuse-mail@uu.net

Re:People still use USENET?

[Masem]

Reading USENET today requires a bit of patience, good newsreader software, and the 'right' groups.

You need patience, of course, to wade through junk posts, as well as the self-imposed week or so of lurking before posting rule. You need to find resources in the group, as most good NGs have FAQs about what and what not to ask. And you need to realize that reply times from USENet are much slower than other possible methods (IRC, web boards), but generally are going out to a much wider audience and will have a better chance to be answered correctly.

A newsreader with a killfile in today's USENET is a must. You also would like one with good filters that can rank messages based on subject or author. This helps highlight what you're interested in rather than wading through the rest.

But more importantly than the above is having a strong newsgroup to participate in. It takes a while for a ng to develop it's community, but once it's in place, most are pretty good. Examples that I read include comp.infosystems.www.authoring.html, rec.arts.tv.mst3k.misc, and rec.games.roguelike.nethack/.adom. On the other hand, if there is no clear leadership/common posters, or the like, or the subject matter is of the right type, you get groups that are mostly organized anarchy: alt.html, alt.tv.simpsons, alt.games.half-life, etc.

But in generally, most of the non-alt groups will be good; the regulars are knowledgable and will try to answer a well-worded question to the best of their ability.

Unfortunately, USENET is really only practical for those with T1 connections or shell accounts with their newsreader - most groups get 100+ messages a day, and if you wanted to read all the messages with a standard dialin and newsreader, it could easily take 10 minutes per newsgroup per day to download that information. That's why web discussion boards have gained popularity. However, IMO, it will not replace the quality of help I generally get from USENET.

Re:People still use USENET?

[sterwill]

This sounds easy to hook into MAPS Realtime Blackhole List (a realtime list of mail abusers). All mail systems should be configured to reject mail from hosts appearing in the RBL. Configuring Apache to do similar would be easy, but would generate an enormous amount of extra traffic for each web server (currently, each lookup in the RBL consists of a DNS lookup into the RBL domains). Surely large sites could work out a better distribution mechanism (they could use an eBGP4 subscription and do caching locally).

--

Re:People still use USENET?

So you're a newbie-) I starting reading news in early 1983. At the time you could read alot of the news posted if you did nothing but. Today you can't even read every message in some groups. The main difference then and now is that you almost needed a special license to get access. Today anybody and thier brother can get access. If somebody then posted something inapprotiate I knew the guy at postmaster [assuming I didn't know him personally] would spank the poster. Today at worst the account gets killed and you move to a new ISP. Big worry.

Re:People still use USENET?

[Quikah]

All of the linux groups I read are spam free. Really the only major spams I see are in the binaries group.

Re:People still use USENET?

[jeremy+f]

I think what would be just as effective, and easier to implement (though still VERY difficult) would be a mass EDP -- E-mail Death Penalty. Think about it -- all other servers participating than the one getting the DP would automatically kill off all incoming all e-mail from the offending server, forcing the users of the DP'ed e-mail provider to switch servers, causing lots of lost revenue (watch the DP'ed ISP collective ears perk up at that one).

Re:People still use USENET?

Actually, I heard that @home is ON the RBL already....

Re:People still use USENET?

[aphr0]

That would be the MAPS RBL. http://mail-abuse.org/rbl/

Re:People still use USENET?

[MAXOMENOS]

What would problably work in this day and age would be a WDP (Web Death Penalty). Block port 80 from and to known ISPs that spam. Boy will that get people's attention.

If you really want to nail them to the wall, declare an email death penalty as well. Block any connections to port 25 to and from @Home. The two services used MOST these days are email and web. Shut those down and the customers are paying $65 for nothing.

Re:People still use USENET?

[re-geeked]

Another helpful rule, IMO: more segments (them's the words between the dots) in a group name is better, as exemplified by the poster's 3 5-segment examples. Two segments is a recipe for trouble.

Of course, this excludes the made-up group names: alt.slashdot.die.die.die or whatever :)

Re:People still use USENET?

[ThePolack]

If I'm not mistaken, there is such a thing as an IDP (Internet Death Penalty) that blocks *all* packets originating from the offending servers at a router level. As far as I know though, there has never been a mass IDP leveled against any company. Imagine what someone would have to do to get slapped with IDP by a large number of sysadmins.

Re:People still use USENET?

I know that my home network (192.168.1.*) is blocked, and I think it just isn't fair!

heh

Re:People still use USENET?

[Inoshiro]

I remember carrying out interesting conversations with people in 1995 on Usenet. News was a strange and wonderful thing, and I enjoyed it. Today, however...

Moderated groups, so far, are the only good kind. And they are not supported on all servers. There are also forms of censorship, with the local ISP not carrying all the groups (and allowing you choice). Several people I know have wondered about better ways, and some have gone so far as to developing new protocols, etc. Let's hope Usenet can self govern away the evil that is spam and crossposting unrelatedly, and let us get back to the Fidonet echo level of signal/noise.
---

Re:People still use USENET?

[Kesh]

The last time I read USENET was gosh..almost 2 years ago. Full of spam, threads that went all over the place, crossposting galore. I have since given up and am using /..

The best thing is to find a newsreader that supports regular expressions in its killfile/filtering feature. With the right expression watching the Newsgroups header, you can filter out crossposts easily, add in filters for subject matter and usernames, and take out most of the junk.

What would problably work in this day and age would be a WDP (Web Death Penalty). Block port 80 from and to known ISPs that spam. Boy will that get people's attention.

Interesting idea, but how would such a system work? Any ideas folks?

Re:People still use USENET?

I stopped about two years ago, more because I couldn't keep up with both USENET as well as special-interest mailing lists, where spam harvesting is just about nonexistent. Once spam became a problem, I really didn't dare go back to USENET, because I didn't want to have my e-ddress harvested, but also had perhaps an exaggerated sense of courtesy about not having a munged e-ddress to foil the harvesters. This advice was very welcome, indeed, and I posted privately to the sender. // Nicholas Bodley // nbodley@world.std.com // Yes, I have a password, but it's a nuisance to go get it from its hiding place.

ouch

[karmatrip]

this sucks for me, being a new @home user. i have wanted to stop by the usenet, but i havent had a chance to anytime. now im being punished for something im not even doing... anyway a hapless victim could get around this?

Re:ouch

[bergie]

this sucks for me, being a new @home user. i have wanted to stop by the usenet, but i havent had a chance to anytime. now im being punished for something im not even doing... anyway a hapless victim could get around this?

Just let @home know how you feel about it. And not only their support, but also their sales. That ought to help as the UDP will be lifted once they clean up their act.

/Bergie

--

Re:ouch

[john*mckown]

I think that's the whole idea. @HOME has all of its users "cut off" from USENET posting (not reading!). Those people get very upset. They tell @HOME - why is this happening - FIX IT or I go elsewhere with my business. @HOME faces loosing current & future customers. @HOME therefore looses money. This gets their attention. Therefore, they make a bigger effort to actually fix the problem. Probably by cancelling the actual abuser's account.

Re:ouch

[Quantum+Cat]

Contact @home's customer service reps and complain about it. Specificly, let them know you're on the virge of cancelling your account with them if they don't comply so that the UDP can be lifted.


They patently don't care about being good netizens. They *HAVE* to care about the possibility of customers leaving them in droves.

Re:ouch

Two options:

1) Complain to @home and tell them to start cracking down, or

2) Get a new ISP.

I wonder what would happen if AOL got the UDP... Mmmm. Happy thoughts.

Re:ouch

[schon]

You (well, we - I'm an @home customer as well) have a great way to avoid being a "hapless victim" - contact @home and tell them to fix their server (they have one week before the penalty becomes active.)

In all honestly, it won't affect me too much though, as I mostly just use USENET for browsing classifieds (and if I REALLY need to post I do could just as easily use Deja, or the NNTP server from work..)

Just remember, as an @home customer, you have the power to fix this.

Re:ouch

[AllynKC]

Stinks to be roadkill on the information superhighway, doesn't it? Your best bet is to write a letter to @home customer service complaining about their lack of action which resulted in your being banned. In the meantime, you can register at dejanews.com (not the best means of navigating the news groups).

Re:ouch

[wboatman]

All the UDP does is keep spam from leaving the @home network. I'm on @home, I and you, will be able to read all of the spam. Everyone outside of the @home network won't. Net affect to you: No one outside of @home will be able to see your replies to a usenet article.

Re:ouch

[GossG]

Done. I have a call in to join @home (filled in the www.rogers.com Web page Friday, waiting for callback). I called a sales weenie who forwarded me to a tech guy who took the UDP seriously. I let both of them know that I wouldn't go through with my installation until they resoved their UDP problem.

Re:ouch

[GossG]

I wonder what would happen if AOL got the UDP... Mmmm. Happy thoughts. I think that Netcom came within a few hours of the UDP deadline when UDP was called on them.

Re:ouch

Well, look on the bright side. Not being able to access USENET might give you time to figure out how to use features of your computer that you aren't familiar with. The shift key, for example.

Re:ouch

[M_Talon]

Well, as far as I know, the UDP doesn't stop you from reading stuff on Usenet. It just means that anything you post won't be received by any other servers that are honoring the UDP. In short, you can hear and speak, but others may not hear you. As MANY MANY others have already posted, complain to @Home sales and support. Let them know how you feel, and with any luck the UDP will be resolved soon. Otherwise, you'll have to resort to using a web based service like these:

http://www.deja.com
http://www.remarq.com

The thing to seriously keep in mind is that the UDP should not be permanent. Most major companies realize the scope of the thing and take steps to resolve it promptly. If @Home is halfway decent, they'll do it. Otherwise, I'd suggest a change of ISP.

Re:ouch

[Last+Warrior]

Contact your ISP @home and urge them to comply with this mandate. Any action could be easily avoided provided that this issue is resolved before the deadline. There is no logical reason why a conscientous administrator would not want to limit the amount of duplicated spam cross post to countless usenet groups.

LW

Re:ouch

[M@T]

being a new @home user..[snip]..anyway a hapless victim could get around this?

Yep... contact @Home and tell them you're pissed off. Keep doing it until they see the light.

M@T

Re:ouch

[Cody+Hatch]

Of course! You should complain to @Home. Do so at length, and threaten to take your business elsewhere until @Home manages to fix the problem @Home has which is hurting @Home users.

If @Home doesn't fix the problem, you really should switch, if possible. If not, there are many other solutions. The cheapest and easiest would be to read newsgroups via Dejanews or Remarq. Better solutions would be to get a Unix shell account (these are available for free some places at least).

Of course, @Home may come around, hopefully before the UDP hits on the 18th. If so, you have no problems at all.

Re:ouch

[a_festering_bunny]

hrm I'm not such a big user of usenet myself but occasionaly I use it. Problem is, there is NO place I can go if I would cancel my account, IMHO @home isnt a good isp but it iss the only cable ISP that I can subscribe to and that a heck-uf-a-lot better then paying $ 0.15 every min for a dialup. I'll survive an UDP but I know enough people who wont be very happy with it, but cancelling their accounts? They wont, simply because eventhough @home isnt so good, its the ONLY thing around that beats a dialup.

Re:ouch

[grapeape]

The problem isnt in canceling one account the problem is hundreds of accounts. They really need to enact an anti-spam policy.

I am a former admin of a fairly large news outsourcing service and believe me this problem is not new. Recently usenet posts have exploded to well over 20 gigs a day most of the time, many times now it has hit 30. A 250 gig raid can only retain about a weeks worth of articles now. Of that 250 gig I would guess that 2 days worth of retention space is lost to spam. Its a serious problem.

Just fighting off spammers on a local level is a full time job for a decent news service. Check http://www.spamhippo.com and look at the top 100 spam sites and you will be amazed at the sheer numbers.

I feel bad for any user that suffers due to their ISP's negligence but at the same time I know that locally we will comply with UDP. The suffering of the users unfortunately is the only way to stop it.

Most arent aware but there are actually people out there who do nothing but work as spammers for hire...they sign up for a newsservice and spam until they loose their account. @home has become a haven for them due to their apathy towards stopping them and several notorious spammers have been using them for months.

Yay

[nd]

This is the sort of thing I like to see. As someone else stated, it's comparable to anarchy working.

I like the idea of people/organizations fending for themselves on the internet. The last thing we need is any government intervening and trying to enforce it. Anarchy may not be suitable for real life, but I think the general concept is perfect for the Internet where the real laws lie in the software. For example, when someone tries to break into your box, you shouldn't call the cops - you should make sure your box is secure and defend yourself. If you're incapable, then buy software to assist you. (note: Please, nobody make analogies comparing this to some crime in real life :) It's just not the same in my book).

Re:Yay

[little+alfalfa]

The next step is to put hotmail and AOL on the RBL!

Stop the SPAM!

Re:Yay

[JackiePatti]

I don't think the criticism of Hotmail is fair, In response to complaints from me, they have cancelled several accounts. They have fought against spam pretty hard otherwise as well - do a search and read up on it to see.

Re:Yay

[lildogie]

Anarchy: (n) A form of civilization where each citizen is capable of governing their own self.

5 day waiting period

[Garpenlov]

Although the story is wrong (in that it says the penalty starts today), the penalty is announced today, and goes into effect 5 business days after announcement.

Oops

[Garpenlov]

Oops.. what I meant to say was, of course, that it goes into effect 5 business days later if nothing changes.

Groaner...

[MorboNixon]

"Death Penalty"? @Home? Is it possible we could get Kevorkian in there for an assisted suicide?

Better Link to the article

Here is a better link to the article in question: Keeps from /. 'ing one server.

I'm glad, and it's my ISP

[Sludge]

I'm a disgruntled @home user, or in other words, I've been on the service for more than three months. No one at @home takes proper measures to inforce the acceptable use policy. Instead, they cap bandwidth at 5k a second to make their ISP a less viable 'server', inconveniencing every user.

@home costs $65 a month Canadian, and they cut corners everywhere they can. My personal WAN area has between 32 and 40 people on it, and the packet drops are phenomenal. I have been phoning their tech support for thirteen months in a row, and they have told me it's everything BUT a crowded WAN area. They most recently have told me that 'Internet Access' does not include UDP. They do not support UDP, therefore they have no responsibility to control the quality of Internet gaming, despite advertising gaming on their network on television with fullscreen Quake pictures. I have been keeping track and am wondering about the viability of a lawsuit.

As I hinted above, servers are against the rules with @home. Have you ever played on a Quake server with an IP starting with 24.113 or 24.112? That's @home cable. Expect 5 to 50k/s upstreams.

Ever gone to a mp3 search engine? A ton of the sites are 24.113 or 24.112.

@home has been banned from Dalnet, due to excessive numbers of people spamming the network. The Dalnet ops have tried to contact @home about the problem, but they were ignored. The only way to connect to Dalnet for @home members is through gate.dal.net, which has too much lag. My two year old channel dwindled to zero people within a week.

The bottom line is, do NOT sign up with @home if there are any other alternatives. They will hook you in with a high installation fee, and it goes downhill from there. You're on your own. Everyone who has any sense of right and has power at @home must be ignored internally.

Re:I'm glad, and it's my ISP

[Enoch+Root]

This is not a flame; I'm curious.

Why the heck are you sticking with @Home, then? I would have lost my patience waaay before 13 months, and switched to someone else. It's not even like they're really cheap.

Re:I'm glad, and it's my ISP

[[soop]]

Ok, all I have to say is I have not once had a problem with my @home connection and i've had it for about 3 years now. I am on the ym1.on.home.com segment and honestly the biggest problem i have ever had was every so often maybe once every 3 months i will lose connectivity for maybe a half hour at most. No comparing this to what i used to receive with dialup access its an amazing service, my transfer rates are phenomenal, sure sometimes there is network slow down, but i'm not about to complain because i am only receiving 15-22k/second down stream from a specific site when i can compare that with 9k on dialup. look at HSE (adsl) Bell Canada High Speed Edition ... yah there's a good service *s*a*r*c*a*s*m* and you are complaining about a 50k out bound cap? try going out at 12k, and on top of that "having" to go through a proxy server, have you ever tried to get something other than windows to work with pppoe?

All I can say is @home has to be the most complete and stable home based internet service available.

And in regards to being banned from dalnet, oddly enough i dont have that problem accessing dalnet (then again it is dalnet so who would care?), and admittedly I will accept the fact that yes being an @home user we are k-lined off most irc servers available.

The problems with @home are all along the same equation with gun control in the states

give everybody access to a gun and things go wrong

give everybody access to bandwidth and things go wrong

anyways thats my two cents ... and stop your bitching about a service that is miles ahead of dialup. If you are unhappy run an oc3 into your basement

Re:I'm glad, and it's my ISP

[El+Volio]

Actually, @Home owns the *entire* 24 network. I'm an @Home user (for the moment, I'm in the middle of switching to DSL) and I usually block all traffic from hosts on that network (except from my DNS servers) to my home network.

Re:I'm glad, and it's my ISP

[Roundeye]

have you ever tried to get something other than windows to work with pppoe?

Yes. With some elbow grease it works under Linux and OpenBSD. Probably works under FreeBSD and NetBSD also. But, it's gonna take a bit of the old RTFM.

Re:I'm glad, and it's my ISP

Where are you that it's $65 CDN? Around here it's $40 from either Shaw or Rogers. OTOH It's the cable company and they can even keep the TV working so why would I trust them.

Re:I'm glad, and it's my ISP

[Mike+A.]

I'm not him, but my guess is there isn't anyone else. Many regions of the US and Canada have no broadband whatsoever, after all, and I expect many of the rest have only one provider (cable or DSL, depending). It could be that the original poster's only alternative is to go back to analog dialup; and cablemodem (or DSL) service has to be pretty d*mn crappy before it gets to be worse than 56Kbps.

Re:I'm glad, and it's my ISP

[synaptik]

My @home experience has been better than yours. In my market, the service goes for about $50, and I have seen data rates as high as 600 kps (actually, 3 concurrent transfers averaging 200 kps each, as each maxed out at 200 kps individually.) Granted, I don't get that throughput ALL the time, but I didn't buy into the @home service with that expectation, either.

--synaptik
If you want to flame me, do so here.

Re:I'm glad, and it's my ISP

Ummm Linux is the only thing that works with PPPoE. You'd have to be crazy or heavily into pain to try the windows clients. It's better to buy an old 486 and set it up for Linux&PPPoE then to try and run those stinking Windows clients.

Re:I'm glad, and it's my ISP

[karmatrip]

my @home connection was a choice between it and a crappy/expensive/slow adsl service run out of california (this is ky here!) by the local telco. so far the service is somewhat nice, but on occasion the network becomes "unusable" (there are 5 lights on the modem: power, lan connect, cable connect, activity and email(specifically specified as unused). the power and cable lights switch off and the email light comes on....?) during this time all activity stops and we get screwed over. there hasnt been too many of these incidents, and so far, service has not been too bad. we would have a much better option of sdsl, but remember the above stated adsl service? the local telco doesn't want competion, so a local isp can't get to the lines. and to think we could have 1.5mbit BOTH ways and NO restictions on what we use it for if it wasnt for the local monopoly. why are they allowed to continue? why can't there be competition over telphone service?

Re:I'm glad, and it's my ISP

[Bishop]

Not all of 24.*, just most. I was with another cable provider and they used 24.*.

Re:I'm glad, and it's my ISP

I have had problems as well with @Home users trying to break into my system. When I send notes and logs to abuse@home.net, all I get is a big bag o' nothing. The only problem is that the local DSL telco (Telus) has even WORSE abuse customer service. As I am not a customer, they didn't even know who I should talk/email to that one of their customers was trying to BackOrifice my system.

Re:I'm glad, and it's my ISP

you're talking about a different UDP. I think you're talking about the protocol rather than this edict. Big difference.

Re:I'm glad, and it's my ISP

[Tower]

I'm stuck with @home, too, and am fairly unsatisfied after only 7 months. There really isn't a whole lot of other options (pay 3 times more for DSL, dial up - my newest modem is a 14.4). Plus, I like my whole in-home net to be accessable all day (via a firewalled ssh-only gateway). I hate to say it, but they are the only game in town in some places...

Re:I'm glad, and it's my ISP

[Enoch+Root]

Well, the way he made it sound, they top the transfer rate at 5Kbps *anyway*... That means it would be less expensive to switch to analog dialup and buy a second phone line, with the same results.

Re:I'm glad, and it's my ISP

[jawad]

I use Roadrunner (through Time Warner (and now AOL?)), and many IP addresses for RR are 24.92.*.*, 24.29.*.*, and (most recently I've seen) 24.25.*.*.

I was under the impression that Roadrunner had nothing to do with @Home?

Re:I'm glad, and it's my ISP

[ghoti]

no, that's just for *outgoing* traffic (so people can't use this to host their high-volume servers, as mentioned in the original posting). 5kbps over cable would be ridiculously expensive ...

Re:I'm glad, and it's my ISP

[dattaway]

All I can say is @home has to be the most complete and stable home based internet service available.

Why do I get the feeling you work as PR for @home?

Re:I'm glad, and it's my ISP

[Mike+A.]

I can only imagine he means the outgoing transfer rate. You still get the higher incoming transfer rates; you just can't run any practical servers.

Re:I'm glad, and it's my ISP

[Sethb]

I'll be the middle of the road @Home user in this discussion. I've had it for 5 months, and am pretty happy over all. I wouldn't go back to dial-up for anything, but I've had problems as well. Mostly with nightly outages for the first month I had it, which have since been resolved. My only other gripes are that they limit you to a maximum of 3 IP addresses, and I need 4.

YMMV, as I'm on a node which had a total of five users, last time I checked. I've seen downloads of up to 120K/second, which is pretty damned fast. The uploads aren't speedy, but certainly better than dial-up and I'd estimate them at about 20-30K a second in my experience. I haven't tried to run many server apps off of it or anything, but I have no problems with the speed.


---

Re:I'm glad, and it's my ISP

No they don't.

I'm on PlanetCable 512K/s BOTH WAYS baby! Running freefall.penguinpowered.com (24.137.10.83)from my home system.

Re:I'm glad, and it's my ISP

[Sludge]

The other alternative is dial-up ISPs, since ADSL cannot reach where I live; Statistically, I am not in a very rich neighborhood, and support for cable and ADSL suffers from that. I am friends with a person who lives in the same building as the VP of Rogers (the [scummy] cable company in bed with @home), and his cable connection is very, very stable, and fast.

I'm not willing to go back to dial-up ISPs yet, since there are three, and soon four computers going to be connected to the Internet through my IP Masquerade. Furthermore, a personal web server and the ability to ssh into my computer when I'm not at home is something I utilize at least once a week.

I'm not the only user in my house who uses the Internet. Rather, I'm just the one who has the knowledge to know what a shitty service it is. It's not up to me to cancel it.

Re:I'm glad, and it's my ISP

I'm on @Home (Cogeco@Home) too. The only reason I'm sticking with them is because nothing else is available. We won't be getting DSL for at least a year. Even when the @Home service is at it's worst, it is still about twice as fast a modem (and doesn't tie up the phone line).

Their service is slow, and their nodes are overloaded by 300% (there should be 25 people per node, according to them - many nodes have 50-75). Some people call Cogeco almost weekly to complain, but they just blame it on someone else (i.e. "It's slow because people are running servers").

Here, the service is only $49.99 a month, or $39.99 if you subscribe to basic cable. But if DSL was available (it would be the same price, I've checked), I would switch to it, along with almost every other @Home user I know.

Re:I'm glad, and it's my ISP

[aqua]

% whois 24.0.0.0@whois.arin.net
[whois.arin.net]
@Home Network (NETBLK-ATHOME) ATHOME 24.0.0.0 - 24.19.255.255
@Home Network (NETBLK-CORP-RDC-SC-1) CORP-RDC-SC-1 24.0.0.0 - 24.0.0.255

That looks like 19 class B's and a class C. As I recall, @home applied for and was denied a class-A; they were moaning about it semi-publicly.

Re:I'm glad, and it's my ISP

[Sludge]

I would like to know what part of town you live in. I am confident that @home uses demographics that shows where the most amount of money in town is, and supplies that area with better service.

I lose connectivity every night. I've lived in two houses since I got on the @home network. One was a cheap rental town house, and the other in a neighborhood with $150,000 houses.

The reason you do not dislike @home is because you have not had the hassle with bartering with their tech support for hours in order to get someone to examine your connection in-depth, because your connection works.

However, unlike you, I am someone else. This resets the odds back to start on every factor that could go wrong.

Don't tell me you wouldn't feel nervous about moving to a new house, and getting cable reinstalled. Don't tell me you wouldn't hope that your access would be high quality.

As for dalnet, they detect your *.home.com status, redirect you to gate.dal.net, which is an alias for hebron.dal.net and another server I can't remember, and sit you in a very croweded, laggy situation.

The point of my original message was that @home does not give two shits about anyone. We are banned from Dalnet and Usenet. An a more personal level, I explained how they do not give two shits about me, personally.

Though, it is good to know that you get fine service. I have no doubt that @home works for SOME people. However, I am demographically challenged.

Re:I'm glad, and it's my ISP

[DAVEO]

daveo uses cablevision's optimum online that he ordered about a year ago (in new york) and the ip's used to start with 167.206 (daveo's still does), but the newer customers have 24.118.* or such.

Re:I'm glad, and it's my ISP

[GrimJack]

I thought I'd start this by pointing out that I have @home in Canada as well, I'm not sure if you're on Shaw, Rogers or Codgeco(sp?) but I have found from discussing with people on the various services that the quality of your service is rarely directly @home's fault and more likely the way your cable company handles it's own end.

I thought I'd post a more positive perspective on my @home experience.

First off I've had the service for around 2 1/2 years now, I had it when it was still known as 'The Wave' because @home was too busy at the time to handle expansion into Canada. I pay around 40$ a month Canadian with tax. My stream caps are 300k/s down, 50k/s up (Up from 100k/s down and 50k/s up when I initially signed up) and I routinely do transfers at these rates. I live in Metro Toronto and I would estimate I easily have over 100 people on my segment, if I were to guess I would say it is probably higher, more like 200. During prime time I do notice more packet loss, but I guess I just accept this, just as I accept that if I go to work during rush hour I will have to contend with more people on the train and it won't be as easy to get a seat etc. I do play quake, everquest without significant problems.

As to @home's handling of open relays, well @home may be bad but my personal cable company (Rogers) seems to actually be developing a clue. They recently did a scan of machines and notified people running mailservers who failed the spam relay check that they would have a week to fix their relay or their service would be disconnected until they could prove to the abuse people that it was fixed. As a side note Rogers allows small personal servers for mail etc, but don't expect to be running the next slashdot affiliate off it :). I found their handling of this incident suprisingly well done considering the horror stories that come up on the Unix@home mailing list about abuse departments disconnecting people because their machine showed open ports for mail and www even though they were only running things for personal use.

I don't use IRC so I really can't comment on that.

My bottom line I guess is, all of @home is not created equal. Check around, ask other people who have been on the service in the area what they think, look and see if you have a local @home users group and see how their general attitude is towards their provider.

Re:I'm glad, and it's my ISP

You're lucky to be getting 50k upload. I'm on @Home and have a 12k cap. But I'm not having a problem being banned from DALnet, because my IP resolves to a *.cgocable.net domain (Cogeco switched over to the @Home service about 6 months ago, but never updated the reverse DNS mappings).

Re:I'm glad, and it's my ISP

[Malc]

Fortunately my girlfriend is a student at UWO (according to a friend who worked at Bell, it seems that UWO put some money into Sympatico's network). Therefore I was lucky to be an early signer to DSL outside of Toronto/Montreal/Ottawa areas.

Sympatico's DNS is slow and the way interconnection speeds vary with parts of the internet means that my connection often crawls (I get less than 10K/s over the VPN to work in Denver during the day, but at the same time I can get 85K/s from javasoft.com!) The other problem with Sympatico is that they don't allow more than one email address.

I constantly hear bad things about Roger's cable internet service. I hope you get some more choice in your area sooner than later.

Re:I'm glad, and it's my ISP

[Malc]

"try going out at 12k, and on top of that "having" to go through a proxy server"

That can't be true:
1) I don't use their proxy server at all.

2) A friend of mine in Denver FTPed a CDROM image from my machine at over 30K/s.

Re:I'm glad, and it's my ISP

[Gleef]

El Volio says:

Actually, @Home owns the *entire* 24 network.

Actually, they don't. I use RoadRunner (@Home's biggest competitor) and generally see addresses of 24.24.x.x through 24.29.x.x there. RoadRunner certainly wouldn't be giving out @Home's IP addresses.

----

Re:I'm glad, and it's my ISP

[Jburkholder]

uh, no...

I have Mediaone Express and in Chicago we're 24.131.*.*

Re:I'm glad, and it's my ISP

[dvicci]

To back up the claims of others, in Lawrence, KS, our cable modem IP's are 24.124.x.x, while those next door in KC (Roadrunner) are 24.94.x.x., and neither are working in conjunction with @Home at the moment (though I can't speak for the past).

@Home may have bought 24.x.x.x, but they don't own them all now.

Re:I'm glad, and it's my ISP

[toolj23]

I live in the low income part of a 200,000 person town. I've had cable for about 4 months now, and the service has been excellent. I've only had one problem and that was due to someone in the accounting department setting up another account which caused a change in the MAC address. This took me out of service for maybe 3-4 days max.

I normally will d/l at speeds ranging from 75k/s to 300+k/s. The only thing that really sucks is the upload cap at 16k/s. I can live with that, it's better than a modem... I'm not going back to one of those.

Obviously in this case the reason I have good service is not because I live in an area with $150,000 houses around me. If I had to guess, I would say that not many people can afford a computer, much less a cable modem to go along with it. Therefore, I'm one of the few people using the service in my node.

On the other hand, I have 2 other friends who have gotten nothing but shitty service from the same company. They live in a little higher income area than I do. Possibly a more dense population also. Go figure.

So I don't know what it is. The amount of people in your area using the service, the amount of money in your area, or just plain luck. But I've been very happy with my service and feel extremely lucky to have such a great connection.

And for the dalnet thing. Last I checked (about 1 week ago) all I had to do to get on was to have an ident server running. Simple. I got onto more than one server that way.

-John

Re:I'm glad, and it's my ISP

[Greg+Merchan]

I'm on @home and I've detected attempted telnets onto my box for a few points, one of which is also on @home. The attempts usually come in groups which leads me to think it's probably the same person, and I have to wonder the the @home address is a cracked box. I was going to try email this week since ye olde admins telephone jumps to an eternally full voice mail box.

If anyone else has had similar trouble, I can be reached at merchan@baton.phys.lsu.edu. (I'll update my user info later)

Re:I'm glad, and it's my ISP

[GPB]

One was a cheap rental town house, and the other in a neighborhood with $150,000 houses.

I don't know about you but where I live (Seattle), $150,000 houses are usually called garages.

-B

Re:I'm glad, and it's my ISP

[pluteus_larva]

Of course, it isn't really relevant that your service has been acceptable. It's better than dialup? So what? It's a fundamentally different thing than dialup. It should be *way* better than dialup, and if it isn't as good as advertised, then there's still a problem.

But even that's irrelevant. The issue here isn't whether @Home customers are happy; the question is whether @Home has a reasonable spam policy that it enforces. I don't know what the policy is, but obviously it isn't enforcing it.

How much will you enjoy your service when your posts to newsgroups are no longer propagated? Maybe you don't care about that because you don't post. But those who do are going to be pissed, I imagine. That's what the UDP is for.

Re:I'm glad, and it's my ISP

[GPB]

Actually, @Home owns the *entire* 24 network.

As many have already pointed out, your statement is incorrect. The 24.0.0.0/8 (Class A) network has been "reserved" by for cable networks. So if you're a cable ISP and you request address space from ARIN or whomever controls address space for your country (and if they actually give it to you -- another story entirely) it is very likely that it will be within the 24.0.0.0/8 netblock, but it doesn't *have* to be.

-B

Re:I'm glad, and it's my ISP

[pluteus_larva]

Of course, it isn't really relevant that your service has been acceptable. It's better than dialup? So what? It's a fundamentally different thing than dialup. It should be *way* better than dialup, and if it isn't as good as advertised, then there's still a problem.

But even that's irrelevant. The issue here isn't whether @Home customers are happy; the question is whether @Home has a reasonable spam policy that it enforces. I don't know what the policy is, but obviously it isn't enforcing any policy at all.

How much will you enjoy your service when your posts to newsgroups are no longer propagated? Maybe you don't care about that because you don't post. But those who do are going to be pissed, I imagine. That's what the UDP is for.

Re:I'm glad, and it's my ISP

[Lorenz]

For me, @Home works with any OS or hardware (including an ancient Sun workstation running OpenBSD) that has an ethernet jack and can do TCP/IP with a static IP address.

Re:I'm glad, and it's my ISP

[hypergeek]

*Grin*

First they ignored UDP (the protocol), now they're the ones getting the UDP (the swift kick in the pants that is the Wrath of the 'Net).

And in other news, @Home announced today that it will be buying out the Ministry of Truth, making it the world's third largest Crappy-ISP-cum-Formerly-Half-Decent-News-and-Enter tainment-Company, closely trailing AOL-Time-Warner and MSNBC.

Re:I'm glad, and it's my ISP

[tomblackwell]

Their proxy server is hidden. You don't see it, but it's there.

He said "going out". You said "download".

He could mean outbound speeds. Which differ from download speeds. The "A" in ADSL is "asymmetric".

Re:I'm glad, and it's my ISP

Doesn't sound like anything to be happy about to me.

Re:I'm glad, and it's my ISP

[Magritte]

If you played Quake on a server run off an @home cable account then the customer was in direct violation of @home's acceptable use policy. They do not allow servers run off their network.

Trust me I know, I work there.

Re:I'm glad, and it's my ISP

[GPB]

Who said I was happy about it? In fact, I'm just the opposite.... I was simply trying to point out that $150,000 houses do not automatically signal a wealthy neighborhood for all.

-B

Re:I'm glad, and it's my ISP

[Inoshiro]

I hear you, brother. I'm in the Saskatoon area, so our IPs are 24.6[4,5,6,7] type. Not as many as your Ontarian ranges, and the prices are competitive (40$ per month Cdn, as we have ADSL locally for a similar price). The upstream between users is 20kib/s, and to the word about 15 to 30kib/s. It's been up to 60kib/s, but that was a year ago (things have been going downhill).
I've (numerous times) tried to have the @Home people check their damned mail servers. A lot of messages to my @Home email address (which I just don't use anymore -- I run my own mailserver, and to hell with their AUP) had "X-Apparently-To:" followed by a few hundred @Home email addresses. Broken mailserver allowing easier spamming? No kidding, they use an old NT Mail (which I could probably crack into, using a simple script kiddie exploit from Bugtraq or NTBugtraq).

The worst, though, is that their irc.home.com server tries to telnet to every client that connects to it. It set off my IDS, and I've left the ipchains rule in force ever since. It's a shame that they are the only broadband provider which doesn't use NAT (breaks everything), and can have a fairly decent upstream at times.
---

Re:I'm glad, and it's my ISP

[Inoshiro]

"when i can compare that with 9k on dialup."

I'll buy the magic modem that gets 9k/s on dialup. I'm sure the technology in it is very patentable, and bordering on the arcane as the last time I checked, analog lines did 3k/s max, with a 5k/s cap downstream only possible on special digital/analog conversion loops (X2/KFlex).
---

Re:I'm glad, and it's my ISP

I have to agree. I signed up when it was just 'Wave', and got about 200K/s down and 60K/s up. Now I get about 800K/s down (max) and 50K/s up (max). However, I have to say that I'm glad @home is getting the death penalty and I hope they rot in hell. I've an avid usenet user (I read and respond to news sometimes half a dozen times a day), but the amount of abuse by @home subscribers is just deplorable.

Re:I'm glad, and it's my ISP

[DAVEO]

*sigh* could someone please explain this moderation?

Re:I'm glad, and it's my ISP

[pnevares]

you just [echo]'d my thought exactly =)


Pablo Nevares, "the freshmaker".

Re:I'm glad, and it's my ISP

[Malc]

I didn't use the word "download" at all! I said a friend FTPed FROM my machine, which is the same as "going out" from my machine.

I understand perfectly what the "A" in ASDL means: my connection is asymmetrical: 1 Mb/s down, 340 Kb/s up.

Please explain to me how a hidden proxy server would work. Wouldn't that mean I'm effectively behind a firewall? Of course, Sympatico could have opened the ports for PPPTP, FTP, telnet, HTTP, Quake2, Quake3, etc (I've been a server for them all), but that would defeat the object of bothering with a firewall in the first place.

I think that he was refering to the HTTP proxy that the Sympatico HSE installation instructions insist on using. I used it for a few days until I discovered that I didn't need it, and that my web connections were no slower without it.

Re:I'm glad, and it's my ISP

I don't know what part of the country you live in, but in Southern Ontario through Rogers I'm getting @Home for $39/month Canadian (~$27 US), including rental of the cable modem, and my installation was free. My TCP/IP traffic is not filtered in any way and I am able to play any game, or utilize any other standard TCP/IP services. Indeed there is no lame client side software that needs to be run so I'm just another network node (as opposed to a lot of oddball ADSL software).

Regarding speed I just finished downloading Nascar 3 at a 165KB/second. Upstream I am capped to 50KB/second (note that KB. In Kb x10 or about 500Kb/second), but it has never affected me adversely and it is to combat exactly what you were talking about: People abusing the system to run high volume 24/7 servers (which is not the point of the system and it isn't economically viable for the system to operate like that).

The point of all of this is that it is absurd for anyone to paint "@Home" all with the same brush. @Home is a huge variety of providers across North America, and the quality levels obviously have dramatic variances. Within the same city the quality levels can vary astronomically. In my case @Home is a HUGE bargain...the competitively price ADSL solution has a DOWNSTREAM cap of 50KB/second, and the upstream is limited further still.

Re:I'm glad, and it's my ISP

[FalseConsciousness]

I am a former Rogers @Home customer. I know of more than one incident in Vancouver where DoS attacks were traced to @Home users locally but nothing was done about the abuse. They (Rogers@Home) are simply clueless about their responsibility to deal with service problems, and of course Rogers' customer service in general has always left a lot to be desired.

The only thing that is going to smarten them up is if they have to surrender their monopoly on "internet on cable", or if DSL providers achieve credibility and pricing parity. So far, it is more difficult to get DSL in most areas than it is to get @Home or other cable modem services.

