BlueSecurity Database Compromised?

EElyn writes "Numerous users of Blue Security's anti-spam system now report of a new form of aggressive spam. An unknown group of spammers claim to have derived a way to extract the member email addresses of Blue Security group's anti-spam system, called Blue Frog. Blue Frog, a small tool which once installed on the user's computer, enables Blue Security to systematically flood a known spammer's website with opt-out messages; much to the headache of the spammer. Tens of thousands of users have already signed up, so can it really be true that spammers now possess this database? Or is this yet another frail attempt by spammers to intimidate the user?" Another reader sent the text of the letter; read more to see.

Stray1 writes ""You are recieving this email because you are a member of BlueSecurity...." An email from unknown detractors has taken the Bluesecurity anti spam lists and decided to take matters into their own hands. I recieved this Email from an anonymous, and garbled host, which went on to say in not so fantastic english that I, as a Blusecurity member, would recieve this and many more (about 20 -30) spam messages a day until I left the blue security community. Blue Security, (www.bluesecurity.com)a website and community designed to lessen your Spam Email, is down for the moment. Is this what we have come to? Spam,(erm 'high volume email') companys holding your address hostage until you comply? "...We mightve had your email addresses before in our lists, but now, we are targetting YOU, because YOU are a bluesecurity user". I have to say, up until this point, my spam was down by about 70% to 80%."

Screw the spammers.

[Vengeance]

What the hell does 20 or 30 messages mean? Nothing at all to me. I reject anywhere from 20 to 40 THOUSAND emails daily, on a domain with precisely two email users: My wife and me. The vast majority of the crap I get is easily rejected because it's sent to bogus (as in, they never ever existed) email addresses. SpamAssassin catches much of the rest.

What must be done

[XxtraLarGe]

We really need to take the internet back from these guys. Reply to every spam e-mail by going to their web site, and filling out bogus info. Give them bad information overload. Same thing goes for junk mail and telemarketers. When somebody sends you a credit card offer, send it back to them, writing "Take me off your list". Make sure they have to waste so much time throwing out bad mail that it isn't worth their time. When telemarketers call, ask them to hold on a minute. Then set down the phone and don't pick it up again for 10 minutes. That will dig into their costs.

Re:What must be done

[haplo21112]

Better Yet, tape the Business reply envelope to a Brick (wrapped in shipping paper), the Post Office has to deliver it, and it will cost the receiving company a fortune in shipping costs.

Re:What must be done

[Fordiman]

"Perhaps some script could be developed that would do nothing but look at a web form, fill in appropriate bogus info, and just hit the site repeatedly with bogus orders"

Actually, there's a very nice client written in C++ that does a damn good job. No CC data or anything, but 'please remove me' forms. If you're confused, read the article again; it's mentioned.

Re:What must be done

[macdaddy]

I used to be a big anti-spammer, back when I had time on my hands. I generated a list of proper-pronouns that was somewhere just over 500k long (I forget the exact #s now). I wrote a number of scripts that used wget and curl (depending on the form) to stuff addresses generated from the pronoun list and about a dozen spam-hole domains I registered into those Remove Me forms. Within hours I was getting tens of thousands of pieces of spam. Within days my Cox cable connection was saturated. I offloaded it onto a co-lo box for another couple of months before I finally changed the MXs to 127.0.0.1 and shut the system down. I had automated scripts for auto-forwarding a copy of the spam to the FTC and to post the messages to NANAS (news.admin.net-abuse.sightings). I also archived the incoming spam and used it to seed my Bayesian filters and DCC system for the ISP I worked for. I can't begin to tell you how effective that was. It was a helluva rig. I wish I still had time to dick around with that kind of stuff.

So, is the database compromised?

[Dynamoo]

A big question here is.. is the database compromised? From the poking around I've done, it does seem that the only people who have received this message are BlueFrog users.. those who don't use it, don't seem to have it. It could simply be that the spammers have used tracking information embedded in the spammy URLs to find out who is using BlueFrog.

BlueFrog has been criticised for it's so-called "vigilante" approach.. it's not alone in this approach, but perhaps this does go to show a potential downside: spammers are evil - pissed off spammers will simply direct the evil at the people who pissed them off.

What I received

[Carny+Trash]

Here's what I was sent:

"Hey,
You are recieving this email because you are a member of BlueSecurity (http://www.bluesecurity.com).

