While we worry about Vyatta and Bras.....

..in other news (that seems to have attracted little attention)...

http://www.moonbattery.com/archives/2010/07/73000-blogs-shu.html

73000 Internet "sites" where shutdown by somebody, for something.

http://yro.slashdot.org/story/10/07/19/2052202/Blogetery-Shutdown-Due-To-al-Qaeda-Info

The single host/box had bomb making info and hit lists. Yeah, I'd
shut it down too if it was on my network.

Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474

Seems like somebody would know who ordered it. And were all 73000
"sites" about making bombs?

..in other news (that seems to have attracted little attention)...

http://www.moonbattery.com/archives/2010/07/73000-blogs-shu.html

73000 Internet "sites" where shutdown by somebody, for something.

http://yro.slashdot.org/story/10/07/19/2052202/Blogetery-Shutdown-Due-To-al-Qaeda-Info

The single host/box had bomb making info and hit lists. Yeah, I'd
shut it down too if it was on my network.

Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474

Seems like somebody would know who ordered it. And were all 73000
"sites" about making bombs?

Nobody ordered it from what I can tell; it was requested and the Burst site CEO decided to terminate
the service. That is a rather different matter.

http://news.cnet.com/8301-31001_3-20010923-261.html

None of this is going to help configure any routers.

Regards
Marshall

hosting company decided to do the adult thing and pull the plug. 73k
'sites' may be a bit of a stretch IMHO.

http://news.cnet.com/8301-31001_3-20010923-261.html
"Sources close to the investigation say that included in those
materials were the names of American citizens targeted for
assassination by al-Qaeda. Messages from Osama bin Laden and other
leaders of the terrorist organization, as well as bomb-making tips,
were also allegedly found on the server. But Marr said a Burst.net
employee erred in telling Blogetery's operator and members of the
media that the FBI had ordered it to terminate Blogetery's service. He
said Burst.net did that on its own. "

Joe Hamelin, W7COM, Tulalip, WA, 360-474-7474

Yeah. We gotta configure routers. Why do I keep hearing a phone ring
and ring and ring?

Larry Sheldon wrote:

..in other news (that seems to have attracted little attention)...

http://www.moonbattery.com/archives/2010/07/73000-blogs-shu.html

73000 Internet "sites" where shutdown by somebody, for something.

"BurstNet, the Web-hosting company, informed Blogetery's operator that service was terminated at the request of some law enforcement agency but wouldn't say which one. As for the reason, BurstNet hasn't made that clear either. In an e-mail to Blogetery's operator, BurstNet managers did say that they had little choice but to terminate service."

Burstnet huh? Somehow I am not surprised.
Currently I have the below in my blocklists. Since this company facilitates spammers and other dubious activity and doesn't look like it hosts much legitimate content.

Maybe the shutdown was an attempt to combat spam? (yeah right!).

I suggest everyone adds these to their blocklists:

# Hostnoc/Burstnet - 31032010
64.120.128.0/17
64.191.0.0/17
66.96.192.0/18
66.197.128.0/17
96.9.128.0/18
173.212.192.0/18
184.82.0.0/16

I should add that I have personally found proof of brute force break in attempts to a company's systems coming from at least one of those IP ranges.

They've been doing a lot of both for a decade. Others have noticed as well:

  http://groups.google.com/group/news.admin.net-abuse.email/msg/fba14415f70e08c8

I strongly recommend blacklisting/null-routing anything they touch.

---Rsk

Most people call a network of routers run in isolation, without any care or
consideration of the outside world and its potential impact on operations, a
"test lab". The occasional injection of external reality is useful.

And I dunno - some of us may indeed configure our routers differently after
being reminded that we could get a letter from the FBI similar to the one that
Burstnet got. When was the last time you checked your routers to ensure that
they implemented the action your corporate policy dictates for receipt of such
a letter?