got root?
Tuesday, July 19, 2005
2 for 2, I might make this a part-time job... anyway who thought it productive to read junk mail? :) this second case was LaSalle and a site in Korea... an ex-site in Korea.

cheers!
7/19/2005 10:49:00 a.m. ||  1 comments || 
Monday, July 18, 2005
Fwd: Account investigation warning [Sat, 16 Jul 2005 17:44:24 -0300]

--- hypronix <hypronix@yahoo.com> wrote:

> From hypronix Mon Jul 18 01:42:50 2005
> Received: from [inferno] by web40702.mail.yahoo.com via HTTP; Mon,
> 18 Jul 2005 01:42:50 PDT
> Date: Mon, 18 Jul 2005 01:42:50 -0700 (PDT)
> From: hypronix <>
> Subject: Fwd: Account investigation warning [Sat, 16 Jul 2005 17:44:24
> -0300]
> To: abuse@thrunet.com
> CC: Report@doshelp.com, emailhoax@abnamro.com
> Bcc: this.blog
> MIME-Version: 1.0
> Content-Type: multipart/mixed; boundary="0-1059165754-1121676170=:3036"
> Content-Transfer-Encoding: 8bit
> Content-Length: 11679
>
> Please consider the following site as it is phishing information from
> customers of LaSalle Bank:
>
> http://211.59.14.67:680/rock/la
>
> The IP was traced in the range owned by Thrunet.com so I feel it is your
> company's responsibility to remove this website.
>
> [code]
>
> root@inferno root # whois 211.59.14.67
> query: 211.59.14.67
>
> # ENGLISH
>
> KRNIC is not a ISP but a National Internet Registry similar to APNIC.
> The followings are information of the organization that is using the
> IPv4
> address.
>
> IPv4 Address : 211.59.14.0-211.59.14.255
> Network Name : THRUNET-INFRA
> Connect ISP Name : THRUNET
> Connect Date : 20031218
> Registration Date : 20040922
>
> [ Organization Information ]
> Organization ID : ORG35266
> Org Name : Thrunet Co., Ltd.
> State : SEOUL
> Address : Thrunet IDC B/D, 1338-5, Seocho-2dong, Seocho-ku
> Zip Code : 137-072
>
> {rest of `whois` query response removed}
>
> root@inferno root # traceroute 211.59.14.67
> traceroute to 211.59.14.67 (211.59.14.67), 64 hops max, 52 byte packets
> 1 gw.freeshell.org (192.94.73.62) 0.561 ms 0.456 ms 0.434 ms
> 2 sl-gw28-fw-6-1-0-TS12.sprintlink.net (160.81.88.133) 7.793 ms
> 4.217
> ms sl-gw28-fw-6-1-0-TS22.sprintlink.net (160.81.88.169) 4.172 ms
> 3 sl-bb20-fw-2-0.sprintlink.net (144.232.12.161) 4.765 ms 11.605 ms
> 4.328 ms
> 4 sl-st21-dal-13-0.sprintlink.net (144.232.20.81) 13.704 ms 20.444
> ms
> 5.519 ms
> 5 so1-1-0-2488M.ar1.DAL2.gblx.net (208.51.134.33) 8.669 ms 22.219 ms
>
> 5.216 ms
> 6 so3-0-0-2488M.ar3.PAO2.gblx.net (67.17.94.97) 63.463 ms 48.682 ms
> 61.869 ms
> 7 ANC-Korea-Thrunet-Co-MOVE.ge-6-0-0.ar3.PAO2.gblx.net (67.17.163.22)
> 47.251 ms 48.811 ms 46.915 ms
> 8 211.110.7.101 (211.110.7.101) 200.778 ms 182.630 ms 184.053 ms
> 9 210.117.126.25 (210.117.126.25) 209.756 ms 201.706 ms 194.725 ms
> 10 210.117.121.130 (210.117.121.130) 184.155 ms 195.527 ms 221.298
> ms
> 11 210.117.121.169 (210.117.121.169) 225.086 ms 228.391 ms 195.173
> ms
> 12 dom1-incheon1.thrunet.com (210.117.127.162) 202.972 ms 197.256 ms
> 196.719 ms
> 13 210.221.6.54 (210.221.6.54) 196.707 ms 196.231 ms 206.281 ms
> 14 211.59.14.67 (211.59.14.67) 205.825 ms 192.363 ms 215.165 ms
>
> {traceroute information obtained through a remote shell}
>
> [/code]
>
> I thank you in advance for the steps taken in removing this thread from
> the Internet. This e-mail has also been CC-ed to ABNA MRO to allow them
> to
> take necessary steps as they see fit.
>
>
> Note: forwarded message attached.
>

BLOGGER NOTE: I had to re-fwd the e-mail because I keep forgetting that
Blogger doesn't accept attachments of sorts... sorry for the formatting
mishaps and whatnot.


____________________________________________________
Start your day with Yahoo! - make it your home page
http://www.yahoo.com/r/hs

7/18/2005 01:45:00 a.m. ||  0 comments || 
Friday, July 08, 2005
So it's really hard to decide what to tell to a person when they let you know they are spammers and carders, and happy to be into it. I met such a person on chat tonight and I was unable to explain to her why I think spamming is such a disgusting practice. Far from me, now, a possible epiphany regarding the fact that maybe I do not mind spam as much as I think I do and so on, so forth... no, nothing of the sort.

But I was merely curious how does one begin to explain to a practicioner of spamming that what they do is inherently wrong? I mean, in an intelligent, equal-footing conversation, if the climate permits, how do the two sides advertise their point of view?

It is very late and I am unable to further any possible train of thought... I leave it to the random reader to throw a comment or two.
7/08/2005 04:38:00 a.m. ||  1 comments || 
Wednesday, July 06, 2005
I so didn't need this...

but of course it happened. Filesystem inconsistencies on /home/ which is my reiserfs v3.6 partition... I had issues once before, but the badblock list was short... now, more stuff showed up. Anyway after 2 days and a whole bunch of `badblocks -o reiserdebug.log -v /dev/hda` and reiserfsck-ing I have it all back together... still... I believe a new hardrive might be required for my laptop and we all know what prices those things have. Adam can buy a whole computer with $300 and I have to pay close to that for a hardrive... it's not fair.

But yes, one of my other computers, purgatorio, is an AMD Athlon @ 1 GHz with 512 RAM and a 64MB ATI Radeon 7000... one could probably get even more back for the buck, but the machine has no problem running either *n`x-es or Windows stuff.
7/06/2005 03:23:00 p.m. ||  0 comments || 
Friday, July 01, 2005
okay so taking that site down was quick, as less than 24 hours after the post the URL was unreachable... I also received a generic e-mail reply from spoof@ebay.com teaching me how to avoid getting duped by spoof e-mails... hello! what did i just do? :)

well in all fairness I think AoL conducted themselves well since it took them this short to attend to the matter... of course this isn't the first or last phishing scam out there but... the fewer the better. I'm still very curious whether the WHOIS information - particularly the part pertaining to the name and personal details of the person to register ebaymain.com - is true... something tells me it probably isn't but... who knows? it'd be hard to take appropriate legal action about this, anyhow...

[ the political part of this rant has been left out due to temporal reasons =) ]
7/01/2005 07:22:00 p.m. ||  0 comments ||