You signed up because you were expecting to recieve a lesser amount of spam, unfortunately, due to the tactics used by BlueSecurity, you will end up recieving this message, or other nonsensical spams 20-40 times more than you would normally.

How do you make it stop?

Simple, in 48 hours, and every 48 hours thereafter, we will run our current list of BlueSecurity subscribers through BlueSecurity's database, if you arent there.. you wont get this again.

We have devised a method to retrieve your address from their database, so by signing up and remaining a BlueSecurity user not only are you opening yourself up for this, you are also potentially verifying your email address through them to even more spammers, and will end up getting up even more spam as an end-result.

By signing up for bluesecurity, you are doing the exact opposite of what you want, so delete your account, and you will stop recieving this.

Why are we doing this?

Its simple, we dont want to, but BlueSecurity is forcing us. We would much rather not waste our resources and send you these useless mails, but do not believe for one second that we will stop this tirade of emails if you choose to stay with BlueSecurity.

Just remember one thing when you read this, we didnt do this to you, BlueSecurity did.

If BlueSecurity decides to play fair, we will do the same.

We are quite sure you will think this will not continue, that we will not continue wasting our resources doing this, feel free to wait out the first 48, or the second, and see whether these stop, you will be quite suprised.

If you have another email under the protection of bluesecurity, and have not recieved this there, do not worry, you will soon enough.

We mightve had your email addresses before in our lists, but now, we are targetting YOU, because YOU are a bluesecurity user.

You might also notice, that the BlueSecurity site(http://www.bluesecurity.com) is down..

Just remove yourself from BlueSecurity, and make it easier on you.

Sal Webber"

Re:So...

[Fordiman]

http://members.bluesecurity.com is still up; I don't know what they did to www., but it seems to be down.

Meanwhile, stay on, ride it out. Use your spam filter to catch the spams; heuristics will still capture the spams they're sending if they're reported. This guy is desperate - likely going bankrupt - and some of us in the Blue Community would like to see him and his sort become paupers for their asshattery.

Re:Eye for an Eye?

[ScentCone]

When will the world learn, violence begets violence and spam begets spam. Lets find a real solution to the problem rahter then a vigalante justice.

Actually, I've found that things some people think are unfortunate or bad beget shallow, empty platitudes.

Sometimes, violence simply ends violence, because there is no other way. Sometimes, fighting fire with fire is the best way. Sometimes showing someone what it's like to suffer the consequences of their own actions actually changes their behavior.

I'm all for as many technical approaches as possible, but finding "a real solution to the problem" that doesn't involve some degree of making this painful/costly for the spammers simply isn't going to work. Even if, through filtering, you can get 99% of the stuff blocked, all they have to do is increase the volume that much more to make that remaining 1% still pay off. Remember, they're not paying for their own overhead most of the time.

Your "real solution" comment, in the context of "violence only begets violence" is completely tone deaf. You're applying Israeli-Palestinian-conflict-type babble to a completely different situation. The spammers are not oppressed, or the victims of some historical violent wrong... they're a parasitic, bandwidth sucking plague. Any means by which we can stop them is called for. Surely you don't think that you're going to just turn the other Bayesian Filter Cheek, or write a Korea-bound, thought-provoking appeal to integrity and expect the onslaught to stop? Tempting as it is, no one is suggesting actual violence - just a substantial response in kind, only when provoked. It's called self defense, and it's an appropriate measure because it only happens when an illegal spammer causes it to happen.

How fortunate for you that you've never had anything violent threaten you, requiring you to offer up a physical deterrent to stop it. If you had, you might rethink your metaphors.

Re:Email I Received

I dont think it has been hacked. Apart from the fact that i think they are too stupid to be able to break the kind of encryption small governments would like to be able to.
The list works in way that the spammers can feed addresses into it, and get a positive or negative result depending in whether the address is in the list.
This is why i have seen these emails coming into addresses that are on a domain i have chosen to protect. But those email addresses were never specifically supplied to bluefrog! My domain name is known to them, but not the address before the @.
These guys are only able to spam email addresses that they already had before. they can find out if an existing address they already have is a member of bluefrog, but thats all.

Blue Security coming back online

From http://www.bluesecurity.com/Announcements/spam.asp

As many spammers choose to comply with the Registry (see our recent blog posts here, here and here), other spammers may resort to other means in an attempt to avoid compliance.

