swinog June 2021

swinog@lists.swinog.ch

9 participants
7 discussions

Geldspielgesetz: 404 COMLOT renamed to GESPA? (or did they get hacked!?)

by Jeroen Massar

Hi Folks, Is there an official announcement that I missed? Seems that blocklist.gespa.ch is the new place, and that all of comlot.ch now points to gespa.ch, but filenames have been renamed too. (see previous brokeness email in the mailarchive for old details). Considering neither is under admin.ch, cannot really say it is an official website either. Anybody got an official update about this, or did they just break the system again? Cannot find any duckduckgoogle references either. Why did Swiss Voters vote for this broken system if it is not working anyway? (it is not, because otherwise it is a perfect list to find your casinos that are 'illegal' or something).... All those poor* casino users that now have access to a bunch of unlicensed casinos... what a sad day again. Greets, Jeroen * = as the house always wins ----- $ wget -v https://blacklist.comlot.ch/blacklist.comlot.ch.pub --2021-06-03 08:21:02-- https://blacklist.comlot.ch/blacklist.comlot.ch.pub Resolving blacklist.comlot.ch (blacklist.comlot.ch)... 194.187.88.5 Connecting to blacklist.comlot.ch (blacklist.comlot.ch)|194.187.88.5|:443... connected. HTTP request sent, awaiting response... 301 Moved Permanently Location: https://blocklist.gespa.ch//blacklist.comlot.ch.pub [following] --2021-06-03 08:21:03-- https://blocklist.gespa.ch//blacklist.comlot.ch.pub Resolving blocklist.gespa.ch (blocklist.gespa.ch)... 194.187.88.5 Connecting to blocklist.gespa.ch (blocklist.gespa.ch)|194.187.88.5|:443... connected. HTTP request sent, awaiting response... 404 Not Found 2021-06-03 08:21:05 ERROR 404: Not Found. ----- It seems the "official specification" (comlot.ch redirects is gone): https://www.gespa.ch/download/pictures/9a/e78461lvxuzcv82c505b1kpckd58pf/sp… still have blocklist.comlot.ch in it. Except for the URL itself, Google also finds nothing about this: https://www.google.com/search?hl=en&q=%22blacklist.gespa.ch%22 $ dig +short comlot.ch 194.187.88.3 $ dig +short comlot.ch aaaa <none> $ dig +short comlot.ch mx 10 mx.cmsbox.com. $ dig +short comlot.ch ns ns3.netstyle.ch. ns1.netstyle.ch. ns2.netstyle.ch. $ dig +short gespa.ch a 194.187.88.3 $ dig +short gespa.ch aaaa 2a00:c38:2:9f62::2:3 dig +short comlot.ch mx 10 mx.cmsbox.com. $ dig +short gespa.ch ns ns3.netstyle.ch. ns2.netstyle.ch. ns1.netstyle.ch. I also gotta love the generic wildcard Let's Encrypt cert, though comlot.ch did that too https://crt.sh/?q=gespa.ch https://crt.sh/?q=comlot.ch Looks like a rather generic hoster. Maybe the whole domain got hacked?

1 year, 8 months

MELANI BGP Blackhole Service

by Fredy Künzler

A customer (!) pointed us to the MELANI BGP Blackhole Service which has been around for almost two years, apparently. For technical details see the attached file. Are we the only ones not aware of it? I don't recall an official announcement by the MELANI team in this list or elsewhere in the community, and as far as I know it hasn't been discussed yet within SwiNOG. While the technical implementation seems to be rather simple - an eBGP multihop session to the IP address mentioned (hosted by nine.ch), a number of legal, operational and political questions are remaining: - no IPv6 implementation, no backup (2nd) host - how is the list of IP addresses maintained? Is there a regular check and removal procedure of no-longer-botnet-addresses? - is there any guarantee that the infrastructure will never be abused for (state) censorship? - how to implement it only for end users which do want the service while not distributing the black holes in the whole backbone - and, last but not least, why MELANI team or the so called "Outreach Team vom Bund" (Quote customers email) never told the SwiNOG community about the idea? Instead, they are suggesting strange things: "Gemäss outreach, ist das bei Init7 nicht möglich da dieses gegen eure Policy verstosst?" I suppose MELANI and the "Outreach Team vom Bund" should give some explanations. They do know where to find the SwiNOG community, and their style of (non-)communication is not acceptable. -- Fredy Künzler Init7 (Switzerland) Ltd. Technoparkstrasse 5 CH-8406 Winterthur https://www.init7.net/

