[OM] Internet Intrusions

Subject: [OM] Internet Intrusions
From: Chris Trask <christrask@xxxxxxxxxxxxx>
Date: Wed, 30 Oct 2019 11:47:35 -0700 (GMT-07:00)
     This morning I tried to alert my neighbourhood about a police pursuit by 
way of our Facebook page.  Trying to access that page went beyond futile as I 
watched it grind to a half while at the same time noticing that my modem was 
running at full speed.  A quick check with the TCP viewer showed that I was 
being hijacked by 1e100.net, but not in the usual way.  They were uploading 
more than 250K of data FROM my laptop INTO their system.  I quickly broke that 
connection and put the IP address into the firewall.

     I really wasn't all that surprised.  The other internet intruder, 
cloudfront.net, recently opened up new blocks of IP addresses, more than a 
thousand.  I've been putting those addresses into the firewall as they show up, 
and it's been keeping me pretty busy.

     Google openly claims that 1e100.net is only validating IP addresses that 
are connected to THEIR equipment, but that does not justify stealing 250K+ of 
data from MY laptop(s).  Something else is going on here, and I doubt that it 
has anything to do with verifying IP addresses.

     Cloudfront.net is equally sinister.  They periodically intercept internet 
connections for supposedly marketing purposes.  But, I have found them 
intercepting connections to such non-market sites as the National Hurricane 
Center (NHC).  And lately they have been intercepting uplink connections to 
Facebook, which results in no downloads from the Facebook image server(s).  I 
learned this by way of experimentation.

     So what exactly are these internet pirates up to?


When the going gets weird, the weird turn pro 
     - Hunter S. Thompson
Options: http://lists.thomasclausen.net/mailman/listinfo/olympus
Archives: http://lists.thomasclausen.net/mailman/private/olympus/
Themed Olympus Photo Exhibition: http://www.tope.nl/

<Prev in Thread] Current Thread [Next in Thread>