A major spammer had started spamming our members with discouraging messages in an attempt to demoralize our community. This spammer is using mailing lists he already owns that may contain addresses of some community members.

We have also received complaints from users about spam allegedly sent from Blue Security promoting our anti-spam solution and our web site. This is yet another tactic used by some spammers in an attempt to slander us by sending unsolicited email forged to appear as if it was sent from Blue Security. Blue Security is an anti-spam company determined to fight spam and as such never has and never will send unsolicited email.

Our answer to those criminals should be one - we will not be discouraged; We will continue to exercise our right to opt-out of spam.

If you are not a member of our community, now is the time to actively fight spam and make spammers leave you alone. For more information click here.

If you are already a member of our community, make spammers hear you load and clear - report your spam, let Blue Frog fight spammers on your behalf.

We regret any inconvenience caused by this incident.

Best Regards,

Blue Security.

Its more than that

[Lanoitarus]

...blue security takes another step, besides re-spamming the spammers sites. They also directly contact every advertiser featured in spam, asking them to stop paying these spammers because they sent emails to X number of users who arent interested. It may not be very effective, who knows. But its a great idea. If companies stopped paying for spam, it would sure dry up pretty fast, and the companies care allot more about the customers than the spammers. Im sure at least *some* companies genuinely dont even realize that the publicity firms they hired are using spam.

First they ignore you...

[Spy+der+Mann]

then they laugh at you...

then they fight you...

then you win :D

One thing is safe to know: At least the spammers are now PAYING ATTENTION to us. A year ago they didn't even know we exist. Then they tried to give bad publicity to Blue Security in anti-spam websites (they said bluefrog was a botnet).

Later, SendSafe included an option to use bluefrog's list to NOT send spam to those addresses.

Finally, they're targeting us directly. You know what that means B-)

Also, I doubt the database's been compromised. I'm sure they only diffed the original and the filtered e-mail list. This means that only a small percentage of e-mail targets has been truly released.

Re:First they ignore you...

[Fordiman]

I just got this funny one:
<tt>
Dies ist eine automatisch erstellte Benachrichtigung +APw-ber den Zustellstatus.
+ANw-bermittlung an folgende Empf+AOQ-nger fehlgeschlagen.
            dunham@cardse.com

Final-Recipient: rfc822;dunham@cardse.com
Action: failed
Status: 5.1.1

---------- Forwarded message ----------
From: "BlueFrog member" <bryan@fordi.org>
To: <dunham@cardse.com>
Date: Tue, 02 May 2006 20:28:24 +0300
Subject: {Spam?} FW:Join the top-level Israel internet security company

The trackback URL for this blog entry is:
http://community.bluesecurity.com/

Bringing spammers to Their Knees:
Bluesecurity.com hopes you'll join thousands of others in an army capable of crippling spammers' Web sites.

A few thousand spammers have ruined our internet. They've clogged our mailboxes with filth. Already, 90% of email traffic is made up of spam. Let us no longer blind ourselves to the irrefutable facts: current measures have failed to stop spammers. The experience of the past several years has proven that passive measures are just not the answer.

Retribution is the only real answer to spam. We must punish spammers ourselves to prevent them from taking over cyberspace. We must reclaim our territory. We need direct action to eliminate spammers for good.

The magnitude of the task which lies before us is great. We are fighting for the future of the Internet. What we need to do now is get as many users as possible into our community. We already have a botnet with
hundreds of thousands of computers working together to induce commercial loss on spammers and their ISPs. We have launched numerous Denial-of-Service Attacks on Chinese spam networks with great success, and plan many more!

We have excellent financiers who allow us continued success with our botnet growth and Denial-of-Service Attacks. We thank the government agencies involved for their continued cooperation. We thank our leader, Eran Reshef, for continued strategies of DoS attack operations. Also, US-based Rembrandt Ventures & Skybox Security for their extensive funding & continued support. And a very special thanks to Douglas Schrier who has helped our botnet come to life.

If you haven't signed up with the registry and installed a blue frog yet, please sign up now.
If your friends have not yet joined us, we will convince them to do so.

Let's stop filtering spam and start eliminating spammers.

Together, we will reclaim the Internet, One ddos at a time.

