Re: <nettime> Wikileaks and spam

Nicholas Knouf on Mon, 13 Dec 2010 15:42:20 +0100 (CET)

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: <nettime> Wikileaks and spam

To: nettime-l@kein.org
Subject: Re: <nettime> Wikileaks and spam
From: Nicholas Knouf <nak44@cornell.edu>
Date: Mon, 13 Dec 2010 00:14:47 -0500
In-reply-to: <201012130439.oBD4dU4a031311@walnut.mail.cornell.edu>
References: <201012130439.oBD4dU4a031311@walnut.mail.cornell.edu>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.13) Gecko/20101207 Lightning/1.0b2 Thunderbird/3.1.7

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12/12/2010 10:31 PM, Joly MacFie wrote:
> That IP address is, indeed, on the Spamhaus block list, but it isn't because
> of Wikileaks -- it is because the address is in an IP address range
> belonging to a Russian ISP that is part of an alleged criminal enterprise
> specializing in distribution of spam, botnets, phising, and malware.   The
> machines in that range do distribute spam and bad software.  Whether or not
> there is really a wikileaks mirror there or not is not something I do not
> intend to check -- even if there is a mirror, there is a good possibility
> the documents have been seeded with malware.

- From the wikileaks.info about page:

"This site is not affiliated with Wikileaks. It is hosted on a different
server, uses different DNS servers, a different registrar and has a
different owner. So if Wikileaks is not reachable any more (due to
technical or due to legal reasons), you can try different links from
this site. "

It would appear to be a solidarity site that simply hosts the IP
addresses of different "official" wikileaks sites.

And it would be hard for the documents to be seeded with malware; all of
the Cablegate mirrors are serving straight HTML---no PDFs, no DOCs, etc.
 Only a single archive file with torrents of their earlier releases.
Different unscrupulous mirror providers could do something malicious
with the files once they are uploaded to their server, but this is
nothing different than connecting to any other server on the internet.
This sounds similar to the "OMG the CIA setup a honey-pot wikileaks
mirror" brouhaha that was the result of---willful or
not---misinformation; see
http://breakingthecalm.blogspot.com/2010/12/musing-on-misinformation-morons.html
.

Anyone hosting a WikiLeaks mirror on a home cable or DSL connection will
also probably come from an IP within a spam blocklist because so much
spam comes from compromised home machines.

nick
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk0Fq5sACgkQoHDFiKQ8nMkZDgCcC06eviet0OzLhy/bOCiqFTlC
iYYAn1bDs2H8g5zJ8i3+NnxxskT57Pjz
=eEOs
-----END PGP SIGNATURE-----

#  distributed via <nettime>: no commercial use without permission
#  <nettime>  is a moderated mailing list for net criticism,
#  collaborative text filtering and cultural politics of the nets
#  more info: http://mail.kein.org/mailman/listinfo/nettime-l
#  archive: http://www.nettime.org contact: nettime@kein.org

Prev by Date: Re: <nettime> Wikileaks and spam
Next by Date: Re: <nettime> A thesis on WL theses and a suggestion
Previous by thread: Re: <nettime> Wikileaks and spam
Next by thread: Re: <nettime> Wikileaks and spam
Index(es):
- Date
- Thread