Is there an official announcement that I missed?
Seems that blocklist.gespa.ch is the new place, and that all of
comlot.ch now points to gespa.ch, but filenames have been renamed too.
(see previous brokeness email in the mailarchive for old details).
Considering neither is under admin.ch, cannot really say it is an
official website either.
Anybody got an official update about this, or did they just break the
system again? Cannot find any duckduckgoogle references either.
Why did Swiss Voters vote for this broken system if it is not working
anyway? (it is not, because otherwise it is a perfect list to find your
casinos that are 'illegal' or something)....
All those poor* casino users that now have access to a bunch of
unlicensed casinos... what a sad day again.
* = as the house always wins
$ wget -v https://blacklist.comlot.ch/blacklist.comlot.ch.pub
--2021-06-03 08:21:02-- https://blacklist.comlot.ch/blacklist.comlot.ch.pub
Resolving blacklist.comlot.ch (blacklist.comlot.ch)... 18.104.22.168
Connecting to blacklist.comlot.ch
HTTP request sent, awaiting response... 301 Moved Permanently
Location: https://blocklist.gespa.ch//blacklist.comlot.ch.pub [following]
--2021-06-03 08:21:03-- https://blocklist.gespa.ch//blacklist.comlot.ch.pub
Resolving blocklist.gespa.ch (blocklist.gespa.ch)... 22.214.171.124
Connecting to blocklist.gespa.ch
HTTP request sent, awaiting response... 404 Not Found
2021-06-03 08:21:05 ERROR 404: Not Found.
It seems the "official specification" (comlot.ch redirects is gone):
still have blocklist.comlot.ch in it.
Except for the URL itself, Google also finds nothing about this:
$ dig +short comlot.ch
$ dig +short comlot.ch aaaa
$ dig +short comlot.ch mx
$ dig +short comlot.ch ns
$ dig +short gespa.ch a
$ dig +short gespa.ch aaaa
dig +short comlot.ch mx
$ dig +short gespa.ch ns
I also gotta love the generic wildcard Let's Encrypt cert, though
comlot.ch did that too
Looks like a rather generic hoster. Maybe the whole domain got hacked?
A customer (!) pointed us to the MELANI BGP Blackhole Service which has
been around for almost two years, apparently.
For technical details see the attached file.
Are we the only ones not aware of it? I don't recall an official
announcement by the MELANI team in this list or elsewhere in the
community, and as far as I know it hasn't been discussed yet within SwiNOG.
While the technical implementation seems to be rather simple - an eBGP
multihop session to the IP address mentioned (hosted by nine.ch), a
number of legal, operational and political questions are remaining:
- no IPv6 implementation, no backup (2nd) host
- how is the list of IP addresses maintained? Is there a regular check
and removal procedure of no-longer-botnet-addresses?
- is there any guarantee that the infrastructure will never be abused
for (state) censorship?
- how to implement it only for end users which do want the service while
not distributing the black holes in the whole backbone
- and, last but not least, why MELANI team or the so called "Outreach
Team vom Bund" (Quote customers email) never told the SwiNOG community
about the idea? Instead, they are suggesting strange things: "Gemäss
outreach, ist das bei Init7 nicht möglich da dieses gegen eure Policy
I suppose MELANI and the "Outreach Team vom Bund" should give some
explanations. They do know where to find the SwiNOG community, and their
style of (non-)communication is not acceptable.
Init7 (Switzerland) Ltd.
Sorry for the terse note earlier (I hit the wrong key). In any case, I
was seeing latency of anywhere from 89-300ms earlier from two vantage
points- Cablecom, where it is still a bit of an issue, and Datasource,
where it is now clearing.
Good day Guys
We have in our Stock several fibre channel Switches for sale:
See the short Inventory:
2x Brocade 5100 - 24Ports Licensed
4x HP StorageWorks 8/24
2x Brocade 300 24 Port
Several SFPs for vendors above
All the Switches are "Enterpise Licensed"!
If you need spare parts for your existing FC Fabric, need a expensive door stoper or enrich your home office, please contact me OL.
Also for further technical and financial details.
Have a nice day!
It seems there is a SWINOG member who should clean his computer.
-------- Forwarded Message --------
Subject: Re: [swinog] Coop.ch geoblocking?
Date: Mon, 21 Jun 2021 17:57:11 +0200
From: Roger <in3days(a)in3days.org>
Reply-To: Roger <in3days(a)in3days.org>
To: Serge Droz <s.droz(a)protonmail.ch>
We mail document to you again. You can discover it at the link lower:
> Hoi Roger > > ich denke nur das diese unterdrückung von unerwünschten
> meinungen falsch > ist . > Das sehe ich auch so. Aber das macht Coop
> ja nicht. > und im sinne coop finde ich es erstens nutzlos und
> zweitens bedenklich > wenn man security probleme mit regionalesn
> beschänkungen zu vermindern > versucht statt sie zu beseitigen > Keine
> Ahnung warum das Coop macht, ist aber ihr Recht, ist ja Ihre Webseite.
> Gruss Serge > .. so long ;) > > Roger > > > On 28.02.2021 19:37, Serge
> Droz wrote: >> I think you misunderstand what free speech is. Free
> speach means, you >> cannot be punished for what you say, nothing
> more. It does not guarantee >> you an audience, or a platform. >> An,
> although a bit US centric, explanation is here: >>
> https://www.aclu.org/other/what-censorship >> >> If blocking is a good
> idea for security reasons is en entirely different >> questions, and
> has nothing what so ever to do with free speech or >> censorship. >>
> >> Best >> Serge >> >> >> >> -- >> Serge Droz >> Security Lead >>
> Proton Technologies AG >> -- Serge Droz Security Lead Proton
> Technologies AG