Please Contact Us for any questions on signup via the following info:

2077 Gateway Place, Suite 550
San Jose, California 95110 USA
Phone: 866-6SKYBOX
Phone: 408 441 8060
Fax: 408 441 8068

Israel HQ:
60 Medinat Hayehudim St.
P.O.Box 4109
Herzliya Pituach 46140 Israel
Phone: +972-9-9545922

Current and potential investor relations:
Rembrandt Venture Partners
2200 Sand Hill Road, Suite 160
Menlo Park, CA 94025

T: 650.326.7070
F: 650.326.3780

-----
Fight back spam! Join our Botnet today.
Download our .EXE here: http://www.bluesecurity.com/blue-frog/
</tt>
Is it just me, or is this REALLY weak?

Simple solution?

[smbarbour]

Why not just sign spam@uce.gov up? That way the US government will have a nice log of who is sending these emails. Plus, if the spammer shares the list, there will be additional spammers who will happily be reporting themselves for violating the CAN-SPAM act.

Anyone even bother to research this?

[Audigy]

The site hasn't been hacked.

Hasn't anyone gone to bluesecurity.com to actually see what THEY have to say about this "security breach"?

I have two other email address that WERE NOT signed up with BlueFrog also getting this spam.

BlueSecurity's official statement is this: ...which I would be pasting here if I could get to the goddamned site. Thanks a lot, slashdot. I'll be back to post the full text once I can get in the bloody site.

In short, the spammers are PISSED and they'll do anything to get people to unsubscribe from BlueFrog, including sending spams with lies. Don't fall for it. Keep fighting spam.

vigilante rant

correct, it is a maligned word for no reason. Vigilante. One who is vigilant, pays attention, does their job and duty..

  Crime is everyone's problem, it isn't only the police's job. They can't be everywhere all the time and numerous court cases says that they don't even have to help if they don't feel like it. Strange but true facts. If I saw an old lady getting mugged, I would thump the attacker, right on the spot. Vigilante (with some politically correct bad connotation), or concerned citizen? If I saw bank robbers fleeing the scene (masks on, bags of loot, obvious stuff)and jumping into the getaway car, and I was in my car, I would ram them to disable the car. If they wanted to get nasty, I am a tool user and owner, I could deal with that as well.

I know some nations have it so that joe ordinary citizen isn't supposed to "interfere", and passed laws against it, I am glad I do not live in such a place. I call that the criminal protection acts. It's uber-lame.

Want to know why all the illegal immigrants decided to "protest" their status as illegal border jumpers and illegal job jackers and illegal US government benefits stealers? Concerned US citizens noticed the government was NOT enforcing the laws on the books, so they take action, watching, reporting, in some cases citizens arrest when they caught the jumpers on private prperty trespassing, now they building their own border fences, which is entirely legal. It started small but grew in size and importance, started to get some press, millions of legal residents all went RIGHT ON, INCLUDING all the legal immigrants who are honest and went through the necessary steps, and it was obvious it was working. The criminals decided to "fight back" with demonstrations. Screw them!

Sorry, if you are here illegally, GO HOME, clean up your own nations *first*. If it is SO BAD wherever you come from that anyone "you" feel the need to flee, it is ALSO bad enough you should take "emergency drastic action" in your own nations FIRST. Be a patriot, clean up your own nations and make them more productive and more free, don't abandon your fellow nationals.

Re:vigilante rant

vigilante, current illegal immigrant protests, concerned legals being "vigilantes" and becoming demonized in the press and by the government which doesn't do the job they are supposed to do.

spammers-government not doing job, ISPs not doing the job, telcos not doing the job-anti spam vigilantes.

I noticed the conversation in the thread was pro and anti "vigilante" and I wanted to show a real world and concurrent example of another situation that needs vigilantes.

I labeled it a rant and posted at zero, just wanted to get it out here, /. isn't running a "politics" section illegal immigration protest thread to post on, so I took advantage of the mention of the word vigilante. It's a general rant, not meant to be directed at anyone specifically, just thought it fit in the thread someplace. We can duscuss IT outsourcing, but no one seems to care if you are a blue collar and the illegals are just as much a threat to you as outsourced coding projects are to the more wealthy members of the board here. /. isn't all white collar IT people, but that is the assumption. You can be a geek without being a coder.