I don't think the problem is that there are too many users on @Home, or that the company is naive about their responsibilities on the net. I think the problem is that the companies involved have made a decision to restrict the amount of service that they are going to provide. Long waits on support lines are not an accident, the company has calculated how much they can spend on phone support employees if they want to achieve profit margin x. I do know for certain that Rogers dispatches their installers on a strict time-and-motion-study basis: something like "If you can't make the hardware installation work in 12.5 minutes, leave anyway". My guess is that the same applies to complaints about DoS, SPAM, etc.: they don't want to spend the money that it would take for them to become a better net citizen, and so far nobody has forced them to rethink.

Re:I'm glad, and it's my ISP

[StarOwl]

I'm also an @Home subscriber. @Home news servers, mail servers, web servers, internal content, all suck royally. Therefore I get my news and mail, and host my website elsewhere. I subscribe to @Home for one reason only -- an IP address on a generally high-speed line. In that regard, when @Home is good, it's *very* good. (And when it sucks, may the gods help you trying to get a clueful tech to look at the problem.) If you can get a discounted install, the cost is more or less equivalent to an account on a decent ISP, and a second phone line. I would love to go with a different service provider, but in my area (Hartford, CT), the options are limited. DSL is not available to the general public here yet, and @Home has an exclusive contract on the local cable wires. Hopefully the UDP will be the clue-by-four that finally knocks some sense into @Home admins. There are some good ones in the organization, but they're hidden away behind the bulk of the staff, which spends far too much energy sticking their fingers in their ears and babbling "lalalalalaIcan'thearyoulalalalala".

Re:I'm glad, and it's my ISP

[HighLordofNothing]

Please explain to me how a hidden proxy server would work.

I don't have a clue how @hoome does it, but a hidden proxy server is very easy to do. I've set them up using squid and Linux port forwarding. All you have to do is set your gateway to forward port 80 (or what ever port you want) to the proxy server port. That way all all traffic will hit the proxy.

IMHO this is a good thing, as a proxy means that rather than going over the internet to pull down static content, ie: the images on a web page for instance, it will all come out of the cache. Of course if whoever is running the proxy gets too thrifty you run into things like reading yesterdays slashdot page instead of the current version.

Re:I'm glad, and it's my ISP

[A4Joy]

Sure, it might be illegal, but is this enforced?

I have several friends who have been running all manner of servers off the @Home service for a long time, and not one of them has even received a warning e-mail or any sort of indication that the good folks at @Home noticed or even cared.

They certainly didn't when some software of mine detected huge numbers of broadcast packets with huge sizes on my subnet from some jabonie...

Re:I'm glad, and it's my ISP

[Malc]

"All you have to do is set your gateway to forward port 80 (or what ever port you want) to the proxy server port"

Of course. That makes sense.

Sympatico doesn't employ a hidden proxy for this. They're very clear about their proxy: you have to set up a script URL in the browser settings. They use it for exactly the purpose you described: caching.

I stopped using because it was slower than a direct connection on a couple of days. I don't trust it either: like you said they might get too thrifty and serve up old pages. I also don't trust big corporations like Sympatico (sub company within Bell): going through a proxy makes it much easier for them to log what I'm doing and build a demographic profile (I'm a bit paranoid about those kind of things having developed - until a few months ago - direct database marketing software for a few years).

Re:I'm glad, and it's my ISP

[El+Volio]

Thanks for the correction...

Re:I'm glad, and it's my ISP

[DJStealth]

If you check with IANA the whole 24.*.*.* class A domain is owned by @home, they sold off a few class B's.

Re:I'm glad, and it's my ISP

Hey! you forgot to write in the third person!

Re:I'm glad, and it's my ISP

[DAVEO]

daveo will try to remember that in the future ;0)

Re:I'm glad, and it's my ISP

From what I have seen, I agree with him. I don't work for them either!

Re:I'm glad, and it's my ISP

daveo will continue to be gay

Re:I'm glad, and it's my ISP

[Osty]

About the IRC server telnetting to your machine, more than just irc.home.com do so. They're scanning for open and insecure wingates and proxies which can cause major problems, due to the high percentage of script kiddies on IRC. I know from first hand experience that irc.core.com and several others do the same. In fact, it's common to be scanned upon joining high-profile channels (assuming you don't have identd running -- a telltale sign of possible wingate or proxy problems). If you don't like this, feel free to block the check.

It's unfortunate that spammers, skript kiddies, crackers, zealots, 1337 d00dz, and the other online riff-raff have to ruin such information sources as Usenet and IRC, but it's become a fact of life. A healthy firewall, a good IDS, and a little common sense will keep you well-protected, in my experiences.

Re:I'm glad, and it's my ISP

[Osty]

That was exactly his point. It happens often, yet it's rare that the AUP is enforced for these types of issues.

Re:I'm glad, and it's my ISP

[schmeel]

Sympatico doesn't employ a hidden proxy for this. They're very clear about their proxy: you have to set up a script URL in the browser settings.

Note - they _used_ to require that you explicity specify the proxy server (and you would be unable to surf without doing so). Now, you don't have to set it, and you go through an invisible proxy.

--

Re:I'm glad, and it's my ISP

[jhughes]

I'm also a @home user and I'm damn glad someone is finally getting around to doing something about their spam. Here's a message I saw form them on Athome.announce (sorry about the formatting)

Subject:
Usenet UDP - Excite@Home Response
Date:
Thu, 13 Jan 2000 01:31:26 GMT
From:
Newsgroup Policy Specialist
Organization:
@Home Network
Newsgroups:
athome.announce, athome.discussion-athomesvc, athome.discussion-security,
athome.discussion-general




Many of you have been posting your questions and concerns
in reference to the proposed Usenet Death Penalty (UDP) which
would block the @Home Network from posting to USENET. I have attached
our official response to the Usenet community and the press here but
wanted to bring attention to a couple of points that are raised here:

- This afternoon we began a network wide scan targeting open proxy
servers.

- If an open server is identified, the customer associated will be
blocked from posting to Usenet until such time we are assured that
the proxy software is secured.


------------------------------
To the USENET community:

In response to the recent UDP call for @Home Network to be removed
from interacting on the USENET, we are submitting an official response
with a proposal of short term and long term news spam prevention
initiatives. Excite@Home is very committed to participating
respectfully on the Internet, and we have taken previous requests for
action seriously.

We have found that the primary source of our excessive USENET posting
history comes from subscribers who have installed proxy software
incorrectly. Unbeknownst to the customer, this mis-configuration has
allowed outside access to the @Home news servers, and has resulted in
our subscribers becoming spam relays. Because these various IP
addresses create holes in our network, spammers have taken advantage
of this mis-configuration, and have posted thousands of newsgroup
messages through our news machines.

As of today, we are stepping up our involvement and taking more
aggressive action by performing frequent network wide scans of our
customer base to target proxy servers. Once these customers are
identified, we are suspending their news service immediately.
Re-enabling will not occur until we are assured that their machines
are secure. We feel that this proactive effort will dramatically
decrease the amount of extraneous news traffic originating from
home.com.

We are committed to promoting better Excite@Home participation on the
USENET, and we are in the process of modifying our current news
product and news architecture. We are also implementing more user
education as a parallel initiative.

With these new tactics in place, we are asking for an extension to our
USENET access beyond the 18th of January and we are confident that the
USENET community will see positive news statistics coming in the next
few days.

David Jackson
Manager, Network Policy Management
Excite@Home

Carol
Newsgroup Policy Specialist
Excite@Home

Re:I'm glad, and it's my ISP

Unless you've got a special service the current upstream limit is 120Kb. The new modems if they ever ship them would be 1.3Mb 384Kb. Port 80 is trapped. Any connection to something on port 80 goes to thier proxy server. Believe me it's there. Not much of an issue to us Linux people but the Windoze people seem to have wierd problems with it. I know it makes no sense but I don't understand windows.

Re:I'm glad, and it's my ISP

[sweet+reason]

look at HSE (adsl) Bell Canada High Speed Edition ... yah there's a good service *s*a*r*c*a*s*m* and you are
complaining about a 50k out bound cap? try going out at 12k, and on top of that "having" to go through a proxy server, have
you ever tried to get something other than windows to work with pppoe?

i use HSE. i'm in toronto, and routinely get just over 100KB/s downloads from cupertino and elsewhere. using PPPoE adds a few second to my boot time, but it runs fine on my mac with no loss of speed.

i have been impressed with the HSE tech support. any time i talk to them they have Macintosh info at their fingertips, and they even told be where to find third-party PPPoE software (MacPoET) when their own would not handle the latest Mac OS.

my only complaint is a high loss rate in binary newsgroups, but for that there is newsguy.com.

Re:I'm glad, and it's my ISP

[Zan+Thrax]

$65 Cdn? Where you at? Calgary and Edmonton are both $39.95 Cdn. Yeah the service sucks and the speed is flaky, but I have no interest in going back to 56K.

Re:I'm glad, and it's my ISP

[ecampbel]

You really don't seem to be too unsatisfied. It sounds like @Home is the best service for the money. You are getting everything you want for a fraction of the cost of any other solutions. Plus you are even breaking @Home's user contract of running an in home lan, and getting away with it to. So you should really not be complaining! Just remember the old addage, "You get what you pay for."

Re:I'm glad, and it's my ISP

[Malc]

I've had a Nortel 1.3Mb Modem for 3 months from them. I thought upstream was 340, but 384 looks more familiar now you mention it.

These modems are crappy. Some business kickbacks or something because they're a Canadian company perhaps? When I was living in Denver, US West was virtually giving away (Cisco ADSL routers US$45 after of $200 in rebates for the modem and installation), and those could at least 7Mb/s down stream (unfortunately US Worst were only allowing 256kbs, but if you were lucky you might be suprised with 640). Far more sophisticated: they even had a UNIX microkernel, you could telnet into them, and you initialy set them up with a serial connection. Perhaps a little OTT for home usage?

Re:I'm glad, and it's my ISP

Yeah, I've heard bad stories about @home too. You're generally better off with a modem, and it's cheaper, sad to say.

It's okay, I guess. DSL coverage is spreading, and cable people will be put out of business.

Re:I'm glad, and it's my ISP

5kBps upstream. A 56k modem can do less than a 33.6 *upstream*, though it's much faster downstream.

Re:I'm glad, and it's my ISP

Uh, no. This is a *bad* thing. It's cheap, annoying, and interferes with what people think is actually happening on the network. It would be good if a *non* hidden proxy server was doing the work.

Re:I'm glad, and it's my ISP

Does anyone know of a way to detect this? I'd like to know if my ISP's using a hidden proxy server.

Does the hidden proxy server also spoof your IP? If not, you could go to a web server that reported your IP to you...

Re:I'm glad, and it's my ISP

9k/s on dialup? Sure. Send an email to your ISP's local mail server containing all capital "A"s. Or use ISDN (which I guess you could consider dialup) and get 12k/s.

Re:I'm glad, and it's my ISP

Whoah! That's great! Post to slashdot if you hear that anything's going to happen about the UDP.

Re:I'm glad, and it's my ISP

[mpe]

The worst, though, is that their irc.home.com server tries to telnet to every client that connects to it. It set off my IDS, and I've left the ipchains rule in force ever.

What it apparently is intended for is as a Wingate detector. Though no-one appeared to consider how it would look to a Unix machine. Though they'd probably get upset if an IDS was to attempt the same sort of stunt against IRC server machines.
(Or something like portscan and query every TCP and RPC service)
(Also the website documenting this appears to have been written with an "everyone uses Windows" assumption.)

Re:I'm glad, and it's my ISP

[mpe]

- This afternoon we began a network wide scan targeting open proxy servers.

I wonder what alrogithm they are using, the only reliable one is does the news server attempt to pass on what they send to it. Rather than does it
simply appear to accept their posting.

As of today, we are stepping up our involvement and taking more aggressive action by performing frequent network wide scans of our customer base to target proxy servers.

Hopefully they won't get too many complaints from users who run some kind of IDS :)

Re:I'm glad, and it's my ISP

[Kintanon]

Ok, why are ALL of DAVEO's posts getting automatically Flaimbaited? That looks like some kind of stupidity to me...

Kintanon

Re:I'm glad, and it's my ISP

[Tower]

um... well, aside from when checking my mail takes several minutes, or when the best xfer rate is ~5-10k/s... yeah... usually it's not *too* bad, though... I got spolied at school, with a nice fast connection there (albiet with firewalls by the time I left).

and it's not against their contract for a home lan - I spoke to their tech types about it, and it was even mentioned in some of the documentation I got...

Re:I'm glad, and it's my ISP

[log0n]

same here.. I've had the same @home cable modem for close to three years (took it with me when i moved :), and i've had access in three different "neighborhoods", but I've never really had any of the problems that "plague" cable modems. It's much faster than having a dialup connection, it's on 24x7, and it is cheaper (in my area) than DSL (which offers pretty much the same service). The only people who are really affected by the recent upload cap are juarez kiddies. The upload rate is still more than acceptable for running a personal web server of your own, and if you do more than that, you should pay for a dedicated web provider.

Re:I'm glad, and it's my ISP

[Ares]

Don't quote me, but when I was in the market for high-speed access, MediaOne's information led me to believe that all they proxied was HTTP requests on port 80. They do this by transparently routing all connections on port 80 from inside to out through their collections of web proxies.

Of course, they do this to avoid paying for external bandwidth (cheap asses), and presumably it works well. In the end, I went with USWest's overpriced DSL because despite what they say, CableModem providers are not ISP's. They're content providers with give internet access. If I wanted a content provider, I'd be with AOL. I wanted Internet Service.

Re:I'm glad, and it's my ISP

[lscoughlin]

I've been using @home for maybe 5 months
now. And i'm quite happy with it.

I think that it does have alot to do with
your actualy middleman provider. Mine happens
to be suburban cable in north delaware.

I routinely see 250k+ downloads, and though
uploading is not quite on par with that
it's still outrageously faster than dialup.

Additionally, it's dirt cheap in comparison
as suburban offers a huge discount if they
are also your regular cable provider. I
pay about 15 bucks a month for cable modem
service which is tacked on to my $40 cable
fee which i'd be paying anyway.

As far as service problems - I've only had
one, my actual cable modem had an overheating
problem that was quickly resolved with
a replacement, gratis.

Pay attention to your area, your provider,
etc. etc. All @home as stated earlier, is
not the same. It's just like choosing a good
ole pots provider -- a massive headache.
But if you do your homework you can find
quality highspeed service through @home.

-T

Re:I'm glad, and it's my ISP

[puetzk]

I also have service at my house (at school, I use the university network). Latency is reasonable, though not phenomenal - maybe 150 or so - and I regularly get 200+ k/sec. All for $30 a month. Perfect it may not be, but compared to my phone-lines (which are noisy anyway, so I never got past 28.8) it's wonderful.

Re:I'm glad, and it's my ISP

[Simoriah]

Your info is a bit incorrect.
You must have identd installed in your system (assuming you run linux) in order to access DalNet via @home. As a #linux op and @home subscriber, I know this to be a fact.

-Simoriah

Re:I'm glad, and it's my ISP

I am on at @home in Victoria, British Columbia, Canada. I pay $40 a month and get upstreams as high as 115k/sec in the morning. 20ks/sec in busy periods. Downloads? Max rate I've recived in total for over 700k/sec with about 60 downloads going at once. That was when it first hit our area, I'm not sure I could get it that high again. I've recently seen it close to 200k/sec for a single transfer though! Shaw is the company that we hook up to @home with. There is nothing wrong with having Quake servers on @home. I went to their presentation when they moved it and said no ftp or http servers, but game servers such as Quake were fine.

www.dejanews.com

[Postmaster+General]

I'm no USENET expert, by any stretch, but you *may* (most likely, you can) still be able to read/post messages using DejaNews. Of course, this is just in theory (my theory too, which isn't saying much.) So, like a lot theories, it stands an equal chance of being proven wrong or right.

Re:www.dejanews.com

you *may* (most likely, you can) still be able to read/post messages using DejaNews.

And that would probably be an option for most people if Deja's user interface didn't suck so badly. A lot of people are going to be very put out by this UDP 'cause they won't be able to use the news reader / poster of their choice. I know if I couldn't use 'tin' and had to go with Deja, I'd just not bother with usenet.

Re:www.dejanews.com

[rhaig]

deja has a personal newsreader service (unfortunately it's a pay $ervice) where you can point tin at a news server. check out http://www.bcandid.deja.com/

As a (pissed off) @home user...

[MVoelker]

I will be sending email, making phone calls, sending more emails, having my friends/relatives/coworkers send emails and make phone calls, and basically abusing the hell out of @home.

As far as I'm concerned, this is not excusable in any way by @home, and besides, my news server @ work (news.eni.net) doesn't carry some of the ng's that @home's news server does (specifically alt.os.linux.slackware and a few gimp ng's.)

Rest assured that the not-asshole-ish users of @home will be very, very active in making this stop.

Mike

Overmoderation can be a bad thing

[wanrat]

On a relational note, I seem to remember that the alt.scientology folks went about self moderating usenet to remove offending posts about their beloved L. Ron a few years ago, and it was never resolved exactly how to approach/moderate the Usenet hierarchy in general. Self-moderating is a misleading term, since only a few Admins are capable of actually issuing something like a UDP (outside of alt. of course). Eventually, the issue of spam and individual user rights on Usenet has to be adressed, but I for one believe that you kinda gotta take the good with the bad (*Raise Flame shields*), and let the spammers post their crap in the name of protecting the ability to post any and every idea, trivial or not.


-just My 2cents

Re:Overmoderation can be a bad thing

[tweek]

I for one believe that you kinda gotta take the good with the bad (*Raise Flame shields*), and let the spammers post their crap in the name of protecting the ability to post any and every idea, trivial or not.

Have you READ the UDP page? The case for a UDP is not with dissenting opinions. It's about SPAM. The same spam that comes into inbox's on a daily basis. Unauthorized usage of a third party's resources, EXPECIALLY in the case of USENET, is an issue of money. Have you ever run a full scale newsserver? Not running leafnode to pull a few groups.
I attempted to handle a newsfeed from UUNET for our company by subscribing to 10 comp.* groups relating to the business and had to stop all together because the server jsut could NOT keep up. The diskspace was the biggest issue (even after setting messages to expire after 2 days.) Now admittedly this was an exchange server and so the hardware cost/spec was already through the roof considering the kind of groupware stuff we do via exchange, but still the newsfeed was just too damn much.

Re:Overmoderation can be a bad thing

[SheldonYoung]

UDP isn't about stopping voices from being heard - it's about stopping a denial of service attack. And that's exactly was excessive spam is.

Re:Overmoderation can be a bad thing

On a relational note, I seem to remember that the alt.scientology folks went about self moderating usenet to remove offending posts about their beloved L. Ron a few years ago, and it was never resolved exactly how to approach/moderate the Usenet hierarchy in general.

It wasn't the residents of alt.religion.scientology who did this, since many of them were critics of Scientology.

That's the provable part. What follows is not provable, but likely to be true.

The reasonable assumption is that the clamcancels were being done by black hats who were being paid by the CoS's upper executive level to make sure nothing about Hubbard got said but glowing homilies.

If someone tries to break into your box ...

[Frater+219]

I agree that to "call the cops" is overall a pretty useless thing to do if someone tries to break into your system.

However, the right answer to security isn't to "buy software" either. As Bruce Schneier is fond of pointing out, security is not a checklist feature: it's not something that can be slapped onto the side of a fundamentally poorly-designed system.

"Poorly-designed" here refers not only to the software and other instrumentality, but also to your administrative methodology. Administrative methodology has to do with the things you do as routine system upkeep. Do you monitor security-related mailing lists (CERT-CC, BugTraq)? When setting up a new system, do you close unneeded services? Do you make a habit of knowing everything that should be running on your system, and noticing when things that shouldn't be there appear? Do you run security audits against your system? Do you regularly check for security updates to your software and install them?

My new favorite security procedure: Go to a script-kiddie Web site, download some k00l t00lz (cracking tools, DoS utilities, etc.) and wield them against your own system (over your own network) ... see what happens. Keep abreast of the newest script-kiddie fads and they won't surprise you.

Security is a way of thinking -- some would say a way of life. It's not something you can just buy a program to install.

Re:If someone tries to break into your box ...

[nd]

You are correct.

But, there are software packages out there that do checks and patches to make systems more secure. I guess you don't really have to look at it as buying software either... if you were running a company you could hire security people to help out. My basic point is that there's no excuse for not helping yourself.

Re:If someone tries to break into your box ...

My new favorite security procedure: Go to a script-kiddie Web site, download some k00l t00lz (cracking tools, DoS utilities, etc.) and wield them against your own system (over your own network) Eeew, GOD no. With all the trojans (and viruses for Windows boxes) in those things? Use a dedicated security testing tool, which will be easier and faster to use (because it checks zillions of problems all at once and doesn't worry about stealth). Nessus, SAINT, SATAN...

Re:If someone tries to break into your box ...

[GreenPickles]

The funny thing about these Script Kiddie tools, is that they aren't really tools, but often are loaded weapons that little kids are able to weild.

Try securityfocus.com & packetstorm.securify.net. Then you won't have to visit the crummy sites.

Not suprised.

[stevew]

I've been an @home user for almost 3 years now.

I find it amusing that they have managed to let this come down to a UDP. @Home has some of the most draconian user rules in existance. If they were enforced at ANY level this wouldn't of happened.

I suspect abuse@home.com = /dev/null.

Re:Not suprised.

I've been an @home user for almost 3 years now.

I find it amusing that they have managed to let this come down to a UDP. @Home has some of the most draconian user rules in existance. If they were enforced at ANY level this wouldn't of happened.

It's like Prohibition -- too many extreme laws were made, and as a result, people lost respect for all of them. If @Home would loosen their rules to be more reasonable (ip masqing is okay if bandwidth stays under some given amount, http/ftp servers okay with same bandwidth reqs, smtp needs not not relay spam, etc.) then people would respect the rules they *do* make.

Who uses Usenet anymore anyway?

[quakeaddict]

In general, Usenet is way to cluttered and meaningless anymore, even without Spam.

On the 18th/19th, not the 12th.

[GossG]

The author of the slashdot story misread the original DEJA reference. The 12th is the date of the posting of the usenet message, not the UDP. The UDP is set for 17:00 (local) on the 18th (GMT 0100 on the 19th)

Surely Deja has the volume to absorb a slashdotting. Their servers seem to have ground to a halt.

The tech support boiler-room for Rogers.com (one of the @home resellers) was unaware of the UDP call. There is no response yet at Rogers.

The Deja page is an archive of a usenet news posting. If Deja falls over, you should be able to pick up the usenet posting from your NEWS: server.( Posted to: news.admin.net-abuse.usenet ; news.admin.net-abuse.policy ; news.admin.net-abuse.bulletins ; news.admin.announce )

The faq for UDP is
http://www.stopspam.org/usenet/faqs/udp.html

Re:On the 18th/19th, not the 12th.

[Hackboy]

Surely Deja has the volume to absorb a slashdotting. Their servers seem to have ground to a halt.

Fixed now. The original link was to the article on one specific server. It was getting hammered. I called and had them change the link to the round robin www.deja.com and all is well.

Well this reeks of elitism.

[slashdot-terminal]

In general I think usenet is just elitist in general. Anyone who wants to post must obtain a client. You must have access to a particular server. Even then it is not 100% likely that you will be able to get that group that you want. Then it is also possible to have a varring range of messages inside each group. They mentioned in the article that @home people are operating "open proxies" I assume that this means that they are allowing public access from the outside world. Well my friend what is wrong with that? You know I have had accounts at the infameous hotmail and even then I got spam in small quantities. What people need to do is to simply delete the spam and just look at what's there. How hard is it to just delete it? Is it's presence that bad that it actually causes people to react like it was a cockroach or maybe a demon? I think if the mythical Lucifer were to appear in front of one of these people they would most likely get more irritated or enraged at the spam than their most hated enemy (for Christians).

Re:Well this reeks of elitism.

[Uller-RM]

Anyone who wants to post must obtain a client.

How is this different from e-mail, HTTP, FTP, Gopher, etc?

Even then it is not 100% likely that you will be able to get that group that you want.

What newsgroups are carried are set by the system administrator for your ISP, and most wellbehaved ones will add ones if you ask for it. (Although you may want to rethink about asking for sex, warez binaries groups, etc.)

There are also some public servs that carry as many groups as possible, or cater to specific areas (binaries, portman, grits, etc.)

What people need to do is to simply delete the spam and just look at what's there. How hard is it to just delete it?

USENET postings cannot be deleted. With USENET, one person posts a message, and that message is then duplicated bit by bit to every server in existence that carries the newsgroup. So:

1) No centralized source to delete it from.
2) It can always be found on some odd server.
3) Same ethical/philosophical reasons that Slashdot doesn't allow moderators to delete postings.

Is it's presence that bad that it actually causes people to react like it was a cockroach or maybe a demon?

The headers must be downloaded when you spam off line; it takes time to download a million spam messages. Much less people like me who have to let my machine grab full text for me to read later.

It's a lot like e-mail spam, except messier and in such huge quantities as to compare CyberPromo (anyone remember Stanford?) to a landfill the size of Texas.

Re:Well this reeks of elitism.

[Bhodi]

*snip*
How hard is it to just delete it? Is it's presence that bad that it actually causes people to react like it was a cockroach or maybe a demon?
*snip*

The problem is not from the users complaining, it's from the thousands of messages a day that the spammer posts which can create serious storage and bandwidth issues when several spammers are involved. UDP (IMO) isn't malicious in any way, it's simply the last ditch attempt to get a ISP to do what they should already be doing (policing their own servers).

*snip*
They mentioned in the article that @home people are operating "open proxies" I assume that this means that they are allowing public access from the outside world. Well my friend what is wrong with that? You know I have had accounts at the infameous hotmail and even then I got spam in small quantities.
*snip*

Unfortunately, there are so few open proxies out there, the ones that exist are constantly bombarded with spammers (since usually their own ISP polices the ISP's newsgroup, they can't use it for spamming). While the idea of an open proxy is a good one, it just doesn't work out in the real world. All major ISPs have their own news servers, so you shouldn't really need to go looking for a open proxy. And, if they don't have the newsgroup you are looking for, you can usually e-mail the administrator and request it to be added. They usually will, as long as your requested newsgroup isn't alt.binaries.multimedia.erotica.beastiality.cows or some such high volume newsgroup. (There are a lot of sickos out there you know!)

Re:Well this reeks of elitism.

[Fluffy+the+Cat]

Because the spam that is being sent is costing network administrators real time and real money that could otherwise be spent on other things. Spam is a real problem, not something that should just be ignored.

Re:Well this reeks of elitism.

[mOdQuArK!]

You know I have had accounts at the infameous hotmail and even then I got spam in small quantities. What people need to do is to simply delete the spam and just look at what's there. How hard is it to just delete it?

How is an ISP supposed to "delete" all of the gigabytes of spam (e-mail & news) which they are forced to carry every day, and for which they had to pay big bucks for the bandwidth, servers, hard disk space & administration to be able to support? They can send out cancel messages, but this uses MORE resources and the time lags involved allow spam to slip through. (Plus, _somebody_ has to be paid to identify the messages to cancel & issue the cancel message...)

You seem to have a very limited understanding of the mechanisms which support the Internet, and a debating style consisting mostly of emotional appeals w/very little logical content.

Re:Well this reeks of elitism.

[SytxErr]

In general I think usenet is just elitist in general. Anyone who wants to post must obtain a client.
Ummm, excuse me, but AFAIK every TCP/IP based service requires a client. For example, HTTP (ie. WWW) requires a browser (netscape, et al); FTP requires a client as well (or you can use netscape for this as well). In fact, you can use netscape for your news as well!!!
BTW, why don't you try reading the UDP FAQ (URL is above) before you start condemning (sp?) the process. just my $0.02...

Re:Well this reeks of elitism.

[rhaig]

if you can use a web browser, you can read news.
You can post news.

check out deja.com

Re:Well this reeks of elitism.

[Binestar]

No insult intended but you have no idea what you are talking about. This is USENET SPAM. Not e-mail spam. Usenet is infinately larger than any one person's e-mail. There are over 40,000 active newsgroups, and I have seen no public groups that didn't have at least 10 spam in the queue and that is a small number. You get groups such as comp.mail.sendmail which has 3800 messages alone. Even if 1 out of a hundred messages is a spam, thats 380 spam. Bring that across 40,000 newsgroups with pictures and other binaries, you have a HUGE chunk of diskspace, Bandwidth and CPU power that is taken up.

E-mail spam and usenet spam are very different beasts.

Re:Well this reeks of elitism.

[M_Talon]

Hmm...how is client and server setup elite? That's classic networking protocol. You'd just as soon argue that the Web is elite, since you have to have a browser and get to the server.

The content on a news server is entirely up to the news admin's whims. Some have all the groups, others filter out the high noise groups. If you don't like what your ISP news server has, you find a public server or you get another ISP. Example, the one I'm on has their server with a selection of groups and access to a full group server if you ask for it. You just have to look for what services you best. Some people want full access, others don't.

Spam in email != Spam in Usenet. Spam in Usenet is semi-permanent and echoes across all the servers. It can't be deleted, merely ignored or cancelled before it gets there (and cancellation requires yet another message be sent, eating up more bandwidth). Spam in the mailbox can be deleted easily, in comparison. It's because of the way spam wastes Usenet server space that it's viewed as a beast.

Please learn the facts before posting off half-cocked.

Re:Well this reeks of elitism.

[sjames]

You've obviously never had anything to do with running a news server. The news spools can get HUGE if you keep articles for any length of time. RAID is an absolute MUST. A spam on usenet takes up resources on every usenet server in the world.

Usenet spam is a lot worse than email spam. I have seen newsgroups that were about 20% actual messages and 80% spam. If s/n isn't enough argument, consider every news server needing an extra 9G U2W SCSI drive for the spam and the extra bandwidth (that costs some real money BTW).

The problem with open proxies is that any spammer anywhere can use them to hide their identity so they don't get their account cancelled. There's nothing eletist about that. I can't think of any ISP that doesn't provide you with usenet as part of the basic service. The only people who really need the proxies are the spammers.

As for Lucifer, at least if you tell him you're not interested, he goes away. Besides that, although his prices are outrageous, he, unlike many spammers, actually delivers the promised goods and services. [/humor].

Re:Well this reeks of elitism.

[dattaway]

Usenet is not elitist. You don't have to get a client to access usenet news. I used to telnet directly into usenet server's port 119 to read and post from there. You can do this by:

telnet nntpserver.domain 119

even in Windoze. I would even say the server's raw interface is user friendly. If you want help, just type help followed by return. Its a beautiful interface and is compatible with almost anything that can display text. With a good terminal and some scripting, it can be the most productive environment for digesting news.

Re:Well this reeks of elitism.

[TheCarp]

I think the Web is just elitist in general. Anyone
who wants to read pages must obtain a browser. You
must have access to the servers. Even then its not
100% likely that you will be able to find a server
with the information you want.

Ok...now for the sarcasm-impaired.....
Of course you need a "client" what kind of
argument is that? You could just telnet to the
nntp port and speak nttp by hand, but guess what?
that is a pain in the ass.

Find a particular server? How is it any differnt
from email? Should every ISP just automatically
allow anyone, free of charge, to have an email
acount on their server?

The server your ISP has doesn't have all the
groups you want? That is your ISP (or whoeevr
runs the server) fault. Complain to them. I know
that here where I work, we are willing to add
any group to our feed that is requested by a user.

> that @home people are operating "open proxies" I
> assume that this means that they are allowing
> public access from the outside world. Well my
> friend what is wrong with that?

Open Proxies are not open usenet servers. An
open proxie is a proxie server that ANYONE can
connect to. This allows ANYONE on the net to
"Hide" their real adress by connecting to the
proxie and having the proxie connect for them.

The problem here is that A) 99% of the time this
is NOT the intent of the machines owner but a
mis-configuration that others are taking
advantage of. B) This allows spammers to post
spam to email and usenet without ANY audit
trail to track them back to their ISP. This
means that it APEARS like the person with the
relay is sending the spam.

> Is it's presence that bad that it actually
> causes people to react like it was a cockroach
> or maybe a demon? I

You know...if it was JUST the fact that I get an
ocasional email advertisment I wouldn't care.
However, spammers are much worst than that.
Do you know what a spammer can do to an
unsuspecting network? They connect to a mail or
usenet server and start BULK sending thousands of messages. Often in mail with BCC so that they send
one message and the server expands it and sends
thousands.

This can saturate unsupecting networks and bring
useful work to a halt. Not to mention disk
space. If a spammer sends a 2k message here...to
all 10,000 of our users...that means roughly
20 MB of storage space. Maybe thats not terrible,
but if several spammers do it every day or two...
it adds up FAST.

> I think if the mythical Lucifer were to appear > in front of one of these people they would most
> likely get more irritated or enraged at the spam
> than their most hated enemy (for Christians).

Love to nitpick...
since when do ALL christians believe litterally
in a Devil? I know many who don't and would say
any references to one are merely symbolic to
make a point rather than references to an actual
being.

Re:Well this reeks of elitism.

stupid, all that means is your os is the client. jeez, how hard is that to understand?

Re:Well this reeks of elitism.

the os is the real client. the applications are the interface to those services.

Re:Well this reeks of elitism.

[GPB]

You could just telnet to the nntp port and speak nttp by hand

BTW, doing this effectively turns telnet into your news client, so either way, you're still using one.

-B

Re:Well this reeks of elitism.

[TheCarp]

Hmmm well I supose your right. However the entire
internet is based on client server architectures.
As such I assumed the argument was that getting
a client is some big deal and some tough step.

In truth its as easy as telnet.

Re:Well this reeks of elitism.

Funny... I run a newsserver and I DO manage to delete (not accept) gigabytes of spam everyday. I don't catch it all but I catch a big enough portion of it that my users notice it and prefer my server over most others they've used

Re:Well this reeks of elitism.

Why don't you try flipping the bill for the extra resources it takes to process the spam? Spam costs ISP's money.

Re:Well this reeks of elitism.

I'd say the application is the client.

Re:Well this reeks of elitism.

Actually, I suspect that telnet clients are rarer than news clients (since at least Mac OS boxes don't have telnet built in (or at least didn't back in the day), but do come with nntp clients in the form of Communicator and MSIE).

Re:Well this reeks of elitism.

You're right, it is elitist. Some folks would rather not hear about hot grits in a forum devoted to petrified Natalie, for an analogy :-) Also there is the fact that the other poster mentioned-you have to download the headers. For some parts of the world where the phone call to the ISP is paid for by the minute, this becomes a much bigger issue. Particularly on a forum where binaries (even legitimate, non porno ones) are exchanged. Think of it like this-Someone sets your /. preferences to -1, flat and forces you to keep them there. And there are 1,000 times the trolls and complaint generators we have here. Welcome to the Usenet :)

Re:Well this reeks of elitism.

[mOdQuArK!]

Do you read each spam message personally to decide whether to delete them or not, or do you have an automated solution?

How much time or resources are you wasting which could be put to better use (like more newsgroups or longer expiration times)?

simple equation

[[soop]]

Like I said in my response to one person give everybody guns and things go wrong give everybody good bandwidth at home and things go wrong

Re:simple equation

Care to restate that with attention to grammar rules so people can understand what you're trying to say?

Re:ouch (bypass a UDP?)

[GossG]

You can tell your usenet client to pick up its news items from any server. Performance is better from your ISP, but it is not the biggest concern. I'm not sure who the usenet (sometimes called "Internet News" or "newsgroups" providers are. I've picked up the impression that buying this service from someone other than your ISP costs real money. (my impression is about US$10 a month)

A quick net search pointed to: National Usenet Newsgroup Providers

Re:@Home should sue sites not carrying its news tr

[dmuth]

Since when is deciding what articles you wish to carry on your own news server illegal? It's called "private property rights".

Please note that no one has successfuly sued the Realtime Blackhole List, either.

Re:@Home should sue sites not carrying its news tr

[Uller-RM]

UUNet attempted to do the same thing two years ago when they got UDP'd. Their lawyers, and the government also, told them that they had no case.

We aren't attempting to destroy @Home, we're simply not carrying their packets on USENET - which we aren't obligated to do anyways. They could only sue us if we had a contract requiring us to carry any and all spam from them.

UUNet thought they were all that with lawyers too, and when they tried, the number of people supporting the UDP nearly doubled in anger.

Re:@Home should sue sites not carrying its news tr

[El+Volio]

Nope, no one is required to carry it. Freedom of speech doesn't supercede (sp?) my freedom to hear. If I choose not to re-print or listen to someone's words, unless I have a contractual obligation to them, they have no recourse against me. @Home would be laughed out of court.

Lawsuit?

[DanMcS]

According to the FAQ that one gentleman posted, UUnet got this in 1997, and threatened legal action. That was stupid, infeasible, and generally clueless, and was laughed out in short order. However, the internet was not really Big Business then, with Big Pockets and Stupid Corporate Lawyers (tm). How stupid is @Home? Might they try a lawsuit? Yes, it would kill them and not work anyway, but stupidity knows few bounds...

Re:Lawsuit?

[mochaone]

who are they going to sue and who is hurt? Seems to me @Home is the one hurting people by allowing spam to come out of their domain.

Re:Lawsuit?

[Ducon+Lajoie]

Disclaimer: IANAL

People suggested @Home could sue (how US-like! :-) or get an injunction. I doubt these actions would stand on any legal basis: there is no legal link between the news-server-operators-of-the-world and @Home.
The only possibility would be, I think, if @Home could prove that the group that advised for the UDP were actually intending to do damage to @Home. The obvious answer to this argument for the news server operators would be that they were trying to minimize their own damage caused by @Home's negligence (actually a legal obligation I believe). And then who ever was lucky enough to be sued by @Home could simply counter sue for the expenses incurred by the spam. Thanks to @Home for opening Pandora's box!

Another cool thing would be a class action on the behalf of all @Home users against that group of news server admins who agreed to the UDP. Now this would be interesting. Because the users have a contract with @Home, and the UDP most likely prevents @Home from respecting the terms of that contract. I don't know how well that contract could be opposable to the group that advised for the UDP though.

Anyone knows if this I really impossible? What did I miss?

Which internet?

