Slashdot Mirror
Internet Backbone Provider Cogent Blocks Pirate Bay and Other 'Pirate' Sites (torrentfreak.com)
Several Pirate Bay users from ISPs all over the world have been unable to access their favorite torrent site for more than a week. Their requests are being stopped in the Internet backbone network of Cogent Communications, which has blackholed the CloudFlare IP-address of The Pirate Bay and many other torrent and streaming sites, reports TorrentFreak. From the article: When the average Internet user types in a domain name, a request is sent through a series of networks before it finally reaches the server of the website. This also applies to The Pirate Bay and other pirate sites such as Primewire, Movie4k, TorrentProject and TorrentButler. However, for more than a week now the US-based backbone provider Cogent has stopped passing on traffic to these sites. The sites in question all use CloudFlare, which assigned them the public IP-addresses 104.31.18.30 and 104.31.19.30. While this can be reached just fine by most people, users attempting to pass requests through Cogent's network are unable to access them.
Level3 should have nuked it when they were caught hot-potato routing in violation of peering agreements
Doesn't the pirate bay have a tor node?
If so, doesn't that make this whole black-holing kind of moot?
And "F" Cogent. :(
Do you want to retain common carrier status? Or do you want to be charged for every illegal piece of data flowing through your network? I am sure if you look hard enough you can find illegal porn, drug deals, terrorist communications, plans to commit crimes, insider trading.. etc.
Silence is a state of mime.
Sorry, meant VPN, not VPF, although VPF sounds like it could be fun, lol
This is the thing that really frustrates me. They can, and have always could, easily censor ANY site on the Internet. They can "seize" domain names, for example, which is devastating. They can blackhole like they did now. They can do literally anything. But they don't tend to. They simply let those sites keep running, sometimes doing things like this very half-assedly and temporarily. Nobody in their right mind could possibly believe that there is any real will by the ones who control the Internet to remove "pirate" sites.
Completely useless for anyone using a VPN with an endpoint that doesn't transit Cogent to get to Cloudflare, and even if that is the case you can *still* work around it since assigned IPs on Cloudflare are entirely administrative and almost any Cloudflare IP will work as long as you present a valid hostname and HTTP header. Add $blocked_site to your hosts file with a different IP (104.31.18.31 instead of 104.31.18.30, for example) and off you go.
UNIX? They're not even circumcised! Savages!
Net neutrality? Wasn't that supposed to address this kind of thing? (I'm kidding..)
Oh that's right, ISP's and internet services are not generally seen as "common carriers" so maybe somebody wised up and started hinting at taking legal action for those folks carrying obviously (OK, Quasi) legal traffic?
I've always wondered why countries didn't start enforcement of IP law where the internet crossed international borders myself. Why a copyright owner couldn't get access to stuff they owned rights to blocked at the border by court order or something. I know it wouldn't really fix the problem, but it sure would make things like the "Kodi Box selling from the BBC" story from a few days ago easier for the UK government to address. Just block those sites that are providing the content illegally at the border, one IP/Port at a time, until it's too hard to make a buck breaking the law anymore...
"File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
Don't care about pirate bay, but what if it spreads to "fake news" as defined by ISP or national whim.
If they start blackholing IP ranges just because of "infringing content", it's not much more to assume that they will start blackholing VPN providers, porn, non-backdoored services, inconvenient "alternate facts", the competition of their corporate friends, "undesirables", or indeed anything else that they want to. Best part of all is, it's all the blocking they could ever want, and it's not the government doing it but a private company. So there's no threat of lawsuit to reverse the policy as it's not a first amendment violation.
The citizenry needs a decentralized network NOW if we are to preserve freedom of expression, and association on the net. Guess we could start adhocing the APs, that would be a start. (Better yet someone produce an AP gateway that routes traffic to other gateways. With a passthrough for the central net if it can't find the destination on the citizen net.)
(N/T)
VPN may not solve that. It really depends on who your VPN provider's ISP is. The only sure way around this is by using tor.
most vpn's have several servers in many regions.
Is this actually a block, or just an outage? I've seen Cogento (and others) lose connectivity on certain routes before only to have it come back up a day or two later. This could be an unintentional fault, just with a noteworthy effect?
Somebody forgot there's more than one protocol in the stack.
