what were the ramifications?
Customer VPSes are compromised all the time and used to send out
phishing emails, phishing blog comments, participate in denial of
service attacks on other people, do SSH dictionary attacks, host
fake phishing web sites, and so on. I wouldn't say people are
targeted =E2=80=94 people are compromised by widespread scanning for known
exploits and weak passwords.
The abusive activity is either reported to us by third parties, or
else is detected by us, and then we diable the VPS's network and ask
the customer to investigate. Customers that are unable to get to the
bottom of the problem are let go.
We've never had a victim of an attack from one of our customers
threaten legal action against us or the customer but I suppose it is
theoretically possible. It seems unlikely to happen since we would
do the best we could to curtail the activity as soon as possible, so
it would be hard to argue that we'd ever acted negligently. I'd
rather that no one try to test this non-legal-professional theory
though!
Contact from law enforcement or third party's legal representatives
Cheers,
Andy
--=20
http://bitfolk.com/ -- No-nonsense VPS hosting
--VB8cwN2oRT/o81UX
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEAREDAAYFAk8/nRMACgkQIJm2TL8VSQtLFACggg5BVBM/5JFLCbaqGqVFHR9I
/UsAn1POM76JZt2ccSH2vFXInySL/QZz
=CM/g
-----END PGP SIGNATURE-----
--VB8cwN2oRT/o81UX--
From andy@??? Sat Feb 18 12:45:59 2012
Received: from andy by mail.bitfolk.com with local (Exim 4.72)
(envelope-from <andy@???>) id 1Ryjfr-0000Yv-LU
for users@???; Sat, 18 Feb 2012 12:45:59 +0000
Date: Sat, 18 Feb 2012 12:45:59 +0000
From: Andy Smith <andy@???>
To: users@???
Message-ID: <20120218124559.GY23380@???>
References: <1329567256.98879.YahooMailClassic@???>
<20120218124404.GX23380@???>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-ripemd160;
protocol="application/pgp-signature"; boundary="f8uTbadvzI+nQOZu"
Content-Disposition: inline
In-Reply-To: <20120218124404.GX23380@???>
OpenPGP: id=BF15490B; url=http://strugglers.net/~andy/pubkey.asc
X-URL: http://strugglers.net/wiki/User:Andy
User-Agent: Mutt/1.5.18 (2008-05-17)
X-Virus-Scanner: Scanned by ClamAV on mail.bitfolk.com at Sat,
18 Feb 2012 12:45:59 +0000
X-SA-Exim-Connect-IP: <locally generated>
X-SA-Exim-Mail-From: andy@???
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
spamd1.lon.bitfolk.com
X-Spam-Level:
X-Spam-ASN:
X-Spam-Status: No, score=-0.0 required=5.0 tests=NO_RELAYS shortcircuit=no
autolearn=disabled version=3.3.1
X-Spam-Report: * -0.0 NO_RELAYS Informational: message was not relayed via SMTP
X-SA-Exim-Version: 4.2.1 (built Wed, 25 Jun 2008 17:14:11 +0000)
X-SA-Exim-Scanned: Yes (on mail.bitfolk.com)
Subject: Re: [bitfolk] idle curiosity? bank phishing scam,
was Fw: Notice ID:01ZMCX
X-BeenThere: users@???
X-Mailman-Version: 2.1.11
Precedence: list
List-Id: Users of BitFolk hosting <users.lists.bitfolk.com>
List-Unsubscribe: <https://lists.bitfolk.com/mailman/options/users>,
<mailto:users-request@lists.bitfolk.com?subject=unsubscribe>
List-Archive: <http://lists.bitfolk.com/lurker/list/users.html>
List-Post: <mailto:users@lists.bitfolk.com>
List-Help: <mailto:users-request@lists.bitfolk.com?subject=help>
List-Subscribe: <https://lists.bitfolk.com/mailman/listinfo/users>,
<mailto:users-request@lists.bitfolk.com?subject=subscribe>
X-List-Received-Date: Sat, 18 Feb 2012 12:45:59 -0000
--f8uTbadvzI+nQOZu
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Sat, Feb 18, 2012 at 12:44:04PM +0000, Andy Smith wrote:
> is extremely rare.
^^ this line=E2=80=A6
> Contact from law enforcement or third party's legal representatives
=E2=80=A6was accidentally cut from here ^^
Cheers,
Andy
--f8uTbadvzI+nQOZu
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEAREDAAYFAk8/nYcACgkQIJm2TL8VSQuVrgCg82irJT3iWe9bn9Tpx/wazf5o
1fMAnA2vVY8hqgxWq6uu+dYaj0ptbTS5
=byvH
-----END PGP SIGNATURE-----
--f8uTbadvzI+nQOZu--
From dee@??? Sun Feb 19 16:15:30 2012
Received: from [2001:ba8:1f1:f0db:216:5eff:fe00:159] (helo=jane.earlsoft.co.uk)
by mail.bitfolk.com with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
(Exim 4.72) (envelope-from <dee@???>) id 1Rz9QA-0007uP-En
for users@???; Sun, 19 Feb 2012 16:15:30 +0000
Received: from [192.168.1.67] (93-97-71-226.zone5.bethere.co.uk [93.97.71.226])
(authenticated bits=0)
by jane.earlsoft.co.uk (8.13.8/8.13.8) with ESMTP id q1JFMdWg029872
for <users@???>; Sun, 19 Feb 2012 15:22:39 GMT
Message-ID: <4F4113BC.2060801@???>
Date: Sun, 19 Feb 2012 15:22:36 +0000
From: Deanna Earley <dee@???>
User-Agent: Mozilla/5.0 (Windows NT 6.2;
rv:10.0.1) Gecko/20120208 Thunderbird/10.0.1
MIME-Version: 1.0
To: users@???
References: <1329567256.98879.YahooMailClassic@???>
In-Reply-To: <1329567256.98879.YahooMailClassic@???>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.3
(jane.earlsoft.co.uk [85.119.83.77]);
Sun, 19 Feb 2012 15:22:40 +0000 (UTC)
X-bitfolk.com-Metrics-Host-Lookup-Failed: Reverse DNS lookup failed for
2001:ba8:1f1:f0db:216:5eff:fe00:159 (failed)
X-Virus-Scanner: Scanned by ClamAV on mail.bitfolk.com at Sun,
19 Feb 2012 16:15:30 +0000
X-SA-Exim-Connect-IP: 2001:ba8:1f1:f0db:216:5eff:fe00:159
X-SA-Exim-Mail-From: dee@???
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
spamd1.lon.bitfolk.com
X-Spam-Level:
X-Spam-ASN:
X-Spam-Status: No, score=-1.0 required=5.0 tests=