Been on the 'net for 15 years here (oh gosh, is the Internet really that old? Heh.), and I'm not sure which internet you remember. We used to get spam all day long, but it was more "personal" and "targeted" than the spam today.
Your false memories are probably part of the "it was always better in the old days" disease.

UDP

[Corrinne+Yu]

apologies to OT.

Ironic UDP is same acronym for thin layer communication protocol User Datagram Protocol (UDP) which is thinner than TCP/IP.

One UDP connects.
Another UDP disconnects.

I like the irony.



Corrinne Yu
3D Game Engine Programmer

Re:UDP

I thought both disconnected; around here UDP stands for "Unreliable Data Protocol." :)

Re:UDP

what's more ironic is that you don't read posts before making your own. If you had you would have seen that I already made the point you're making, albeit in a lesser I-Know-My_Internet-Protocol-Acronyms...-Do-You? kind of way.

Deja News?

[Roofus]

Can @Home users still post on Deja then?

Re:Deja News?

[rhaig]

Yes.

This only affects articles originating on @Home's usenet servers. If you post through Deja, you're posting through one of my servers.

@home other problems

[generic]

I have been reading a discussion on the incidents mailing list (www.securityfocus.com) were a great deal of site admins are reporting scans and other attacks orginating from @home IP addresses. It appears that abuse@home.com goes to /dev/null.

I have road-runner and they check their customers for open wingates, relayable sendmail ports and trojans like BO, netbus etc.. ( I know this because I probed one of the admins boxen after I saw my kernel dropping packets from his IP. He directed me to the security website for road runner which explained everything. http://bofh.rr.com)

Re:@home other problems

Well shit! I've got RR, and I just connected to that security box, and they said something about how they log connections to that box? Does that include web connections? Do they plan to start probing my computer's open ports? If so, they're gonna be pissed about all the servers I run, and the IP masq thing, I expect.

Gulp.

Re:@home other problems

[logicTrAp]

They'll probe some of your ports at irregular intervals. As far as I know, they don't have any problems with you running servers or masquerading, they're just looking for open wingates and the like.

Re:@home other problems

[whoop]

BOFH .rr.com - I can see why they're allowing spam now. ;)

Problems getting a response from @home

[Cylix]

I have personally felt the wrath of spam from @home. Everyday around lunch I would recieve more unwelcomed spam originating through the horrid depths of @home. I replied, complained and nearly cried as I could do nothing. I made doubley sure and verified that I was not the only user recieving these questionable spams...sure enough roughly 15 other subscribers to my isp were being spammaged. Unfortunately blocking the site entirely would have caused more problems with @home than it would have solved. In the end I tweaked our spam shield and since then "I" have not recieved an ounce of spam to this day.

The point of this is...I did attempt to contact @home on a at least 3 seperate occassions...I do not recall recieving one letter from any of thier support or administration personnel.

Re:Problems getting a response from @home

Depends on which part of @HOME. I complained to @Home about a certain spammer. The user was using Shaw cable. They yanked him so hard you can still hear him scream when the wind is right.

Jesus. Get over it, already.

[Wakko+Warner]

Whiner. If you absolutely must post to Usenet, do so through deja.com for the duration of the UDP. Historically, UDPs do not last very long, because the whingings of normal users of the ISP and the stigma a UDP places upon the ISP have the end effect of making the admins get off their lazy asses and fix things.

You won't win any friends by "fighting back" like some sort of Che Guevara wannabe of the Internet. But, if it makes you feel any better, you can forge cancels for all of _my_ posts, too.

- A.P.
--

"One World, one Web, one Program" - Microsoft promotional ad

Re:Autocnceling the UDP crowd

[john*mckown]

No offense meant, but I'd be more impressed if you indicated who you are. If you are not in control of a major newsfeed, who will notice? If you don't pass the NG articles on, then most likely a number of others will. A UDP, to be effective, must be enforced by the majority of the sites which relay the articles. Again, not saying that you can't do this. It is your right. Just as it is the right of other people who relay newfeeds to say that they won't relay articles from one area. Kind of like having an area in a business for "free" newspapers. The business owns the area, therefore they can say to a distributor, "I don't want your newspaper." Is this wrong? I don't think so.

Re:@Home should sue sites not carrying its news tr

this doesn't affect @home, only their users.

They have ot be kidding right?

So basicly people are getting a bug up thier a** that a minority of @home users are spammers. What about the AOL minority, they get off scott free? I would be willing to bet that the AOL spammers make a bigger chunk of abusers than @home users. Where I am at I have to use @home for high speed access. DSL is not availible in my neighborhood(about 3k feet too far), and isdn is way too expensive. I will be calling @home and asking about this.

Re:They have ot be kidding right?

[TheCarp]

> So basicly people are getting a bug up thier a**
> that a minority of @home users are spammers.

No...they have a bug up their ass that a minority
of @HOME users are spammers AND @HOME
is not doing anything about it.

UDP is invoked AFTER usenet admins have alerted
and really tried to get an ISPs attention and
feel that their complaints have "Fallen on Deaf
Ears".

Re:They have ot be kidding right?

[MVoelker]

Actually, a more accurate comparison would probably be that AOL spammers are a bigger chunk than ALL @home users, combined.

Somebody else made a great point. I seriously doubt that AOL would ever get UDP'd...

But hey, if they did: imagine all the bandwidth that would be freed up.

Re:They have ot be kidding right?

[pcmills]

Just wait until AOL has high speed access like @home. I think AOL will have the UDP brought against it.

Re:They have ot be kidding right?

[British]

You just came up with a great idea here. Let's think about this. What happened if AOL was UDPed for just ONE day? I'd love to see the stats on how much spam DOESN'T come out. hmm..


After AOL is banned from USENET for one day, let's ban anonymous coward posting for one day on here. Let's see one article where we hear a variation on a TV theme and 2000 other ACs(probably the same person) giving props to him/her/it. It would be like browsing at a threshold of 2.


Let's gather some data from these rash actions for just one day. Imagine the interesting Slashdot articles that could come from that.

Re:They have ot be kidding right?

[guardian-ct]

If I remember correctly, AOL was at least threatened with a UDP, if not actually UDPed, several years ago...

Spammer vs. anti-spammer has been going on a long time, and is likely to continue.

Welcome to the "September that never ended"

Re:They have ot be kidding right?

I will be calling @home and asking about this.

Yes, please do. This is exactly the kind of behavior that the USENET Death Penalty is supposed to engender. Kudos to you, it's your kind that makes the System Work.

Re:They have ot be kidding right?

Do AOL'ers even *know* that they have USENET access? Let's be real...USENET is a relic of the Old Internet, and any AOL'er worth his modem is going to be using AOL's Forums, or else using a web-based discussion board to talk to others.

Re:They have ot be kidding right?

[I+R+A+Aggie]

Actually, a more accurate comparison would probably be that AOL spammers are a bigger chunk than ALL @home users, combined.

@Home has permitted full-time pro spammers to inject their trash onto Usenet, and worse, allow them to have accounts there. People like Tom Saylor, who'll cheerfully pump out a few gigabytes of spam over a weekend. And they don't or won't do a thing about it.

You want some numbers? check out news:slrn87sosl.uh9.sy_nttvr@gurcragnt ba.pbz for the full details, but in summary, for the 4 hour period begining 8 AM 13 Jan 2000:

@Home had 27 of the top-100 NNTP posting hosts
AOL had 3

@Home accounted for 4925 posts and 1301932628 bytes of traffic
AOL accounted for 2448 posts and 4150207 bytes of traffic

Don't you think that's a wee bit excessive? They're only spewing about 8 times the traffic AOL is. Do you think they have 8 times the number of subscribers?

James

Re:@Home should sue sites not carrying its news tr

[Bob(TM)]

From the UDP FAQ (http://www.stopspam.org/usenet/faqs/udp.html):

10.What about legal issues? Don't you worry about being sued?

As UUnet (and others) have found, there is no legal requirement for other sites to carry or post their messages. Cancel messages are advisory in nature, and the sites which accept them have to have the ability to process them enabled in their software for them to be effective (the vast majority of sites have them enabled). UUnet threatened legal action when they were UDP'ed in August of 1997, but both the US Justice Department and the FBI (and presumably their own legal department after they consulted them) stated that there had been no laws broken and that they refused to investigate or act. Because none of their own equipment or networks were attacked, compromised, or even affected, there was no legitimate Denial Of Service (DOS) complaint that could be filed. What was happening, in effect, was an organized boycott of their messages. Nothing more, nothing less - and there is nothing illegal in all that. There would also be a horrendous negative public relations wave from actually instituting any legal action. When UUnet threatened, even more people came out in support of that UDP, contributions to legal funds were offered by a large number of people, lawyers volunteered to defend those participating in the UDP, and many ISPs promised to alias UUnet permanently (and work to get others to do the same) the moment they actually instituted legal action.

As another example, there was a rogue canceler, nicknamed "the Kikecanceller" [because his racially inspired cancel message paths all had "!kikecancel" (along with "!spiccancel," "!wopcancel," and others) in them], who was active for a short while. This rogue canceler nuked over 25,000 articles for no legitimate reason before his account got canceled. James M. Hawkins, the supervising agent at the FBI's Tulsa office, stated: "We don't have a case. I don't think we're going to be getting involved in the matter." The local United States Attorney's office was contacted about the cancellations and they replied that no law had been broken. (see the NY Times article about the "Kikecanceller". Note: this site requires you to enter a user name and password to access it, although it is free. There have been no reported instances of spam being sent to any test address that was used to enter the site, so it appears as if this data is only used by that site and not released to anyone who might utilize it for a spamlist).

Re: @Home does not own 24.x.x.x

[SpIcEz]

Actually your statement is wrong!!

24.x.x.x represents for the most part CABLE ISP's!!

I live in Montreal, Canada, where we use Videotron CAble (which has no association whatsoever to @Home) and my IP starts by 24.x.x.x!!

Just a small correction :)

@home in canada

[FORTYoz]

hmm, i'm paying $40 a month i think, and i get 50kB/sec up and 300kB/sec down, only problem i have are the occasional short (10-20 minute) downtimes and online gaming (weird network pauses and packet loss)

Re:@Home should sue sites not carrying its news tr

[Miguelito]

Deliberate attempts to destroy a business are illegal.

Uh, this _isn't_ an attempt to destroy a business. There has been a huge rise in spam coming from @home, and even messages sent to @home about it have been ignored. This spam is causing problems for other sites, so the UDP is meant to help the other sites lower their spam intake, and to get @home's attention.

I don't know what you're reading, but nowhere in the message I read did I see anything that said "let's get @home." I do see things like Because of this lack of response to serious, ongoing problems, even when they have been pointed out repeatedly,... Looks to me like @home is at fault for not taking any action.

Agreed @home owns here!

i get awesome pings and like 0 pl and there is more than 500 people in my town with @home

Alternative to dejanews

[CraigMcPherson]

http://www.remarq.com/

I'm not going to say it's great, but the interface is IMHO a lot better than Deja's.

It doesn't matter.

The spammers will post from somewhere else, and the users will have to suffer.

There are far worse offenders...

Namely WebTV, Deja, Hotmail, and AOL. I don't see them getting UDP'ed

Re:There are far worse offenders...

And Yahoo.com. They are far worse.

Re:There are far worse offenders...

You're not understanding the basic technology here.

Just because Usenet (or email) spam has a Yahoo (or Hotmail, etc. etc.) address in the From: line doesn't mean it originated from a Yahoo server. (Yahoo doesn't even provide newsservers, do they?)

The problem with @home is that they're allowing non-@home customers to post from their services... and that spam may very well say Yahoo in the From: line... it can say any darn thing, after all, and "yahoo" is as easy to type as anything else. UDP-ing Yahoo does nothing, in that sort of case... their servers have never touched it, forwarded it, and they're only the innocent victims when they get bombarded by misdirected bounces (in the case of email spam) or angry but uneducated recipients.

If you don't know how to read headers, you have no idea where that spam really came from.

Also paying $40

[Yosemite+Sue]

I am also paying $40/month for @Home. An extra ip address is another $10.
Sometimes the service is good, occasionally it is terrible.
When I own my own home, I'll probably get wired for DSL ...
In the meantime, I am looking for an email address to complain to @Home about this UDP. I could just use my Deja account, but figure I should make a point ...

YS

Re:Also paying $40

Before you pay them for another IP address, just connect a hub and plug in another computer. I can get up to 2 addresses at a time from the DHCP server, without paying anything (keep in mind that they are not paying for the addresses either). If you need more IPs, get your 2 addresses, then let one of your DHCP leases expire (don't run the DHCP client for at least 48 hours). Then run the client to get a new IP - your old (expired) address might still work, if you configure it manually (no DHCP).

Re:Also paying $40

[FORTYoz]

or just plug your line into a linux box and use it to ipmasq your other boxen. works like a charm.

Re:Also paying $40

[GPB]

your old (expired) address might still work, if you configure it manually (no DHCP).

That's a nice way to generate an IP conflict. Fun fun. :)

-B

Re:Also paying $40

That's fine if you have a 24x7 box, but not everyone does.

Re:Also paying $40

They oughta give more IPs or something or more stuff like this happens, and screws them over.

Re:Also paying $40

[Foogle]

Are you serious? If you were on my network, I'd track you down and flog you with a coaxial cable. Just because you don't like how a network is run doesn't give you a right to fsck it up for other users.

-----------

"You can't shake the Devil's hand and say you're only kidding."

Re:Also paying $40

[Foogle]

True enough - To get around that, I set up an old 486 running OpenBSD with a *minimal* installation. It runs 24x7 and makes a great firewall too. And the costs came in at almost nothing; The only thing I had to buy was the two (cheap) Linksys ISA network cards.

-----------

"You can't shake the Devil's hand and say you're only kidding."

Ok, this really sucks

[Tanman]

I need to check my email, my @home email. This is frustrating as hell. Usenet folks picked the wrong damn day to start this. If they want to make a point, then they should do this on the weekend. That way, innocent people such as myself don't get hurt as badly when we can't get business emails in a timely manner. They would still cause a headache, and @home or whoever else would still scramble to fix the problem, but at least the people caught in the middle wouldn't feel the hurt as badly.

Re:Ok, this really sucks

Is it really TOO MUCH TO ASK to have you read the story's entire paragraph???

"The penalty is due to begin 17:00 PST, Jan. 18, 2000."

Next Tuesday, Einstein.

Re:Ok, this really sucks

[J.Random+Hacker]

Um -- I doubt that email (via SMTP) would be affected by a UDP (which is NNTP).

Re:Ok, this really sucks

[Uncle+Mikey]

Usenet Death Penalty applies only to USENET news, not to e-mail. Your e-mail is safe.

Re:Ok, this really sucks

[M_Talon]

Not to mention a UDP doesn't stop incoming messages to @Home...it just doesn't allow you to post out. You can still READ Usenet, you just can't contribute until the UDP is lifted

IP Discrimination!

[cdgod]

I do not agree. Just because there are users who abuse the internet and usenet groups the entire domain is black listed. This is the dirtiest part of human nature! Why is it when there are bad apples the entire stereotyped population suffers! I agree that there is a problem. All the good users should be made aware of the issues at hand. They should be then able to isolate the insolent users and cancel their subscription to @home. Being an @home user, I will be glad to kick off the assholes that are causing crap. Hell, I would even BOTCOT @home if they do not allow users to self-moderate the system. HELLO? It is a shared network. We are all paying for it. It is about time we all share in the democracy of the system and flush out the bad apples. Make the all go to AOL for all I care! They are cost all other users of @home MONEY, TIME, and STRESS! This is more that enough justification to spend the time and effort to isolate the 10 - 20% who are abusing this service. All those with me, call @home and complain. We should put up a website saying that there should be a faster turnaround on kick out delinquent users. On another note: I would like to see where the AOL IPs stand in the UDP priority. I always get spam from them... is it just because it is easier to see people from @home (Ips are generally 24.112... or 24.113... etc....)???? Thanks for you time.

Re:IP Discrimination!

[dattaway]

do not agree. Just because there are users who abuse the internet and usenet groups the entire domain is black listed

I remember when AOL opened its floodgates upon the internet. No only did they put a big POST button in their software and not educate their users what usenet was, they had a little bug in their software. Each post would be duplicated seven times. Putting the entire aol.com domain in my killfile returned the newsgroups back to an enjoyable state. In fact, it would be over a year before I ever saw an intelligent post from the aol.com domain. I wasn't missing much by filtering them out.

Then other ISP's unloaded the masses onto usenet. Newbies are a fact of life, but usenet was then carpetbombed with scams and what was to be known as spam. It was unreadable. Filtering everything with the .com domain helped, but that removed some good posts too. It worked for a while and made the groups readable.

I have seen the usenet death penalty used. And it works! It keeps me from having to filter, because it forces responsiblility for those who wish to become part of the usenet community.

Re:IP Discrimination!

[Sludge]

While this is a nice, big paragraph, and I like big paragraphs, don't get me wrong, I fail to see the democrary.

@home runs on a zerocracy. There is no response to anything. I would have more luck praying.

Please see my original message stating that this is the reason for not only my personal problems, but for the banning from Usenet and the k-lining from Dalnet.

Re:IP Discrimination!

[rhaig]

read the UDP FAQ.

I'm not going to post it again as it's been posted several times in thei thread and also in the usenet article.

Call and complain. @Home hasn't been listening to complaints. That's the whole problem. Maybe this will make all of their customers complain and they might see some $$$ floating away from them. Maybe then they'll listen to complaints

Re:IP Discrimination!

[cdgod]

Let's agree to disagree.

Just one question. How do us "worth reading" posters get our say, when our IPs have been banned... In my case I just use my work's IP.

But what of the people who can't afford to switch or get anything else??

This is forcing a stressful situation on a person who did not commit any crimes.

Re:IP Discrimination!

[KilobyteKnight]

Just one question. How do us "worth reading" posters get our say, when our IPs have been banned... In my case I just use my work's IP.

You contact your ISP and explain to them their lack of control over abuse coming from their servers has inconvienced their customers. And politely insist they fix the problem.

Re:IP Discrimination!

[whoop]

But what of the people who can't afford to switch or get anything else??

If someone can afford the $40-60 per month for a cable modem, then they can afford $20/month (note: that's a $20-40/month savings) to sign up with a modem ISP that does take the necessary precautions so they don't get UDP'd. Or they can get an account at Deja (or others) and post through there. :)

The point is, if @Home can't take care of their servers, everyone on their network is hurt. If there's any argument on this issue, poverty isn't one of them.

Re:IP Discrimination!

[jlb]

Uhm how exactly do you intend to "kick off the assholes?"

If you'd actually read about UDP you'd understand that all reasonable and some unreasonable attempts to contact the isp are made before it happens. The ISP is not responsive to the internet community at large or does not have effective measures to deal with them.

You should call up @home and tell them you don't like the spammers. That's the whole point of the list. @home not doing what they should, and the usenet community at large is using the power of denying them access to pressure them to fall in line. The only reason that creates pressure is because customers, like you, want access to usenet. It's a rather simple thing.

Re:IP Discrimination!

>In my case I just use my work's IP.

Yes, but if you were running a spam business from home, using your work connection would probably get you into even more trouble.

(Slightly OT) Re:People still use USENET?

[dexev]

A newsreader with a killfile in today's USENET is a must. You also would like one with good filters that can rank messages based on subject or author.

Can anybody recommend a good newsreader for X? I used to use YA-Newswatcher on my Mac, and I loved it. It would be nice if it could handle inline images, too (gotta get my daily prawn allowance)

Re:(Slightly OT) Re:People still use USENET?

[Masem]

I don't know about graphical viewers, but if you are using X, then two good newsreaders that work in *nix include slrn (command-line), and GNUS for the editor-cum-OS, EMACS. You might be able to wiggle some inline image viewing in GNUS, but I've only used it for text messages.

(And needless to say, HTML is NOT a USENET posting standard - thanks to Netscape for unleashing this travesty to the world, but fortunately, only about 2% of the posters I read use HTML in the first place.)

Re:(Slightly OT) Re:People still use USENET?

[Raven667]

look at freshmeat.net they are the largest database of Linux software. Just do a search for NNTP or Usenet or look in their Appindex.

For X I use the Netscape reader but xrn, krn, knode, XEmacs + + + should work. For console/xterm mode I use tin (actually it is probably better than the Netscape reader, much faster), there are several others (anyone still use rn?)

Re:(Slightly OT) Re:People still use USENET?

Yeah, there's finally a good one for GNOME (even supports Earthlink's idiotic authentication requirements) called pan. Still under dev, could use more stability work, but they put out a new version every other day. Check freshmeat.

I also tried another x prog...forget the name, started with a k. It had a lousy interface, but also supported Earthlink's authentication requirements.

IP Discrimination!

[cdgod]

I do not agree. Just because there are users who abuse the internet and usenet groups the entire domain is black listed. This is the dirtiest part of human nature! Why is it when there are bad apples the entire stereotyped population suffers!


I agree that there is a problem. All the good users should be made aware of the issues at hand. They should be then able to isolate the insolent users and cancel their subscription to @home.

Being an @home user, I will be glad to kick off the assholes that are causing crap. Hell, I would even BOTCOT @home if they do not allow users to self-moderate the system. HELLO? It is a shared network. We are all paying for it. It is about time we all share in the democracy of the system and flush out the bad apples. Make the all go to AOL for all I care! They are cost all other users of @home MONEY, TIME, and STRESS! This is more that enough justification to spend the time and effort to isolate the 10 - 20% who are abusing this service.

All those with me, call @home and complain. We should put up a website saying that there should be a faster turnaround on kick out delinquent users.



On another note: I would like to see where the AOL IPs stand in the UDP priority. I always get spam from them... is it just because it is easier to see people from @home (Ips are generally 24.112... or 24.113... etc....)????

Thanks for you time.

Shananagans!!

[zi0n]

reminds me of the Southpark episode where Stan and Kyle were ripped off by a carnival game and called "Shananagans" on the guy.

Ok then...

Submit to my authority! I'd be glad to take away your privledgies and rights!

Re:Is it me,

[webslacker]

Or does this guy sound like he works for @Home? He's the only @Home customer who's had something good to say about the service, and it sounds like the complete opposite of what everyone else's experience is...

Re:@Home should sue sites not carrying its news tr

Nope, no can do, Nimrod. This is a boycott against @Home's known abusive business practices, similar to boycotts held against Exxon concerning the Exxon Valdez incident, or the current NAACP boycott against South Carolina.

People have the right to boycott a business they feel has perpetrated some wrong. @Home spams. Period. Most UseNet'ers hate spam, ergo most UseNet'rs don't much care for @Home. Therefore, the UseNet'rs have the right to boycott @Home for failing to address their well-known spam problem.

@Home cannot make the upstream ISPs carry their spam, anymore than Microsoft can come into your home and force you to install Windows on your computer. (Hey! By your logic, Microsoft could claim that since everyone doesn't run Windows, they have to right to sue, because their business is being harmed.)

Face is, pal, @Home hasn't a legal foot to stand on. The only action they can take to remedy the UDP is to clamp down on their spam problem.

Re:@Home should sue sites not carrying its news tr

[sjames]

@Home should sue any site that refuses to carry its traffic (at least those subject to US courts).

The UDP is a community action. @Home was not a good neighbor, and now they can't borrow the weed whacker. There is no obligation to carry a particular companies usnet articles. There is no obligation to even allow IP packets from @home into their networks (except for their upstream provider who IS under contract).

Besides that, there are very few 'smaller' sites out there. Most ISP's that don't own their own national network outsource their usenet service.

Porn fanatics, like me.

[Glytch]

I like porn, and binaries groups are the best way to get it fast. Better than wading through websites.

Well of course.

[Derek+Pomery]

This isn't to punish the users, this is to force @home get its act together. If deja started allowing too much spam, they might get it too...

But not by the sample people, you retard!!

x

Re:@Home should sue sites not carrying its news tr

[Steve+B]

Deliberate attempts to destroy a business are illegal. @Home should sue any site that refuses to carry its traffic (at least those subject to US courts).

You've been taken in by spammer FUD and BS. Net sites are the private property of their respective owner, free to reject traffic according to their own rules (though they may be liable if they selectively enforce the rules in a prejudicial manner).

Especially go after the smaller sites. They'll BUCKLE under the legal pressure as their bosses realize that they cannot afford a long expen$$$ive lawsuit.

@Home presumably hires reputable and competent lawyers, who do not wish to besmirch their recordss with frivolous-lawsuit sanctions. Their spammer customers are welcome to file such lawsuits, if any of them can find an attorney willing to accept chick en bones as a form of currency.
/.

Huh?

[Yosemite+Sue]

Maybe I am missing something, but how would the UDP (which will go into effect on the 18th, and involves USENET, not email, AFAICT) affect you getting your business emails???

YS

Re:@Home should sue sites not carrying its news tr

[kevcol]

You must be one of the $cientologist spammers who love @Home's wide open network.

Spammers will always Prevail

[JasonVergo]

Do we close highways when a few people speed? There are numerous newsservers out there that spammer can just switched over to. The only people that are going to get hurt are the legimate news posters. The internet is free and open. Lets keep the old-school draconian society from controlling the network. I hate spam as much as the next guy. The solution is easy don't support them.

Re:Spammers will always Prevail

[kashani]

I think you're wrong. THere are technically feasible ways to minimize the amount of spam, etc leaving your network. If you do not take the basic precautions then you are asking for trouble. I work at a few million odd user ISP and we have nowhere near the spam problem other companies have. We don't allow non users to relay and we don't allow our users to relay off others. Same with our news system. On the other hand I've seen a single @Home user attempt to relay 900,000 spams off my servers. ??? Qmail accept and disregard is a beautiful thing. Really let's the user hang himself.
@Home is merely being told that they need to get their act together. Loudly.
-
Kashani

Re:Spammers will always Prevail

Spammers always prevail huh? I beg to differ. Apart from the Usenet Death Penalty, there are number of more or less acceptable alternative methods for dealing with spammers. Personallly, I think @home and the spammers it supports should be glad they're getting the soft option.

Re:Spammers will always Prevail

[Chip+Salzenberg]

The US cuts off travel to/from countries that do not enforce an adequate level of order, in the opinion of the US government.

Likewise, since @Home is not enforcing an adequate level of order, their communication privileges are suspended.

It's just a matter of self-defense.

PS: I'm an @Home customer, and I'm GLAD that the UDP is in force. Maybe it'll finally get @Home abuse to DO something.

Re:Spammers will always Prevail

[rsmith]

Do we close highways when a few people speed?

I think the highway methaphore is somewhat flawed. These people aren't speeding, they're blocking the highway.

There are numerous newsservers out there that spammer can just switched over to

True. But why should that deter us from trying to waste the bandwith we're all paying for?

In my opinion the sysadmins of ISP's have a right to try and stop misuse of their network in their clients interest. If my (or your) ISP has to buy bigger hard drives and more communication bandwith to cope with spam, guess who's going to pay for it?

The solution is easy don't support them.

I have never reacted to spam other than to complain to provider of the spammer. So you can say I haven't ever supported a spammer :) but I fail to see how this can deter people from spamming. Spammers need to learn that bandwith costs money, and they're really spending other people's money.

Re:Spammers will always Prevail

[sspiff]

Bad analogy.

Would you drive on a highway where people could drive down the wrong side of the road at 100 mph? I think not. Spam has the same effect; it makes the whole system unworkable. Certainly a Usenet death penalty should not be invoked unless the circumstances are extreme. This would seem to be the case with @Home.

Personally, think that spammers should be covered with honey, doused with flesh eating bugs and left out in the desert to fry. Now that's extreme! A UDP is not.

Re:Spammers will always Prevail

[Malc]

We don't close highways because we have police to control them. The internet cannot be controlled in this way (partially due to it's international, borderless structure that takes it out of the relevant jurisdictions).

If you look at the UDP FAQ (linked to in the email mentioned in the article), you will see that most of the UDPs do not go into effect, and when they, it's generally for a very short period of time. I would say your average, honest internet user doesn't get [too] hurt by this action.

This is hardly old-school draconian society: apparently @Home has been approached regularily about this problem. They have done their customers a disservice by not being a responsible service provider. This isn't a police force in effect: the participants of the UDP are free to make up their own minds and not participate if they desire. It sounds more like a form of democracy within anarchy! If you think that this is draconian, would you mind suggesting another method equally as effective?

Re:I'm glad, and it's my ISP,

[nuggz]

hmm, my sympatico HSE installed nice and easy
rp-pppoe added my password to pap-secrets, and typed ./adsl-connect, yeah it eats up 10% cpu on my p133, but I can deal with that
proxy server? it seems pretty transparent, I get 50-80k on some sites
I can look at my web server

the only problem was I got my modem friday, but they wouldn't activate my account till monday

I kinda think you haven't actually tried anything other then your precious cable.

Sometimes this is the only way

Corporations tend to move slowly and avoid doing anything outside their normal regiment that they absolutely are not forced into. I really believe this is an effective way to deal with them. The corporate types hate nothing more than the tail wagging the dog. I would guess most likely that the reason they've been ignoring the requests to filter their postings is because it would cost them time and resources, of which they want to give neither. Sometimes you have to force their hand.

Right, cure the cancer by killing the whole person

I don't seem to recall seeing a bombardment of spam originating from @home in the newsgroups I read. (admittedly a small selection of comp.os.linux.* groups) Can't these UDPs be limited to the specific newsgroups in which @home spam is most prevalent?

Cutting off @home isn't going to do jack for stopping spam. Hello people, the spammers are just going to find some other domain to use for distribution. This UDP is not going to cut down spam by much.

Oh please, don't use the excuse that the spam adds MBs or GBs to newsfeeds. WhatEVER. Use killfiles, content filters, etc. And if you still come across spam? Don't read it. It takes you what, less than a second to click or hit a key to move on to the next message?

Enough ranting, I can only hope that many news servers out there will carry out the udpcancel.

hmmm, well, different problem.

[Tanman]

Nevermind, I posted that previous in anger when I attempted to check my email, and the mail server appears to be down. Then, I just happened to notice about @Home being the target of usenet death, but I didn't check the part about "starts on the 18th"

Oh well. Stupid me.

Tanman

Re:hmmm, well, different problem.

[TheCarp]

USENET being the operative word. Noone
can be blamed for your inability to connect to
the mail server other than the network admins.

Usenet has nothing to do with email.

Re:hmmm, well, different problem.

Imagine that..."Stupid me", and "@home user" being combined in the same sentence...horrors...horrors...

Re:Autocnceling the UDP crowd

[rhaig]

the way a UDP works is that several news admins are generating cancel messages for articles originating from @Home. If you go read the UDP FAQ you would know this. Anyone not wishing to participate in an active UDP can refuse to accept articles from the pseudosite udpcancel.
All cancels delaing with an active UDP have udpcancel in their path header.

So, the majority of usenet admins are participating simply because they haven't chosen to ignore these cancels.

Even if a site that ignores these cancels passes them on to another site which honors these cancels, the second site will get the cancels and the messages will go away. (It's magic!) The only news servers where the articles originating from @Home will be found are the guys who ignore the udpcancels.

And not to try to impress you, but I do control a major newsfeed. You can also reach me at my deja.com address. I'm their primary news admin.

For those who don't understand the seriousness...

[Dagmar+d'Surreal]

...you clearly did NOT read the original declaration of an impending UDP. Things were qualified rather carefully, and in particular, a listing of the 100 news servers that were the origin of the most spam to usenet was listed.

EVERY DAMN ONE OF THEM WAS AN @HOME NEWS SERVER.

The AUP Enforcement department for @Home has had their thumbs stuffed up their asses for long enough. The throw the book at anyone who dares have a web server showing the default Apache page on it, but never do a damn thing about open relays, which are a much bigger threat. The reasoning seems to be that open relays aren't a bandwidth muncher, but a web site that gets twelve hits a month is.

In all honesty, they'll probably ignore this UDP since the summary cancellations will mean they will no longer have to forward so many complaints about Usenet spamming to /dev/null.

You think YOU'RE pissed off?

[8Complex]

I'm in a 'group' and in which I am the head of newsgroup posting. My status in the group itself is based upon how and what I post... But the problem lies in the fact that I post to @Home servers, sometimes up to 2.5gig/week and NOTHING spam.

Rest assured, I WILL be contacting them and fighting my way through their system to talk to someone intelligent about this whole situation.

- 8Complex

Re:You think YOU'RE pissed off?

2.5gig/week! pr0n?

Re:You think YOU'RE pissed off?

[MVoelker]

You and me both, brotha.

All this aside, I've been pissed off at @home for some time now (9 months) anyway. When I first got the service, I used to top out downloads at 1.2 MEG/sec! Now, I'm lucky to hit 100k. (Using TCI@home in Northern CA, USA) It has gotten a bit better since AT&T took over TCI, though (but not much. Now I can hit 500k sometimes.)

All this, and if I go to www.2wire.com and check my bandwidth, it tells me 2557 k/sec throughput and toast.net tells me INFINITY k/s.

Terrible, I tell you. Terrible.

Re:You think YOU'RE pissed off?

[8Complex]

Yeah, I used to pull a constant 600k/sec and spikes over 800k when I first got on (through DU Meter)... Lately best I can get is about 250k/sec sustained and 500k spikes, though speed tests sit me just double 56k users. Lame, lame, lame.

- 8Complex

Re:UDP (OT)

[Raffy]

Corrinne-

Just because I forgot to mention this in a previous thread: You Rock. :-)
Rafe

V^^^^V

Lack of authority isn't what's bad.

Lack of authority is Bad. This same anarchistic quality you praise so much also keeps an ample supply or w4r3z and kiddie pr0n available to anyone on the 'net.

It's not lack of authority that's Bad. It's lack of personal honor, integrity and responsibility that requires us to have authorities. I'm with Ralph Waldo Emerson on this one (paraphrasing from 'On Civil Disobedience'):

If we take it that that government governs best which governs least, then it follows that that government governs best of all which governs least of all; and that is the government that men shall have, when they are ready for it . (Empnasis mine)

Re:Lack of authority isn't what's bad.

[volkris]

I agree wholeheartedly with this.

It's the exact same way I look at it. Government is inherently a bad thing; like any administration it forces a huge overhead on society sucking up an awful lot of tax money just to pay to keep itself alive and then more money to actually do stuff. Unfortunately in this day and age it is necessary to keep people from killing themselves.

I've always been optimistic that someday people will evolve to the point where governments will no longer be necessary at all, though I really doubt I will be seeing this happen in my lifetime.

People just aren't ready to rule themselves.

~Chris Carlin

Re:Not just news, but net in general. Helps pirate

[Aqualung]

Pfft advocating an authoritarian stance based on the actions of a few irresponsible individuals? Sounds like you're trying to stop crimes from occuring by sticking everyone in jail from the get go.
----
Dave
Purity Of Essence

Do you *think* about the users you hurt? Bonehead.

You hurt one company (a few execs), but you hurt millions of users (@Home is huge) all in the name of some non life threatening cause. What did the users do yo you? This is like a military blockade against Taiwan because the .tw gov't a berne signatory (supporting IP law).

Stupid.

You missed the whole fscking point

[Daeslin]

As a former Usenet administrator and current user, I thoroughly (sp?) applaud the decision. The entire point of a UDP (as you would glean had you actually read the sentencing) is that admins around the world have tried to work with @home's administration for an extended period of time and had all their efforts ignored. A UDP is never taken lightly or until all other options have been exhausted. It's the usenet equivilent of air bursting a 25 megaton nuke over someone's capital. While it does stir the blood, it's not to be undertaken lightly. Historically, whenever the offending site shows the least tendency to reopen communications, apologize and even talk about cleaning up their act, the UDP is lifted. Sometimes it turns out that they're blowing wind and it has to go back (correct me if I'm wrong, but I believe this happened to uunet, who used to be notorious), but the benefit of the doubt always goes to the targeted site. Admins realize they have innocent victims, but just as innocents must occasionally die in war-time bombing to stop a greater evil (i.e. see WWII German cities), the greater world must be looked out for. Good job usenet! --Jason

Re:You missed the whole fscking point

Flamebait? Redundant, maybe. Even if using the WWII fire-bombing of German cities as an analogy stretches the limits of good-taste at worst this should be ignored rather than wasting moderator points to label it Flamebait.

Re:You missed the whole fscking point

i thought the analogy was appropiate. moderator must have been on the rag.

Re: Janet'll save us

Didn't she invent the internet anyway? This should be a simple task for her.

Bresnan@home tech's unaware of problem

As a customer I just spoke with a tech at
Bresnan who hadn't heard of any problem.
(the 1-888-bresnan # is for their
@home quarters I think.)

He said that he's gonna transfer me to
"another level of tech support" who could
help me better.

The mashine then said that hold is on avg.
10min or so.

Re:Bresnan@home tech's unaware of problem

[HaKn5La5H]

Off topic, but I'm curious: What kind of performance do you get from Brasnan?

I subscribe to the bresnan service (Ishpeming, MI) and it seems sub-par. I'm getting rates of 45KB/s (yes, that bytes) only on sustained transfers and it often just goes dead. It's been shown that the servers are at fault but Bresnan is too cheap to upgrade while the neighboring city of Marquette is getting much better service.

Is Ishpeming's service just local or do you get a disappointing connection also?

Re:Bresnan@home tech's unaware of problem

My parents have Bresnan in Houghton, MI. It just screams, it's great, but a little pricey, but mom likes to play euchre online, and she's worth it. Sounds like a local problem.

One thing about Bresnan, though, their installation crews don't know what they're doing. Came out to the house with a posthole digger, sledgehammer, and a fireax to install the cable line. Man, did they mess up the siding. No kidding. I wanted them to sue.

However, the competing ISP, portup.com, blows chunks. Can't even get a line between 3pm and midnight (all circuits are busy, please dial again).

Ishpeming, MI, the home of world famous 60s DJ Chris Eric Stevens and birthplace of Nobel Prize winner and plutonium discoverer Glenn Seaborg. Fortunately, Seaborg's parents valued education and they moved before he was 5. Hey, has Cleveland Cliffs called back the ironworkers?

Re:Bresnan@home tech's unaware of problem

[HaKn5La5H]

CCI's been doing the standard--trying to stip us of everything but the shirts on our backs everytime contract negotiations come up. This time we managed to squeeze a little increase out of it though.

Suprisingly (to anyone with any knowledge of the internal workings of the company), we're still running strong. I don't know how this works... It seems to defy reason.

