host fedora-redhat.com fedora-redhat.com has address 66.218.79.149 fedora-redhat.com has address 66.218.79.155 fedora-redhat.com has address 66.218.79.147 fedora-redhat.com has address 66.218.79.148
whois 66.218.79.149
OrgName: Yahoo! OrgID: YAOO Address: 701 First Avenue City: Sunnyvale StateProv: CA PostalCode: 94089 Country: US
neither ev1 or above.net will do shit about this. Both are massive spam/abuse havens and ignore or bounce abuse complaints. Solution? Firewall the offending net ranges.
bird. California education code doesnt mean jack shit in the 49 other states. Better yet, host the server in europe (havenco anyone?), so if UCSD decides to send a DMCA or some other bullshit violation notice, the web site owners can use it for toliet paper.
At CSU, we're probably going to ditch Office in the next year or so as Uncle Bill is trying to extort an insane amount of money from us to continue using it. And since star office is free for higher ed.....
Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2004-09-22 09:54 MDT Interesting ports on 61-218-79-53.HINET-IP.hinet.net (61.218.79.53): (The 1651 ports scanned but not shown below are in state: closed) PORT STATE SERVICE 21/tcp open ftp 22/tcp open ssh 80/tcp open http 111/tcp open rpcbind 135/tcp filtered msrpc 443/tcp open https 445/tcp filtered microsoft-ds 3306/tcp open mysql 6000/tcp open X11
Nmap run completed -- 1 IP address (1 host up) scanned in 54.453 seconds
host www.xcelent.biz www.xcelent.biz has address 61.218.79.53 host 61.218.79.53 53.79.218.61.in-addr.arpa domain name pointer 61-218-79-53.HINET-IP.hinet.net
and people wonder why i firewall 60/7
thats not been my experience
on
Hardening Apache
·
· Score: 2, Informative
I designed the backend of www.babiesfirstchoice.com and we used apache 2. Its been hugely stable for us (the downtime we've seen was not due to apache problems) and lets us do everything we need to do on it. An IIS box would of cost thousands more due to licensing and the extra hardware needed to push M$ solutions (BFC currently runs on a athlon 1700xp with 512 megs of ddr and a basic ide hard drive, nothing fancy).
its ironic, i've never seen any of their crap, er kit in many years of IT employment. I only heard about them during that idiotic gif episode, which made me instantly despise them. Got news for you unisys, you only get one chance to make a good impression, and you fools smoked that royally with the gif disaster.
in fact, they were so nice, they fixed all the other security issues in IE too, and even included some nice extras like popup blocking and tabbed browsing. And the best thing of all, they fixed it for free, so you dont even need to pay them for all their hard work.
no, just a mail admin that doesnt put up with spammy abusive networks. I am sick and tired of paying for the bandwidth and have spammers treat my mail server as their dumping ground for advertising, porn, viagra, 419's, viruses, you name it. My inbox stays damn clean anymore, and i like it that way. Your more then welcome to use hotmail or yahoo, or whatever, and get your inbox flooded with crap. My server, my rules, my firewall.
Comcast (hereby referred to as Spamcast) has ignored their massive spam problem for years now. Fortunately for me the solution was to firewall all of their dynamic space from my mail server.
Apparently Spews thought nuking the dynamic users wasnt enough, and blacklisted all of their dynamic space plus most of their corporate servers as well.
One of these days Spamcast will wake up and realize that a huge chunk of the internet has blackholed them. I only wonder how many months or years it will take for the clue to sink in.
Slashdot Mirror
host fedora-redhat.com
fedora-redhat.com has address 66.218.79.149
fedora-redhat.com has address 66.218.79.155
fedora-redhat.com has address 66.218.79.147
fedora-redhat.com has address 66.218.79.148
whois 66.218.79.149
OrgName: Yahoo!
OrgID: YAOO
Address: 701 First Avenue
City: Sunnyvale
StateProv: CA
PostalCode: 94089
Country: US
NetRange: 66.218.64.0 - 66.218.95.255
CIDR: 66.218.64.0/19
Trying to ddos yahoo wont get you very far : )
neither ev1 or above.net will do shit about this. Both are massive spam/abuse havens and ignore or bounce abuse complaints. Solution? Firewall the offending net ranges.
bird. California education code doesnt mean jack shit in the 49 other states. Better yet, host the server in europe (havenco anyone?), so if UCSD decides to send a DMCA or some other bullshit violation notice, the web site owners can use it for toliet paper.
host www.78p.com
www.78p.com has address 1.10.5.89
UPC (aka chello) ignore all complaints, valid or not, including spam complaints.
see for yourself
Chello.nl
Chello.at
clamscan possibleVirus.jpg
possibleVirus.jpg: Exploit.JPEG.Comment FOUND
----------- SCAN SUMMARY -----------
Known viruses: 24607
Scanned directories: 0
Scanned files: 1
Infected files: 1
Data scanned: 0.00 MB
I/O buffer size: 131072 bytes
Time: 0.501 sec (0 m 0 s)
also updated nav corp 8 with latest defs (9/27/04) and it found it. AVG free edition doesnt as of yet.