1 year, 8 months

more S3

by Eliot Lear

Colleagues, Sorry for the terse note earlier (I hit the wrong key). In any case, I was seeing latency of anywhere from 89-300ms earlier from two vantage points- Cablecom, where it is still a bit of an issue, and Datasource, where it is now clearing. Eliot

1 year, 8 months

S3 problems?

by Eliot Lear

Is anyone else seeing high latency to S3 today?

1 year, 8 months

Hardware for sale

by solutions＠datawire.ch

Hey guys, We have some hardware to sell from a customer: Sophos SG 115 Sophos SG 105 Cisco Catalyst 3560 PoE 8 Port Cisco Catalyst 4506 * WS-4516-10GE * WS-X4548-GB-RJ45 (2x) * 2x PSU Cisco Catalyst 4506-E * WS-X45-SUB6-E * WS-4606-X2-E * 2 PSU Netapp FAS 3240 (2x) * 2 Filer Netapp DS4243 (4x) * 24x 2TB Netapp FAS 3140 * 2 Filer Netapp DS14 MK4 (4x) * 14x 450GB If interested, please contact me by e-mail. Vielen Dank & freundliche Grüsse Sebastian Hecht ___________________________ DATAWIRE AG Chamerstrasse 42, 6331 Hünenberg Tel. +41 41 728 09 99 E-Mail: <mailto:solutions@datawire.ch> solutions(a)datawire.ch Website: <https://datawire.ch/> https://datawire.ch

1 year, 8 months

Fibrechannel Hardware for sale

by Adrian Kägi

Good day Guys We have in our Stock several fibre channel Switches for sale: See the short Inventory: 2x Brocade 5100 - 24Ports Licensed 4x HP StorageWorks 8/24 2x Brocade 300 24 Port Several SFPs for vendors above All the Switches are "Enterpise Licensed"! If you need spare parts for your existing FC Fabric, need a expensive door stoper or enrich your home office, please contact me OL. Also for further technical and financial details. Have a nice day! Cheers Adrian

1 year, 9 months

Fwd: Coop.ch geoblocking?

by Serge Droz

Hi all It seems there is a SWINOG member who should clean his computer. Happy hunting Serge -------- Forwarded Message -------- Subject: Re: [swinog] Coop.ch geoblocking? Date: Mon, 21 Jun 2021 17:57:11 +0200 From: Roger <in3days(a)in3days.org> Reply-To: Roger <in3days(a)in3days.org> To: Serge Droz <s.droz(a)protonmail.ch> Good day! We mail document to you again. You can discover it at the link lower: annanigrodermatologia.it/mac-lesch/s_droz-80.zip > Hoi Roger > > ich denke nur das diese unterdrückung von unerwünschten > meinungen falsch > ist . > Das sehe ich auch so. Aber das macht Coop > ja nicht. > und im sinne coop finde ich es erstens nutzlos und > zweitens bedenklich > wenn man security probleme mit regionalesn > beschänkungen zu vermindern > versucht statt sie zu beseitigen > Keine > Ahnung warum das Coop macht, ist aber ihr Recht, ist ja Ihre Webseite. > Gruss Serge > .. so long ;) > > Roger > > > On 28.02.2021 19:37, Serge > Droz wrote: >> I think you misunderstand what free speech is. Free > speach means, you >> cannot be punished for what you say, nothing > more. It does not guarantee >> you an audience, or a platform. >> An, > although a bit US centric, explanation is here: >> > https://www.aclu.org/other/what-censorship >> >> If blocking is a good > idea for security reasons is en entirely different >> questions, and > has nothing what so ever to do with free speech or >> censorship. >> > >> Best >> Serge >> >> >> >> -- >> Serge Droz >> Security Lead >> > Proton Technologies AG >> -- Serge Droz Security Lead Proton > Technologies AG

1 year, 9 months

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

swinog June 2021