Re:Not just news, but net in general. Helps pirate

[TheCarp]

> Lack of authority is Bad. This same anarchistic
> quality you praise so much also keeps an ample
> supply or w4r3z and kiddie pr0n available to
> anyone on the 'net. Is this what you are
> supporting.

Some, like myself, would argue that neither of
these is imnherently bad. (while I am against
forcing children into sexual situations for
any reason- especially something as base as
capital gain, I see nothing wrong with the
act of transmission of pictures themselves)

Noone is being hurt by these simple transmissions
of data. Noones rights are being abused. I see
no real problem.

Its simply the free exchange of information. Is
that what you are against?

@Home has agreement w newsfeed to propagate stuff

@Home contracts with Supernews or whatever to receive news and to propagate outgoing news. @Home can sue for failure to provide contractually obligated service.

See the MAPS Realtime Black Hole List

[Ungrounded+Lightning]

It'd be nice to see this extended to other services, I'm not sure how feasable it would be. I suppose a centralized procmail filter database would be feasible.

Take a look at the Realtime Black Hole List. This is a DNS-based hack that publishes the domain names of sites that allow spammers to send through their mailservers - in a form that lets mail transfer agents do a quick DNS inquiry and dump mail if it is coming from such a site.

Interestingly, it's an example of anarchism in action. Anybody can publish such a list. Anybody can hack their sendmail to use such a list - and pick any such list they chose. (As far as I know there's only one such list at the moment - probably a sign that it's doing a good job.)

The RBH client code is included in current Linux distributions. (I saw it as a {recommended} sendmail configuration option in Red Hat 6.1, for instance.) I've heard estimates that about 60% of the email inboxes in the world are now behind mail transfer agents that subscribe to RBH and thus bounce mail from any site on the list.

Re:See the MAPS Realtime Black Hole List

[FireWhenRady]

You said:
Interestingly, it's an example of anarchism in action. Anybody can publish such a list. Anybody can hack their sendmail to use such a list - and pick any such list they chose. (As far as I know there's only one such list at the moment - probably a sign that it's doing a good job.)

The RBH client code is included in current Linux distributions. (I saw it as a {recommended} sendmail configuration option in Red Hat 6.1, for instance.) I've heard estimates that about 60% of the email inboxes in the world are now behind mail transfer agents that subscribe to RBH and thus bounce mail from any site on the list.
------------------------------------------------ -

There are several other DNS based "blackhole lists", several of which are more useful in stopping spam than the RBL.
The DUL (dial up list) is a list of IP numbers of PPP connections to prevent spammers from spewing from a dialup without going through the ISP's mail server.

The Relay Spam Stopper (RSS) list is a list of servers that are mis-configured to be open spam relays AND have allowed spam to be relayed through them.
More about these can be found at
http://www.mail-abuse.org
Another list called ORBS actively test servers for relaying. It is much more controversial because it proactively adds servers whether they have been used to send spam or not.

Re:See the MAPS Realtime Black Hole List

> Another list called ORBS actively test servers
> for relaying. It is much more controversial
> because it proactively adds servers whether
___________^^^^^^^^^^^_______________________

proactively -> Bingo!


> they have been used to send spam or not.

Re:See the MAPS Realtime Black Hole List

[n6mod]

Another list called ORBS actively test servers for relaying. It is much more controversial because it proactively adds servers whether they have been used to send spam or not.

They are also a spammer's wet dream, since they publish a list of long-time open relays. Note that this is different than a go/nogo on a DNS query, they actually put a list of open relays on the net

It doesn't help that ORBS is a bunch of arrogant bastards, either. How much cooperation can you expect with statements like this:

Note - any E-mail message sent to any ORBS.org contact address or to any of our
network service providers may be posted in whole or in part to various anti-spam forums, depending on the abusiveness or humour
value of the message. ANY message that mentions the words "lawyer" or related terms in particular will very likely be posted.


MAPS is doing things right, with their various efforts (RBL, DUL, and RSS). IMHO, ORBS part of the reason that admins don't cooperate with anti-spam efforts. My initial reaction when I got a notification from ORBS was "Fsck off!" Yes, they pointed out a real problem with a server that I run, but they did it in the worst way possible.

Re:See the MAPS Realtime Black Hole List

I thought an open relay had to be reported before ORBS checked it. Most relays are reported because someone got spam routed through it.

Re:See the MAPS Realtime Black Hole List

How much cooperation can you expect with statements like this:

Note - any E-mail message sent to any ORBS.org contact address or to any of our
network service providers may be posted ...

Do you think the MAPS or UDP people are any different? They routinely heckle people who threaten them with lawsuits.

You probably got reported to ORBS because someone routed spam through your open relay. I've been there -- it sucks to know you are part of the problem, but in the end they're right.

Re:See the MAPS Realtime Black Hole List

[n6mod]

Do you think the MAPS or UDP people are any different? They routinely heckle people who threaten them with lawsuits.

I can't dispute your statement about MAPS heckling, but yes, MAPS is very different. Their overall attitude is one of helpfulness, the sense that we're all in this together. ORBS, on the other hand, feels that simply by ridiculing everyone who doesn't think like they do, they'll accomplish their goal.

Case in point, MAPS maintains an active how-to-fix-it page. (MAPS TSI) ORBS just links to MAPS TSI, while pointing out why MAPS is "doing it wrong."

No thanks, ORBS

I still find it unconscionable that they publish a spammer's wet dream, and call themselves anti-spam.

You probably got reported to ORBS because someone routed spam through your open relay. I've been there -- it sucks to know you are part of the problem, but in the end they're right.

Nope, I got reported to ORBS by spamcop.net because someone spammed a mailing list I run, and one of my subscribers ran the spam (with incomplete headers) through spamcop. As it turned out, I did have relay_local_from enabled on that box. So I fixed it. Had the notice come from MAPS, I'd have though "Damn, I'm part of the problem." But everything about ORBS makes my skin crawl.

Re:See the MAPS Realtime Black Hole List

[breser]

Nope, I got reported to ORBS by spamcop.net because someone spammed a mailing list I run, and one of my subscribers ran the spam (with incomplete headers) through spamcop.

Spamcop has got to be the most worthless thing I've ever seen. Just about any ISP of any size is blocked according to their site. That and they can't tell the difference between spam and just regular email.

Re:See the MAPS Realtime Black Hole List

[n6mod]

Spamcop has got to be the most worthless thing I've ever seen. Just about any ISP of any size is blocked according to their site. That and they can't tell the difference between spam and just regular email.

Well, yes. I sure as hell wouldn't use it for filtering mail, but it does serve as a nice header parsing tool, and the "cut-out" addresses are useful.

Re:See the MAPS Realtime Black Hole List

[mpe]

The DUL (dial up list) is a list of IP numbers of PPP connections to prevent spammers from spewing from a dialup without going through the ISP's mail server.

Result: spam comes from the ISP provided relay...

Also the propaganda on the DUL web pages appears
to have been written by a member of the "Everyone uses Windows" brigade. Without their having read an RFC in their life.
It also breaks the operation of legitimate MTA's.

Another list called ORBS actively test servers for relaying. It is much more controversial because it proactively adds servers whether they have been used to send spam or not.

The DUL is intended to be just as "proactive".

@Home not only 24.x.x.x user-check ARIN

[LadyNymphaea]

The ARIN whois at http://www.arin.net/whois lists many separate owners of 24.x.x.x addresses. Yes, many of them do belong to cable companies like Videotron, Time Warner and MediaOne (Road Runner) and @Home Networks, but some don't, like those for Blazenet and its customers.

Re:@Home should sue sites not carrying its news tr

[M_Talon]

There is nothing illegal about a UDP, as has been proven over and over again. @Home's users can still post to Usenet. What will happen is that they will be the only ones to read their own messages. The other servers aren't saying home.net can't post, they are simply choosing not to carry any messages from them. It's their right to do so, as the data resides on THEIR private property. If they actually went in and stopped @Home from posting, then it would be a Denial of Service.

@Home was repeatedly asked to do something about the spam problem, and nothing was done. The activation of a UDP is a last resort to protect the servers from overload of junk. It's not an action to destroy a company, but an effort to protect a larger community from a company's blatant disregard or disrespect.

A final thought...I normally have my threshold on 1 (I made an exception this time). This is not to deny anyone their right to post, but to filter off a majority of garbage posts that I don't have the time to read. Do you think I'm actually after anyone for it? No, I do it for my OWN well being. I'm not abridging free speech, I'm choosing what I wish to see. Same rule applies to the news server admins, who have the right to pick and choose what abides on their servers.

Re:@Home should sue sites not carrying its news tr

[Nerds]

It will affect @Home when they get hundreds of calls from their pissed off users.

ahhhm, excuse me ...

[ghoti]

> and to think we could have 1.5mbit BOTH ways

IMBW (I might be wrong ;-), but doesn't ADSL stand for "ASYMMETRIC digital subscriber line"? So you won't get 1.5mb both ways, even if other ISPs get to the lines eventually (wasn't there a court ruling some time ago saying that the telcos *had* to open the lines to everyone?).

Re:ahhhm, excuse me ...

S(ymetric)DSL is what that idiot is referring to and most providers are limiting this to incorporated businesses. they will charge you out the a-hole because just hitting the enter key will tax their infrastructure.

Re:ahhhm, excuse me ...

ADSL tops out at 9mbit downstream and 4 upstream so you can get 1.5 up and down. Infact my friend has it at his office. Well it is RADSL and not ADSL but the upstream and downstream are the same.

Re:ahhhm, excuse me ...

RADSL is just ADSL that's throttled. they're the same thing.

Re:ahhhm, excuse me ...

[jlb]

That's why he said the company that can't offer access was going to offer SDSL, not ADSL. It's the telco company that has ADSL.

The perfect solution

Yes, there is a way to get around it.

Fire them. Quit sending them a check every month.

Who they gona sue?

[CrAlt]

USENET is not a god givin right. You don't pay for the use of the USENET servers. If the admins want to block trafic over their own servers then thats their right.

Re:Who they gona sue?

[DanMcS]

They don't have to sue. I am a cs student (not a lawyer), but it seems like an injunction might be something they could try, at least in the US and maybe Canada. I didn't say it was feasible; in fact I said it would be stupid and not work. I was just kind of wondering out loud if they would realize that or not, never having had to deal with that network or its admins myself. It looks like this thread was already kind of hashed over, and the consensus is that it wouldn't work and they probably wouldn't try it anyway.
As a followup, the point has been made that this kind of thing can be done because no contractual obligation exists between usenet nodes (is that the right word?). I wonder how long before big ISPs start trying to get mutual carry agreements with each other?

Re:Do you *think* about the users you hurt? Bonehe

[Uller-RM]

If you look at the history of the UDPs, we have yet to find a UDP that has lasted longer than five days.

We hurt millions of users for five days to remove billions of crossposted spam from millions of Usenet servers - and also as retaliation for @Home's little alias of abuse@home.com to /dev/null.

Have you ever run a Usenet server? Do you have any idea of the pure amount of GARBAGE from spam and advertisements that will suck up entire T3s 24/7? If you want a better analogy, this is little different than when Iraq invaded Kuwait and didn't respond to demands to stop; most of NATO got together and pounded on them.

Given the choice of massive spamming or blocking cable users from direct Usenet access (they can still use Deja) for a few days, I pick the block. Who knows, @Home might even clean up their act before the UDP goes into effect. Historically UDPs are usually released before the deadline for that very reason.

Speaking of stupid...

You're a moron.

It feels just like the Usenet in here!

The point is, the execs will swiftly change their behavior, which they need to do if all users--including their own--are going to enjoy a usable Usenet. It's called tough love!

I think it's not like blockading Taiwan, I think it's like invading Poland. Anyone? Anyone?

"ignore them and they'll get fed up and stop it"

No, that doesn't work. At least not very well.

This works by prodding the folks who CAN do something about the problem into actually doing something about it and NOT "just ignoring" it.

Most problems are like nasty infections - ignoring them only makes them worse. They have to be attended to and properly treated into no longer being problems.

Class B?

[Col.+Panic]

Here is a (poorly rendered) table of network classes:

Class Maximum Maximum bits in-----
Class Number Networks Hosts NetID HostID
A 1-127 127 16,777,214 7 24
B 129-191 16,383 65,534 14 16
C 192-223 2,097,151 254 21 8

Re:Class B?

You pass the MS "Networking Essentials" test, but your still wrong. As the guy reported above, they subclass what used to be reserved for class A networks.

Re:For those who don't understand the seriousness.

[TheCarp]

> The reasoning seems to be that open relays
> aren't a bandwidth muncher, but a web site that
> gets twelve hits a month is.

Web sites are also easier to find.

Any moron can write a script that looks around
for web servers. You actually have to know what
a relay is before you can scan for open ones.

Probably just clueless admins.

Re:I'm glad, and it's my ISP,

[Slayne]

I've tried Bell's HSE, and it pissed me right off. Try masquerading with pppoe and you'll see what I mean. Any time you try to send more than 1k upstream in a single packet, the modem disconnects. I've had absolutely no problems with @Home service in Toronto, I just hook up it to my machine, set the ip address and it works. I don't have to try to figure out why the modem is disconnecting all the time and fiddle around with pppd, mtu and pppoe settings.

Pot. Kettle. Black. Go after SPAMMERS, not sites!

You Usenet Cabal Assholes (UCAs) are as bad as the morons who are sueing the gun makers for murders committed by others. Gotta a problem with the spammers? Go after THEM, you lazy bastards. Don't fuck everyone else over on the premise that the site is responsible for all traffic it forwards. I thought you guys favored common carrier status for ISP. Why not UDP the phone company until they stop drug deals from happening over their wires? UDP the alcohol indistry until they stop drunk drivers.

Perpetrators of the UDP are just as moronic as those in the real-life examples given above. And no different in their actions.

I just spoke to an @Home rep on the phone....

[Non-Newtonian+Fluid]

I'm getting @Home service installed this Friday (ordered it last week), and then I see this announcement, so I called up the local sales rep. Eventually I was propagated high up enough to talk to someone clueful out of their head office in Philadelphia by the name of Tom. He had heard nothing about this, but sounded rather concerned after I explained the consequences of the DP (as he should). He had me mail him the posting to new.admin.announce and said he would contact them folks over in the _real_ head office in CA.

All I can do is suggest everyone do the same. The office in PA is (215) 981-8531. You may or may not get someone knowledgable right off the bat, so be polite (but really, you should be polite anyway!). You might want to even check out the Canons of Conduct from the Linux Advocacy mini-HOWTO for some good pointers.

Good luck!

Re:I just spoke to an @Home rep on the phone....

but really, you should be polite anyway!

Oh, yeah, politeness works...sure. The USENET Death Penalty people politely asked @home, repeatedly, for months, to please, would you mind, taking some effort to maybe try and stop the spammers posting to our beloved USENET from your servers? What did @home say? Screw you, we've got bigger problems. When did the solution arrive? When @home was given the USENET Death Penalty, and the gloves came off, and politeness was cast out the nearest open window. Look, I know you mean well, but using techniques that work with social human beings, to try and deal with multimillion-dollar corporations, simply does not work and it goes beyond naive to believe that any corporate Vice-President would respond to a polite request...Corporate V.P.'s only respond to Urgent Problems, which is exactly what the UDP created. The USENET Death Penalty, in this situation, has worked exactly as planned, by forcing a misbehaving netizen to fall in line, and become a respectable member of society.

Apologies for all the bolds.

Re:@Home should sue sites not carrying its news tr

[ceo]

Um, read the UDP FAQ, item 10 in particular. In short: It's not DOS, it's simply an organized boycott, which is perfectly legal. UUNet threatened legal action when they got UDP'ed, and the Justice Dept. and the FBI just laughed at them.

Re:Do you *think* about the users you hurt? Bonehe

Gosh, when countries do it they call it a trade embargo. It lasts for decades and people go without food and medicine. Great Idea! When Usenet does it hurts users that could just as easily have gone to deja.com and stops them from wasting our time w/ spam. Then and only then is it ...Stupid.

Thank you, I understand now.

a two edged sword

Shal we stop all the good that comes through the pipe just to prevent the few specs of dirt that get by too?

Re:a two edged sword

[cheese_wallet]

certainly, those specs are potent radioactive carcinogens of the mind.

Re:@Home should sue sites not carrying its news tr

that sounds too bad for @Home. maybe they'll take spam seriously next time. i hope they go out of business.

A junk free dejanews search form

[dattaway]

If you want a good dejanews interface that's free of the crap and all the advertisements,

copy this old dejanews search form to your home directory

and bookmark it from your browser. This search form was saved from my cache when deja ruined their interface. It has none of the voting crap and your search will just yield the facts and what you are looking for.

Re:A junk free dejanews search form

[drix]

Speaking of this, anyone know a way to configure Squid so everytime I access www.deja.com I get their old powersearch page (http://www.deja.com/home_ps.shtml) instead?

--

Re:A junk free dejanews search form

[C+R+Johnson]

Download a copy of the power search page, modify it to your preferences, then put in on your gnome desktop. Up in the corner. Then you can simply drag in into netscape when you have a hankerin' and boom you are search ready.

Bad analogy

[Vermifax]

Substitute cancer for the ebola virus. Now the people with the virus are coming over to your house every day. You don't kill them, you quarantine them. These spam messages are being carried on whatever usenet server you use. If there is too much spam (on any newsgroup) your server may just decide that usenet isn't worth the space it takes and get rid of it.

Vermifax

Alt.scientology is actually an *anti* scientology

[BlueUnderwear]

newsgroup. So, L. Ron is not really "beloved" there. Rather to the contrary: the regulars of the newsgroup were in a years lasting war against Church of Scientology, where the CoS tried every possible trick to disrupt the newsgroup, and the newsgroup developped ever more ingenious countermeasures. Not using those countermeasures would basically have meant giving up the group entirely.

Re: Janet'll save us

[Lxy]

Actually, I believe it was Al Gore

Cabal screwing me. Not spammers. Not @home. Cabal.

Way to fuck over the innocent user. If you have a problem with spammers, you should go after them, not their ISP. This is like those idiots suing gun makers for the actions of a few killers.

Frivolous Lawsuits

[EXTomar]

@Home can't sue admins for controling their news feeds. That would be like suing a person to turn on their TV or radio to tune in their station.

Something Seems to be Happening at @home

[jheinen]

I just called my friendly @home customer service rep (she actually *was* friendly!) and asked her about the UDP problem. She was not aware of it, but she escalated the call and found out that the issue has been elevated to the corporate level and it is hoped things will be addressed before the UDP goes into effect. It seems they have started taking a lot of calls over this.

-Jeff

*giggle* We've got two cable isp's here

[hawk]

AT&T/TCI/@home, and cfu--the municipal utility. I called both, and it was five bucks a month cheaper on both my cable and my internet with the muncipal utility--and one bill with everything from sewer to internet (hmm, depending upon your taste, those could be the same).

Free installation and first month (from both, I think) due to the shortage of modems at the time. Now I pay $25 total for service & modem. They want an extra $5 if you want a second computer (but it seems you provide your own hub & wiring), and the terms of service explictly prohibit sharing an IP with linux or that dark-side program (but how could they tell?).

I have no idea how to configure it. I put in my two install disks for FreeBSD, and it took care of absolutely everything. Since I wanted to massively rearrange the hard drive, I called and got an ip that I could grab, changed the address in in my old configuration, and stashed about a gig of /home elsewhere. I think I've only seen it go above 500k/s download once, but it seems to me that it stayed near that when I was uploading the disk.

Competition in cable is such a wonderful thing.

Oh, and the deciding issue wasn't that it was $5/month cheaper, but that I called both places, and the cfu folks knew what was going on, while the @home folks could barely figure out which out of state tech support might be able to answer questions . . .

Response of Major Players?

[EXTomar]

What is the response to the UDP from the major players out there? Will Deja, AOL, etc. honor the UDP? For this UDP to have any teeth, it needs to be honored by the major ISPs and news services.

Re:Response of Major Players?

[rhaig]

I know for one that Deja does honor the udp.

we don't, however, send out news that we receive from other servers. We only send out our posts.

So, our honoring the UDP against them only helps us.

Re:@Home should sue sites not carrying its news tr

[friedo]

Sue for what? Usenet works like this: "Hey, I'll post the articles from your server on mine if you post my articles on yours." By refusing to accept articles from a host, you are in NO WAY breaking any law or hurting that host. Their equipment is not touched, their connections are left intact. What you propose is like saying Pizza Hut should sue me because I refuse to eat there. Give me a break.

What about me ?

I also have internet at home, does this
concern me ?


Free Slash !

Re:What about me ?

HAHAHAHHHAHA that's a good one.

If you are a BugTraq subscriber...

[MattMann]

If you are a BugTraq subscriber, you might want to know...

OK, not exactly on this topic (if you say "offtopic" they don't mark you offtopic :) but in a related and interesting coincidence:

I just now got a message from BugTraq saying that their mailing list has gotten blocked by ORBS because their ISP blocks ORBS probes. I think (I'm not an expert on this) that ORBS (anti-spam police) is probing to see if above.net's sendmail will allow "open relaying", but above.net blocks the probes. So, ORBS is treating the ISP as if they allow open relaying... does ORBS have "proof" that some machines in that domain are relaying, or is this a "play ball our way or screw off" (you know, kinda like cookies on Slashdot :) move?

Here's the email (I've corrected some errors to make it readable):

Subject: Administrivia: ORBS
Date: Wed, 12 Jan 2000 11:09:22 -0800
From: Elias Levy
To: BUGTRAQ@SECURITYFOCUS.COM

It seems the folks at ORBS (orbs.org) have decided that since our mail server is hosted at above.net, and above.net is filtering [ORBS's] probes since [Above] claims they are a DoS, ORBS is adding any mail servers connected via above.net (including ours) to their spam relaying list, regardless that our servers have never performed relaying functions. I've emailed them but so far they have not responded. You may wish to email them (orbs@orbs.org) and voice your dissatisfaction. Of course if our email to you is being blocked by ORBS then you will probably not receive this message ;-)

- Elias Levy
Security Focus

Re:If you are a BugTraq subscriber...

[Ethan+Butterfield]

> or is this a "play ball our way or screw off"... That's what it is. ORBS is well-known for playing these sorts of games with folks it doesn't like. Check out the NANOG mailing-list archives for more stories like this.

Re:If you are a BugTraq subscriber...

[mr]

Yes. They are a 'screw you' kind of player.

My machine got put on the list when I wrote them and told them I found the probe behavior rude.

Seems they seem themselves as a white knight, and don't like others calling what they do rude.

Got any NANOG links to show off?

Re:If you are a BugTraq subscriber...

Although I mostly don't agree with their policies, I had them probe my sites, just to 'be sure' (luckily, our ISPs don't filter, well, actually one of our ISPs saved us by filtering an open-relay smtp for us once when it almost made it into immrs... thanks xs4all.nl).

Nobody really wants to end up being blocked for any avoidable reason, even if the sites blindly blocking based on orbs are doing themselves more harm than good, esp when e-mail has become an important communication medium for your businness.

I'm not using ORBS to block incoming spam, although I might if they used a bit more sophistication than the 'Judge Dredd' method of 'justice' that they seem to be using know (talk about B-movies..)

Re:If you are a BugTraq subscriber...

[Ethan+Butterfield]

http://www.merit.edu/mail.archives/nanog/ is the current archives of the NANOG mailing list. Be warned, the page is extremely large, and takes a while to load.

Some recent threads of note are the "Netgate.net.nz/ORBS spam collusion" (which degenerates quickly into a standard NANOG flamewar [which is a very different beast from your typical flamewar. NANOG flamewars tend to be several rungs up on the intelligence ladder], but has several interesting points and counterpoints), and the "Selection of Appropriate Local SMTP Relay" thread, which grew out of the Netgate thread.

Re:If you are a BugTraq subscriber...

they sound a lot like typical BSD admins, if you ask me. Do lots and lots of ORBS admins run BSD?

Re:If you are a BugTraq subscriber...

All flamewars are equal on the intelligence ladder...the use of flowery language and literary references does not equal "intelligence", any more than an IQ test shows which people are more suited to run society...

My personal response regarding @Home

[Chris+Stearns]

After a (somewhat funny) conversation with a bewildered @Home help desk lackey, I was told that noone in _entire office_ (including his supervisor) knew what I was even talking about. I was directed to e-mail abuse@home.com.

The following is the text of my e-mail message to them. I would encourage other @Home customers to write letters of their own. Perhaps @Home will get the point and begin acting more responsibly.

-----email follows-----

to: (several addresses, repeated in body of msg.)
from: (Chris Stearns)

--
I would like to know what @Home intends to do about the Usenet UDP that is scheduled to begin on Tues, Jan. 18 at 1700 PST.


Usenet access (reading and posting) is one of the services I pay @Home for. Now, because of @Home's continuing reluctance to address the abuse of its mail servers by spammers, my Usenet postings may be blocked by various sysadmins, who have elected to reject all traffic originating from within the home.com domain.

This would be an unacceptable interruption of service. @Home has an obligation to ensure that the services I subscribe to are available to me.

Futhermore, @Home has an obligation to ensure that its mail servers are not being abused by spammers. The requests for action that have been forwarded to @Home (by myself and others) are apparently being ignored. My own requests have been met with excuses. David Ritz, the originator of the UDP, details largely the same experience when describing his attempts to contact @Home. These responses from @Home - deferral, ignorance - are not good enough.

The remedy to this problem is completely within @Home's ability to to enact. I am a paying customer who wants to know what is being done.
Tell me, what are you going to do to clean up your act? When?

I have attached a copy of the UDP notice, originally posted by David Ritz in news.admin.net-abuse.usenet. This message, as well as the original notice, has been mailed to abuse@home.com, abuse@corp.home.net, news@corp.home.net, noc@corp.home.net, abuse@rogers.home.net, and Internet.Abuse@shaw.ca



A timely response would be appreciated.


Chris Stearns
(email address omitted)


(UDP notice was attached here)

-------end email message------------


Happy writing!
Chris Stearns

Re:My personal response regarding @Home

[overshoot]

Chris, messages to abuse@home.net go to /dev/null. Including yours. If there were someone reading them the UDP wouldn't have been called in the first place!

Re:My personal response regarding @Home

I also sent an email to my local cable company (bresnan) who supports my @home service. The following is my email, and their response. Once again, they claim "It's not our fault, but the fault of our users!".

++++++++++++++START MESSAGE+++++++++++++++
I talked with @Home (they provide the mail/news/www content services) and they
said there abuse team is looking into it, the UDP shouldn't be until the 18th.
There is really little we can do, Spam is un-preventable, that's why its still
an issue, its not @Home spamming, its some @Home users. There is nothing else I
can tell you really. You may need to just wait & see for now.

XXXXXX wrote:

> It seems that usenet will be issuing a UDP against @home for newsgroup
> spamming. As a customer of @home, I have complained about this a number of
> times, always with the response "It is not our fault".
>
> Clearly something needs to be fixed, and fixed soon. As a paying customer
> of @home, I fully expect to be able to post Usenet messages, since this is a
> feature/benefit that comes with my account.
>
> I expect @home to resolve this issue as soon as possible so that the UDP
> will be withdrawn soon.
>
> I would appreciate a response to let me know what the status is on this.
>
> Sincerely,
>
> -XXXXXXXX

--
Bresnan Communications
Technical Support
eMail representative: .mje

Re:Pot. Kettle. Black. Go after SPAMMERS, not site

[Mike+A.]

There's no specific federal law against spamming, and very very few state laws; so individual Usenet users, NNTP server admins, etc. CANNOT "go after THEM". Ultimately, the only organization that can stop an individual spammer is the one that provides access to the spammer. In this case, the organization is @Home, and they have refused to go after their spammers. The UDP is nothing more or less than an organized boycott to prod @Home into going after the spammers.

If you wish to comment on Usenet-related issues, it behooves you to learn a little bit about what Usenet is and how it works.

Broad access BAD

[M_Talon]

--Quote begins--
give everybody access to bandwidth and things go wrong
--Quote ends--

As I've said before, it's the issue of broad access that makes many of the big commercial services an incomplete Internet experience. You get so many people who act up that it ruins it for everyone. A friend of mine left AOL because he's an avid IRC person, and aol.com is k-lined on most servers. AOL was convenient, but the stigma ended up being too much and they lost another customer...one who honestly wasn't an AOLamer.

Usenet kill files, IRC server k-lines, Spam filters...all over people lock out entire companies because they're sick of the garbage. You can't really have a complete Net experience with them. The big companies don't take the time to police what's going on, and often don't bother to respond to complaints. It takes something like a UDP to wake them up, and that's only because the UDP usually gets in the news. My advice remains, if you can find a local ISP with good service, stick with them and avoid the corps. The BS you have to put up with because of the other lamers who get on big companies like AOL and @Home isn't worth it.

My opinion, of course.

Re:Before you condemn @HOME^H^H^Hdespammers

[Punt]

Are you a spammer, Anon Coward?

>You may want to keep in mind that the spam nazis >are pretty wacko themselves and go to inordinate >lengths to stop spam.

Such as? I've seen LOTS of claims about what these supposedly EEEVIL despammers do, but noone's ever substantiated them.

> They don't even care that innocent companies
> will suffer.

@Home is not an innocent party here. Things have to get really dire before a UDP is considered..

> Think I'm exaggerating? Well consider this, an
> internet site not responsible for *any* spam
> leaving its network may qualify for
> listing on the RBL, IOW being blackholed.
> I know. Been there, done that.

BS. You need to submit traced spam, send it to the RBL folks who contact (by phone) the maintainers of the submitted server and then they MAY enter it in the RBL if there's no hope of the mail server operator getting a clue.

You haven't "been there, done that" at all. You're just pushing spammer FUD.

> Check http://www.mail-abuse.org/ if you have any > doubts.

...and expose you as a clueless tool??

Why do so many /. readers just not Get It (tm)?

You've never adminned a news server, have you? Until you do, please remember your opinions have about as much value as your usenet admin experience.

Use killfiles, content filters, etc.

Um... That what the UDP is. It's a sort of killfile for mail admins so spam won't kill their servers.

The UDP is also a 'weapon of last resort'. Beleive me, it would be a LOT easier for all concerned if @home would just do the right thing, police their own network, and actually enforce their own Acceptable Use Policy.

Don't like the UDP? Tell it to @home.

I get on DalNet all the time...

[8Complex]

I can get on almost any DalNet server and my hostmask shows *.home.com clearly, not even just the IP.

Try liberty.dal.net (my favorite), raptor.dal.net, or qis.dal.net (I think). These are just a few I connect to daily... and BTW, I'm an op on a channel that gets into the mid-500's so I know what I am talking to about. And yes, lots of @Home people in there too.

Possibly it was your subnet banned at that time though, since I got cable just 11 mts ago now and hadn't had trouble since then. I was on dialup previous to that.

BTW, I know what you are talking about with clogged networks... I've been told there was 64 machines going through the router that I am on. 64!! When I got on total was 3!

@Home is going commercial, and this happens when people flock to one thing or another. Obviously, because of the story, more and more stupid people are getting on also. I hope that they get banned, I really do. I hate spam also, though I've learned to ignore it, unfortunately.

- 8Complex

What about bouncing it back to spammers?

[kjj]

With programs like this.
Bounce Spam
I also understand that some unix and linux email programs have a "bounce" capability built in. I guess some might say this increases the problem by increasing the amount of traffic and bandwidth used. But my guess is that the spammer's servers and network would be the only ones to suffer any real slowdown and then maybe they would stop.

Re:What about bouncing it back to spammers?

[FireWhenRady]

Only problem is that 90% of the time the reply address on a spam is fake and often points to an innocent bystander.
They already get the bounce messages from truly invalid addresses and hate mail from those idiots who reply to spam without you increasing their punishment.
A host that I administer was put on the reply address of a spam to AOL. We got 100,000 bounces and replies in a day to a host that doesn't even run email and never has.

Re:Not just news, but net in general. Helps pirate

Besides.. I would rather have people who are interested in such a thing (the kiddie porn) releave their... sexual pressures... by looking at porno.. rather than acting it out... So maybe such a thing is.. Good?

no flames please

[Nastard]

im an @home user(and att employee, incidentally), and i frequently lurk and post to various ng's.

if i cant post from here, on @homes servers, can i just set up an nntp server for my own use and post via it ?

by the way, we do have an abuse list, and it is generally *very* long. from what i see, were playing whack the mole keeping all of the abuse to a minimum.

USENet: you need to get rid of the spam

@Home: we need more moderators, our men are working double shifts as it is. we can do it with more moderators

USENet: the newsgroups do not share your optomistic appraisal of the spam

@Home: we need more men!

USENet: well than perhaps you should tell that to the newsgroups when they impose the UDP

@home: the ng's are imposing a UDP?!

USENet: yes

@Home: we shall double our efforts

Re:no flames please

if i cant post from here, on @homes servers, can i just set up an nntp server for my own use and post via it ?

See, if you run an nntp server, you need to find another upstream nntp server that will relay stuff from your server. Which may be difficult...@home had to find someone to do it. I guess if you have a friend that runs an nntp server elsewhere...but then you might as well just use their nntp server.

I will make that analogy

[SEAL]

Why? Because there are two types of crimes frequently seen: personal and property.

No, breaking into someone's computer shouldn't be treated like a physical assault. Not even close IMO.

But it SHOULD be treated like a property crime. After all, it is costing the victim money. If something of value is copied or destroyed then the victim is financially hurt. Say what you will about closed source, but it still holds a market value.

Hell it doesn't even have to be source code. People store all kinds of information on computers (credit cards, anyone?). Sure, this stuff should be secured, but there's no denying the fact that harm is done if someone steals it.

Even if nothing is done aside from breaking in the victim still loses. Why? He has to invest time (= money) in resecuring / reinstalling his machine.

Don't try to glorify computer intrusion as a harmless activity. It's not.

For what it's worth, I agree that sysadmins should work together to solve problems as much as possible before involving the authorities. It's generally a faster way to take care of the problem. But, when the abuse warrants it, either through damage, or through repeated activity, I have no problem contacting law enforcement to resolve the issue.

Best regards,

SEAL

Already Done.. ;)

[Axemaster]

Actually, as someone pointed out, it has already been done. Although the mailserver admin must add a few things to his setup in the config file, things such as

http://www.orbs.org (and)
http://maps.vix.com/rbl/

already implement this.
I work at an ISP, and we co-locate hundreds of boxes for customers. ORBS is quite effective, and so is MAPS.

I remember a while back, a customer was completely clueless on how to setup a mailserver. Rather than ASK how to do it (we would have setup his sendmail, it doesn't take long), he instead set up his mailserver as an open relay, no restrictions, and forwarded all mail onto the main server. Since he was "inside" our company network, as he was colocated, our mailserver accepted his mail. (this oversight has since been corrected. ;)

Therefore, as they always do, spammers located his box quite quickly and spam mail poured through his server. The traffic load was caught by one of the admins within an hour or so, and the IP of his box was blocked from our mailserver, but it was too late and the damage had already been done.

Since the colocated customer was relaying into our main mail server, ORBS placed our primary mail server on their list. A good percent of our mail (I'd say about 40% or so) was returned to us by ISP's subscribing to the (free) ORBS database, with a nice note stating that our mailserver was on the ORBS spam list and therefore the messages could not be delivered. heh.

One of our admins completed the process with ORBS to remove our server from their list, and after they verified there were indeed no possibilities of relay, they promptly removed us from their list.

ORBS did indeed adjust their records quickly, and our mail returned to normal status the next day, with no blocking.

So ORBS and the MAPS RBL do indeed work quite well. I'm glad they're there, and that they do indeed function. We had a lot of headaches from customer calls, etc asking what the HELL was wrong with our mail servers, but in the end, it served its purpose and we corrected our customers mistake. :)

Click here to get info on signing up for MAPS RBL, and/or here to get info on signing up for ORBS.

Re:Already Done.. ;)

[mr]

ORBS is a greater evil.

My box doesn not relay outside mail. I get probe attacks, and the wanna-be spammers go away.

ORBS has 17 different spam attempts, keeps trying for 14 days (as per their web site) and then re-tests.

Being mentioned in ORBS has increased the number of outside probe attacks. (In fact they WANT this behavior)

They are unwilling to provide the e-mail message that prompts them to think you are a spam site, and if you complain about them, they add you to the ORBS list as a manual entry.

In fact BUGTRAQ@SECURITYFOCUS.COM has now been hit with ORBS. (seems above.net doesn't like the probes and rejects them. So ORBS has them 'on the list')

In short, ORBS is no better than the spammers.

Promoting ORBS is irresponsible.

Re:Already Done.. ;)

[Axemaster]

Actually, ORBS waits WEEKS before they publish your information publicly on their site.

They contact the mailadmin and inform him of
the problem way before the info goes public.

Even then, they do not present 'lists' of open boxes; the only way to check up on a specific mail server is to type in its IP address or specific name and get the current status.

I consider 17 different tests as thorough.
There are many ways to exploit a box. I prefer
they perform the same exploits and tests that
spammers do. Just because you fix one hole
does not mean there are not many others that
spammers can exploit. They test all that they
are aware of. So 17 is not excessive.

I can deal with a probe or two if it helps
make sure everything is fine. And even then,
they dont probe a box unless it has been shown
that they were the originator of spam.

Yes, I understand the BUGTRAQ servers are on
the list, but there are always going to be
inperfections in a system. Nothing ever works
perfect all of the time, and this may be a
problem that needs to be addressed, but it does
not mean that 'ORBS is a greater evil'.

Your bad experiences obviously does not reflect the overall sentiment and experiences with ORBS.

I would rather there be an ORBS and a MAPS
than there be none at all. The benefits outweigh the drawbacks.

Re:Already Done.. ;)

[mr]

Sure..... whatever.

From: http://www.orbs.org/database.html

Nominations - All nominations, up to 30 days ago. Too large to download individually. (35.3Mb at 30 Dec 1999 - 685,812 entries)

Now I DLed that file. wc -l says some .69 million entries. .58 million are from 1999-08-14 date.

1 - that is over 30 days.
2 - The reference site is gone.

Yea, a real service. Using a dead database, and not even following the guidelines they publish.