Re:vigilante rant

[Fordiman]

And the government's job concerning illegal immigrants? I don't believe they should have one. Same for spammers. I prefer to allow market forces to do the work for me.

Anyway, that sort of behavior will almost always get you marked offtopic. Just cos it relates in some vague, hazy way does not make it relevant.

I may be ignorant, but I'd like to see how illegal immigrants are more of a threat to a 'blue-collar' (unskilled labor) job than legal immigrants. Further, I'd like to know why there's such a glut of 'grey-collar' (skilled labor) jobs, yet the 'displaced american workers' don't seem to be getting some training and flocking to them.

Yeah. I'm actually for job market liquidity in the interest of free trade. The initial costs are worker displacement, but the benefits are improved conditions for both countries. Resistance to the process only exacerbates the costs. Got to a damned trade school, get some training, fill in the huge grey gap, make a good hunk more money, and finally, stop your bitching.

Re:Eye for an Eye?

[AdamD1]

Several of the emails I received feature this line in the body text:

YOU CANNOT PARTICIPATE IN ILLEGAL ACTIVITIES and expect to get away with it.

So... but it's okay to forge headers, right? And use a botnet to flood my inbox with this crap, right? A botnet which was built by writing a virus that would turn an unsuspecting user's computer into a zombie so you could pump out more of this crap like a frikkin' coward from some bunker in the midwest. That part is totally a-okay right?

News flash for pathetic spammers like these ones: The whole point was: we didn't want to hear from you idiot spammers in the first place. Period. We attempted unsubscribing and you didn't unsubscribe us. In fact most of you spammed us even harder. You didn't take our collective "no" for an answer. Now that we had a new outlet for our "no" to be sent to you, as an apparent last resort, you're calling what we're doing "illegal?!?!"

Spammers are retarded.

ad

Hashing Algorithm

[Spy+der+Mann]

Do we know which hashing algorythm is in use, and even if the spammer has to send his entire list to bluesecure?

Apparently they're using MD5 hashes truncated to 30 bits.

From http://www.bluesecurity.com/technology/registry.as p :

Blurry Hash

Blurry hash was developed by Blue Security to safeguard the content of the Registry from being jeopardized by malicious hackers. It is an evolution of traditional hashing methods that ensures that even brute force attacks are futile.

Traditional hashing solutions use one-way encryption methods that transform clear-text data into a pseudo-random bit sequence. For example, hashing each Do Not Intrude Registry entry transforms the e-mail address into a 128-bit string.

The idea behind Blue Security's blurry hash is simple. The process starts by using a standard hash function to calculate the 128-bit hash values of the e-mail addresses in the Registry. The output is then trimmed to a shorter sequence (e.g., 30-bits). A large number of random 30-bit values are then added to the list to create the Do Not Intrude Registry.

Blurry Hash mitigates the privacy risks associated with publishing the Registry;

        * Using addresses removed from the spammer's original mailing list.

            When a spammer notices that an e-mail address has been deleted from his list, he has no way of knowing if it was filtered because it was a legitimate user's e-mail address, a honeypot address or a random entry in the hashed Registry.
        * Dictionary Attacks

            A spammer may also attempt to uncover the registry's content using dictionary attacks. These attempts are worthless due to the random information in the Registry that ensures that some percentage of e-mail addresses enumerated by the spammer will match hashed registry entries, even though they are not actually listed in the Registry. Hence, a spammer will not be able to tell whether the matches are valid e-mails addresses.

I find this very interesting. If an e-mail has one (and only one) MD5 hash, it also has one and only one 30-bits prefix of an MD5 hash. For practical purposes, it's equivalent.

This Blurry Hashing was reviewed in the Spam Kings blog, and it appears to have a 1/1000 probability of false positives, but who cares? It works! :)

Regarding submitting the e-mail list, apparently the entire hashed list is downloaded (a few megs) and processed locally via software. I haven't checked if the "do not intrude" checking tool is published in the source code. But just knowing that Blue Frog is open source, is a relief.

Re:Eye for an Eye?

[Fordiman]

Quite right, marxie. In fact, GMail has already quashed the whole debacle. The next step is for the Blue guys to locate the asshat and see if a formal complaint is in order - or better: a class action suit. Harassment is not a way to save your business.

Re:Eye for an Eye?