Love how the article doesn't just mention Pirate Bay, but gave me the names of a couple other site I didn't know about as well as IP addresses for a couple of them.
Now I know more ways to get my torrents. Well done.
Help! I'm a slashdot refugee.
Except that the demographic for TPB is those people who have shown that they don't mind hassling with a workaround.
General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
Why did they do this? What reason could they have to open themselves up to all the potential legal issues here? For example i would consider this a violation of their SLA and cancel their service if i peered with them.
If you can't reach the entire internet through Cogent anymore, then they're no longer a tier 1 carrier. Level 3 must be delighted.
What is interesting is that CloudFlare has so many BitTorrent related sites on these same IPs. It appears they have done this on purpose to make complying with various nations blocking orders easier, and less likely to result in CloudFlare itself being blocked.
Cogent may be doing this because they needed to comply in some jurisdiction, but do not have their network segmented in a way to affect only that jurisdiction. There is then the problem that CloudFlare announces their IP ranges all over the world, as part of their CDN/anti-DDoS features.
The backbones used to null-route and de-peer far more often. Frequently it was around spam. When one ISP had too much spam coming from their network, other backbones would cut them off.
Cogent themselves didn't route Telia traffic for several weeks in 1999. (Telia is one of the world's largest ISPs).
This stuff happened often enough at a MUCH larger scale than Pirate Bay, and the internet not only survived, it's even grown a bit since then.
Posting to undo bad moderation.
The Quirkz Handbook of Self-Improvement for People Who Are Already Pretty Okay
> Cogent should loose its common carrier status
So go back to two years ago? Internet carriers were classified as common carriers on February 26th, 2015.
The companies vigorously fought that decision. Common carrier regulation isn't something you "loose" (or lose), it's something inflicted upon a company. Companies don't like being classified as common carriers.
> loose its common carrier status ... Let them be liable for all copyright infringement they happen to route.
Oh I see, you think common carrier classification has something to do with their copyright safe harbor. The copyright safe harbor in under the Digital Millennium Copyright Act (DMCA) of 1998, which says they are not liable for user's infringement if the carrier follows certain procedures in handling complaints.
if you have an interest in this topic, I'd certainly recommend doing some reading about it. It's an interesting topic and with just an hour or so of reading you get some understanding - at least enough to know the vocabulary so you can post on Slashdot without saying the exact opposite of what you intended to say.
... when I posted a successful tracert in Facebook, the post had a warning at the bottom:
Direct IP Address Not Allowed | CloudFare
You've requested an IP address that is part of the CloudFlare network. A valid Host header must be supplied to reach the desired website.
If I post "https://thepiratebay.org/" in Facebook, the link survives and Facebook provides the usual thumbnail and stuff.
I posted some random (and valid) direct IP addresses and the link simply posted without comment.
Maybe Facebook is at CloudFlare?
It little behooves the best of us to comment on the rest of us.
Isn't this a breach of contract with their peers?
Even if it's not, it has the appearance of tortious interference between customers who want ot access TPB and thier own ISPs, not to mention between TPB and its ISP.
Absent a court order or similar government order, I can't see how this is legal.
Disclaimer: I am not a lawyer and I don't play one on TV.
ThePirateBay's .onion routing solves this. You can't selectively block IP addresses if you don't know the IP addresses.
Snipped the first few hops before we route through Cogent - but, doesn't seem blocked for us. Going right through their network...
4 te0-0-2-0.nr11.b049629-0.aus02.atlas.cogentco.com (154.24.24.162) 1.314 ms 1.335 ms 1.203 ms
5 te0-0-2-0.nr11.b005733-0.aus02.atlas.cogentco.com (154.24.49.82) 1.333 ms 1.337 ms 1.144 ms
6 te0-0-1-1.rcr12.aus02.atlas.cogentco.com (154.24.14.25) 1.241 ms 1.262 ms 1.542 ms
7 be2874.ccr22.iah01.atlas.cogentco.com (154.54.6.53) 4.489 ms 4.461 ms 4.386 ms
8 be2443.ccr22.dfw01.atlas.cogentco.com (154.54.44.230) 9.341 ms 9.463 ms 9.455 ms
9 be2764.ccr41.dfw03.atlas.cogentco.com (154.54.47.214) 9.590 ms 9.846 ms 9.347 ms
10 tata.dfw03.atlas.cogentco.com (154.54.12.106) 9.351 ms 9.261 ms 9.287 ms
11 66.110.56.158 (66.110.56.158) 24.589 ms 9.115 ms 9.226 ms
12 104.31.18.31 (104.31.18.31) 9.136 ms 9.115 ms 9.762 ms
LMAO. This coming from the same company that only a few years ago was desperate for Tier II ISPs to be reclassified to preserve an 'open internet'.