>I can deal with a probe or two
17 is more than 'a probe or 2.' And they KEEP testing for 14 days (per the text of http://www.orbs.org/verify.cgi)

>And even then, they dont probe a box unless it has been shown that they were the originator of spam.
BULLSHIT.
http://www.orbs.org/report_1.html
and you can add a machine for testing.
No 'proof' needed.
When *I* asked for 'proof' about spam from my host, no response.

>but there are always going to be inperfections in a system.
Yea...lets explain rude behaviour as 'inprefections'.

And they KEEP comming back with their bogus tests. Every 21 days, according to the site.

MAPS at least will contact you and try to work things out b4 taking action. ORBS shoots first and then says Ooops.

Re:Already Done.. ;)

[grumbly]

Well, actually, his bad experience with ORBS is closer to what i know and many other sysadmins know. I am a admin at a large university and we had the ORBS people sweep down on our campus backbone like a flock of vultures and start picking it apart. The department that i work in has over 300 unix workstations all of which are directly connected to the campus backbone. The nature of the research and the size of the department does not lend its self to being closed off behind a firewall or proxy. While there could have been better ways of implementing this network, due to the academic environment (ie no money) and the constant change in staff an open environment was a natural outcome.

Some one sent in one of the machines somewhere in the university to ORBS over the summer and soon
there after all hell broke lose. ORBS proceeded to scan ALL of our campus subdomain and hunt down
any machine that may be used to relay mail regardless if that machine had ever been used to send spam or not. Then ORBS threatened to shut down all email from our entire domain unless the university fixed all the machines in a 2 week time frame. Well... if you ever wanted to know a quick way to piss off a 100+ admins you just hit on it. While ORBS in theory is a good idea, what they were demanding was that we "fix" a problem that never existed. True there are a few machines that are open relays but that is because they have to be open (remember the kludged nature of the network).

What my objection to is basically who made them god that they can come in and dictate terms to us? Yes i completely agree that spam is a major problem and a huge waist of resources but the tyrannical nature of ORBS is way out of line.

Needless to say we did not make the 2 week deadline but we did not get shutdown because someone some how tracked them down and talked some sense into them.

The ideal of ORBS is a good one (fight spam) but their implementation needs work.

You don't shut down the highway, but...

[daVinci1980]

You do ticket them and/or revoke their licenses.

@Home has repeatedly been asked to fix their problem (ticketing....) Now, their being told that they're not allowed to drive until they fix their bus.

AFAICT, @home users will still be able to read newsgroups, they simply won't be able to post. (And sense not being able to post doesn't affect porno and warez collection, I don't expect to see too many @Homers complaining about this.)

Not to say that all @Homers only collect Porno and Warez on newsgroups, but...
--
"A mind is a horrible thing to waste. But a mime...
It feels wonderful wasting those fsckers."

Does this affect Au?

[nichts]

Optus@home is released here soon.. hopefully this won't affect us?

How you get into the RBL

[morven2]

1. Spam Relaying - this is obvious
   
2. Spam Origination - this is obvious too
   
3. Spam Support Services - this is the trickier one. You can get on this one if you:
   
   • host spammers' web pages
     
   • host spammers' email
     
   • provide credit-card processing for spammers
     
   • provide adult verification services for spammers
     
   • hosting services that provide any of the above
     
   
   
   And more.
   

The point is not to just try and shut off spammers from sending mail; except for some certifiable net.kooks, they're mostly trying to get you to buy something, and therefore eventually they have to have a fixed presence somewhere. The RBL tries to cut off those fixed presences.

What they're trying to do is to make every Internet service have a policy against any of their customers being involved in spam.

Re:How you get into the RBL

Exactly! Number 3 is what I'm talking about. Bunch of asshole nazis.

Re:Cabal screwing me. Not spammers. Not @home. Cab

[puetzk]

OK, this is how it works. All that a recipient of spam can reliably know is the originating ISP (this is know, because the IP of the remote is known in ths logs and must be correct - this IP would be news.isp.net, probably). If this IP were to be incorrect (spoofing) then no data could have returned to the remote and the protocol would have failed, so no spam in the first place.

OK, so we do know ths ISP. However, the spammer can set the user account to absolutely anything. Therefore... One goes to the ISP, and nicely asks them to check this out. They would have logs of who was on when, and could probably figure out who actually did it (to them, you see, the remote would be the spammers own machine. They know who they gave which IP to, and can figure out the identity of the spammer). If they didn't keep the logs, they could watch for him to resurface (ie keep logs temporarily and deal with it if he does it again). This would almost certainly be acceptable as a response, and would get them off the hook.

If the ISP is uncooperative, then all that can be done (from the next level up) is to blackhole the ISP. Only the ISP can really know who the spammer was, so theu have to deal with it, or ignore it. If they ignore it, I guess the people at the next level have the right to recommend blocking and to block it for themselves. If you read the post, individual news-carrying sites have the choice if a) whether or not to follow UDPs at all or b) to follow them, but exempt this one. How to do so was described. So if you like spam or think this is too extreme (maybe it is, I haven't hear whan @Home's response was or how many warnings they got) find a news-carrier who is not going to follow it. Or run nntpd yourself, and don't follow it.

So it's a lot like the system right here at slashdot. Read at -1 if you want, or don't if you can't stand trolls and spam. Individual choice (except that you do have to be the person running the newsserver and using up the resources to be able to make the choice.

At least, that's my understanding of the setup, but I don't actually run a usenet server, so any innaccuricies are hereby disclaimed. If I'm wrong, would someone reply and say so.

Re:Do you *think* about the users you hurt? Bonehe

[cernnunous]

This, as I understand it, is the purpose of a UDP.

You hurt the company (a few execs) by pissing off the millions of users. @home has already shown that they ignore repeated requests by other admins to stop the abuse, hopefully they will listen to their customers.

What traffic I, or any other admin, allows to pass through our networks is our business. Our companies own the equipment and we maintain it. I can block any and all traffic coming from @home if I so choose.

AOL zaps spammers

[Eric+Green]

As mail administrator for my employer, I regularly forward complaints about SPAM to various ISP's. AOL is swift to yank spammers. @Home, on the other hand, doesn't seem to care.

That, and not the quantity of spam, is what gets the USENET Death Penalty rolling.

It doesn't help that there are maybe five people in the entire @Home company nationwide who know what the hell they're doing, and your chances of talking to one of those people are about the same as your chances of calling the White House and talking to the President. As with The Phone Company, @Home takes pains to make sure that their precious techies aren't bothered with anything as mundane as helping customers.

Easy way to get hung up on by @Home "technical service"... "Hello, I'm running Linux and ...".

-E

Re:AOL zaps spammers

[timmyd]

Easy way to get hung up on by @Home "technical service"... "Hello, I'm running Linux and ..."


its that way with almost every company. no one will "officially" support it

Re:AOL zaps spammers

Earthlink supports Linux, I think. They have "howto" pages on how to set up your software and whatnot under Linux. They also support the Mac really well (well, with Apple's latest deal, probably even better in the future).

Deja's interface no longer sucks as badly

[John+Miles]

Use the URL:

http://www.deja.com/=dnc/home_ps.shtml to get to the old DejaNews PowerSearch form.

They appear to have re-enabled this feature over the past couple of months.

Re:Before you condemn @HOME^H^H^Hdespammers

[Mike+A.]

BS. You need to submit traced spam, send it to the RBL folks who contact (by phone) the maintainers of the submitted server and then they MAY enter it in the RBL if there's no hope of the mail server operator getting a clue.

If this post here is correct, that's not entirely the case.

Slashdot's spam logo (Slightly offtopic)

[B.D.Mills]

There's a small problem with the picture used to depict "spam", as in junk e-mail and the like. It depicts a can of SPAM luncheon meat , which is a registered trademark of Hormel foods.

Hormel's position on this matter is best expressed by the following quotation from their "Spam and the Internet" page:

We do not object to use of [the word "spam"] to describe UCE, although we do object to the use of our product image in association with that term.

This means Hormel don't like pictures of cans of their SPAM luncheon meat used in conjunction with junk e-mail and the like.

I suggest that the logo for "spam" be changed for those legal reasons. Perhaps we could change it to the picture of a pig from O'Reilly's book "Stopping Spam", or some similar porcine picture that's suggestive of "spam".

Re:Slashdot's spam logo (Slightly offtopic)

Well, if Hormel can't change how people feel about SPAM, it can always change the brand name of the product to shake off the associations. After all, in business, image is everything. If Hormel starts cracking down sites because of that, it will only be bad for the company.

Re:Slashdot's spam logo (Slightly offtopic)

[collar]

I have to agree, subconscious association is fairly powerful (that is why coke spends $billions on advertising with lots of happy cool people drinking coke). People see spam's tin on slashdot and think "bad, spam is bad".

Everyone knows that they aren't referring to spam the "meat" product, but it can still have a subconscious effect.

I would think that only a small percentage of people on slashdot would consider buying spam anyway (hell, I wouldnt), but maybe we could cut the spam guys a break? They already have their name associated with something that 95% of internet users think is evil, the least we can do is not directly associate their can with it.

Re:Slashdot's spam logo (Slightly offtopic)

No, be nice. Hormel is reasonable. What if you made, say, the Jolly Green Giant a terrorism symbol? They spend a lot of time trying to build good PR, and it isn't really fair to them for them to be abused. And they're asking nicely, not coming down with lawyers and guns. I say that that's fair. Kill the Hormel package logo, and go with a pig.

A nice bloody butched pig would fit what UCE reality better than canned spam anyway.

Re:Slashdot's spam logo (Slightly offtopic)

[Steve+B]

How about a picture of beer cans and/or chicken bones?
/.

Re:Slashdot's spam logo (Slightly offtopic)

[gorilla]

Gorilla's position on this matter is best expressed by the following quotation from "Leave it to Beaver"

Wally Cleaver: That's your tough luck.

BULLSHIT!

[TheCodeMaster]

. In fact, it would be over a year before I ever saw an intelligent post from the aol.com domain.

There are no intelligent posts from aol.com. You must be mistaken.

Re:BULLSHIT!

I'm going to have to agree. I'd like to see *aol.com permanently banned from USENET. AOL simply does not generate useful information, and makes it much more difficult to get to real data.

Ignoring is powerful

Like this AC has been saying in a couple of earlier posts (which I doubt were read by more than a few people if even them): do not underestimate the power of ignoring. This UDP works by people choosing to collectively ignore, in this case the source of spam. Ignoring is very, very powerful way in combatting the rotten eggs in the basket.

What would I like to ignore next? My alarm clock!

Re:Pot. Kettle. Black. Go after SPAMMERS, not site

[puetzk]

This is more like me looking at my caller ID and not picking up, because it's the pay phone where I keep getting pranked from. I could pick up (a site can not follow any UDP they choose not to), but I don't want to.

Besides, only @home can really tell who the spammer is. see My other comment

Read the FAQ

[volkris]

Then it's not Supernews that is going to be refusing to propagate. It's going to be people down the line.

If a company wants to legally make sure everyone can read its usenet postings, then it would have to contract with every ISP and newsgroup server in the world. :)

There's no one for @Home to sue. Go read the faq for the UDP.

~Chris Carlin

Re:Read the FAQ

Who cares about the downline anyways? A few foolish admins won't receive anything (even valid or useful information) from @home, but the rest of the world will. This paltry attempt to "boycott" @home will only succeed for a few servers.

Re:Read the FAQ

[Mike+A.]

I think you fail to understand the dynamics of Usenet and the server administrators who hold the whole ball of chewing gum and wire together. Nearly every Usenet server admin hates spam with a passion (it consumes gigabytes of space, and that comes out of their budget, requires them to set ludicrously short article expire times, etc.), and will go as far as they feel they can to block it. As far as valid and useful information, that's a rare gem on Usenet these days anyway :-)

Re:Read the FAQ

[volkris]

The UDP has been imposed before... I assure you more than a "few" servers were affected.

Relaying is a very very integral part of the Usenet's working. Removing any link at all is bad.

Plus, active methods actually go out and cancel all messages from the host under the UDP.

~Chris

Re:@Home should sue sites not carrying its news tr

[puetzk]

Nah, I like my cable modem. 200k/sec for $30/month. I'll keep 'em. But I support this too - when they need to shape up, they need to shape up.

Deja it is.

Success of UDP's - Does SPAM work?

[crush]

I really have to ask, does anyone know is SPAM profitable? Are these just un-informed idiots that really don't know that they're wasting their time? Does anyone have information on this?

Furthermore has anyone even _heard_ of someone that bought something because of SPAM?

Are these people just the deranged/hopeful side of the net?

if the UDP has the desired effect, then it's an example of anarchism actually working

the UDP FAQ certainly claims a large number of successes, among them:

Erols.com had been a thorn in the side of usenet for a long time. With a change in policy after discussion of a UDP against them, they now have a very high reputation among both the usenet and email community.

Bell Atlantic, near the end of July, 1997, was a major spamhaus. Word got to them that they were being considered for a UDP. Spam dropped dramatically almost instantly, to their credit. No UDP was necessary.

UUnet, which was the largest single spam producer around the beginning of August, 1997, [...]announced and apparently instituted a much tougher AUP against spamming, and nuked a couple of the most persistent spammers that usenet has ever seen. Numbers again have fallen dramatically, and we all hope that UUnet continues with this policy.

October, 1997, Compuserve

In December, 1997, TIAC appeared absolutely unwilling to deal with any of their ongoing spam [...] UDP was announced with the 5 business day waiting period before institution. Although their owner continued to make excuses and argue about their culpability as well as bluster and threaten legal action, by the time the deadline had arrived, they had "cleaned up their act" to the point that the UDP was no longer necessary, and the deadline was extended for another 5 days to watch the numbers. After that additional 5 day period, the stats had stayed low, and the UDP deadline was lifted.

About 10 others between these dates.

In December of 1999, a simultaneous UDP of VSNL and SILNET, the two main carriers in India, was instituted for their failure to even begin to control the usenet terrorist who calls himself "HipCrime" and who forges, cancels, floods, and supercedes thousands of articles on a nearly daily basis in an attempt to blackmail the entire world into doing things his way - his way being a usenet without spam cancels. Currently, VNSL and SILET have enabled port 119 (news)blocks on all outgoing connections from their services with the exception of their own servers.

So, it looks like there is good evidence that this will work, given the past history of success.

My Mum told me to hit them!

Re:Success of UDP's - Does SPAM work?

[Alik]

Furthermore has anyone even _heard_ of someone that bought something because of SPAM?

Yes. My father. Twice in the past month. First, he was spammed by one of the telcos offering a low rate. (I think it was GTE, but I'm not certain.) Problem is, it's a legitimate company, not some fly-by-night, and it really was a better rate than we have. He's seriously considering the switch.

Just this weekend, we got spammed about DSL. He wants DSL. They're offering a rate that's cheaper than our current two-analog-line bill from Hell Atlantic. I think he won't end up getting it simply because we live in an area where DSL is not yet available, but otherwise, that'd be another successful spam.

The only reason for him to not take such offers is conscientious objection. However, like most Americans, my father doesn't give a rat's ass about the way a few geeks want the Internet to be; he just wants BetterFasterCheaperNOW. Worst part is, he's an engineer. He does have some understanding of why certain things are problem (he's been subject to things like the One-Click patent in his own field), but considers it foolish to pass up a deal just because you dislike a company's business practice.

If John Wanker receives a "FREE TEEN Pr0n!!!!!" message in his inbox, he probably clicks it and racks up another banner count for the spammer. He might even sign up for the pay service.

Spam is used because spam works. It's got marginal costs that are almost zero, to the point where a 1/10,000 response rate to your ad will more than pay for the cost of the mailing. It may digust and annoy us, but like so many things, it'll exist as long as it's profitable.

Alik

Re:Success of UDP's - Does SPAM work?

Spam is CHEAP. It makes normal direct mail look like giving away money. So even if only 0.1% of the people getting spammed take you up on the offer it can be profitable. Wasn't the US congress going to put in serious penalities for spammers?

Re:Success of UDP's - Does SPAM work?

Of course they got it wrong on the Compuserve deal. The UDP was not the reason Compuserve deployed spam filters. The UDP moved up the depolyment dat by about 1-2 days as I recall. But of course they want to take credit for it. UDPs are DOS attacks pure and simple. It's not a "refusal to pass on messages" it's "actively CANCEL all messages" I agree with the sentiments but cannot accept the methods. Dont like @home? Alias them out till they clear up.

Re:Success of UDP's - Does SPAM work?

Yes. I got some of those idiotic email spams about printer toner from a Florida company (and I've gotten less than 10 spams in 6 years to my account, so I notice these). There's a site coordinating complaints and information about the spammers. It was full of pissed off people saying things like "I got the spam, bought blah blah dollars of toner, and it was a USED cartridge! This company is a fraud!"

God, how stupid do you have to be to buy from a spammer? But yes, people do do so. Telemarketing businesses stay in business somehow (I have zero sympathy for telemarketers that "have to earn a living"...they oughta find another job. I don't condone assassination, even if assassins "have to earn a living"). Junk mail corps also make money. Some people *do* buy from these.

If no one bought, this sort of thing would stop. I'd like to see a massive public education campaign saying "don't buy from spammers"...but I can't see anyone willing to finance it.

Re:Success of UDP's - Does SPAM work?

[mcrandello]

If no one bought, this sort of thing would stop. I'd like to see a massive public education campaign saying "don't buy from spammers"...but I can't see anyone willing to finance it.

You could always crosspost it to every discussion group in the alt. and rec. heirarchies from @home before the UDP happens...

I'm just kidding, no really, don't do that :) I agree though, In addition to changing policies the offending ISPS should be made to put up a SPAM awareness page along w/ a prominent link to it from their front page. I would also reccomend that the popular mail and newsreading apps should make that default "welcome to our program" message link to a few awareness pages, as well as contain content in their help files. Also those pearls of wisdom, such as "Yes, all of your freinds have already gotten the frog in the blender, elf bowling and the frog-catapault. They also hate it when you send them a link to a shockwave greeting card page that asks for their email address and spams them with it. To continue sending anyway press [send]."


mcrandello@my-deja.com
rschaar{at}pegasus.cc.ucf.edu if it's important.

Re:Success of UDP's - Does SPAM work?

While this is true it is because 90% of the populace do not think they are spamming.. I have to constantly remind MY friends about their spamming only because it does not look like "normal spam". IE those send this out to 10 people and great things will happen.. Most of my friends have either A> stopped sending it to me or B> just stopped sending it. Either way Thank F*cking god!

Re:Success of UDP's - Does SPAM work?

Sorry but a UDP is not the same as a DOS.. DOS attacks are done to ISP's to prevent their users from doing anything and are rather easy to avoid. The most common DOS attacks are done using ICMP so all you do is have your provider block ICMP packets for a few days and walla the DOS attack ends ;)

Re:Success of UDP's - Does SPAM work?

[spitzig]

I feel almost guilty about it but I have checked out a couple of porn sites because of spam.

Re:Success of UDP's - Does SPAM work?

[mpe]

Spam is CHEAP. It makes normal direct mail look like giving away money.

So cheap that the people doing it don't even worry about sending stuff to people who couldn't buy the product even if they wanted to.

So even if only 0.1% of the people getting spammed take you up on the offer it can be profitable. Wasn't the US congress going to put in serious penalities for spammers

That would rewrite the cost, however it would really need a set of appropriate treaties to be effective.

Re:Success of UDP's - Does SPAM work?

[!Xabbu]

Does Spam work?

Hell ya.. we, as informed and experienced internet/computer users know exactly what to do with spam... ignore it... we are annoyed with it simply because our participation is higher in online forums where our email addresses become easier to find. Your typical Mom and Pop on the net don't know or care... they just get the mail and either delete it or go to the site... some actually like getting the mail because the whole email in less then 2 seconds to the other side of the world "phenominon" is breathtaking to them.

SPAM is just like television, newspaper or billboards... With more quantity, you get a wider possibility of an audience. All you need is for 1% of your SPAM to get a hit. Send out 2 million messages and that translates into 20,000 hits. Do that every month or so and you are bound to get some sales out of it. Either that or you will get your name out. There is no such thing as bad publicity in the advertising world.

Do I advocate SPAM? Hell no... do I realize its value on the bottom line... Hell yes.



- Xabbu

@Home Abuse, as seen from an ex-@Home employee

[cjsnell]

I used to work for @Home. One of my duties was reading mail sent to news@home.com and handling requests/complaints/whatnot. Anyone who proclaims that @Home is being *lazy* about fixing their problems is _just plain wrong_. @Home employees work their asses off to deal with the problems associated with being a large ISP. Unfortunately, there are just not enough @Home employees. When I worked there, every UNIX admin was spread thin. We all wore a million different "hats" and there never was enough time to deal with everything. @Home is a magnitude larger than it was when I was there and I'm pretty sure things have not improved.

As for the spam problem, the people at blame are the corporate types. This is a management issue, not a technical issue. This problem could be fixed by blocking inbound packets to customer IPs on port 119/TCP. Unfortunately, port blocking is more involved than just making changes to routers. Policies have to be re-written which, when you are @Home, necessitates lawyers, meetings, and the like. @Home has bigger fish to fry. Like what, you say? Customers who crack government machines, e-mail spammers (who generate a larger backlash than usenet spam), smurfers, script kiddies, irc abuse, customer-to-customer abuse, people who host commercial sites on their cable modems, people who put porn sites on members.home.net (their homepage server), etc., etc. It's only to be expected that USENET complaints are near their bottom of their abuse priority list. If you could only see the volume of mail that abuse@corp.home.net generates, you'd understand. :-)

Chris

Re:@Home Abuse, as seen from an ex-@Home employee

[SheldonYoung]

I feel sympathy for the techies, but not management. The formula is simple, it takes X employees to support Y number of users, regardless of the size of the organization. I can't help but feel they've skimped on employees at the expense of the customers a little too much for their future profitability.

Re:@Home Abuse, as seen from an ex-@Home employee

[cjsnell]

I agree. Keep in mind, however, what a tremendous task it is to hire people when you are the size of @Home. I now work for a company about 1/5th the size of @Home and our fax machine spews resumes all day. I can't imagine what @Home gets. 95% of the resumes you get are completely worthless, too. It's a monumental task to hire several hundred employees when you are an @Home.

Re:@Home Abuse, as seen from an ex-@Home employee

[Ungrounded+Lightning]

@Home has bigger fish to fry. Like what, you say? ... people who host commercial sites on their cable modems

I can see the rest of your "bigger fish". But if they're claiming to be a high-bandwidth internet service provider, people will be buying the service with the expectation that they can use the internet services - which includes setting up home businesses.

If @home bans such things, and doesn't make that clear in their advertising (fine print in contracts don't count), they're defrauding their customers.

And if their workers weren't on a search-and-destroy mission for commercial sites and game servers, they'd have more time to deal with spammers. B-)

Re:@Home Abuse, as seen from an ex-@Home employee

[Caradoc]

I'd agree that e-mailed spam from @Home presents a larger problem to me than the Usenet spam, but I've seen the same response to e-mail spam that I have to Usenet spam - NOTHING.

I've e-mailed abuse@home.com on multiple occasions. In one particular case, I got on the phone, and refused to quit until I spoke to someone within the "abuse" department.

Over an hour later, I finally spoke to someone who told me flatly that they weren't going to turn off a paying customer's account just because they were spamming.

So, the several small businesses and many residential customers that I *would* have directed to @Home are now happy SpeedChoice users, and they're not having to deal with a UDP...

If @Home would simply get off of their collective ass and *fix* the problem instead of band-aiding it, (if you spam thirty more times at 10,000 users per spam, we're going to have to warn you again!) the problem would cease to be a problem.

So @Home is large. Cry me a freakin' river. If UUNet can get their act together, and AOL can get *their* act together, then maybe, just maybe, @Home can find a clue and get their house in order, too.

If @Home's accountants would get together with the lawyers and support personnel, and come to the conclusion that if they signed people up for a two-year contract, paid monthly, with the remainder TO BE FORFEIT if the account is terminated for spamming, they wouldn't lose the income from the spammers, and the spamming would *stop*.

While they're at it, they could filter all traffic on ports 12345 and 31337 - FakeBO runs on my firewall, and it has a field day with @Home lusers.

Re:@Home Abuse, as seen from an ex-@Home employee

While they're at it, they could filter all traffic on ports 12345 and 31337 - FakeBO runs on my firewall, and it has a field day with @Home lusers.

It's not @home's job to filter these ports. If you don't want these requests: YOU should
firewall it out.

Re:@Home Abuse, as seen from an ex-@Home employee

[SheldonYoung]

So they hire someone to do nothing but deal with resumes, etc...

Re:@Home Abuse, as seen from an ex-@Home employee

[Caradoc]

You obviously missed the point. FakeBO is a *fake* Back Orifice server, set up to catch the script kiddies who use Back Orifice in the first place.

I was merely observing that the majority of probes that I see come from @Home, and that if they were truly serious about letting people know that abuse would not be tolerated, they'd just lock it down.

Re:@Home Abuse, as seen from an ex-@Home employee

[Trepidity]

Why should @Home block 31337, a perfectly good TCP and UDP port simply because some people run the default configuration of Back Orifice on it? There are other legitimate uses for that port (such as the semi-hidden faster port on some IRC servers), and the Back Orifice problem should be fixed by getting people to not get themselves trojaned in the first place, not by disabling attempts to scan for already-installed trojans.

Re:@Home Abuse, as seen from an ex-@Home employee

Note that their name is @home, not @business or @work

Re:@Home Abuse, as seen from an ex-@Home employee

@Home has a division called @Work that handles commercial accounts.

Have you seen advertising from @Home that implies that you can run a home business with their service?

Get @Home and MAKE MONY FAST ?

Re:@Home Abuse, as seen from an ex-@Home employee

[cjsnell]

I understand your frustrations with abuse@home.com. I have a few comments:

1) The auto-responder at abuse@home.com says that a personal response is not garuanteed.

2) There are several reasons that @Home doesn't immediately terminate a customer for spamming. First off, they are a customer. They paid a lot of money to have their cable modem turned on. Secondly, in an @Home household, the spammer is usually not the one paying the bills. My manager handled abuse@home.com mail for a while before it got to be too much. After listening to hundreds of abuse calls, it's my guess that aboput 75% of @Home spammers are 13 year-old kids using the family computer. The demographics may be different for non-@Home subscribers but among the subscribers, most of them were kids. Typically, my manager would call their parents up and their parents would have no idea what the kid was using the computer for. After the spam complaint was explained to them, most of them promised to discipline the kid and that there would be no more spam. Usually, that phone call was all that it took. Of course, there was the occaisional professional spammer or the parents that just didn't give a damn. These subscribers quickly racked up spam complaints and would have their contracts cancelled for AUP violations.

Comparing @Home to AOL and UUNET is comparing oranges to tangerines. Yes, they are ISPs but you must consider the differences in the product. With an @Home account, you can get yourself in much more trouble than you can with an AOL account. The open news proxy server is a perfect example. No AOL user would put up a news proxy because, first of all, they have no bandwidth and no NAT machine. Secondly, they usually aren't clued enough to read news. When it comes to spam, it's no contest. An @Home customer can pump out an unbelievable amount of spam in a very short time compared to a lowly AOL dialup user. In short, the potential for abuse is much greater with an @Home customer.

Chris

Re:@Home Abuse, as seen from an ex-@Home employee

[Buaku]

Well, I think you've made a great argument FOR the UDP. If @home considers USENET compaints near the bottom of the list, and they don't even have the capability to police themselves, then they have no business being on USENET at all.

If they ever decide that USENET is important enough for them to clean up their house, then they can be allowed to play again. Until then, I guess they won't.

Re:@Home Abuse, as seen from an ex-@Home employee

No, dummy. You set up a commercial business, you have to pay business rates. The reason home users can get good prices is because it's restricted to *home* users, not business users.

Otherwise, colleges would be obliged to let college students set up businesses on their dorm computers, etc. That would be not cool, as bandwidth paid for by students would be taken by businesses (the ones *earning* money who can afford to pay for the bandwidth).

Re:@Home Abuse, as seen from an ex-@Home employee

I agree. Port-filtering is counter to the way the internet was designed to operate. It's lame.

You're kinda dumb.

[Wakko+Warner]

Of course you need a client to post news. You also need one to browse the web. Does that make slashdot elitist?

- A.P.
--

"One World, one Web, one Program" - Microsoft promotional ad

Cancelling *my* articles is an attack on *me*.

From the UDP FAQ:

[...]

11.So if you cancel everything from the UDP site, don't legitimate people get canceled, too?

Yes. One of the driving forces behind forcing compliance with generally accepted guidelines is that the ISP's own legitimate users (if any) can bring pressure to bear on their rogue ISP. Remember, the UDP is a near-last-resort measure.

[...]

This is so fucking unacceptable. Well here's my new manifesto. I'm going to FUCK OVER anyone who cancels my posts. I never bothered you (cabal members) or canceled your posts. Now *you* are attacking *me* personally by cancelling *my* posts for *actions I did not committ*. Well, I will scour the cmsg cancel messages from other locations outside the UDP zone and keep track of names, then retalliate by cancelling articles posted by these individuals. When they complain, which I expect they will, I will show them the log of cancels they hit me with. I was being peaceful, enjoying freedom whilst not preventing others from doing the same, but if you force this jihad on me, I'll have no choice but to oblige you.

Re:Cancelling *my* articles is an attack on *me*.

*yawn*

Re:Cancelling *my* articles is an attack on *me*.

[Dave+Walker]

Hmmm... rogue cancels from @home... let's extend the UDP a few more days.

Re:Cancelling *my* articles is an attack on *me*.

I'm on your side. I believe that I shall inform every admin I know to UDP all domains that UDP @Home.

Re:Cancelling *my* articles is an attack on *me*.

Why not blame the spammers instead of the people trying to stop them. The spammers are why this type of action is needed. Since @home will not take action to stop its users from spamming, the rest of usenet is forced to. I would not blame the people who are instigating the UDP. I would blame @home for not taking appropriate action long ago.

Re:Cancelling *my* articles is an attack on *me*.

Cool...then maybe all the spam friendly ones can just have their own usenet and the rest of us can use it to actually have decent discussions like it was ment to be.

Re:Cancelling *my* articles is an attack on *me*.

Hey, how about a nice tall glass of Shut The Hell Up!

A lesson from FidoNet

[DragonHawk]

I used to be a system operator of a dial-up BBS (bulletin board system), back when FidoNet was pretty much the only way to get online to any kind of WAN in places like back-woods New Hampshire, USA, where I live.

One of the things I've always liked about FidoNet over UseNet was that people were held accountable.

If you broke an echo's rules (an echo is like a newsgroup), the moderator of that echo could ban you from the echo. (Fido moderators are more like IRC channel operators then UseNet moderators).

If you got banned enough times, most system operators would simply ban you from the echos entirely.

But it got better. If a system's operator was unresponsive, or a system was a continual source of twits, the FidoNet feed to that system could be cut.

If other systems in the area kept refeeding him any, that entire network (local geographical area) would be cut.

Seems a little heavy-handed if you are used to Internet anarchy. But I think UseNet's system of waiting until things have deteriorated to the point of uselessness doesn't work, and a system that doesn't work isn't a good system. FidoNet preemptively cut off the garbage-makers. It was all run by the lose organization of system operators, was very grass-roots, and generally operated on concenus. It worked pretty well.

In a way, FidoNet has a cabal, and was better for it, IMNSHO.

Of course, the big-time (the Internet) has pretty much killed it off these days, so we'll never know how it would have scaled compared to Usenet.

@Home newsfeed

[tilde]

The @Home newsfeed is practically useless anyway. The amount of articles and the retention time in some groups (rec.music.makers.guitar for example) pales in comparison to what you can get from a Remarq NNTP server. Example - I have a Remarq subscription, but I sometimes retrieve articles from @Home's servers just to see if they've improved. @Home will return ~800 headers for certain groups vs. ~3000 from Remarq for the same group. Pathetic.

Re:@Home newsfeed

[rhaig]

before you criticize a news server (I'm not saying their servers don't suck) for the size of it's spool, think about how much comes in on a daily basis. I run a server that gets a full feed, and I'm up to about 40GB daily (yes, I said G as in Giga). Most of those are misplaced binaries and spam that gets dropped through NoCems, cleanfeed, or spamhippo.

Should they have enough spool to handle more articles? Probably, but as we've seen here, usenet is apparently at the bottom of their list.

another UDP (ameritech.net)

[Note: this is a repost due to moderation problems] Posted to: news.admin.net-abuse.usenet news.admin.net-abuse.policy news.admin.net-abuse.bulletins news.admin.announce Mailed to: abuse@ameritech.net hostmaster@ameritech.net support@amertech.net questions@ameritech.net Over the past year, Ameritech.net has been the source of vast quantities of Usenet spam. Despite countless complaints, reports, and phone calls, Ameritech.net shows no inclination towards stopping it. The data included in the following articles shows a trend of persistent and increasing abuse, and currently there is still a huge volume of spam originating from nntp0.chicago.il.ameritech.net.POSTED and nntp0.detroit.mi.ameritech.net.POSTED: Because of this lack of response to a serious problem, even when it has been pointed out repeatedly, a full active Usenet Death Penalty will go into effect at the close of business, 17:00 PST, on Friday November 12. This action will affect all traffic from nntp*.*.*.ameritech.net.POSTED. It is sincerely hoped that Amertech Corp. will take appropriate measures to stem the flow of abuse from their system before this time, and any assistance which they may require will be gladly provided. Should this action become unavoidable, sites not wishing to participate may alias out the pseudosite !ameritechudp!. Sites not wanting to participate in any active UDPs may alias out the pseudosite !udpcancel!. -- Douglas Mackall

Re:another UDP (ameritech.net)

[Ray+Yang]

I think it says on the UDP FAQ they linked to in the original article that this situation has already been amicably resolved (which is to say Ameritech got off its collective a** and fixed the problem)

StopSpam.org

[Hyper]

This site seems a tad (heh) out of date. Are there any similar sources for information that keep up to date?

Re:Autocnceling the UDP crowd

I want to refuse all and any kind of article coming from the UDP perpetrators. How can I go about doing this?

--Small Usenet Admin.

OT - Dejanews

Since you're speaking for dn...
You guys aren't seriously gonna start asking for subscription $$ to read news are you?
And, I know you probably don't have much to do with this, but if you're gonna throw all those ads on the pages please, please eliminate the animated ones.

Re:OT - Dejanews

[rhaig]

we have a business partner that charges for access to their news server. This is the personal newsreader service. You can point tin or trn or nutscrape at it and read news that way without ads. That's why they charge for it.

and if I thought we could get away with it, I'd kill the ads myself. but you're right, I don't have anything to do with that. And unfortunately we need the ads to pay my salary.

NO, More like Give them an Ultimatum...

[NatePWIII]

I don't think your "ignore then and they'll stop" quite fits in this case. Its more like give them and ultimatum and they'll stop or completely shut them out and then they will stop. For most organizations it usually takes more than a slap on the hand to make them stop anything, especially spam. I think what UDP is doing is good though it will make @home take them seriously and actually make ammends. I was just wondering though who actually uses USENET anymore I mean the internet has evolved more into an e-commmerce type of phenomena and the older vestiges of the internet such as USENET are (it seems) rapidly decaying into extinction. In fact, I don't recall within the last year that I have even looked at USENET. I think its a thing of the past myself. Not that it had its time and place. I think that eventually we will see the internet evolve into more e-commerce but with a whole lot more content and bandwidth. I mean think if you could pay online and then quickly download a movie from blockbuster in DVD format instead of having to run over to the local Blockbuster Video to rent one. That is the future of the internet... if you ask me.

Nathaniel P. Wilkerson
NPS Internet Solutions, LLC
"Get your domain name for only $45"


Nathaniel P. Wilkerson
NPS Internet Solutions, LLC

Re:NO, More like Give them an Ultimatum...

I use Usenet. Don't see the day when I will ever stop. And spam is bad there.

Re:NO, More like Give them an Ultimatum...

I agree. USENET is good and a well-evolved forum. I suspect it's growing right now by some (relatively) small amount because the Internet is growing like crazy. But eventually it will fail, just like other really cool, mature, well-developed protocols like gopher and talk. Why? Because people are going to stick to one medium, which right now is the Web. Someday, maybe a VR-based medium.

Deja is sorta cool...a bridging between the two. Deja is made of Good People.

Re:NO, More like Give them an Ultimatum...

[I+R+A+Aggie]

I was just wondering though who actually uses USENET anymore I mean the internet has evolved more into an e-commmerce type of phenomena and the older vestiges of the internet such as USENET are (it seems) rapidly decaying into extinction.

Usenet will be around as long as people enjoy talking, debating, and/or fighting in mostly unmoderated ways...

If you take a look at this graphic, you'll find that the average daily feed for all of Usenet was 80 GB. Per day. Even the text-only discussion groups work out to 4 or so GB/day.

Just 'cause you haven't been there don't mean nobody else uses it.

James

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

[CoJoNEs]

The point is that @home has not been supportive in helping to identify or block the 1% of their users that are screwing it up. This lack of support is why @home is getting the UDP.
IMHO I think that the same problem is with gun control and gun manufacturers but I am not going to ramble on.

@Home users send e-mail.

[BillyJoeBob]

I encourage all @Home users (such as myself) to send comments to: customer.care@tci.net I told them I would discontinue service if this happens.

OT reliable packet

[Corrinne+Yu]

way OT ... the other UDP :)

Agree that UDP is highly unreliable, with flimsy checksum as semblance of data confirmation ...

but in case of game data (admitted a limited application) we really don't need uber hand-shaking at TCP/IP level for continuous broadcast of position delta baseline difference.

UDP is the minimalist approach to small packet (high data to header ratio) sending ... great for game communication ... foolhardy for everything else

I am coding to UDP right now, and am perfectly happy, though I am not maintaining life threatening data across the universe :)

P.S. Even more OT ... boy am I glad to stumble upon the motherload of geek/nerd which is /. .... lots of people interested in the dorky things that I have interest in ....




Corrinne Yu
3D Game Engine Programmer

An even better link

[patrikr]

Adding "=dnc" gives you the much more readable 'DejaNews Classic' version.

http://www.deja.com/=dnc/getdoc.xp? AN=571636137

--

OT moderation setting

[Corrinne+Yu]

What is ironic is that I set my moderation setting way too high and AC posts get filtered out ...

my apologies that I probably don't have time to read posts under 3 or 4 ... maybe I shouldn't post then since I can't possibly make the time to read - 1 posts upward ...


