shockie said:
my bad, i thought that all forum postings went by forum default of -5 gmt, didn't know vbulletin adjusts. i didn't know that fyodor didn't personally publish the list, however what heavyduty says hold true (basically implying that the owner is ultimately responsible):
I agree, the website owner is responsible and i am sure if the owner was reached at the time he would immediately complied with their request.
The thing where a lot of people take issue with including myself is that GD did not give enough time to let the site owner react.
The site owner had only 1 minute to one hour to comply depending on whose story you would want to believe as described here
http://blogs.securiteam.com/index.php/archives/803
and here is a link at the bottom of the page for a supposed timeline, i can't listen in because my speakers are broken so i can't confirm this.
http://blog.wired.com/27bstroke6/files/gd-voicemail.wav
The consensus is though that it was at the most one hour.
Only one hour? The information was available for days already, as if it really would make a difference to give it some time to let the site owner respond.
That is just disrespectful towards the customer and unethical in my opinion.
A quote from the author from the first link:
I belong to a couple of private groups that request domain shutdowns frequently, based on phishing sites, botnet C&Cs, and sites hosting malware being used to infect new victims. These are what I would tend to call legitimate reasons to shut down a domain. How long do you think it usually takes the group to have a domain shut down? Even for the most responsive registrars, it frequently takes several hours. How do we get the 1 minute turnaround, GoDaddy? Where’s the form we fill out?
Even for cut and dry cases like this it takes overall more time to get a result.
Also from the site owners site:
http://seclists.org/nmap-hackers/2007/0000.html
I woke up yesterday morning to find a voice message from my domain
registrar (GoDaddy) saying they were suspending the domain
SecLists.org. One minute later I received an email saying that
SecLists.org has "been suspended for violation of the GoDaddy.com
Abuse Policy". And also "if the domain name(s) listed above are
private, your Domains By Proxy(R) account has also been suspended."
WTF??! Neither the email nor voicemail gave a phone number to reach
them at, nor did they feel it was worth the effort to explain what the
supposed violation was. They changed my domain nameserver to
"NS1.SUSPENDED-FOR.SPAM-AND-ABUSE.COM". Cute, eh?
Great move from Godaddys part don't you agree
Just shut the person down and don't give a F about their site being live or not.
Should your site also have a commercial purpose you could lose some business because of this and GD doesn't even give you the chance to comply or reply for that matter to whatever was troubling them.
You just get shut down and that's it - Not even unethical but inmensly frustrating i can imagine as well.
if you were a website owner who had some questionable activity you would, lol
You mean if i was a domain registrar and i had a customer who had questionable activity
I wouldn't turn a blind eye, i would take time to evaluate the situation and given 48 hours in this case to let the site owner respond - 48 hours is a overall acceptable amount of time to receive a response and is a fair amount of time given.
mmm i disagree. telling gd is more responsible and competent than not telling them.
You have every right to do so
It's just that in my opinion MySpace is running behind the facts. The facts in this case the knowledge that a password list is in the open and no measures are being taken on site to prevent any unauthorised user account access.
It's common sense that when a list is on the net it safe to assume that is not the only place where the list is to be found. So MySpace should be closed down immediately to PREVENT unauthorized access to their user accounts.
What they did now is bring more awareness to the situation (It is to be expected that such abrupt actions by GD to a popular site like Seclist.org is not going to be unnoticed) and therefor it was not competent but clearly incompetent.
If you know a password to one of your important email account is compromised and posted on the internet what would you do first?
A:Change your password immediately as soon as you can?
B:Or contact all the sites (that you know of at least) to remove the postings?
The competent thing to do is to change your password immediately right
I'm 100% sure that is what you would have done if your password was compromised.
That is not what MySpace did evidently...well in this case they can't change passwords but they can sure as hell prevent unauthorized access by locking everything down. But they didn't...
Incompetent in my opinion and according to common sense.