http://www.prnewswire.com/news-releases/cogent-offers-to-pay-capital-costs-incurred-by-major-telephone-and-cable-companies-necessary-to-ensure-adequate-capacity-251454731.html
Every time they do a dick move like this, increase your network usage to more than it was before. Script it on all the servers you admin and all the friends you help. Download and serve / torrent every popular Linux DVD. Wget -r all their web sites. Run network bandwidth tests constantly. Have youtube running in HD in the other room even when not watching / listening. They block some of that? Find other ways to waste data and bandwidth up to your cap. Script it all up to make sure it stays that way _and is encrypted_.
When they do something RIGHT, like move copyrights back to reasonable levels (and stop jacking them up each time the previous law threatens to let something out), ensure internet neutrality, stop spying on backbones, etc. then you can reduce your wastage.
The Internet needs a way to select preferred routes that avoid trouble states/companies. Yes, the US and China are the trouble states.
No problems with TPB here.
What's a shari?
Prevention = best medicine (& what you can't touch can't hurt you) via NEW APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/
Ads & malware rob speed/security/privacy
Hosts add speed (via hardcodes/adblocks), security (vs. bad sites/malware/poisoned dns), reliability (vs. dns down), & anonymity (vs. dns requestlogs/trackers).
Less power/cpu/ram + IO use vs. DNS/routers/addons/antivirus + less security bugs/complexity & faster vs. addons/routers/remote dns!
Avoids DNSChangers in routers/IP settings & dns redirects (99.999% of ISP DNS != patched vs. it) + lightens DNS load & resolves faster from local system RAM!
* Via what you NATIVELY have built into the TCP/IP stack in FASTER kernelmode!
APK
P.S. - Safe https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/
I just went thru a debate w/ EvilSS on this & proved router/firewalls are a central point of fail that resolve FAR slowerexternal DNS does for them!
Routers = Full of security bugs like Kaminsky redirect poisoning &99++ of ISP dns != patched vs. it & DNSChangers.
(Routers 1st vector thru their blocklists & THEN do a roundtrip resolution to whatever DNS you point 'em @ & have firewall software layered drivers overheads hosts do NOT have (hosts are part of the IP stack itself, not a filtering layered driver after it)).
It's far slower on resolution vs. hosts in kernelmode resolving from local SYSTEM RAM.
You take that router out or exploit it & it's all she wrote & they have TONS of holes https://it.slashdot.org/comments.pl?sid=9995967&cid=53488785/ from that VERY PARTIAL LIST!
APK
P.S.=> Migrating hosts to ALL PC & Server endpoints is cake for a domainwide admin via llogon/startup scripts, timed chronjob/windows scheduled tasks etc. ... apk
Yeah I saw that thread and EvilSS was totally right.
If my router fails then it's not just DNS I have to worry about so a moot point about single point of failure.
I've tried copying hosts from my Pi-Hole box to my local machine and there is absolutely no discernible performance difference between that and having it resolve on its own box, either subjectively through using the machine or using the browser dev tools to measure load times.
It's true hosts files are in theory faster due to them being pretty close to the metal so to speak, but in reality the round trip time on my LAN adds a few milliseconds at most for each lookup, after which time the OS caches the result for a while anyway making it even faster than a massive hosts file due to the need for a smaller lookup table in memory.
So in reality a local host file doesn't actually provide any practical or noticeable (to the user) speed improvement, so doing it at the router is better. It all only takes 15 minutes to set up, and covers all platforms, so why would anyone ever actually bother with HFE?