Corrinne Yu
3D Game Engine Programmer

Re:OT moderation setting

[SatanLilHlpr]

Oh, absolutely!

And come to think of it, I shouldn't vote anymore, since I can't watch Meet the Press every Sunday... jeez.

Cure to spam!!

Tell the nice spammers to post all commercial and non commercial spam messages to alt.spam. Then just don't read alt.spam unless you're interested in seeing spam. Of course, no spammer would agree to that because no one would sit there and read alt.spam because it is all bullshit. So why can't they get it across their god damned thick skulls that NOBODY WANTS TO SEE YOUR SPAM!?

Re:Cure to spam!!

[sjames]

So why can't they get it across their god damned thick skulls that NOBODY WANTS TO SEE YOUR SPAM!?

If you ever find the answer to that question along with an appropriate clue stick, I will nominate you for any award of your choice.

Re:Cure to spam!!

Actually, people do. The sort of people that buy into email spam, junk mailers, and (the worst) telemarketers. That's why these sorts of businesses exist.

The problem isn't the spammers, IMHO. The problem is the people who buy from the spammers. The spammers are filling a need a particularly stupid variety of human has.

RTFM then

[nuggz]

all the docs indicate that the MTU's must be set to 1500
runnin 1426 here, ipmasq works great

you know reading the docs can makes things much easier

Re:RTFM then

[Slayne]

Tried that...It helped a little bit, I was able to access more web pages than I was before, but certain things (like ftp uploads) still disconnected the modem. Of course, could be that win98 doesn't always obey the MaxMTU setting...

Ehhhhhhhxxxxcellent

[John-D]

Huzzah and kudos! i applaud you sir!

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

[itachi]

That's not a valid counter-arguement, because of the warnings to @Home. If a system has open mail relays that spammers are using and I notify the admins, I would expect the admins to shut the open relays. That's basic courtesy, not to mention something that saves wear and tear on your system. Any admin worth their job should appreciate this concept - ignoring requests by others to fix a problem such as this is insulting and isolationist. The UDP is (partly) the apparent desired end result of @Home's actions - they ignore the rest of the internet and the rest of the internet ignores them. Finally, it is trivial for @Home to close these mail relays, and pressue from @Home's customers to end this UDP should encourage @Home to take the necessary actions.

itachi the incoherent

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

[Tim+Moran]

Wrong, UDP's are not lightly administered, @Home has refused to do anything about the problem, therefore the News admins have to do the next best thing. to use your own analogy the Gunmakers have done absolutley nothing to stop the guns falling into the wrong hands, even after baeing asked to do so repeatedly. The aim is not to hurt the regular users, it's to force @home to do something about the problem, once they do the UDP will be lifted.

Re:Not just news, but net in general. Helps pirate

You got a point, but it's terribly hard to deal in absolutes. For the moment, can't we just agree that spam is bad? =)

It's a difference of degree. I agree with you that *some* porn is unhealthy, but so are cigarettes. It's like this.

Spam FORCES its way onto users. People are CONVINCED to seek out porn.

So you see, to stop spam, we have to stop it from arriving. But to stop the addictive nature of unhealthy things, we have to stop the CONVINCING. Banning cigarettes (or alcohol, or porn) is not the way to control smoking. Attacking the source of the brainwashing (the companies), is.

Porn is especially sensitive because sex is a natural instinct. It's hard to draw the line at what people wouldn't naturally crave in the absence of the porn industry. Given, people wouldn't naturally crave cigarettes if they had never been under the effects of nicotine. But people are going to seek out sex (and probably sexually explicit materials) unless they are convinced *against* it. See what I mean? =)

I hope that made some sense. I think it did, but since I know what I mean already, I have an unfair advantage.

Correct move is to not carry @Home IP. Not DOS atk

According to item 11 on the UDP faq, all posts from the UDP target are actively being cancelled. This is a DOS attack against individual users and is illegal. To simply not carry articles originating from @home is one thing, to actively set out to nuke all posts from @home is quite another. Am I wrong?

dont.

[Nastard]

the people who answer those emails are a group called KANA(i think the name may have changed recently), and i work pretty closely with them.

thier job is pretty much the same as mine; acct maintanence, billing, troubleshooting, etc.

these guys are AT&T employees, not @Home employees, and have absolutly NO control over abuse issues. the most we can do is refer it to abuse@home.com

so, knowing this, please do not email the good people at that address.

thanks

Re:dont.

[BillyJoeBob]

Thank you for this info. However, in the past I have sent info to abuse@home.com and received an auto-reply with no instructions on how to escalate the request. Any other suggestions?

Re:dont.

[Caradoc]

Yup. Don't bother e-mailing abuse@home.com. Call their toll-free number instead, and tell the first live person that you get that you're going to keep calling back until you get to speak to someone in the abuse department.

You'll get the same result, being *nothing*, but it's far more satisfying than an autoresponse.

Re:dont.

[BillyJoeBob]

And that number would be: 1-888-262-6300

Re:Anarchism: not quite

[cheese_wallet]

The ISP's could be thought of as members of the UN (maybe Usenet Nations?)... they do occasionally agree to do things, such as economic sanctions and what not. That doesn't seem like anarchism to me. There is a semblence of organization.

cheese_wallet

Wow! Slashdot has gone to the dogs.

This is amazing, I speak the truth yet I get moderated down as a troll. Talk about censorship.

Re:what exactly is a Usenet death penalty?

Every member ISP chips in some money into a common fund. Then at the designated hour of the UDP, employees of the offending ISP are stalked by skinheads with ax handles and then the employees are beaten senseless. The money in the common fund is used to pay the skinheads. It is not really necessary to kill the offenders, just scare the bejesus out of them, while leaving your "mark".

Re:Do you *think* about the users you hurt? Bonehe

[Sloppy]

What did the users do yo you?

They sent money to a spam-friendly ISP. Without those millions of customers' revenue, the ISP would not be able to support the spammers' terrorism.

If you do business with scum, you're going to get a little dirty. That's why I don't pity the Windoze users when they BSOD. (Or at least I try not to show any compassion.) They put money into Microsoft's pockets instead of hiring good people. They brought it all onto themselves, and made the world a slightly darker place for the rest of us too. Fuck 'em.

---

Ack! Sorry about the repeat.

[pluteus_larva]

How embarassing.

Re:Correct move is to not carry @Home IP. Not DOS

[cheese_wallet]

yes

You're not wrong, but you're not completely right.

You didn't read this guy's message. The UDP is put into effect because there isn't any realiable way for usenet to block a single spammer, because they don't provide that spammer's access. The only option open to usenet is to ask nicely for the ISP to stop the spammer. There is then *NOTHING* else usenet can do to stop the spamming, except stop *all* messages from that site.

If they could reliably stop spammers by targeting individual spammers, they would. But unfortunately, there isn't any effective way to do this. There are many, many ways to get around all kinds of blocking, except UDP's, and the "problem" spammers know them all.

Why cable should not be a monopoly

[In-Doge]

This is exactly why cable should not be a monopoly. In Canada @home has a grip on the whole cable market (there are CRTC proposals in place that are trying to fix that, but nothing's happening for now), so every cable subscriber in canada will be affected pretty much (with the exception of smaller ones in private cable areas, like dccNet here Delta BC). If people had options, they could be using another ISP that gives 2 shakes about nettiquite and would not be affected.

Hell hath no fury like a spammmer scorned

Ha - another spammer defeated and pissed about it.

Re:Hell hath no fury like a spammmer scorned

[Mike+A.]

(assuming you speak of the AC I was responding to)

I wouldn't have thought that there was enough cause to conclude that the AC is a spammer herself (feminine pronoun used arbitrarily). It is possible that she is merely vehement that All Third-Party Cancels Are Wrong, no matter the cause. Given the assortment of other posts thread which are expressing the same opinion, scattered amongst about 3 or 4 different subthreads, she must be very vehement...

Also, I'll note that she appears to have altered her posts based on further information, and now seems to has no problem with denying service to messages originating from @Home; she is merely insisting that cancels not be used. I'll leave it to others to address whether this is possible, or address why cancels ought to be used anyway.

A good alternative

[Hellmongr]

Hello, just thought I'd like to mention, if you're in Canada, a very good alternative to @home is Bell's Sympatico High Speed service, it uses the Nortel 1Meg xDSL modems and I've had very good service for a reasonable cost ($39.95).

Refuse articles from @home. Do NOT do a DOS attack

The point is that @home has not been supportive in helping to identify or block the 1% of their users that are screwing it up. This lack of support is why @home is getting the UDP. IMHO I think that the same problem is with gun control and gun manufacturers but I am not going to ramble on.

But who does the UDP attack. And it is an attack. It it not a "boycott" as so many seem to say. All posts originating from within @home are to be ACTIVELY CANCELLED. From the UDP FAQ:

11.So if you cancel everything from the UDP site, don't legitimate people get canceled, too?

Yes. One of the driving forces behind forcing compliance with generally accepted guidelines is that the ISP's own legitimate users (if any) can bring pressure to bear on their rogue ISP. Remember, the UDP is a near-last-resort measure.

If the UDP were a passive, mass refusal to carry traffic from @home, I would support it. But active seek and destroy to all news posts originating from @home? That's a DOS attack on the (mostly) innocent users of @home. It is wrong.

Re:@Home should sue sites not carrying its news tr

[UnknownSoldier]

Someone please moderate the above post up.
The above author UNDERSTANDS the situtation.

@home alternatives

[shking]

@Home price apparently depends on where you live. @home may cost Sludge $65 a month, but it's $40 a month here in Calgary (ie. $27/month US)

http://www.shaw.ca

Maybe the lower price is because @home has real competition here. You can get DSL service starting at $445 a year ($38/month CDN, ie. $26/month US)

http://www.cadvision.com
http://www.telus.com

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

If you have a problem with spammers then you go after the spammers, not their ISP.

The first thing you should do before you continue with this rant is to get all the facts together, and take a read of the Usenet Death Penalty FAQ and maybe you wouldn't go shooting yourself in the foot with your obviously uninformed opinion.

Then maybe you would SEE that all other avenues have been exhasted.

Thats whats wrong with today's world, too many idiots prepared to shoot first and ask questions later.. now grow up..

Or maybe YOU are a spamming mongrel yourself.

Re:Refuse articles from @home. Do NOT do a DOS att

[dillon_rinker]

Hi there. Let's pretend that I administer a server. My bosses know what spam is; they chew me out when I get some. They tell me my job is to prevent spam from reaching them. So, I implement UDPs when they come out. I tell my bosses I'm stopping spam. They commend me. They own the server. Who are you to tell me what to do? Who are you to tell me I'm wrong for abiding by my contract and doing what the boss tells me?

Take that and multiply it by however many servers carry news feeds, and you've got the UDP. This isn't a central authority. This is lots of individual sysadmins who don't want to deal with posts from a domain, so they block that domain on the servers that they have a legal, ethical, and moral right and obligation to administer.

It's not an illegal DOS attack.

[Ungrounded+Lightning]

To be an illegal DOS attack they'd have to trick a server into canceling the articles against the wishes of the operator of the SERVER. Canceling messages against the wishes of the originator of the MESSAGE is fair game - because the operator of the SERVER is not required to carry the messages. The cancel requests themselves are advisory, not mandatory (though their processing is automatic, so the server operators must accept or reject them by policy rules rather than manually).

The cancel messages are formed in such a way that the operators of the servers can easily chose (by configuration options) to accept or ignore them.

Even better, the operators of the servers can selectively accpet or reject cancels from a particular instance of the UDP, certain classes of them, or UDPs in general (without regard to the policy on non-UDP cancel messages).

(OT on killfiles)

[Inoshiro]

Is there a nice site that allows people to share their killfiles and spam filters? It'd be nice for me to be able to head to rec.arts.poetry or similar, and have a killfile maintained by the community (in the same way that Waldherr's Junkbuster has a community maintained blocklist.

Perhaps as an extension to NNTP, an FAQ, Killfile, and other info links would be available in the info for the group (as meta fields), allowing people to not have to wait for the FAQ to be posted, etc.
---

UDP *already* has worked before.

[mrsam]

UUNET was UDPed about a year and a half ago. Right now, their spam levels are barely a tenth of what they used to be before the UDP.

The last four times a UDP was called, it never actually went into place, after the waiting period. The recalcitrant provider always figured out how to get their collective sh*t together, and the UDP was called off.
--

I remember the good old days

[SilLumTao]

I haven't read Usenet on a regular basis in several years. I just got tired of wading through all the noise to get to anything useful. One day I just got tired of updating my killfile... Now, I just go to Deja whenever I'm looking for specific information on a topic.

However, I find the community oriented web sites to be more useful -- /. has developed a decent model that makes it relatively easy to find the few gems that are posted. I don't always have the time to read every post. I just think it's a better model than Usenet (even if I have to put up with a few creative trolls). In some ways it reminds me more of the old BBS days.

So, what other sites are out there? I know that I'm a nerd, but there is more to life than geek news and Natalie Portman. Are there any other community oriented web sites like /. that cater to other tastes?

Several issues...

[mTor]

Firts of all... I notice several people mention that they know how many people are on their WAN. How dod you check for something like that?

I'm an unhappy @home user. I was happy when I got it about 1.5 yrs ago but now it's too damn slow. I get 15K from most sites during the day and thats just too damn slow.

Is there any way to optimize linux for @home? Any TCP/IP stack options you recommend for setting? MTU maybe?

Anyone else from *.slnt1.on.wave.home.com? :)

Nick

--
GroundAndPound.com News and info for martial artists of all styles.

Re:Several issues...

[FireWhenRady]

Actually your problem is caused by the spammers. Last summer somebody on your segment ran continual Smurf ICMP flood against your subnet causing most users to slow to a crawl.
Much of the problem with cable network slowdowns are the spammers and script kiddies clogging up the shared bandwith. Lately the Ottawa East end network (SLNT1 is St. Laurent Road in Ottawa Canada) has been the source of ping flooders and spammers blocking others out of connectivity.

Re:Several issues...

[mTor]

Aha! Thanks for the info! Quick question and hope you don't mind me asking... where did you hear about this? :) I'd like to get some news about local, Ottawa, issues.

nick


--
GroundAndPound.com News and info for martial artists of all styles.

Re:Several issues...

[WGR]

The news group ott.online is a very active local networking group. Also the athome. groups often have discussion on this.

Re:Not just news, but net in general. Helps pirate

[TheCarp]

> how the bloody hell can you pretend that kiddy
> porn, or any pornography at all, isn't bad?

The WORST thing that has EVER happend when an otherwise mentally stable individual has downloaded or otherwise VEIWED ANY sort of
pornography, is quite simply that they had to
clean up a sticky mess from masturbating.

Downloading, viewing, and exchanging porn is
fine in my eyes.

> pornography is a sick capitolist industry
> praying on human frailty and weakness.
> Porno=materialism, plain and simple. It chains
> you to a meaningless material world, much the
> same as money etc.

I can certainly sympathise with yout hatred of
capitalism. It *IS* one of the most destructive
systems I can think of. However, all porn does
is give a person visual material with which to
fantasise. Fantasy is perfectly natural, and is
a healthy part of sexual expression.

> It kills off the intellectual sect of the mind
> and prays upon the strictly animalistic side of
> it.

Humans ARE animals. I, personally, think that
embracing and satifing "animal instincts" is
an important part of leading a balanced life.
To do any less is to deny our animal nature and
in the end to live in a world of self-delusion.

> sn't the spam simply another form of "free
> information"?

While free flow of information is fine with me
and ism in and of itself, a good thing. It is
not an end that justifies all means. Just as sex
is a beautiful thing, forcing sex on another
person (ie rape) is an ugly thing. Spammers
steal network resources to advance their own
capitalist interests.

> Honestly, who here hasn't ever accidentally
> come across pornography?

Here I agree with you. Yes, the techniques that
are used to advertise porn is just as bad as
spammers. Their use of incorrect descriptions is
distastefull at best.

However, underhanded buisness practices are not
pornography. It is their buisness practices that
are wrong, not their "wares". I, personally,
refuse to do buisness with ANY company, no matter
what they are peddling, that engages in these
practices.

Re:Pot. Kettle. Black. Go after SPAMMERS, not site

[anonymous+cowerd]

> Gotta a problem with the spammers? Go after THEM, you lazy
> bastards. Don't fuck everyone else over on the premise that
> the site is responsible for all traffic it forwards.

HOW? My ISP has rules against spamming built right into the contract by which I get my service from them. If I violate their anti-spam rules they charge me a whole bunch of money and then cancel my account. There's not a whole lot I can do about it if they do, because those are the terms of my contract, and they're right there in black and white, and if I don't like it I can find another ISP. So far so good.

But what happens if a guy who subscribes to another ISP spams me or mail bombs me? One time I got mail bombed by some ass with an account at Southwest Nell. So I emailed SWBell's abuse department and sent them copies of all the emails with which he jammed up my pop in-box. Since SWBell is a reputable company and my bomber was in violation of their terms of service, they cancelled his account. But keep in mind that MY ISP couldn't do a damn thing to this guy, since what he did, while obnoxious, is not illegal.

Now there were spammers running out of @Home accounts, right? People from all over were complaining to @Home, but @Home took no action. Again, since there was no violation of the law, @Home was not exactly required to do anything to the spammers. If @Home values the spammers's business more than it values the cooperation that is necessary to make Usenet work, or if they are too understaffed or lazy to enforce their terms of service, that's their privilege. It is also MY ISP's privilege to not copy posts from their news server into my ISP's news server.

You say "Go after THEM," "THEM" being the spammers, but unless they do something legally actionable (such as broadcasting death threats, etc.) no one can touch them. The only people who could restrain spammers with @Home accounts are the management of @Home, and the one and only reason @Home can do anything to stop the spammers is because those spammers are in a contractual relationship with @Home.

Yours WDK - WKiernan@concentric.net

I laugh at your request to submit, God (of fools).

Boycotting @home by refusing to propagate their traffic is your right.

Actively sending out cancel messages to destroy articles originating from @home (wherever they be) is a DOS attack against the @home user eho is not spamming.

This "god" is obsolete and outdated and needs to be cast into the dumpster.

Re: Autocnceling the UDP crowd (1)

[fordan]

>>>>> "rhaig" == rhaig writes:

the way a UDP works is that several news admins are generating cancel messages for articles originating from @Home. If you go read the UDP FAQ you would know this. Anyone not wishing to participate in an active UDP can refuse to accept articles from the pseudosite udpcancel.

This is an opt-out database. This is the very thing the spam-fighters are trying to fight against.I'd be more impressed if they used an opt-in option, like NoCeM.

As a news admin, I'm sure you realize there are a large number of news sites, rightly or wrongly, running on auto-pilot, with no one paying attention to them unless the disk fills up. Choosing to honor the UDP isn't a choice on their part, and it's nothing their users are aware of.

Even if a site that ignores these cancels passes them on to another site which honors these cancels, the second site will get the cancels and the messages will go away. (It's magic!) The only news servers where the articles originating from @Home will be found are the guys who ignore the udpcancels.

Is that true? I would think that the aliasing technique discussed in the FAQ would cause such message to not be propagated by the news server in question, because it thought it had already passed them on...

Bob

--
Robert Snyder rsnyder@toontown.erial.nj.us
ICQ #20900813

On Your Blanket Statement

Government is NOT inherently bad. Bad government is bad. This is a tired old line from government to excuse their poor performance. Regan decried big government while it grew under his terms. These are all off the mark, as is your remark I feel. Are guns inherently bad, even it it saves your life? A malfuntioning gov may be what you say but not any gov just by its existence. "Nothing is good or bad, but thinking makes it so"

Re:On Your Blanket Statement

[volkris]

Well the purpose of government is to govern... you know, control. If people could control themselves then government would be unnecessary.

The problem is that people can't control themselves, and so we need the government. It's a matter of an evil cancelling out another evil.

Why is it evil? Well by evil I meen negative... evil is perhaps too strong a word. ANYWAY, the reason government is something that should be avoided is that it has to drain energies off of society. We have to work to pay for its existance. Even if we didn't have to pay taxes of any sort, it would still take government workers to run it spending energy then.

If government wasn't necessary it should cease to exist so all of the energy could be returned to the people instead of being thrown to /dev/null.

Perhaps another way to put it is that government is just a correction to a direction... any correction takes energy. When there is nothing else to correct, the energy can be put to better use. Of course I doubt government will die that easily, but now I'm just rambling late at night :)

~Chris Carlin

Re:@Home should sue sites not carrying its news tr

Freedom of speech doesn't supercede (sp?) my freedom to hear. If I choose not to re-print or listen to someone's words, unless I have a contractual obligation to them, they have no recourse against me.

However, if you go and try to put duct tape over someone else's mouth because you don't want to hear their words, then it is you who are doinf wrong and must be suppressed.

Boycott @home by refusing to propagate their traffic and I will support you.

Actively send out cancel messages to suppress their free speech and I will oppose you.

If everyone simply drops @home's traffic, no one will hear them and they will (most likely) change their ways. This requires most other sites to agree with the boycott, i.e., community support. Actively attempting to suppress traffic from @home says to me that you aren't interested in community support and are a rogue vigilante carrying out your own personal crusade, irrespective of common opinion, against @home. For this *you* too should be UDP'd.

Re: Does SPAM work?

[mapletree]

I really have to ask, does anyone know is SPAM profitable? Are these just un-informed idiots that really don't know that they're wasting their time? Does anyone have information on this?

Furthermore has anyone even _heard_ of someone that bought something because of SPAM?

I've received SPAM that I believe to be quite profitable and which probably attracts a large number of users to the sites being advertised. My e-mail address is listed on several business brokerage sites, and every day I get e-mail advertising new sites. I don't visit them because SPAMMers must die ehm, I mean, I don't support their use of that advertising medium, but I bet lots of other people whose e-mails are up on similar sites would. This is targeted SPAM and not quite the random stuff you're talking about, but....

stop bitching at @Home Assholes

It seems that there is always someone out the complain or beat up on @home. Here is a company that is giving everybody what they want - high speed broadband. Why are so many people surprised that all this shit comes from @home... because they got the bandwidth. It is changing alot of things. and it will change our internet society dramatically. They just want to do the right thing (they are just a company making money) and have no clue (in many cases) what to do that is politically correct. If you point it out to their investor relations people (that will get their attention fast).. also spell it out in simple language without acronyms that it is a serious problem. Why is your attitude "if they respond "? Maybe the way you write doesn't warrant a response. If you wrote a professionally written letter and sent it out to them. they would respond. I've complained about their service and it got fixed real real fast..and no problems. stop bitching on /. , cool off, write a well written letter to PR, or investor realations (even if your not an investor) and mail it.

Re:stop bitching at @Home Assholes

[Caradoc]

Why bother? They don't answer e-mail to abuse@home.com, and it would appear that they don't *act* on that e-mail, either.

Instead of contacting anyone else there, I've simply started redirecting my customers to other broadband providers that *do* take their abuse mail seriously.

I'd bet that I've cost them somewhere between seventy and one hundred customers in the last six months. Conservatively, and assuming I don't redirect any other potential customers, and I've cost them only 15 customers per month over the last six, at $35 per month per customer, I figure they've already lost over $10,000 in potential revenue simply because every time someone mentions high-speed internet access, I direct them to a provider *other* than @Home.

Spam can be profitable...

...for those companies whose business it is to spam for OTHER companies. How many spams have you seen that are like "MILLIONS OF EMAIL ADDRESSES" etc? No doubt there are direct-(e-)mail companies out there, who sign up businesses to their customer rolls, and send out spam for them. These are the ones with the tricky bastards working for them, who know the tricks of hacking email headers, using unprotected relays, etc. Your average Mom & Pop Spammer wouldn't last long in the waters, methinks. Basically, most spammers are spamming for other people, not themselves... and these are the bastards to go after. You may want to pick up the phone and call up whatever number is on a spam to get "100% herbal viagra" or whatever - but instead of screaming "You fucking spammers!!!" at these people... maybe try and clue them in on what they signed up for. The fewer people who buy into the BS that spamming companies feed to them, the quicker said companies will go out of business. THAT'S a good way to fight spam :)

Asshole nazis? I think not.

[morven2]

The RBL isn't forced on anyone -- individuals and companies adopt it by choice. They have the legal right to choose to refuse to do business with anyone who refuses to do anything about spammers.

If you're affected by this, you chose to do business with someone who doesn't do anything about spammers. That's your choice.

The Modems have IP addresses as well

[ralph_snart]

One thing I have noticed while working with the modems on Rogers@Home, is that the modem itself has an IP address in the 10.x.x.x block. Anyone else seen this? They aren't accessable from outside the @Home network though... And BTW, i'm in Vancouver, and I pay $40 a month. I've moved around a lot lately and I haven't noticed a lag in bandwidth...

Re:The Modems have IP addresses as well

[Our+Man+In+Redmond]

One thing I have noticed while working with the modems on Rogers@Home, is that the modem itself has an IP address in the 10.x.x.x block. Anyone else seen this?

One of @home's techs told me the same thing. Yes, their modems have 10.x.x.x addresses. Presumably it's so the script kiddies have to work a little harder to control them (e.g. they have to do it from a machine on the @home network).
--

I ought to add ...

[morven2]

that you're only added to the RBL if any of those things happen AND YOU DO NOTHING.

If you're a spammer yourself, if you stop spamming, you won't be on the RBL.

If spammers use your services, then if you change your policies to prohibit spammers and take some steps to enforce that policy, you're not on the RBL.

You get on the RBL if the mail abuse people tell you your service aids or abets spam and you tell them 'why is this my problem?'

BUT "CMSG CANCEL" == DOS ATTACK!!!

Read your own FAQ, #11. a UDP is not simply a boycott (which I would support), it's an active cancelling of articles. Sending out cancel messages removes articles from sites other than your own. How can you support this behaviour? If the admins at the other sites agreed with the boycott, it would not be necessary to send out cancels, as the other sites would already have chones not to propagate the @home articles.

Sending out cancels only supports a weak "UDP" that does not enjoy widespread support among the world's newsadmins, and hence needs active offensive action to carry out the UDP. An honest UDP can succeed on passive actions along, because everyone will agree not to forward the UDP'd sites traffic.

Do you really have the support you think you have?

@home udp

Good riddance. @home has very quickly become the aol of high-speed access. Their admins are apathetic, their script kiddies run about on their network uncontrolled, and their users are habitual problems anywhere they're found. The proverbial type of "Damn, I can't take you ANYWHERE" people. Glad somebody is finally doing something.

Re:Is it me,

I can't say whether or not he works for @home or not, but he's certainly not @home's only satisfied customer. I know several people who use @home, and I use it as well. We are all satisfied with it. There is a bit of packet loss to some sites, but it's easy enough to find a good quake server outside the @home network.

Re:Refuse articles from @home. Do NOT do a DOS att

[Neoplasm]

If the UDP were a passive, mass refusal to carry traffic from @home, I would support it. But active seek and destroy to all news posts originating from @home? That's a DOS attack on the (mostly) innocent users of @home. It is wrong



Actually, the way I understand it is that administrators only send @home posts to the bit bucket as they come into their own systems. This prevents all downstream servers from getting them but still allow other admins that don't honor the UDP to pass them along on their merry way. So some people will still be getting the posts. I don't think that anyone is actually wiping the posts off of servers that they don't control.

As you can see by my email address above, I'm one of the users that will be affected by this, but I'm in full support of this action. I plan on letting @home know that I am not pleased with their lack of action on this matter and will be urging other users to also express their opinions. All in a polite, non-flammable way of course.

Re:Refuse articles from @home. Do NOT do a DOS att

I completely agree. I am an @home cable user and I'm disgusted by both the spammers and the blockers. Does anyone know if its possible for me to provide my exact host@domain and have it excluded from the UDP? If not, then I guess I'll just give up on Usenet (Slashdot's a better forum anyways).

Same as Deja Power Search

They still have this form. Next to the search box , in the upper right hand corner of their main page (www.deja.com) is the Power Search link (http://www.deja.com/home_ps.shtml). It's the same form, and is the ONLY interface I use to deja.

My 2(where'd the cents symbol go?),
Anonymous Coward

Re:Same as Deja Power Search

[sweet+reason]

They still have this form. Next to the search box , in the upper right hand corner of their main page (www.deja.com) is the Power
Search link (http://www.deja.com/home_ps.shtml). It's the same form, and is the ONLY interface I use to deja.

that form has all the junk that the original poster's form leaves out. that was the whole point of his post.

Hey let's use your fingers to read the bits...

off your hard drive. Oh shit, then your finger is the client.

Re:Servers not allowed

[Temkin]

Sludge wrote:

As I hinted above, servers are against the rules with @home.

Actually... You should go pull up the service agreement and read it again. It seems they've amended it recently. I was looking at it over the weekend, and all I could find was a section in "Service Characteristics" subsection "b" that basicly says "If you run a http or ftp server, someone may hack your box. Don't blame us." This surprised me, because it used to say "No servers of any kind. Period!". I'd post my SLA/AUP but it specificly restricts me doing this.

Your service agreement may read differently. In my area, @Home has lots of bandwidth. I've hit 550Kb/sec. on ftp downloads. (There's like 3 of us on the segment... :-) There's a 128k upload cap, which may account for the server restriction being removed. YMMV.

Temkin

Does ORBS still exist?

[Crag]

I was looking for it to make sure my company isn't blocked (we are at above.net). Instead I found this:

http://news.cnet.com/news/0-1 005-200-335915.html?tag=

Re:Does ORBS still exist?

[Mike+A.]

The referenced article is dated December 1, 1998, and is out of date; ORBS has since found a new home. You might want to check here if you're not sure.

Re: Autocnceling the UDP crowd (1)

[whoop]

Choosing to honor the UDP isn't a choice on their part, and it's nothing their users are aware of.

Aren't they making the choice by choosing to run whatever certain news server or set of scripts to handle these control messages? The articles said @Home averaged 11,000 cancel messages a day. That would take what, 6-10 employees every day to look up the articles, read them, and decide if they should be cancelled? Even then, they can auto-pilot those, and forward important control messages (like an UDP) to an admin for manual control.

Anyway users pretty much choose with their money whether they accept an ISP's behavior/decisions. If my little town of 15,000 can have 3-5 modem ISPs, I'd guess it's that way in much of the US.

UDP coding

[FutileRedemption]

>I am coding to UDP right now, and am perfectly happy

hm... lending a hand for a known project or experimental stuff for future ones?

admitted, Im overly curious...

Re:Do you *think* about the users you hurt? Bonehe

In _your_ opinion, not others.

Re:@Home should sue sites not carrying its news tr

Doin a little brown-nosin', eh?

@home packet loss

[DJStealth]

As for the packet loss issue you have mentioned... I have come up with a solution to get @home back into gear...

In October, I have created a shellscript to keep log of ping requests (every few seconds) to the @home gateway and DNS servers. This would then give me a total downtime in minutes for the month.

The month of October has shown an @home downtime of 2206 minutes on my server (logs are available)

After calling to complain at the end of the month, they gave me a measly $2.40 credit (or something like that)..

The Month of November improved slightly and gave me a downtime of only 1906 minutes (about 15% downtime). Still extremely poor.. I called and complained. Spoke with a supervisor this time. He was kind enough to give me a free month.

Then comes around the month of December. After speaking with people from the Rogers@home users association and informing them of the program I made to get people to use it (back in October)... I have noticed a significant improvement in downtime and packet loss.. Downtime has improved to just over 200 minutes (close to 0% !!).. A Lot Better.. As for January, so far I only have about 100 minutes of downtime which is very good relative to a few months ago.

If anybody would like some more info on this cheap shellscript I made, or in yelling @ supervisors to get free months (apparently they can give you 1 month credit for every 3 months of non-stable connections), feel free to email me.

Take out the 'no.spammers-xyz' in my e-mail and you've got my address..
I'll be happy to send out this shellscript I created for linux as long as I get credit for the creation..

Re:@home packet loss

[ecampbel]

How do you calculate that 1906 minutes is 15% downtime? Aren't their 60*24*30=43200 minutes in a month. 1906/43200=.04. This means that your service was only down 4% of the time. Could you please tell me how you came up with your 15% figure? Also, @Home could argue that intermittent downtime is a lot more forgivable than long periods of downtime.

Re:@home packet loss

Yeah, 4% packet loss is not good at all, but not outrageous. And the supervisor was awfully nice...

Re:@home packet loss

[DJStealth]

My appologies.. my November log sais..
(Total Downtime = 1906 mins) of 29 days, 15:4 (42664 minutes) = 4 % downtime

I seemed to have some screwed up calc in my head =).. The reason I said 15% because there was a time near the beginning of the month when downtime has reached that high.

It's over

[tskirvin]

@home just posted a "please don't kill us!" message to a few newsgroups. They're apparently going to play nice now, and all that crap...

Of course, they forge-approved it to two newsgroups that I moderate, and my 'bots cancelled it.

Aah, well, I reposted it in news.admin.net-abuse.policy. Enjoy, folks.

- Tim Skirvin (tskirvin@killfile.org)

Official response from @Home Network

[A+well+known+coward]

Its not in deja.com yet, and I didn't want to reproduce it here to avoid possible copyright issues, so here is a link to it.

Re:Official response from @Home Network

[aphor]

Rather than just adding the promiscuous nntp relay hosts to a deny list, they should slap the owner of the host IP with penalties. Lack of abuse policy aside: the nice athome users get the shaft when a few lusers abuse their Internet membership. Athome has an obligation to their well-behaved users. What is not accounted for here is the general distrust and dislike for anyone coming from athome. As far as the rest of the net is concerned they suck until they prove themselves worthy. How many admins have put @home in their killfiles for how long before the UDP threat? It should not have gone this far, and Athome has not sufficiently apologised or changed their policy direction.

@Home has poor anti-abuse policies

[dpotter]

Recently I had the occasion to complain to @Home regarding an abuse of my system by one of their users. (My poor system valiantly defended me against over 11 hours of attempted unauthorized logins from an @Home user).

After my complaint email was sent, I received an automated reply stating:
a)that I would likely not ever hear anything from them regarding this matter, and
b)that they would take no action unless I included my system logfiles and other detailed information.

As a comparison point, I offer my experiences with Pacific Bell Internet Services (pbi.net), @Home's largest competitor in my area (San Jose, CA):

After a similar incident, PBI sent me an automated response, followed by a hand-written email (oxymoronic?) indicating that the user had been contacted and warned that further attempts would violate his service agreement and be grounds for termination of service. A few days later, I received a second personalized email including an explanation of the incident and an apology from the attacker (who explained that this was an accident - he was trying to test his own security and didn't realize his tools were running against a wider range of IPs).
While I don't expect this high level of service as a rule, it made me feel good about my choice of ISP.

Re:@Home has poor anti-abuse policies

[A.Gideon]

>After my complaint email was sent, I received an >automated reply stating:
> a)that I would likely not ever hear >anything from them regarding this matter, and
> b)that they would take no action >unless I included my system logfiles and other >detailed information.

I've done that (submitted router and tcp_wrapper logs) and received exactly the same reply as you: silence.

In a sense, @Home is trapped by a problem not of their making. This is true of all vendors of "high bandwidth" and "always on" connectivity, of course, but that doesn't make it any less relevent to @Home.

The issue is that computers are not as easy to administer as some companies like to claim.

Consider: is a computer more or less complex than an automobile? Yet how many people maintain their own cars? Yes, I know that some hobbyists do. And I expect that this will always be true of computers as well.

But there's this entire support system out there for automobile users that have neither the interest nor the knowledge to maintain their own cars. No equivilent exists for computer users. Ask nontechnical users, and they won't even perceive a need. Ask many of these if they maintain their own autos, and you'll receive something like "of course not" in the vast majority of cases.

For good or ill, the general population has been convinced that computers are trivial devices that are as easy to run as a VCR. Easier, in fact, given the number of blinking 12:00 displays to be seen. Companies like @Home are feeling the weight of this grand untruth.

This hits them every time an @Home user has an open NNTP or SMTP relay, an insecure system that turns into a stepping stone for system crackers, or a machine which broadcast its entire disk to the world.

Another issue, less important in my opinion but still true, is that there are Bad People around. On a 9600 modem, they're annoying. On a DSL or Cable connection, they're more of a threat. This is yet another "cost" of being @Home. Unfortunately, this is also a cost of being a (topological) neighbor of @Home.

Kutos to PBI for handling the situation so much better, and Congrats on your ISP choice.

Spam SUCKS! - DEATH TO SPAMMERS

[The+Inphidel]

The next thing will be spam that posts to message boards...or Slashdot spammer.

SPAMMING SHOULD COME W/ the REAL DEATH PENALTY

Re:Not just news, but net in general. Helps pirate

You see no real problem with software piracy? Excuse me, but as a software developer I would ensure that anyone who pirates my software is prosecuted to the full extent of the law. I have reported employers, companies and sites to the SPA for software piracy, and shall continue to do so until there are no more WaReZ vermin around.

Re:Correct move is to not carry @Home IP. Not DOS

[sandman71]

What's illegal about it? I own a network. I don't want packets from your network to enter mine. It's for me to determine. I have no contract with you to carry your packets. Allowing your packets to go into my network is a PRIVILEGE that I give you that can be taken away at my whim. All of it legal, since I own the pipes that carry your packets.

It's up to the individual ISPs to choose whether they process Usenet Cancel messages or not. If an ISP would be against this embargo against @home Usenet messages, they would simply change their software to ignore the cancel messages and still propagate the @home spam (this is if they are accepting Cancel messages in the first place).

As a single user, you have no idea how much bandwidth and space this spam takes up. We're talking gigabytes and terrabytes of wasted space on a DAILY basis.

You're probably ready to cry out: "But the Internet is based on mutual exchange of packets! If an ISP blocks packets from another ISP, it goes agains everything the Internet stands for and was built for!" Not really. Their needs to be a degree of respect between ISPs. @home disrepects other ISPs by flooding their networks with spam, even after multiple requests to fix the situation. Why respect someone who not only doesn't respect you, but spits in your face and causes you harm in doing so?

"But this hurts the little guy who uses @home who uses usenet". Look at the big picture. This hurts the little guy everywhere. The surgeance of spam has been flooding bandwidth everywhere. ISPs need to upgrade their pipes so that legitimate traffic can flow thru with little lag. When an ISP needs to install a few extra OC3s, not because of growth within their network but because of spam (which gives them no extra revenue), prices go up. As with most companies, most ISPs will not absorb the cost. They'll pass it on to their customers who in turn pass it on to average Joe User who dials up on a modem.