At CSU, we're probably going to ditch Office in the next year or so as Uncle Bill is trying to extort an insane amount of money from us to continue using it. And since star office is free for higher ed.....
its either billg@microsoft.com
.com ?:) )
or
president@whitehouse.gov (or was it
Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2004-09-22 09:54 MDT
Interesting ports on 61-218-79-53.HINET-IP.hinet.net (61.218.79.53):
(The 1651 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
80/tcp open http
111/tcp open rpcbind
135/tcp filtered msrpc
443/tcp open https
445/tcp filtered microsoft-ds
3306/tcp open mysql
6000/tcp open X11
Nmap run completed -- 1 IP address (1 host up) scanned in 54.453 seconds
host www.xcelent.biz
www.xcelent.biz has address 61.218.79.53
host 61.218.79.53
53.79.218.61.in-addr.arpa domain name pointer 61-218-79-53.HINET-IP.hinet.net
and people wonder why i firewall 60/7
I designed the backend of www.babiesfirstchoice.com and we used apache 2. Its been hugely stable for us (the downtime we've seen was not due to apache problems) and lets us do everything we need to do on it. An IIS box would of cost thousands more due to licensing and the extra hardware needed to push M$ solutions (BFC currently runs on a athlon 1700xp with 512 megs of ddr and a basic ide hard drive, nothing fancy).
its ironic, i've never seen any of their crap, er kit in many years of IT employment. I only heard about them during that idiotic gif episode, which made me instantly despise them. Got news for you unisys, you only get one chance to make a good impression, and you fools smoked that royally with the gif disaster.
the md5sum is
59a98f181fe383907e520a391d75b5a7
lol, wouldnt matter, we block most of the p2p and throttle the dorms like mad ;) Its nice being IT :)
i didnt have enough ram to keep apache happy.
firewall box = 128 megs
new box = 1 gig ram
at least the firewall box didnt crash, thank god for linux (fedora core 2, kernel 2.6.7 (custom build) for the curious).
bad transfer :( try it again. I checked the source file and its got the right md5sum,
59a98f181fe383907e520a391d75b5a7
I also switched over to a much more powerful machine to handle the load. Use the same link, it will redirect you.
mother of god...........
# w
20:55:55 up 26 days, 21:52, 3 users, load average: 45.87, 39.03, 27.88
# w
20:35:29 up 26 days, 21:32, 3 users, load average: 23.07, 13.65, 6.75
indulge me, and let me know how fast your pulling it from me at.........thanks
hopefully the machine can handle a bit of slashdotting ; )
http://phb.engr.colostate.edu:28888
no guarentees how long it stays up.
oh wait, they "innovate" by stealing everyone else's ideas. Maybe they will put out a patent on that.
i had my gateway firewall 216.73.80.0/20 a LONG time ago.
from whois
OrgName: Double Click, Inc.
OrgID: DOUBLE-3
Address: 450 West 33rd Street 16th floor
City: New York
StateProv: NY
PostalCode: 10001
Country: US
NetRange: 216.73.80.0 - 216.73.95.255
CIDR: 216.73.80.0/20
in fact, they were so nice, they fixed all the other security issues in IE too, and even included some nice extras like popup blocking and tabbed browsing. And the best thing of all, they fixed it for free, so you dont even need to pay them for all their hard work.
no, just a mail admin that doesnt put up with spammy abusive networks. I am sick and tired of paying for the bandwidth and have spammers treat my mail server as their dumping ground for advertising, porn, viagra, 419's, viruses, you name it. My inbox stays damn clean anymore, and i like it that way. Your more then welcome to use hotmail or yahoo, or whatever, and get your inbox flooded with crap. My server, my rules, my firewall.
Comcast (hereby referred to as Spamcast) has ignored their massive spam problem for years now. Fortunately for me the solution was to firewall all of their dynamic space from my mail server.
Apparently Spews thought nuking the dynamic users wasnt enough, and blacklisted all of their dynamic space plus most of their corporate servers as well.
One of these days Spamcast will wake up and realize that a huge chunk of the internet has blackholed them. I only wonder how many months or years it will take for the clue to sink in.