Captcha: oddity
See the post before this one (where I thank him for his admission of defeat on MANY points vs. me) https://it.slashdot.org/comments.pl?sid=10172213&cid=53820595/
APK
P.S.=> Hosts are faster, lighter, native, no cost & no CENTRAL SINGLE POINT of failure that is slower + costs more $ & complexity above what you natively have in hosts... apk
EvilBS said there's NOTHING his router can't do hosts can? BS & proof https://it.slashdot.org/comments.pl?sid=10172213&cid=53828857/ &
My success w/ my program = more than an UNIDENTIFIABLE troll in yourself has & /.ers disagree #1 https://it.slashdot.org/comments.pl?sid=10172213&cid=53775597/ & #2 https://it.slashdot.org/comments.pl?sid=10172213&cid=53775689/ by dozens w/ Malwarebytes (highly esteemed) both HOSTING/RECOMMENDING my work (many 1,000's worldwide like it like quoted /.ers do).
APK
P.S.=> You're slower not resolving from LOCAL system RAM hopping to router over a LAN/WAN, vectoring a huge blocklist 1st & on resolution fail a remote DNS roundtrips on resolution (w/ a layered filtering driver overhead in firewallware on router hosts doesn't (part of the IP stack)) & more moving parts complexity for exploit (tons https://it.slashdot.org/comments.pl?sid=9995967&cid=53488785/ ) + costs of router + powerbills going UP running it... apk
My DNS server cost $35, took 15 mins to set up and draws less power running than most appliances do on standby. It contains it's own hosts file - a single one that covers my entire LAN (any platform) thats easily managed (and monitored!) by a slick UI, and it responds to name lookups over 100 times faster than I can blink.
Once again, explain in real numbers what actual real and *measurable* benefit I will see by using your tool over this setup.
Anyone that knows their shit connects to a VPN in another country combined with a proxy server so the request never originates domestically.
See my subject? It's fact. No amount of bs from you changes it. Hosts are cheaper & faster!
APK
P.S.=> That is truly that & you know it - thanks for admitting it... apk
See my subject: The times I provide would vary due to DNS loads & network congestion but hosts ARE faster no matter what variance occurs.
APK
P.S.=> Do what you like, including being less efficient & slower with higher costs - it's YOUR "illogic logic" life, not mine (mine's logical using hosts over other "so-called 'solutions'" (or combined w/ them for layered security defense in depth) that are slower, riddled w/ security issues (that includes routers https://it.slashdot.org/comments.pl?sid=9995967&cid=53488785/ , antivirus & DNS))
See my subject: DNS traffic & network congestion make it vary (worse 4 you vs. hosts locally in fact) + u admit hosts = faster.
APK
P.S.=> FACT: Depending on DNS solely = a FOOL's game: DNS is LOADED w/ security & inefficiency issues galore (by the 100's & only a SMALL PARTIAL LIST I put out here as proof of that over time) https://news.slashdot.org/comments.pl?sid=9007355&threshold=-1&commentsort=0&mode=thread&pid=51969075/ ) & thus, DNS is a CENTRAL SINGLE POINT OF FAIL/EXPLOIT/BREAKDOWN as well as excessive complexity, inefficiency & security issue galore vs. hosts files (easily migrated to PC/Server endpoints by admin scripts manually, logon/startup scripts, or scheduled tasks/chronjobs) as proven in the link... apk
U admit hosts = faster/more efficient & less costly via what's native vs. illogically less efficient, does less & uses more complexity/resources "Bolting on 'MoAr'" !
As a network admin domainwide & software engineer I migrate hosts to pc/server endpoints for "layered-security"/"defense-in-depth" via chronjobs/windows scheduled tasks + startup/logon scripts.
* U miss security DOWN TO ENDPOINTS via a SINGLE CENTRAL POINTS OF FAIL 'eggshell perimeter security' apparently.
APK
P.S.=> Others speak for me: Malwarebytes (highly esteemed) hosts/recommends me & VERIFIED CODE = SAFE w/ 57++ antivirus programs https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/ ) & 8 security experts say hosts = good security https://it.slashdot.org/comments.pl?sid=10221475&cid=53831639/ & /.ers like/use my ware per https://it.slashdot.org/comments.pl?sid=10205115&cid=53815959/ ... apk
See subject: Glad u admit it. My prog gets hosts best protection (vs. malware) + speed (hardcodes + adblocking) 2 ways - worth 5 minutes of time.