And one last thing. Who gives a flying $$#@# if a few million people can't use Usenet for a few days? How will they be hurt? By not being able to continue their flame war over baked avocados? Will people die or suffer physical harm because they can't post for a few days? Hell no. So who cares if they can't post for a while (if it gets to that point). It's not going to change my world (other than not having to wade thru so much SPAM, which is going to be quite nice for a change). At most some newsgroups will be dead because they are moderated and the moderator sits on the @home network. No big deal. It won't stop the people of this world to stop breathing, eating, sleeping (ok, some addicts may suffer from lack of sleep) or living. So those who are up in arms about this, calm the hell down and think how this really impacts you and the world: It doesn't. And if you think it does, then you might want to step away from the computer and try living in the real world for a while to get your priorities straight.

Re:@Home should sue sites not carrying its news tr

If it were so legal, why is MicroSoft now facing a corporate split-up?

Re:Is it me,

I have @Home for about 6 months now and I think its great compared to a dial-up. Hands-down, no doubts about it. Have had no problems whatsoever. BTW, I don't work for them

Re:You've got flies in your eyes

And you personally witnessed these events over the past 5,000 years?

Re:Servers not allowed

[Temkin]

I just double checked the SLA/AUP available externally on @Home's website, and it still includes the server restriction. The one available from my house via "http://www" does not contain the server restriction. YMMV!

Temkin

Re:Cabal screwing me. Not spammers. Not @home. Cab

[jpgrimes]

Dude thats exactly what they are doing! The only people who have the power to go after these spammers is @HOME! @Home has not done this. The have a poorly set up network setup which has lots of loop holes for spammers.
If your an @Home customer and you want to send mail go to dejanews.com

Moderators take this message (and my reply down).

John
PS They are suing gun companies as they are negligent in allowing people access to guns. They intentionally make guns that can easily be made full automatics, ... Lets not even get itno the gun shows issue.

Official Response from @Home

[VP]

As seen on athome.announce:

Many of you have been posting your questions and concerns
in reference to the proposed Usenet Death Penalty (UDP) which
would block the @Home Network from posting to USENET. I have attached
our official response to the Usenet community and the press here but
wanted to bring attention to a couple of points that are raised here:

- This afternoon we began a network wide scan targeting open proxy
servers.

- If an open server is identified, the customer associated will be
blocked from posting to Usenet until such time we are assured that
the proxy software is secured.


------------------------------
To the USENET community:

In response to the recent UDP call for @Home Network to be removed
from interacting on the USENET, we are submitting an official
response
with a proposal of short term and long term news spam prevention
initiatives. Excite@Home is very committed to participating
respectfully on the Internet, and we have taken previous requests for
action seriously.

We have found that the primary source of our excessive USENET posting
history comes from subscribers who have installed proxy software
incorrectly. Unbeknownst to the customer, this mis-configuration has
allowed outside access to the @Home news servers, and has resulted in
our subscribers becoming spam relays. Because these various IP
addresses create holes in our network, spammers have taken advantage
of this mis-configuration, and have posted thousands of newsgroup
messages through our news machines.

As of today, we are stepping up our involvement and taking more
aggressive action by performing frequent network wide scans of our
customer base to target proxy servers. Once these customers are
identified, we are suspending their news service immediately.
Re-enabling will not occur until we are assured that their machines
are secure. We feel that this proactive effort will dramatically
decrease the amount of extraneous news traffic originating from
home.com.

We are committed to promoting better Excite@Home participation on
the
USENET, and we are in the process of modifying our current news
product and news architecture. We are also implementing more user
education as a parallel initiative.

With these new tactics in place, we are asking for an extension to
our
USENET access beyond the 18th of January and we are confident that
the
USENET community will see positive news statistics coming in the next
few days.

David Jackson
Manager, Network Policy Management
Excite@Home

Carol
Newsgroup Policy Specialist
Excite@Home

Re:Official Response from @Home

As of today, we are stepping up our involvement and taking more aggressive action by performing frequent network wide scans of our customer base to target proxy servers.

while this may catch the "accidental" news proxies, anybody wanna take a wild guess at how many people are firewalling all traffic from @home corporate so they can run whatever services they want?

@Home response posted to @Home newsgroup

[robhancock]

The following was posted to the @Home newsgroup athome.discussion-athomesvc by a representative of @Home.

Many of you have been posting your questions and concerns
in reference to the proposed Usenet Death Penalty (UDP) which
would block the @Home Network from posting to USENET. I have attached
our official response to the Usenet community and the press here but
wanted to bring attention to a couple of points that are raised here:

- This afternoon we began a network wide scan targeting open proxy
servers.

- If an open server is identified, the customer associated will be
blocked from posting to Usenet until such time we are assured that
the proxy software is secured.


------------------------------
To the USENET community:

In response to the recent UDP call for @Home Network to be removed
from interacting on the USENET, we are submitting an official response
with a proposal of short term and long term news spam prevention
initiatives. Excite@Home is very committed to participating
respectfully on the Internet, and we have taken previous requests for
action seriously.

We have found that the primary source of our excessive USENET posting
history comes from subscribers who have installed proxy software
incorrectly. Unbeknownst to the customer, this mis-configuration has
allowed outside access to the @Home news servers, and has resulted in
our subscribers becoming spam relays. Because these various IP
addresses create holes in our network, spammers have taken advantage
of this mis-configuration, and have posted thousands of newsgroup
messages through our news machines.

As of today, we are stepping up our involvement and taking more
aggressive action by performing frequent network wide scans of our
customer base to target proxy servers. Once these customers are
identified, we are suspending their news service immediately.
Re-enabling will not occur until we are assured that their machines
are secure. We feel that this proactive effort will dramatically
decrease the amount of extraneous news traffic originating from
home.com.

We are committed to promoting better Excite@Home participation on the
USENET, and we are in the process of modifying our current news
product and news architecture. We are also implementing more user
education as a parallel initiative.

With these new tactics in place, we are asking for an extension to our
USENET access beyond the 18th of January and we are confident that the
USENET community will see positive news statistics coming in the next
few days.

David Jackson
Manager, Network Policy Management
Excite@Home

Carol
Newsgroup Policy Specialist
Excite@Home

@home news servers suck HARD

Especially in the binary groups. Binary posts are almost never complete, at least on the server local to me. Other servers in the @home network are almost as bad, but they limit the bandwidth to any other server but your local server. And the retention times are laughable compared to Super Zippo^W^WExtra Newsguy.

Why don't @home users sue @home

[ajax142]

@home has not done it jobs to the Usenet community and should be punished, why should @home get all of this pity because their users wouldn't have Usenet access. Maybe the users should have thought about how bad @home's spam policy was when they signed up, then they could have expected this and could only blame themselfs. Or they could sue @home for not providing a service they payed for...I would if my ISP got a death sentence( or at least drop my account)

"Ignorance is Strength" --1984 *Ajax*

@Home Pee-Pee Whack: "It's About Time!"

[Agamemnon]

I've been an @Home subscriber for several years. I was one of the first half-dozen or so in my part of the Metro Area to get the service: I'd been anticipating it for months, excited by the enormous potential of broadband Internet access. In some ways, @Home delivered on their promises. However, there were, and are, glaring examples of neglect and incompetence. @Home's Usenet feed has been at the top of the list since day 1.

@Home's usenet philosophy has always been single-pronged: speed is the one and only aspect of Usenet that @Home has administered effectively and, on regular occasions, they've failed in this respect. As far as I can tell, @Home could care less about any Usenet issue beyond that single one. Many of @Home's servers have pathetic retention. Incomplete capture of multipart messages is a problem on most, if not all, of @Home's servers. Occasional outtages leave Usenet users high and dry. Lack of communication and/or response on the part of @Home tech support regarding Usenet issues is another principle complaint. @Home's lack of interest in usenet extends to the inclusion of new groups: in my experience, @Home only adds new groups if those groups are specifically requested by @Home subscribers. Most other major ISPs I've used have had enough motivation to regularly update their groups.

I was not aware of the @Home-Spam connection, but it doesn't surprise me in the least: it's completely in keeping with my observations of @Home's Usenet (mis)management.

lend a hand, or future project?

[Corrinne+Yu]

OT.

Since you are not an anon coward ... am coding to 3D game engine project after Unreal-engine-Duke Nukem Forever.

Not too experimental, had all the R&D fun now, am knee deep in nitty gritty of rounding implementation of "all the other stuff" ....

though still all by my (happy) lonesome

(above post would make no sense to most people, don't ask :) )




Corrinne Yu
3D Game Engine Programmer

You haven't been paying attention

[adamsc]

Free Clue: @Home service depends almost entirely on the cable company in your area. Amazingly enough, this holds true for any other sort of service!

I've used @Home with Cox in San Diego for something like 2 years at this point. Outside of the #%^#^ 128Kb outbound cap (vs. 400KBs pre-cap), the service has been good - I've had one or two outages over that entire period, maybe 10 hours total - you won't get a contract specifying that kind of uptime with a dedicated line without a LOT of money & effort! While I don't often see >1.1MB/s transfers, that's more the remote server than anything else; I frequently see 800KB/s+ agregate. I've never had a setup problem in spite of the fact that it's only been the last 2 months that I've had a computer in my house running a supported OS.

Slashdot Meets Roadrunner (Tee Hee!)

He directed me to the security website for road runner which explained everything. http://bofh.rr.com)

Where you'll find:
This system is restricted solely to Road Runner authorized personnel for legitimate business purposes only. The actual or attempted unauthorized access, use or modification of this system is strictly prohibited.
And then somebody posted the URL on Slashdot. Bet their server logs'll look interesting tomorrow! :-)

Re:Slashdot Meets Roadrunner (Tee Hee!)

> And then somebody posted the URL on Slashdot. > Bet their server logs'll look interesting > tomorrow! :-)

Nah.

My logs looked pretty normal.

Mark
Bofh - RR Security
markh@va.rr.com
markh@bofh.rr.com

Re:Slashdot Meets Roadrunner (Tee Hee!)

[generic]

Nah, I think these guys are smart enough to regulate who sees what on there servers. If they didnt want to allow outside access to bofh.rr.com
we would have known.

Usenet UDP - Excite@Home Response

[blackc]

From: Newsgroup Policy Specialist
Subject: Usenet UDP - Excite@Home Response
Newsgroups: athome.announce,athome.discussion-athomesvc,athome .discussion-secur\
ity,athome.discussion-general
Date: Thu, 13 Jan 2000 01:31:26 GMT
Organization: @Home Network
Reply-To: athome-news@corp.home.net

Many of you have been posting your questions and concerns
in reference to the proposed Usenet Death Penalty (UDP) which
would block the @Home Network from posting to USENET. I have attached
our official response to the Usenet community and the press here but
wanted to bring attention to a couple of points that are raised here:

- This afternoon we began a network wide scan targeting open proxy
servers.

- If an open server is identified, the customer associated will be
blocked from posting to Usenet until such time we are assured that
the proxy software is secured.


------------------------------
To the USENET community:

In response to the recent UDP call for @Home Network to be removed
from interacting on the USENET, we are submitting an official response
with a proposal of short term and long term news spam prevention
initiatives. Excite@Home is very committed to participating
respectfully on the Internet, and we have taken previous requests for
action seriously.

We have found that the primary source of our excessive USENET posting
history comes from subscribers who have installed proxy software
incorrectly. Unbeknownst to the customer, this mis-configuration has
allowed outside access to the @Home news servers, and has resulted in
our subscribers becoming spam relays. Because these various IP
addresses create holes in our network, spammers have taken advantage
of this mis-configuration, and have posted thousands of newsgroup
messages through our news machines.

As of today, we are stepping up our involvement and taking more
aggressive action by performing frequent network wide scans of our
customer base to target proxy servers. Once these customers are
identified, we are suspending their news service immediately.
Re-enabling will not occur until we are assured that their machines
are secure. We feel that this proactive effort will dramatically
decrease the amount of extraneous news traffic originating from
home.com.

We are committed to promoting better Excite@Home participation on the
USENET, and we are in the process of modifying our current news
product and news architecture. We are also implementing more user
education as a parallel initiative.

With these new tactics in place, we are asking for an extension to our
USENET access beyond the 18th of January and we are confident that the
USENET community will see positive news statistics coming in the next
few days.

David Jackson
Manager, Network Policy Management
Excite@Home

Carol
Newsgroup Policy Specialist
Excite@Home

Re:Usenet UDP - Excite@Home Response

They appear to be doing the scans, all right. I came home from work tonight and my system log showed a bunch of traffic from "ops-scan.home.com" on the nntp port. Keep your fingers crossed.

@home user in Seattle

Re:Autocnceling the UDP crowd

[rhaig]

Depending on your software, the implementation varies, but the mechanism is the same. UDP cancels are posted such that they look like they came from a site called udpcancel. You need to set up your software to reject articles with "udpcancel" in the Path: header.

The faq mentions somehting about this towards the bottom, but it's not really obvious.

Re:Refuse articles from @home. Do NOT do a DOS att

The UDP _IS_ what you say, you simply take words too literally. A passive approach (by the definition of the pepople who wrote the UDP FAQ) is the search-and-destroy that you are describing.

An ACTIVE UDP on the other hand is when the administrators simply stop forwarding the mail. They refuse to spend their money on extra disk space and bandwidth to accomodate those spammers. They do not actively seek and destroy the posts, and other news feeds can carry them if they wish (although this really is a joke and not completely true if you know how usenet work... a bunch of servers stopping traffic and not forwarding it can cause a smaller server that relies on it as its single news feed to not have this choice)

So i guess you support it now since you said you would if it was a passive thing that simply didn't forward the posts? That's what it is.

E.
How the hell did I get moderated up on that Linux Certification thing?!?

Cheers from an @home user

[SuiteSisterMary]

I'm on an @home cable modem, and I say good! If @home won't be good neighbours, then they shouldn't be allowed into Fred's backyard for beer and BBQ.

I'll be calling and emailing tech support telling them to clean up their act, be assured of that.

hmm..sounds good!

[mitemouse]

maybe we should implement a self-filtering
system for slashdot and all its
"haha...i rewl..first post!" or maybe
its kinda like the +b in every irc room
for the ip (*!*@*.ipt.aol.com)? :) seems
to work quite well for irc..heh although
i think this is kinda wierd to kill soo many
users..kinda like telling Sprint that they
cant make any more telemarketing calls (ya..
i get those all the time too :)

nuf said
Evan..
aka the mouse..
or maybe just mitemous..
take your pick..
but i'll shutup now..
bye..
what are you reading this for?

:)

Re:Pot. Kettle. Black. Go after SPAMMERS, not site

[aenea]

Buy a server. Buy a USENET feed. Refuse to process cancel requests. Sell the service to like minded individuals. If there are enough of you, eventually, the UDP won't mean a thing. You're free to specify what messages you accept on your own hardware. As are others.

active UDP is the last step.

[Feral+Wylde+I]

Usenet has been around a lot longer than DNS
(back when people only used a hosts file) and
the surge of email and the need for blocking of
that spam thru tightened rules and MAPS/RBL/ORBS
stuff.
For us old farts when they announce an active
UDP after a year(365 days) of trying to get
@home to get their excreta together that means
Usenet as a community/group has had enough.

Participation in a UDP is voluntary but generally
unanimous. This is not about censorship but about
"Until you can put your affairs in order we will
leave you alone, to let you work this out. When
you are ready to be part of the community again
we will welcome you with open arms".

A UDP is really a serious indication that the ISP hasnt tried or was/is unwilling to try and fix the
problem. And that every attempt was made to help
them and alert them to this problem that was
affecting everyone else.

Would it take you a year to fix a bug in your
system?

Re:@Home should sue sites not carrying its news tr

Forget that arguement. Try this. By carrying usenet posts you are actually publishing them. @HOME can not force you to publish something anymore then they can force any private newspaper to publish anything. Oh BY THE WAY. The 1st protects you from the government. It protects you Yanks from YOUR government. MY server is outside the US. It's not run by your government. The 1st doesn't mean a damn thing here. Well unless you send the 1st Infantry-)

Ha! Sure enough...

[marcus]

>You've never adminned a news server, have you?

I was going to post the same. I guess it's obvious.

Call the cops?

[ReadParse]

>But, when the abuse warrants it, either through damage, or through repeated
>activity, I have no problem contacting law enforcement to resolve the issue.

Oh yeah, they'll be all over that puppy.

"Don't worry about a thing, sir. Me and my partner, Officer Krupke, will take care of things. Let's see, first we'll secure the crime scene. Hey, Scott -- er, I mean, Officer Krupke, do me a favor and bring up a shell on the router. Let's bring down some services and quiet things down in here. Sir, could you turn down that Xamp over there? Thanks."

"All right, people, I've got root here now. Anybody needs a whole in the firewall will have to go through me. I'm gonna start my investigation now. Let's see here, what does the syslog say?..."

Yeah, that makes sense.

RP

Re:Call the cops?

That would make a cool comic.

Re:Call the cops?

[Minupla]

In my time as a sysadmin I've been involved in some pretty strange situations. The one that takes the cake tho is the time when the cops went to my boss and asked to subcontract me to track down a cracker who had infultrated a box of another local ISP (one of our customers). After tracking it down, the end result was it was the SA of another ISP (also our customer) who had made the break in. I assisted the cops with executing a search and siesure warrent, and came away with a confession from the offending party. (which is why I am free to tell this story). So yes, some times the police do manage.

This was of course Canada, and the mounties always get their man :)

Yeah, they understand, but...

[marcus]

...that's still no reason to abuse their good humor.

Somewhere in the past, I recall reading a thread about this very topic. The thread included some posts from the folks in charge at Hormel. The overall tone of their remarks was lighthearted and humorous. They were amused that their "trademark" had been appropriated. They commented on how many emails they had gotten on the subjsect and so forth...

Good.

[Millennium]

This is what *should* happen ro rogue ISP's. If they allow spam, make sure they can't spread it. This company has done a lot of things for the Net business, most of them wrong.

A former employee posted earlier, talking about how @Hone's employees were spread too thin to handle the abuse. The way I read that, it sounds more like the execs got greedy. They expanded the company more quickly than it could realistically handle, which is why the employees were so overloaded. The bosses called a bad tune, now it's time to pay the piper. I have no sympathy for a business that gambles like that and gets burned. I do feel sorry for the employees, but that's another matter entirely.

Besides which, I don't expect this UDP to last very long. Either @Home will clean up its act, or it'll wither under the stigma of being UDP'd. Either way, their fate is in their own hands. They can bouce back, or they can screw themselves royally, but either way they will do it. No one else. I have a lot of trouble with people who are told again and again that there will be consequences for doing bad stuff, but then when those consequences finally do come about people say it's unfair. It is unfair for the legitimate @Home customers, who are going to get screwed. @Home should have realized that sooner, because they face the possibility of a class-action suit if the UDP goes into effect. Even if there's no suit, people will simply leave (and thus not be hurt by the UDP anymore, which is why I'm still supporting it; the ligitimate customers can get away from the UDP's adverse effects).

Re:Refuse articles from @home. Do NOT do a DOS att

[fluxrad]

And it is an attack. It it not a "boycott" as so many seem to say

Umm, maybe i just fell down the stairs a few too many times when i was a kid but how can this possibly be a DOS attack? Usenet doesn't work like email in that messages don't get bounced, they just don't get propagated - so you won't see bouncemail flooding back to @home (ironically, they probably have the bandwidth to handle it.)

Secondly, it is not possible for a news daemon to actively delete posts off another server - that would be what we hardcore "31337 h4x0rz" like to call a "gaping security hole."

The UDP is simply an active agreement between SA's stating that we won't pass spam from one network onto another.

If the UDP were a passive, mass refusal to carry traffic from @home, I would support it.

So...you support it then?!

--FluX
What's tiny, yellow, and VERY, VERY dangerous?
a canary with the super user password

Re:I'm glad, and it's my ISP,

Well I'm masquerading just fine. The only problem is the damn random disconnects. Things will work fine for a month and then the connection will drop.

Re:I will be sick on the keyb from that analogy

[drenehtsral]

&ltFLAME&gt
I'm very sick of hearing about that. It's one of those things that all the whiny technophobe pissants say whenever they feel threatened. It's them puffung up their feathers whilst nerveously looking behind them for the backing of their mob of average upstanding citizens, only to see they they've all gone home to play videogames and drink beer. Sorry, somebody's gonna get his head kicked in. Better run to mommy 'cuz you're afraid of the big bad boogey man.

&lt/FLAME&gt

Seriously though. I think that people who do make these claims are getting things a little out of porportion. Most breakins are never noticed, because the person who was entering the system was polite and just needed a jumping off place to go to another network. As for the crimes against property argument, that may be so, but i see two problems with this.

One, i think the amounts that get thrown around in these cases are usually overstated by a factor of about 100 to 1000 in the media, and espescially by law enforcement. Why? To get up a good lynch mob. If they used the real values, nobody would give a damn.

Two, i think that crimes against property are overpunished, and crimes against people are underpunished. You're likely to serve more time for stealing a car than for beating your wife. Do you suppose a couple of password crackers really belong in with hardened criminals?

Re:For those who don't understand the seriousness.

[glen]

In all honesty, they'll probably ignore this UDP since the summary cancellations will mean they will no longer have to forward so many complaints about Usenet spamming to /dev/null.

They will recieve twice as many complaints from customers demanding that they do something to have the UDP overturned.

If they ignore that, the complaints will gradually tail off as people switch to xDSL.

I'm taking a wait and see attitude for now. Let's see what they do if anything. I would expect some sort of a response from someone in the next few days.

Re:Refuse articles from @home. Do NOT do a DOS att

or, how about just using deja?

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

[homebru]

Gunmakers have done absolutley nothing to stop the guns falling into the wrong hands, even after baeing asked to do so repeatedly.

To clarify one teensy point: the arms manufacturers sell to federally-licensed dealers, not directly to the public. It is a violation of Federal law for a manufacturer to sell directly to the public. Therefore, it is illogical to ask the manufacturers to stop selling into the "wrong hands". By law, they can only sell to BATF-approved and licensed dealers.

If the BATF is licensing dealers who repeatedly sell to bad guys, then it is the duty and responsibility of the BATF and the federal court system to deal with the irresponsible dealers.

Two words: BLOCK SYNC!!!

[Etam]

The modem block sync problem is getting worse these days. Me and my friends are playing network games with IP address 24.112 and 24.113. It is totally frustrating!! Huge about of framing errors and traffic collisions on the network. Things are getting really bad and all complains fall on dead ears.

Hopefully this UDP will give them a slap in the face and wake them up. They are stupid enough to route 192.168.0.x and many other internal IP address through the router. To make things worse, recently the amount of SPAMS in email has increased as well, some are generated using sequential email address generator, others just generated on their mail server.

Come on Rogers, WAKE UP!

I spoke to @home (Shaw - Canada)

[lethe]

I spoke to a tech for Shaw@Home and he read off a "press statement" to me. It went "blah blah blah... @Home is aware... taking action... to prevent... no interruption to user service... blah blah". I asked for an copy of the "press statement" but he said that it was an confidential memo (that he was allowed to read to me?).

Re:Do you *think* about the users you hurt? Bonehe

Then simply alias out @home and do not take or pass on their traffic.

Re:Do you *think* about the users you hurt? Bonehe

Ummm, isn't that was a UDP *is* basically?

Re:Do you *think* about the users you hurt? Bonehe

[Uller-RM]

That is precisely, almost verbatim from the FAQ, what a Usenet Death Penalty IS.

Maybe you should read up on the subject before you attack; it saves you face, and reduces my stress level, thus reducing the amount of coffee I drink at work, thus increasing my life expectancy and saving my company money! WOW! *grin*

Re:If you are a BugTraq subscriber...I wonder

[__aahyzr9271]

I wonder how long it will be before ORBS probes somebody (without his consent, of course) who, as it turns out, has to take his site's security very seriously, and he gets ORBS kicked off it's ISP?

Seriously, if ORBS isn't careful, it could end up looking for a new ISP. I can see how they could easly get kicked-off for DOS attacks and attempted computer break-ins.

Re:Is it me,

[Johann]

My @home service has been great and largely trouble-free. I use it on Linux and have been very happy. Of course, I hope the UDP wakes the @home folks to their lax security.

--

Mmmm....

[Amnesiak]

Keep up the good work then Corrinne, I'm looking forward to it.
I have thought, for the past couple of years, that a new protocol should be outlined especially for game packet transfer - something compact that can be more tailored to a gaming environment's needs. Or is UDP serving you alright?

Also, if I remember right, you were the person who once wrote the delightfully excited .plan file about an orthogonal basis function, right? I just grinned because that's not usually what you see in those. ;)
Take care,

moderate offical response up

[just+someone]

Many of you have been posting your questions and concerns in reference to the proposed
Usenet Death Penalty (UDP) which would block the @Home Network from posting to USENET. I
have attached our official response to the Usenet community and the press here but wanted
to bring attention to a couple of points that are raised here:

- This afternoon we began a network wide scan targeting open proxy servers.

- If an open server is identified, the customer associated will be blocked from posting
to Usenet until such time we are assured that the proxy software is secured.


------------------------------
To the USENET community:

In response to the recent UDP call for @Home Network to be removed from interacting on
the USENET, we are submitting an official response with a proposal of short term and long
term news spam prevention initiatives. Excite@Home is very committed to participating
respectfully on the nternet, and we have taken previous requests for
action seriously.

We have found that the primary source of our excessive USENET posting history comes from
subscribers who have installed proxy software incorrectly. Unbeknownst to the customer,
this mis-configuration has allowed outside access to the @Home news servers, and has
resulted in our subscribers becoming spam relays. Because these various IP
addresses create holes in our network, spammers have taken advantage of this
mis-configuration, and have posted thousands of newsgroup messages through our news
machines.

As of today, we are stepping up our involvement and taking more
aggressive action by performing frequent network wide scans of our
customer base to target proxy servers. Once these customers are
identified, we are suspending their news service immediately.
Re-enabling will not occur until we are assured that their machines
are secure. We feel that this proactive effort will dramatically
decrease the amount of extraneous news traffic originating from
home.com.

We are committed to promoting better Excite@Home participation on the
USENET, and we are in the process of modifying our current news
product and news architecture. We are also implementing more user
education as a parallel initiative.

With these new tactics in place, we are asking for an extension to our
USENET access beyond the 18th of January and we are confident that the
USENET community will see positive news statistics coming in the next
few days.

David Jackson
Manager, Network Policy Management
Excite@Home

Carol
Newsgroup Policy Specialist
Excite@Home

Re:Do you *think* about the users you hurt? Bonehe

I'm one of the users who is going to be hit by this UDP. I can tell you that I absolutely wholeheartedly support the action even though I'm gonna get screwed. I have not given my @home email address to a single soul on the planet. The only mail it gets is spam, and lots of it. @home needs to control thier servers and also needs to stop allowing people to scarf their user's addresses unless they specifically request it.

can udp work anymore ?

[serialk]

most people who are spamming do it through servers

that are open in some way or anonymously, so

how will cutting off a whole server accomplish

anything ?

Re:can udp work anymore ?

[Raunchola]

"most people who are spamming do it through servers that are open in some way or anonymously, so how will cutting off a whole server accomplish anything?"

It gets the ISP to get off their lazy asses and say "No, wait, we can play nice!" And the UDP has been proven to be effective in getting ISPs to take better steps in preventing abuse from their users.

Now as for your comments of spammers using open servers and anonymous servers, I hope to answer those. In most cases, the open server is shut down after the abuse has happened, to prevent more malicious usage from spammers. And a lot of those open servers still stamp the NNTP-Posting-Host line on, so the real root can be identified. As for anonymous servers....not a lot can be done about that.

Just remember kids, when playing on Usenet, a killfile is your best friend.

Re:can udp work anymore ?

[PigleT]

Well not only that, but if you read the FAQ then it explains in section 11 about "what about the legitimate users being cut off?". Section 8 also deals with those who 'hijack open servers'.

Basically, I see the UDP as saying "this site's users are toss-pots and the site admins aren't doing anything about it, block site, solve problem" and the existence legitimate users either forces the ISP to clean up its act, or they all go elsewhere - who'd want to subscribe to a lame ISP?

All in all, sounds like a good thing to me. Surprisingly enough, Deja notwithstanding, there are those of us who use news clients, subscribe to individual news groups, and read them as 'regulars'. We don't want no stinkin' @Home twerps on my newsgroups, for starters!

Re:HURRAH! The Usenet Death Penalty WORKS!!!

HURRAH! HUZZAH! HIP, HIP, HOORAY!!!!!

LET'S HEAR IT FOR ANARCHY!!!

THE SYSTEM WORKS!!!

Kids

[KMSelf]

Parents are legally responsible for the acts of their minor children. Jr. abuses the @Home account, Dad (or Mom) pays. It's called responsibility, folks.

What part of "Gestalt" don't you understand?

Re:Kids

Parents are legally responsible for the acts of their minor children. Jr. abuses the @Home account, Dad (or Mom) pays. It's called responsibility, folks.

Big deal. @Home isn't trying to legally nail a customer to the wall. They're trying to minimize problems and maximize the number of non-abusive users. Pissing customers off by yanking their connection isn't productive either way.

And I think you pushing the law as wonderful is sort of ironic, given how much /. users tend to whine about too much government and legalities.

@Home is not an ISP.

[topham]

@Home is not an ISP. @Home is a brand. My ISP is Shaw(.ca), yet I'm part of @home.

I shall make no comments as to shaws position on spam, I don't know what it is, because to me it has not been an issue. But, I believe it is a serious injustice to cut off home.com when it is an umbrela for what are really a large number of independant ISP's with an agreement on content. Even the AUP is not entirly consistant between ISPs.

Any attempt to block home.com news is inappropriate and should rather be done on a specific ISP basis.

Dejasearch

[KMSelf]

I've found even the modified search forms (there are several floating around) hard to use given Deja's current breakage. The real lifesaver for me is dejasearch, a command line utility. Throw it a search and it saves the result set to a file which you can then browse. Find it here at Freshmeat.

What part of "Gestalt" don't you understand?

I'd like to get the opinion of broadband users...

[Larry+L]

How are you doing with your services?

Im currently on GTE dsl. Im getting 756kbit/s downstream and 128kbit/s upstream.

Other than the fact that it's expensive and used to suffer from frequent outtages (this seems to have been resolved), i'm satisfied enough with the service. It could be better.

They offer dynamic ip, which makes me pretty dependent on dynamic dns, but the upside is that i can have as many ip's as i need.

Supposedly there's some kind of frame relay/ quality of service system that ensures that i get the proper amount of bandwidth (no more, no less)
and it seems to work ok.

Tech support is... well tech support ;)
Expect to get charged service fees here and there if you request small changes. Expect to get bounced around alot. But if you're persistant, you'll get it completed. Their infrastructure seems kind of new, but it's slowly improving.

Oh, and sometimes my network latency gets up to 100ms but that's about it.

Altogether I'd recommend gte dsl to everyone.

Re:Do you *think* about the users you hurt? Bonehe

USENET eats more resources than any other protocol alive. I believe that the kind of resources used in netcasting RealVideo are lower than what the backbone USENET servers use.

Re:Do you *think* about the users you hurt? Bonehe

Dunno. I'd say the US embargo against Cuba has valid reasons. It certainly isn't pretty, but I support it.

You are so wrong and so arrogant it's sickening

If you do business with scum, you're going to get a little dirty. That's why I don't pity the Windoze users when they BSOD. (Or at least I try not to show any compassion.) They put money into Microsoft's pockets instead of hiring good people. They brought it all onto themselves, and made the world a slightly darker place for the rest of us too. Fuck 'em.

Your analogy is sickening. Ninty-nine percent of the people using Windows do not have the technical ability, knowledge of other OSes at the time they purchased, or the option of choosing another OS (like in companies). You can be upset with company IT people that choose Windows. I *personally* hate anyone with an IT position who chose Windows for their company. It is, however, unacceptable for you to be upset with the users at home that don't have the knowledge or skills necessary to use another OS, or the corporate workers whose OS is dictated by tyrannical IT people. It is not their fault, and they already suffer.

BeOS could solve a lot of this if it would get more popular...OS X needs maturity, and Linux isn't gonna be a consumer OS for years to come.

Re:@Home should sue sites not carrying its news tr

This whole argument doesn't work. You're using rules designed for traditional media. You're worse than the technically-challenged judges who would hear such a suit.

Laws *still* aren't designed to suit the Internet well. End of story.

Re:Do you *think* about the users you hurt? Bonehe

[delmoi]

That's why I don't pity the Windoze users when they BSOD. (Or at least I try not to show any compassion.) They put money into Microsoft's pockets instead of hiring good people.

Yeh, but what about all us software pirates?

"Suble Mind control? why do html buttons say submit?",

Re:Not just news, but net in general. Helps pirate

[jedrek]

The true problem with 'kiddie porn' or porn with (often VERY) underaged children is that, unless we're talking 16-17 year old here, children are not mentaly or physicaly ready for sex. A lot of underaged porn is created for the european pedofile market and much of the time it involves kidnapping and coercing (often raping) children to have sex. Drugs are also quite often used to.

The truth is that underaged pornography destroys the very real lives of very real people. If your looking at under 14s most of them didn't have a choice in the matter. When you're checking out Hustler, Playboy, one of the many European hardcore porn mags, you're seeing people who were payed to be photographed. When you look at child pornography, you're usually looking at someone who didn't know better or who was threatened and beaten to do what they're doing.

Jay

Re:UDL and RBL

[dalroth5]

Oh no, the RBL is much more powerful and deadly than that. It stands for Realtime Blackhole List, and as I understand it, the 'Blackhole' part really means what it says: all packets, and I mean ALL packets, from the blackholed host(s), including their routers, are sent DIRECTLY to hell (/dev/null) by ALL routers which subscribe to said list. This means that the guilty hosts are _completely_ dead as far as the Net is concerned.
Because of its power, the folks who maintain the RBL insist on very, very stringent rules before they'll blackhole anyone, remembering that spammers are an example of the breed of demihuman we call 'unsociable', and who are therefore quite likely to try to blackhole, for example, anybody who's voluntarily taking part in a UDP against them. They are the dirtiest fighters out there, and spam is an example of their tactics. If they could use chemical or biological weapons against us white hats, they would do it in a heartbeat.
To learn more, go here:
http://maps.vix.com/rbl/
White hats have great power as long as we stick together against the bullies, just like we used to do in the playground!
Join the UDP if you can!!! It will bring @home back into the fold faster if you do, and any _innocent_ users of theirs will therefore be relieved sooner. :)))))))

Re:Not just news, but net in general. Helps pirate

How does your reasoning work on spam for porn?

Re:Do you *think* about the users you hurt? Bonehe

[Deosyne]

And exactly what harm is coming to the subscribers? They can't get their alt.sex.stories feed for a few days? How's about we look at the harm caused to countless ISPs who host news servers around the world. Spam has been estimated to account for approximately 15% of the total traffic on the internet. When that spam is posted on Usenet, it is being copied to thousands of computers. The amount of space that spam takes up on news servers alone, not even counting email, just news, can be measured in terrabytes. This causes ISPs to have to upgrade their servers and bandwidth to levels far higher than would otherwise be necessary.

Of course, who cares about a bunch of ISPs being financially harmed, suffering very real losses to their business, when @Home subscribers are being inconvenienced and may have to resort to using Deja.com to read Usenet messages? As an end user, I care ! Who do you think gets passed the cost of the otherwise unnecessasary upgrades? Who do you think suffers a degradation in connection quality due to the massive spam traffic going through the Internet? Who do you think gets a reduced Usenet feed because the FIFO (first in, first out) nature of most news servers causes spam to expire legitimate traffic sooner than it should. We, the collective users of the Internet, do! And I'm one of the lucky ones; I don't have to pay for the amount of time that I'm connected. But many people do, and they are forced to remain online for much longer than necessary because their news reader or email reader doesn't know spam from any other message and downloads it all.

Spammers force us all to pay for their advertising; they are far, far worse than pickpockets, because pickpockets are far less widespread and don't steal from millions of people at a time. And the only people that can do anything about the massive onslaught of spam coming from @Home users is @Home; I can't stop them, you can't stop them, the collective readership of Usenet can't stop them. Only @Home can do anything about it, and if they choose to turn a blind eye and let hundreds of people steal from me and every other user of Usenet then fuck em, their business can go straight into the toilet, and the faster the better, because every day that they are connected to the Internet, they are allowing hundreds of scumbags to steal money directly from backbone providers, ISPs and end users. The average @Home user has to use another news service for a while until @Home pulls their heads out and gets with the program. I'll take the lesser of two evils and support the UDP.

Deosyne

Re:Not just news, but net in general. Helps pirate

[orangecat]

>> how the bloody hell can you pretend that kiddy porn, or any pornography at all, isn't bad?

> The WORST thing that has EVER happend when an otherwise mentally stable individual has downloaded or otherwise VEIWED ANY sort of pornography, is quite simply that they had to clean up a sticky mess from masturbating. Downloading, viewing, and exchanging porn is fine in my eyes.

You're ignoring the fact that for child porn to be produced, a child has to be abused. And often hurt badly (physically and/or mentally) in the process. "So what's wrong with redistributing stuff that's already been produced?" you ask...

1. Its an invasion of the child's privacy. They didn't ask for their picture to be taken in sexual situations, and I'm sure they don't want millions of people observing them in these situations. Once they get old enough to understand, the fact that pornography of them is widely available has got to be disturbing. Not to mention the fact that it makes them a target for further abuse - a kid who doesn't tell about one time is less likely to tell if it happens again.

This also applies to adult porn produced non-consensually.

2. Increased demand leads to increased production. Which leads to more kids getting victimized.

Not to mention you're assuming that the people who view porn are otherwise mentally stable. In many cases this may be true. But in some cases it is going to lead to further problems. Probably moreso in the case of child pornography, since people who view child pornography are probably much more likely to have further problems. After all, to have a child pornography habit, they have to already A. be attracted to children, and B. Have either the lack of willpower to ignore their impulse to view pictures of children being abused, despite what their conscience tells them, or they don't have a moral problem with it to begin with.