[idesofmarch]

I believe that some 2000 years ago they nailed someone to a cross who had pretty similar ideas.. Seems he has a huge following outside the hippie scene also. Ok, I have to say that he looked a bit like a hippie.

Are you actually trying to use the bible as a foundation for your argument?

The problem is that you are wrong about whom get attacked by 'the violent'. They attack those whome are easiest to intimidate, regardless of actual strength. (which is one reason why terrorism is such an effective offensive strategy against the USA btw)

First of all, terrorism is often performed by parties who, due to anonymity, are immune (or are difficult) to counterattack. Second, the USA is actually fairly hard to intimidate. Say what you want about the many bubbas of this country, but they are the first to say "let's go kick their ass." Third, and most relevant, while you can debate whether the strong get attacked too, you seem to blissfully ignore the fact that the poster is absolutely correct on the specific point addressed - spammers have nothing to fear in terms of an actual counterattack. To draw an analogy from RTS games, the defending mail servers are just "turtling," building up stronger and stronger defenses in the hope the attackers will decide that spamming is not worth the effort. Maybe the strategy will work, maybe it will not, but we all know the flaw with turtling - you can never kill the opponent, only survive.

Re:Eye for an Eye?

[TFGeditor]

"Harassment is not a way to save your business."

It is much more than harassment, it is a federal crime called extortion.

I hope Blue Security makes such a complaint to the FBI. These assclown spammers are compounding crime with more crime.

They really *should* be locked up in a labor camp for the crime known in the former Soviet Union as "parasitism."

Spam attack plan

[RedToad]

(killthem)
FoGGeR lol yeh sure am a fed and you a blueguy :)
anyway fuck you and your company we're fighting you and i recived around 100 pvt msgs
telling me that they're with me. No need to remove them we'll just show them who we're. Thanks

(killthem)
LCS yes it's been down :) our good friend and master of hes job did that. heh it's just a beginin.

(ebulker)
yes down but members.bluesecurity.com still up need to down www, members, community ! ...
need to fuck all aliases afaik this domain used in bluefrog ?

(killthem)
xxzindoxx and bluefrog feeel me babys :)
you can both of ya blow me and belusecurity company as well. the game started i am the winner
hehe and yes Hello to all the feds they're most welcome to get over and visit me hehe.
bleu i got over 400 pm's last days and feel the power of this people very soon.
we walk slow but the heat gonna TO BIG FOR YOU.
all the sponsors contact me if you having problems with this fuckers i'll give you everything
you need help people servers money and all.
LETS FUCK BELUSECURITY.COM bleusecurity.com are down already lol

(crazy)
You BlueFrog faggots, you think this is the only community that has your whole database?
You honestly think a community of people you are trying to take down are going to
REMOVE you from their lists? Look, killthem is not an anti, I know him personally,
so let that whole bullshit idea go to rest. Second, by running that database as froms
or mailing them on a dedicated box will not result in any "fed" coming to your door,
more so you'll just be pissing off another bullshit internet-lamer who can't understand
how to filter a simple spam message, so they join some bullshit community called
"BlueFrog" and think they can run this shit. BF, newsflash: do you realize how many
resources this community as a whole controls? Do you honestly think you stand a chance?
Your domain is down, it's a matter of time before more nets are mounted to bring down your
members area and it'll be held down continuously until BF userbase has gotten to the
  point they can't perform their equally illegal DDOS attacks. Guys, download the DB,
spam it, compile your lists with it and trade it around. Use them as froms, mail your
anti DB with them, do whatever you want.
Let this database leak to the point all these stupid ass fucks have to get new e-mail addresses.
Adios bluefreaks

(killthem)
did you ever try to protect your websites and all ? you're fucking down baby
Date 5/2/2006

(crazy)
Pinging 194.90.8.20 [194.90.8.20]:
Ping #1: * [No response]
Ping #2: * [No response]
Ping #3: * [No response]
Ping #4: * [No response]
Done pinging 194.90.8.20

Boy oh boy
Date 5/2/2006

(dollar)
"baby why dont you hit me with your best shot!!" da daa da daa "I said baby why dont you hit me with your best shot"
Thats what these bluefrog idiots have been singing the whole time. They simply asked for it.

"Slap an anti a day to keep spamhaus away"
Great Affiliate Programs
Custom Bulk Applications
BP Mailing/Hosting/Direct Servers
Contact Me
Date 5/2/2006