* You're not updating your hosts file & it sounds like you don't w/ you saying "I never have to touch it again no matter what"?
Do so!
(Or protective data gets stale & hardcoded favs may change IP addresses)
Lastly A router costs MONEY for it & higher bills in power that hosts don't!
APK
P.S.=> Nothing updates hosts better vs. APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/ ... apk
A "speedup favorites" tab in my prog does DNS resolution LOCALLY (why it's better vs. hostsman).
It reverse dns resolves favs I spend MOST TIME ONLINE @ (~96++%) placing 'em @ TOP of hosts cached 4 fastest possible resolves!
(I miss a lookup OpenDNS to rescue sub 4% of time! It filters vs. threats & proofed vs. kaminsky redirect & 99++% of ISP dns aren't).
~6 MINUTES to intake, process & output hosts w/ imported blocking data sorted & deduplicated on Intel Core I7 4790k 8gb DDR-4 RAM via APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/
ADB droid via PULL & SSH a "GodMode' iPhone can (rooted).
APK
P.S.=> Spending $ 4 "Bolt on 'MoAr'" != smart - FREE hosts do it FASTER (u admit it https://yro.slashdot.org/comments.pl?sid=10230847&cid=53870803/ ) & CO$T 0... apk
U 1st go thru ur DNS filter blocklist THEN u check other sites on a resolve miss (DNS router points @ does it not hosts).
After all - You called it a DNS filter list.
So then obviously It's DNS doing it then so just like EvilSS you're slower there too (hosts do resolves immediately where I spend most time online, from the TOP of host file content, cached in local system memory).
Your powerbill is higher & so is spending on the router @ all period. Hosts = 100% free.
APK
P.S.=> I have a REALLY nice interface that I built myself (did you make yours) for hosts that let's me do ANYTHING to the data in them easily... apk
See my subject: I do it better, FREE & FASTER (why which you don't deny https://yro.slashdot.org/comments.pl?sid=10230847&cid=53872161/ & even ADMITTED, no less)
I've seen fools TRY to do what I do in my program (good luck on false positives filters too) & FAIL badly on /. MANY times, here's an example thereof
http://yro.slashdot.org/comments.pl?sid=2265388&cid=36604424
* That was only SOME of them too, lol - there were MANY more & it's not what folks use which is GUI. You fail again.
Lastly: I never suggested you do it, just that it's doable on phones since you asked about how it'd be done. Many people do!
APK
P.S.=> Keep spending YOUR "$" going slower while I do it all for FREE + FASTER & built it MYSELF (many people happen to like & use MY WORK too)... apk
See my subject: Design a BETTER program (which the likes of highly esteemed malwarebytes hosts & recommends) & when you stop going SLOWER than I do (which you admit you do https://yro.slashdot.org/comments.pl?sid=10230847&cid=53857911/ ) SPENDING YOUR "$" TO GO SLOWER than I do?? Then, talk.
* Until then, STFU please - All you ARE, is talk & "illogic logic" going slower, costing yourself money in routers + power to run them!
I use what I have natively doing FAR more for FAR less vs. other "so-called 'solutions'", even custom hardware ones, via a tool of MY OWN creation... & users like + use it here + 1,000's worldwide too!
APK
P.S.=> Going to quote Linus Torvalds on this to you "Shut up and get the work done" â" says Linus Torvalds (I do, & "the likes of you" UNIDENTIFIABLE TROLLING WORM, don't) http://www.theregister.co.uk/2017/02/15/think_different_shut_up_and_work_harder_says_linus_torvalds/ ... apk
See my subject: Then talk. U admit you're slower & can't resolve as fast + spent money to go slower to top it off!
* Illogic logic abounds...
APK
P.S.=> At least I have an EGO to trip out on based on a great creation that gets GREAT REVIEWS like https://yro.slashdot.org/comments.pl?sid=10255867&cid=53886247/ & https://yro.slashdot.org/comments.pl?sid=10255867&cid=53886281/ from our /. peers + the BEST ANTIMALWARE ON THE PLANET both HOSTS & RECOMMENDS MY WORK too - you can't get the better of me technically either so why try? As I said, w/ you? "ILLOGIC-LOGIC" abounds (lol)... apk