Consensual adult pornography is a different story. While I still have problems with it (many of the women involved have been raped/abused in the past, or are feeding a drug addiction, or otherwise have low self worth which is being taken advantage of), it is *their choice* to have their picture available.

Who the heck does this guy think he is????

[natsuko]

This really pisses me off. I notice no more spam from @home than anywhere else. Spam is simply here to stay anyway. As an @home user and frequent poster to various discussion groups I'm a bit irked to say the least. I've noticed a lot of other posters from @home in those groups also. We don't spam and we simply discuss on topic things. Before this guy gets his UDP thing done, I think someone should figure out the spam to non spam ratio of @Home usenet posts. Also, in case a lot of people don't know, @home is a cable internet provider and many of us have static ips. I have a hard time believing that @home is the originator of so much spam that it would cause someone to take action when any post i make could be traced back to me and me alone very easily, or any other @home user. I find that I hold myself even more accountable than I would otherwise because of this. If someone took the time to figure this out before jumping out and making rash decisions, I bet they'd see a huge growth in the amount of @home users which I'd warrant would account for increased spam, if there even is legitimately such an @home spam problem. I don't think the ratio would be any higher than for any other providor. N

Re:Who the heck does this guy think he is????

[Minupla]

Please, read the proposal before posting responses like this. Otherwise you're just posting flamebait: ================================================== ============================= Date n/100 Source Total spam %spam KBytes ================================================== ============================= Total: 1366098 530072 51870913 ================================================== ============================= Average: 42 4479 1738 39 170069 ================================================== ============================= Note the averages (this is quoted from the original proposal linked to the UDP notice... http://www.deja.com/getdoc.xp?A N=570620876&fmt=text). I would argue that when 39% of all arcticles coming from a provider are spam a UDP is indeed warrented.

Re:Who the heck does this guy think he is????

One reason you don't see it may be because they are frequenting other newsgroups (ones with less discussion and more, um breastages).

Also the fact that you can change your preferences to read natsuko@{nospam}home.com also means you can send out bulk postings and emails from "luvgrll69@hotmail.com" and only the IP address will say different.

Re:Who the heck does this guy think he is????

[Myxx]

Without being too harsh on you, I must point out that most people are blissfully unaware of how much spam comes from their domain (except for the spammers themselves). Abuse departments (of which I was recently a Supervisor over) have to wade through all the forged headers to determine where a post came from and the return addresses are almost ALWAYS forged. Remember; just because you don't see the @Home domain in the email address doesn't mean it isn't from an @Home user. The IP address will usually resolve to the culprit's domain.

And these actions (UDP) do work. The ISP I work for has been placed on ban lists before and we do all we can to keep off of them, but it is always an uphill job.

Myxx

The response is more wrong than the original...

Of course you need a "client" what kind of argument is that? You could just telnet to the nntp port and speak nttp by hand, but guess what? that is a pain in the ass.

Golly gee, and here I was thinking that telnet was a client. Guess not.

Find a particular server? How is it any differnt from email? Should every ISP just automatically allow anyone, free of charge, to have an email acount on their server?

Well, there *is* the fact that the UDP doesn't exist in the email world...

The server your ISP has doesn't have all the groups you want? That is your ISP (or whoeevr runs the server) fault. Complain to them. I know that here where I work, we are willing to add any group to our feed that is requested by a user.

Betcha you aren't willing to add alt.binaries.mp3s or whatever NG carries mp3s on usenet if you don't have it already.

Open Proxies are not open usenet servers. An open proxie is a proxie server that ANYONE can connect to. This allows ANYONE on the net to "Hide" their real adress by connecting to the proxie and having the proxie connect for them.

I think that anyone should have the right to run whatever servers they want to. Of course, they're responsible for the content...

The problem here is that A) 99% of the time this is NOT the intent of the machines owner but a mis-configuration that others are taking advantage of. B) This allows spammers to post spam to email and usenet without ANY audit trail to track them back to their ISP. This means that it APEARS like the person with the relay is sending the spam.

A) This is silly. There are much worse configurations that are put on cable modems (which are the bane of security experts everywhere). Try probing a few cable-modem machines with Samba, various DoS Windows programs or look for open Sendmail machines. They're all over. Cable-modems and uninformed users are a bad match. Cable modems, IMHO, should be banned by the gov'mt. Everything oughta use DSL. Cable modems are such a lousy architecture.

B) Well, then I guess the'll find out it was a bad idea to run the proxy, because their account will get canceled. So what?

You know...if it was JUST the fact that I get an ocasional email advertisment I wouldn't care. However, spammers are much worst than that. Do you know what a spammer can do to an unsuspecting network?

Given what you're responding to, I take it that you're saying "yes, spammers are worse than demons".

Re:The response is more wrong than the original...

[TheCarp]

> Golly gee, and here I was thinking that telnet
> was a client. Guess not.

It is...thats the point...anything that connects
to anything is a "client". I was trying to point
out how silly the argument was.

>> Find a particular server? How is it any
>> differnt from email? Should every ISP just
>> automatically allow anyone, free of charge,
>> to have an email acount on their server?

> Well, there *is* the fact that the UDP doesn't >exist in the email world..

You avoid the question. Is or should your ISP be
required to offer everyone free email acounts?

UDP DOES btw exist in email. Ever heard of a
"Realtime Blackhole List"? Feel free to look
it up. Its basically the same thing, a
VOLUNTARY blocking of email from IP addresses
by a wide number of sysadmins.

> Betcha you aren't willing to add
> alt.binaries.mp3s or whatever NG carries mp3s on
> usenet if you don't have it already.

Noone has requested it. The issue has not come
up. Certainly any binaries group needs to be
considered a little more heavily than other
groups, if for no other reason than the amount of
server space needed to physically store its
messages.

> Cable modems, IMHO, should be banned by the
> gov'mt. Everything oughta use DSL. Cable modems
> are such a lousy architecture.

And the government should ban everything that is
lousy? I dunno about you but I am already mad
about how they force me to pay taxes under threat
of force, and then go on to mis-manage my money.
In the words of Thoreau, "the best government is
that which governs not at all"

> B) Well, then I guess the'll find out it was a
> bad idea to run the proxy, because their account
> will get canceled. So what?

Noone is saying that the ISP should be canceling
acounts. Perhaps temporarily suspending or
blocking acounts until they can talk with the
user. They are just asking for some sort of
action to help stop spam. Educate users. Suspend
acounts when needed. Email services do it. Why not
for usenet posts?

>Given what you're responding to, I take it that
> you're saying "yes, spammers are worse than
> demons".

Spammers are not mythalogical creatures. I am
absolutely sure of their existance. The only
deamons I believe in the existance of have names
like "Cron" and "Sendmail".

For the record I am an atheist. So yes, spammers
are worst. Now god on the other hand, him I could
make a case for being worst than spammers, but
only because of the millions his name has been
used to justify the slaughter of.

Quality service. Hope they fix it.

[SonicRED]

First of all I would like to say how happy I am with my @Home service. I am capped at 100kb a second up, and routinely get 250kb+ download even at peak times. I also have noticed no packet loss as I am an avid gamer. Unfortunately these speeds make it easier for people to post large amounts of material on the news servers. That is spam, but I think it is more a result of users taking advantage of their fast connection rather than @Home's deliberate negligence. Hopefully there is a way to keep legitimate satisfied users (like me) on newsgroups. I'd hate to see a few people abusing their service ruin it for the rest of us.

Re:Who uses Usenet anymore anyway? OT

[punkass]

Not Troll, moderators...he caught you on an interesting point. This guy isn't providing us with fact (which would be informative), only his opinion (which, at best, would be interesting; I'd have to side with the AC on this one in that knowing quakeaddict's Usenet habits just aren't that interesting to me). Read the mod FAQ, insert quarter, and try again.

@home is NOT THE SAME EVERYWHERE (udp on primenet)

[natsuko]

I am on @home in nebraska on cox cable. You could not want, or have a better isp. I often get 100 k average downloads and from sites like www.mp3.com it is about 300 k a sec. My connection is fast and error free.

@home in canada is notorious however. I have heard how bad it is but you might try thinking that perhaps it is that cut corner isp in Canada, not @home as a whole.

The few times that I had trouble with my connection a person was out from Cox cable that day. The guy was very nice and did some things and replaced my cable modem. A day later when the thing was still happening he figured out from the time of night that it was happening it that it coincided with the dew coming. He went out to the box and noticed that a sleeve on the cable connection was cracked. After fixing it i have had very fast error free service for close to 2 years.

If there is a better ISP than this it must be in someone's dreams only or perhaps in heaven. Every other user of @home around Omaha, Ne, has had similar experiences that I have talked with.

Oh, and if this guy gets this thing through, I'm going to do some research and if I find that lots of spam is coming from primenet.com (his isp according to the post on deja.com that the article refers to) I'll move for a UDP against them. Two can play at his little blanket-udp-like-this-is-1978- and-the-few-hundred-people-who-might-be- spamming-are-representitive-of-100s-of-thousands- who-are-not-Udp-crap.

You just wait, Mr. I can control usenet.

N

Lose the cable

I'd axe the cable. The only place cable speeds are going is south, and they cost more than a dialup. You're more secure with a dialup. With a modem, at least you have a guaranteed rate (I never get below 48kbps on my 56k modem, and generally above 50kbps).

DSL beats the snot out of cable...if only availability was wider...sigh.

Re:Lose the cable

[a_festering_bunny]

You would kill the cable? will you also pay my phonebills? =) I know cable speed only will go down but still its the only relative cheap way to get online. Sure, my ISDN is faster then my cable..sure my ISDN is more secure (something i value more than you might know) but I plainly CANT afford to use ISDN =( as for asdl..cant wait...they said they would start testing here this year. I wouldnt mind paying more then $45 that i pay for the cable, as long as it stays under the $400 that I had in phonebills. Only thing i can do is wait, since im not in a very big city.

Re:ouch (bypass a UDP?)

A couple years ago when I still read USENET, if you wanted a dedicated third-party news server, the best was zippo.com. I don't know if they're still around, but they had a great rep.

Re:Do you *think* about the users you hurt? Bonehe

Actually, this UDP does NOT affect the ability of @home users to read any messages they want. It's just that the messages they post may get killed before anybody reads them. It's a gag, not an earplug.

MODERATION ABUSE

I thought I'd point that out. It's entirely ontopic. The other nice thing about Deja is that it doesn't let you crosspost, and doesn't provide Binary access unless you pay them.

Fist Prost-The otherwise friendly first poster who has been rather inactive lately...

the terrible UCE problem

[arielb]

I sympathize with @home (and especially for the many users). UCE is a very very difficult problem and if you think it will go away just by banning @home then guess what will happen when everyone dumps 56k and switches to DSL or cable modems? UCP for everyone! Then again, usenet is crap even without the spam

retraction

[arielb]

ok that was quick. After reading this http://www.deja.com/getdoc.xp?AN=570620876&fmt=tex t I've decided that this drastic action is in fact justified. It's unfortunate for the innocent users as this kind of service is very expensive and other alternatives may not be available at their location.

Lets not mix up the issues

[guran]

I've unvillingly stumbled across a number of porn sites. I hate it. If I want to look at dirty pics I can find them myself, thank you.

What I've *never* seen is this famous internet kiddie porn. (though I haven't really looked for it). How come, do you think?
Producing child pornography is illegal almost everywhere. (though some enforce the laws quite losely). Thus there is almost always a case against whoever outs it on the net. Thus you don't want the wrong people (cops) finding it.

Point being, the justice system actually has a case, so it is not really a "internet problem"

"Regular" porn is a completely different story. You and I may dislike it, but IT IS NOT ILLEGAL!!!

You want to ban porn? Fine! start with defining what "porn" is. Picures of intercource? Genitalia? General nudity? Bare legs? Women without a veil?

We can (and ought to) stop porn sites with illlegal (unmoral) business practices, just like spammers, but separate business practice from content. Spamming for a "good cause" is still spamming. Putting intercource videos on a site where it is legal is still legal.

Re:Lets not mix up the issues

[TheCarp]

> I've unvillingly stumbled across a number of
> porn sites. I hate it. If I want to look at
> dirty pics I can find them myself, thank you.

heh same here. I also havn't spent more than 2
hours looking for porn since I turned 18 several
years ago. Now that Its legal and acceptable
its just no fun ;)

> What I've *never* seen is this famous internet
> kiddie porn. (though I haven't really looked for
>it). How come, do you think?

Interesting story...I came across it exactly once.
but never realized it till a couple of years
later.

I originally joined "the net" over a 14.4 dialup
on my Apple IIGS. I was 16 and would search
usenet for porn. I downloaded a sizeable amount
for a 16 year old with a 14.4 and a 2.6 MHz
computer :)

Well on my GS I could only view JPGs in black and
white (limitation in the jpg viewer) and it took
SEVERAL MINITES to decode and display 1 JPG.

Years later I moved all those JPGs to my PC...one
day I went through them all and saw one picture
I never knew was there...it was an "index" of
about 5 pictures of some girl who looked about
9 years old.

She certainly apeared to be enjoying showing
herself off to the camera (guess she hadn't been
taught how traumatized she is suposed to feel yet)

I dunno...I still have the picture filed away
somewhere...but I never throw anything out...too
much of a packrat I guess.

Just my little anectdote. Take it how you will.
However out of the hundreds of pics I downloaded
back then, only 1 turned out to be this kiddie
porn.

Re:Lets not mix up the issues

[orangecat]

She certainly apeared to be enjoying showing herself off to the camera (guess she hadn't been taught how traumatized she is suposed to feel yet)

She may have been enjoying herself. Kids are show offs.

That doesn't mean that when she's 12, 13, 14 or whatever and realizes that there's possibly thousands of people around the world seeing this, that she's going to be comfortable with it.

Yes, some of the emotional pain over abuse is a societal construct. That's unfortunate, but it doesn't change the fact that it still hurts.

Its entirely possible that some kids are relativly unaffected by what is considered to be abuse. That doesn't mean that such behavior is ok - some other kid may be traumatized for life by the same experience.

What it comes down to in my mind - children in general don't have the frame of reference (including knowledge of our culture) to understand the meaning of what is happening. The adult responsible is taking advantage of this lack of knowledge, as well as quite possibly the child's need for attention, love, and approval.

Also, keep in mind that not all child pornography is as mild as you've described.

Re:Pot. Kettle. Black. Go after SPAMMERS, not site

[Minupla]

Why not UDP the phone company until they stop drug deals from happening over their wires?

Hrm, interesting. I'd change it to "Why doesn't the phone company UDP people for causing damage to their network".

Oops, hold it, they can and do. If I hook up equitpment to the PSTN that is incompatible with their network, they have the right to suspend my service until such time as I come back into technical complience with the standards.

Usenet is doing something very simliar. The instant that @home comes back into technical complience, they will be allowed back on the net. They need to close some open proxies.

Till then their users can use Daja (the phone booth on the street corner.

No, *you're* the Bonehead.

[jcr]

If you don't like it, get an account with an ISP who plays by the rules.

-jcr

So censorship is bad except when...

OK, so most people here rightly complain against censorship.

And yet here we have hordes of slashdot posters positivly rejoicing that EVERY @home user is going to be censored.

Can you sy "hypocrite", folks?

And before you point out the UDP FAQ, here is the bit you woudl use to defend yourselves -

"No. Firstly, the legal definition of censorship in the USA (where, unfortunately, most of the spammers are, even when they use resources outside the USA) is that it can only be done by the government - private entities can not, by definition, be guilty of censorship. Outside the US, laws are varied.

Secondly, even ignoring that definition, and using the uninformed public's opinion of what censorship is [preventing someone from saying something that they don't like], this does not fall under that criteria, either. The articles being canceled or shunned by pathhost aliasing are not picked and chosen by their content - ALL articles from the offending site are canceled or shunned. It has nothing to do with likes and dislikes - it has to do with abuse by one system of all of the other systems on usenet.
"

Sorry, that is just bullshit. Choosing to redefine "censorship" arbitrarily does not change the FACT that the UDP is censorship, pure and simple.

*sigh* Just another example of the rampant hypocracy around here.

Oh, and no, I am not a spammer, and I woudl personally like to see every spammer publically beheaded (an idea for pay-per-view!). However, I do not accept that you can wage war on large numbers of innocent people in order to defeat a FEW spammers who will simply move to another isp very easily and quickly.

Hey, guess what folks? I got some spam from someone in France - let's UDP all French ISPs, eh? It's exactly the same argument, folks.

Re:So censorship is bad except when...

[Steve+B]

OK, so most people here rightly complain against censorship.

And yet here we have hordes of slashdot posters positivly rejoicing that EVERY @home user is going to be censored.

Sigh. One more time, slowly.

It is not censorship to prohibit the operation of sound trucks in residential neighborhoods in the middle of the night.

It is not censorship to stop someone from spray-painting a message on your front door.

It is not censorship to keep your e-mail account secured so that script kiddies can't use it to announce "YOU ALL SUCK".

It is not censorship to reject messages from a spamhaus.

What part of this progression eludes you?
/.

Re:So censorship is bad except when...

Nice try, but I see you manage to COMPLETELY avoid the issue.

I guess you feel it is perfectly valid to censor a large group of people because of SOMEONE ELSE'S actions, then. Interesting. Looks like you just lost your right to complain about lack of free speech in future.

*sigh*

ORBS view of the story

[Sascha+Schumann]

ORBS representation:

http://www.orbs.org/bugtraq.html

Bugtraq and a few other domains are living in the netblock of a supplier who would rather try and hide their open relays than actually fix them and is prepared to block the tester to do so.

Bugtraq's admin has his own agenda in this and has refused to post any ORBS-related material for the last year, including multiple announcements of sightings of new spammer tricks as they have been surfacing.

As for Bugtraq's claim about ORBS not replying to his email - their upstream is blocking our packets, so we are unable to.

This is the current listing of open relays in above.net space known to ORBS. There are probably more, as we only discovered the block after several people faxed in, complaining that they could no longer submit open relay reports via email. Claims that above.net made any requests to ORBS to stop testing are untrue.

As the ORBS tester is also gatewaying to several south pacific countries, Above.net have cut off access to those countries for their clients. We suggest that the best thing any above.net client can do is change their supplier as they appear to be rogue.

Re:Do you *think* about the users you hurt? Bonehe

[Mike+A.]

Perhaps you should read the FAQ yourself...

If this is the same poster who's posted in a number of other threads, what she (generic pronoun) is objecting to is not path filtering, but third-party cancels. Path filtering alone is known as a passive UDP; what @home is being considered for is an active UDP where ALL posts from @home are being cancelled by spam-cancellers. Part of the reason for the objection is, if I remember correctly, that in an active UDP, news admins who aren't intentionally participating in the UDP will still have @home postings removed, because they haven't configured their news server to restrict third party cancels. This is different from a passive UDP inasmuch as only those news admins who have consciously decided to participate in the UDP will drop the messages.

Personally, I think that any news admins that have a significant feed, that is accepting just any old third-party cancels, is going to have a crippled news feed anyway, due to the actions of cancellers with less "noble" agendas (e.g. Scientologists' various attempts to shut down alt.religion.scientology); so inadvertently participating in UDPs is the least of the problems such a news server has. But the practice of third-party-cancelling posts that aren't spam should be questioned, and the questioner deserves a reasoned and well-thought-out response. Which I'm not really qualified to give.

Pan

[Nicolas+MONNET]

Pan is nice, rather stable, and going in the right direction, however it lacks several things to be actually usable: a killfile and a search facility. Without that, it's impossible to do anything useful in the crowded Usenet.

Where's grouplens?

[Nicolas+MONNET]

slrn supports Grouplens, but apparently this project isn't accessible anymore. They've moved to a commercial (closed source) model, and there does'nt seem to be any kind of public access. But I might be wrong.

Spam,negligible cost, only need 1 resp. in a 1000

[dwalsh]

That is the problem with a zero variable cost system like email or usenet. You can send as many messages as you like, and if you get just a small percentage response, that can make for a viable business.
Look at phones. Here in Ireland, where there is a charge for local telephone calls, you don't get companies cold-calling you to sell you something. It may make Internet access more costly, but it has one advantage atleast.

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

well Actually the gunmakers have done all they can. You can thank the lack of support to the Government. Did you know that in Nevada when they made it easy for people to get a CONCELLED WEAPONS permit the crime rate dropped and is still dropping???? Perhaps while UDP is a good next step a DOS against the spammers directly could be more effective??? who knows.

Oh well

[Sascha+Schumann]

Why don't you stop whining and fix your servers? If you need to operate relays, limit them to your customers. It's that easy.

ORBS is an automated service. If your server is an open relay (the tests ORBS employs are the best around), you will be put into the list automatically. Yes, you will be notified about this. But there is no way to stop or delay this block, unless you fix your servers.

On the Bugtraq issue, read this page

Re:Oh well

[mr]

Errr, my servers DON'T relay. Never did.

Yet, my site was attacked, and the web site says it will contiune to be the subject of their probe attacks.

>But there is no way to stop or delay this block, unless you fix your servers.

Hrmmm. You seem to mis-understand how they work.

ORBS puts you on a list, and KEEPS checking your machine. Go read the web site.

ORBS is as invasive as the spammers, as far as I am concerned.

And if you write them telling them you find them rude/no better than the spammers, they put you on the list.

Re:Oh well

[Sascha+Schumann]

*sigh*

What do you prefer? One single email all 21-45 days announcing the probe or a real spammer who uses your server to send thousands of emails?

If your SMTP servers don't relay, no probing message will make it through. There is no harm done by this method.

They don't attack you. It's a free service to help you defend your SMTP servers against spammers.

Glad

[jbarnett]

I think this is a very good thing. Over the past years spam and abuse have been on the rise, but the UDP has been on a decline. Back when it first started I would here every week about some network that couldn't control it's users would get a UDP slapped on em, now this is probably the first one I have heard in about 2 years!

I think this is a really good thing, if they can not behave or control their network in a productive manner, they should be "banned" from using (abusing) other servers on the Internet.

I also think it should carrry over more, have a RBL thing that not only blocks news feeds from abusive networks, but also email, web, irc, everything. Just choke out their whole dam 'X' class from moving data over /ANY/ router. A RBL running on millions of routers to choke out and isolate an entire network from the rest of the Internet, that would be a good thing.

Then again, their would have to be an honest commitee that thoughly investigates and decides how and who doesn't go into the List...

If they can't control their network in a reasonable way, they should have that privlage taken away. I would also like to see a M(ail)DP put on American Online, have you notice the spam coming from their dial up lines? Look at the next spam you get, 9/10 it will come from one of the AOL dial up lines, those fscking bastards.

On a side offtopic note. AOL has had these spammers (in their words) "hacking" into users dial up accounts and sendout out massive amounts of spam with our domain name in the "From:" header. Needless to say, we have been getting hunderds of spam reports thinking this email came from our site. I contacted AOL many times via email and phone, and one of their postmasters told me "We can not stop this users, they are breaking into user accounts and sending their email from those hacked accounts. You calling up here doesn't help any, send all complaints to abuse@aol.com and we will take it from there. Please don't call back, there is nothing we can do and calling up here only wastes both our times"


It has been over 2-3 months we have been getting spam reports because our domain name is forged in the headers and AOL can NOT do basic spam control on it's own network... sigh

Anyone have any suggestions, I have no money for a lawyer and no legal skills what so ever. Any way to slove this problem on the techinal field?

His phone has been /.ed

Nice going, guys... his phone must be ringing off the hook because all I get is voice mail...

I doubt it will get their attention

[Lumpy]

excite@home the current administrators of the entire @home systems are 100% worthless at best. I would love to see them kicked out of the system and have the big guys put in place a group that knows the following things...

1. Customers are always right, make them happy at all costs.

2. get off your butt and actually do something.

3. always bend over backwards for the techs in the field instead of whining at them.

@home has the potential to squash everything.. only if they get excite out of it.

Censorship?

[Janthkin]

First off, yes, I'm an @Home subscriber. That said, I must further iterate that I'm not an annoyed @Home subscriber. Service has been adequate.

I was reading the UDP FAQ, and came to item 6. I no longer remember the title, but it deals with censorship. They choose to define censorship as something only governments can do. However, I seem to recall past /. discussions, esp. those dealing w/Anonymous Cowards posting in Troll-ish fashion here, that dealt with the responsibility of controling what's allowed to be posted in an open forum. Doesn't deciding what shall NOT be posted make you responsible (legally) for what IS? Again, there was a name for this, but my memory doesn't work so good at this time of day.

Re:Slashdot's spam logo (WAY OT)

[fidget]

This may escalate the nerd-quotient, but how about a picture of a viking. :)

Re:UDP == LAWSUIT AGAINST GUNMAKERS. SAME DUMB LOG

--- Bizard Legal Fantasy Mode Engaged ---
Frankly, if I were at @home lawyer and a bastard, I'd love it if the UDP were instituted against @home. It would be trivially easy to collect a nice fee from @home for identifying the individuals who are issuing cancels and suing their pants off. I could even imagine a class action suit on the part of @home users against the perpetrators of the UDP, claiming irreparable damage and denial of free speach.

--- End Bizarre Legal Fantasy Mode ---
It's not like usenet wasn't full of spam long before @home existed, folks...

interesting tidbit about spam

[spitzig]

the first spam was done by two married lawyers. They received so many mail bombs their ISP's server went down. I guess that quickly became not a viable solution as hard drive sizes and proliferation of spam increased.

huh?

[UnknownSoldier]

> Doin a little brown-nosin', eh?

No, I just thought the above author seemed to correctly summarize the situation.

I could care less about the author's karma. =P

friendly @home rep

You got a *friendly* @home rep who actually talked to you?
Do you have her extension?

Re:friendly @home rep

[jheinen]

Forget it man. She's MINE! All MINE!

Re:Not just news, but net in general. Helps pirate

[TheCarp]

> You see no real problem with software piracy?
> Excuse me, but as a software developer I would
> ensure that anyone who pirates my software is
> prosecuted to the full extent of the law. I have
> reported employers, companies and sites to the
> SPA for software piracy, and shall continue to
> do so until there are no more WaReZ vermin
> around.

And as a software developer, I do not feel that
I have the right to stop anyone from copying
or using my programs, No matter what the law says.

No amount of copying or use can ever hurt me in
any way shape or form. I have never reported
anyone to the SPA, nor will I ever.

All software which I hold copyright for gets
released under GPL or other Free Software
licence.

Of course...im just plain not a capitalist.
I don't care about the money. Sure I could make
money by writting software and forcing people
under penalty of law to pay for it...but I feel
that is immoral, so I don't do it.

Re:Not just news, but net in general. Helps pirate

[TheCarp]

I agree with you tottally. However it is a
completely differnt issue. I do not believe that
that is any sort of reason to regulate the net.

The people who force children into these
situations are horrible and deserve to be
hunted down. However, prohibiting thier warez
does not stop them. They will always be able
to profit.

Whenever you prohibit a product, you increase
its value, and thus perpetuate its market. It
is the dark underbelly of capitalism.

I do not believe that a person who simply views
anything should be persecuted. Go after the
monstors. Kill the root of the problem, not
the symptoms.

Are you any better then?

So which alt.binaries group do you frequent?

How is your gigs-a-week posting any better than the spammers that this UDP is set out to curtail?

If the entire alt.binaries heirarchy dropped off my Usenet server, I would not miss it one bit. Chances are your News server's admin wouldn't either. -Every- Usenet server admin I have talked to(3, each from a different ISP) spits in disgust at people like you, posting hundreds of megabytes of porn, warez, mp3's. Bragging and flooding feeds with '0-day' software, cracks, and related 'filez'. One I talked to, said that if he killed alt.binaries.* he would free up -90%- of his news spool. (I have no numbers to back this up with unfortunately.) Now, that's unfair in many ways, due to the intrinsic size difference of a binary post vs textual post, but even just with an article count, the difference is -staggering-.

Yes, I agree with you, that the best method of accelerating the resolution of @home's problems is for users like you to complain to them. Hopefully something additional will come some day, and clean out the alt.binaries groups as well.

Posted anon on purpose, and I'll admint it's flamebait-ish. Last time I spoke my mind about a member of a 'group' in a public forum with my Ident visible, I was DoS'ed for weeks. Heaven forbid a 'group' member might not be considered just and angelic. Posting anon is merely a case of least hassle.

Re:Slashdot's spam logo (WAY OT)

[Error+404]

For authenticity, it should include an annoying sound plug-in.

)(:-)

Or, better yet, not.

Our secret is gamma-irradiated cow manure
Mitsubishi ad

Cable Internet Monopoly

[Buggernut]

As a customer of @Home, I would like vote with my feet, but since they have the monopoly on cable Internet in my area, there isn't really much I can do.

Re:UDL and RBL

[Joe+MacDonald]

Speaking as one of their 'innocent' (at least in my eyes) users, I whole-heartedly support the UDP against @Home. If there was something I could do to stop the spam I would. As it is, I'm going to get very noisy on my end about them addressing this UDP with all due haste. It isn't like I've posted to USENET in the last four or five months anyway, but I figure it won't hurt to turn up the heat on them from the inside too.


On the other hand, my firewall is pretty reliable. If I could find some open servers that would allow me posting I'd happily avoid the @Home servers entirely.

UDP funnies

[FutileRedemption]

>Not too experimental, had all the R&D fun now, am knee deep in nitty gritty of rounding implementation of "all the other stuff" .... though still all by my (happy) lonesome

Impressive, Im looking forward to the next 3DRealms engine.
The annoying aspect with that rounding stuff however is that it usually turns out to be the larger part of the work...

Of course you shouldnt underestimate the networking thing, Carmack needed four games to get that right, and Sweeney needed many betas.

Some (possibly redundant) hints for UDP:

- bandwidth is king, for analog modems
- if you overload modem bandwidth, you get some nice +1000 ms ping (queueing, same for ISDN)
- modems tend to "resync" pretty often if they are unsure about connection quality (e.g. the connection regularly is gone for 5 secs, and the queues fill up like hell)
- the 28+2/UDP+PPP byte packet overhead is annoying, again for analog modems
- cable modems often seem to have terrible packet loss (seems to be a "broadcast and hope that it doesnt collide and just drop it if it does" principle)
- dynamic bandwidth estimation is much fun (which perhaps is the reason why Q3 and others let the user set it as a static value). You may want to go for the receivers end if you want to try this.
- pps needs to be constant and independent of fps
- "Power Play" wont give any advantage for non-analog users if the ISP has headroom on his subnet and the server is located in that subnet (except for very minor UDP header compression advantage)

Re:UDP funnies

[Corrinne+Yu]

good UDP points (way OT now :) )

Thought the biggest network improvement (from my current experience ) is minimize data packet transmission necessity itself as much as possible.

Higher order encapsulation, leave more to the client. The concept of progressive layer of abstraction, matching that of data throughput speed.

Baseline is good last line of defense to send even fewer packets.

All the points you describe on what happens when you HAVE to send the packet is valid.

But the greatest improvement in smoothness of network play comes from not even sending the packets in the first place.





Corrinne Yu
3D Game Engine Programmer

Re:UDP funnies

[FutileRedemption]

>Thought the biggest network improvement (from my current experience ) is minimize data packet transmission necessity itself as much as possible.

Agreed.
The original Q1 "dumb terminal" concept wasnt much of a hit. Q3 is pretty good now, but possibly not good enough if voice or whatever needs to be added (or if many players are visible).

Seems that client and server should be symmetric, with basically the same high level abilities, allowing the client to operate with a minimum number of "high level hints" provided by the server. This breaks any quake-like client/server architecture, however.

progressive layer of abstractions:
sounds like a hell to implement. Maybe a single but scalable layer does it just as well, squeezed into available bandwidth by sorting objects for estimated error of client side simulation, and stripping low priority objects until it fits. Or whatever...

Anyway, I hope you survive the nitty gritty stuff well, and I look forward to seeing your engine in 3DRealms future games!

WRONG!

wrong. spammer will have a hard time ever finding an ISP.

I , for one, have tolerated @home user's big flood for too damn long. posting huge, repeated binaries and such. IMHO the UDP comes rather late.

Re:Cabal screwing me. Not spammers. Not @home. Cab

[mpe]

All that a recipient of spam can reliably know is the originating ISP (this is know, because the IP of the remote is known in ths logs and must be correct - this IP would be news.isp.net, probably). If this IP were to be incorrect (spoofing) then no data could have returned to the remote and the protocol would have failed, so no spam in the first place.

It dosn't work at that level. All the receiving MTA knows is the IP address of the machine which connects to it. (It can then find out other things, such as DNS address, if the machine responds to an ident query, etc.)

N.B. if the email was relayed by any relay then the recieving MTA knows only about the relay.

Re:@Home should sue sites not carrying its news tr

actually, according to the UDP FAQ, UDP cancel's are sent with a header that identifies the cancel as a specific UDP cancel, so server admins can configure their servers to either ignore or implement specific cancels.. i.e. it can ignore "regular" cancels, but act on UDP ones, or ignore UDP and act on "regular" ones, or ignore both, or act on *all* cancels.. etc. The choice still lies with the server admin.

I thought they had a permanent connection

[slashdot-terminal]

Why don't you try flipping the bill for the extra resources it takes to process the spam? Spam costs ISP's money. ISPs are supposed to have a direct connection to a network. This theoretically should not really cost all that much. All of the various businesses and such don't have metered access and are most likely operating on a monthly fee of some sort at the worst.

Isn't that what I said?

[orangecat]

*I'm* the one confusing the point?

Didn't I say that consensual adult porn is an entirely different thing from child porn? While I have problems with it, I'm quite aware that it isn't illegal. And I don't think it should be, either.

However, my point was that the original poster claimed there was nothing wrong with the distribution of *any* porn, child or otherwise.

And yes, its true that it is harder to find child porn (especially when you aren't looking for it). That doesn't mean it doesn't happen (I've seen people spamming child porn sites on IRC, as well as channels that make no effort to hide their contents), or that its not a problem.

Re:Isn't that what I said?

[guran]

*I'm* the one confusing the point?

No, you're not. I was just throwing in some support buddy. Perhaps I wasn't clear enough on what was "I agree" and what was my own addendum, sorry.

My standpoint is that one must always see the difference between moral and legal. Too many people scream loudly about the tiny illegal fraction (child porn, warez etc) when what they are really after is all that they consider imoral (including sex education, DeCSS and xenu.net)

If you (contiously) distribute the first kind you contributed to a crime. If you distribute the second, you'll get some loud-voiced enemies who are executing *their* free speech, but you are in the clear as far as any (fair) law goes.

Now the pseudo anonymous net does an equally good job at protecting and exposing both kinds.

Sing on brother!

[GoofyBoy]

>In general I think usenet is just elitist in general. Anyone who wants to post must obtain a client.

Damn them all to hell. Who do these guys think they are, requiring a software program.

USENET if you are listening, make your self available to those of who don't have your so-called "client" or a computer or a monitor or a nearby powersupply!!! Freedom for the people!!!

:) :)

One reason why abuse@home.com is so ineffective..

One of the big problems with @Home's dealing with abuse is that there are multiple companies involved. There is @Home, which the abuse reports get sent to, and the cable company that the user is a customer of. When @Home receives an abuse report it's not within their authority to shut the customer down as they're not their customer, they're a customer of the cable company, and the cable company must be convinced to shut the person down. From a few things I've heard it seems that the cable company sometimes takes a "Why should we care?" attitude. This extra level of bureaucracy can't help but cause problems.

@Home does, however, control the news servers, so it is within their authority to block someone from accessing the news servers if they are spamming or have an open relay. This seems to be what they are trying to do now that they are faced with the threat of a UDP. I only wonder why they weren't more vigilant with this in the first place.

Some @Home providers, like Shaw and Rogers, run their own abuse departments which seem more effective. Shaw, in particular, seems to be very effective in taking swift action against spammers.

Finally, some people have mentioned @Home and email spam. I can't say I remember ever receiving one spam email that was sent from @Home. 99% of the ones I get seem to come from AOL, PSI.net and UUnet dialup accounts.

Robert Hancock

You amaze me with your cluelessness

First of all, SPAM takes up bandwidth. The "direct connection to a network" you refer to is finite in size. If the amount of SPAM increases, the ISP has to increase (read, purchase more full time circuts) their bandwidth in order to provide the same level of service.

Second, the SPAM has to be stored somewhere..did you think that a "direction connection to a network" somehow provided unlimited disk space?

two words

[SEAL]

IRC server.

Flame all you want, but try running an irc server on a large network for awhile, and then come back and let me know how you feel about computer crimes. Sometimes legal recourse IS the proper solution.

The damage is real and the cost is real. Yes, sometimes it's small. Other times it disrupts service for hundreds or thousands of other people.

Just because the person breaking into a system is polite doesn't mean he fully understands the system. (If that were true, one might argue that there's no challenge to break in). Because he doesn't know the whole system, there's a good chance that something gets changed or tinkered with that has an unintended effect.

It's a crime because you're messing with something that does not belong to you.

Whether property crimes are overpunished is another issue altogether.

- SEAL

Re: firewalling @home corporate

[rexagon]

You miss the point. Anyone with enough technical sophistication to firewall @home would most likely have enough brains to not let the world relay through their machine.

If someone is blocking @home but not the world, then they can't claim to have misconfigured their proxy and they can be dealt with individually through the abuse@home.com route.

Re:I will be sick on the keyb from that analogy

[Phrack]

Nah, a good caning would do.

Re:Not just news, but net in general. Helps pirate

[bakert]

I've taken more from the internet than I will ever give back. If someone wants some of my code they can have it. Maybe I'd feel differently if I was more talented?

Re:Refuse articles from @home. Do NOT do a DOS att

[Syberghost]

Flux, do you even know what an active UDP is?

Read the FAQ:

http://www.stopspam.org/usenet/faqs/udp. html


Pathost aliasing is usually associated with passive UDP, and this is explicitly an active UDP.

Yes, messages do indeed get "actively deleted" off other servers.

That's not, as you called it, "a gaping security hole". It's the normal default functionality of most news server software. You have to explicitly remove that functionality for it to not be there, with most commonly-used news servers.

You might want to read this faq, as well:

http://www.landfield.com/faqs/ usenet/cancel-faq/part1/

Re:Refuse articles from @home. Do NOT do a DOS att

[fluxrad]

thanks for clearing that up for me. i was in fact mistaken. however, i do maintain that the UDP is a fair means of erradicating a SPAM problem.