dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
1792
share rss forum feed


StreetSpirit
This spot reserved for Xenu.
Premium
join:2002-08-13
Roslyn, NY
kudos:3
Reviews:
·Optimum Online

167.206.5.85/32 [*.srv.hcvlny.cv.net] BLACKLISTED.

Click for full size
No email for you OOL customer!
Click for full size
Grrr
Well, I tried to send my resume via OOL. Big mistake! After about a business day I was wondering why I didn't hear back from the human resource agent I was to contact.

Here's why!

This report relates to a message you sent with the following header fields:

Return-path:
Received: from tcp-daemon.mta10.srv.hcvlny.cv.net by mta10.srv.hcvlny.cv.net
(iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003))
id
(original mail from someone@optonline.net); Tue, 2 Dec 2003 16:17:11 -0500 (EST)
Received: from SOMEONE (ool-123abcdef.dyn.optonline.net [24.xxx.xx.xxx])
by mta10.srv.hcvlny.cv.net
(iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003))
with ESMTP id for
someone@softhome.net; Tue, 02 Dec 2003 16:17:08 -0500 (EST)
Date: Tue, 02 Dec 2003 16:17:23 -0500
From: "Someone"
Subject: ATT: Catherine. My resume is attached.
To: Someone
Reply-to: "Someone"
Message-id:
Organization: Some Organization
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
X-Mailer: Microsoft Outlook Express 6.00.2800.1158
Content-type: text/plain; charset=iso-8859-1
Content-transfer-encoding: 7BIT
X-Priority: 3
X-MSMail-priority: Normal

Your message cannot be delivered to the following recipients:

Recipient address: someone@softhome.net
Reason: Server rejected MAIL FROM address.
Diagnostic code: smtp;554 mail refused: Spam Received See: »www.dnsbl.sorbs.net/cgi-bin/look···206.5.85
Remote system: dns;c.mx.softhome.net (TCP|167.206.5.85|25179|66.54.152.36|25) (tap.softhome.net ESMTP)


Grrr! I'm begining to get a little tired of these surprises.
Dave


nothing00

join:2001-06-10
Centereach, NY
As much as I think it's Cablevision's responsibility to make sure their systems are never listed in such databases by buttoning down their systems...

This is really the company's fault for rejecting mail based on a blacklist. I don't care how much you might not like spam - for a company to risk blocking business communications based on some automated blacklist is grossly irresponsible.
--
I want my - I want my - I want my port ayyyeetteee!
(to the tune of "I want my MTV" Money for Nothing)


Jmartz

join:2000-07-20
Tenafly, NJ

1 recommendation

It's not irresponsible on the part of them. It's irresponsible on the part of Cablevision that they can't control the problem, or don't want to control the problem. All they have to do is start enforcing the TOS for people who have mail servers on the network. Start disconnecting peoples services without warning.

If they did a hard crack down on these people, I bet you would see results. Although it would alienate those customers... is that really new to Cablevision?

I'm not someone who cried "TOS Violation" at every second of the day. However, a small web server that isn't slowing people down isn't an issue. A mail server that is responsible for sending out thousands of messages and then getting put onto black lists could effect more than just the people "on the same node" and Cablevision needs to get tough on them. These people are worse then running a web server if you ask me. The people who run the email services can affect the entire OOL subscriber base.
--
[BetaNews | phpBB |MSN TerraServer |Space Imaging]


AVD
Respice, Adspice, Prospice
Premium
join:2003-02-06
Onion, NJ
kudos:1

1 edit
said by Jmartz:
These people are worse then running a web server if you ask me.

Refresh my memory, what's so bad about running a web server in the first place?

edit: I'm confused, is the OOL MTA blacklisted, or is the streetspirit's ip blacklisted, and if so did the mail bounce because his setup sent the mail direct, or is the filter so sophisticated that it figured out his IP was sending through OOL's mail transfer agent

TheWiseGuy
Dog And Butterfly
Premium,MVM
join:2002-07-04
East Stroudsburg, PA
kudos:3
reply to StreetSpirit

Re: 167.206.5.85/32 [*.srv.hcvlny.cv.net] BLACKLIS

I wouldn't be surprised if it had to do with the spam from the Viruses in the thread here

Hopefully the steps they have taken will allow the issue to be solved in the near term.
--
Dog and Butterfly


HardwareGeek

join:2003-11-15
Brooklyn, NY
reply to AVD

Re: 167.206.5.85/32 [*.srv.hcvlny.cv.net] BLACKLISTED.

OOL is blacklisted it self.
Why is runing a webserver so bad.
Well your on a shared network with 500 other people on your node.
If one of you host a webserver and lets say you put up a Picture of Britney Spears Kissing Beyonce. And tons of people flood into see it. Then not only will Tons of other people have trouble accessing your site. But the other 499 people on your node will have trouble getting online.
--
I am a HardwareGeek


Jmartz

join:2000-07-20
Tenafly, NJ

1 edit
reply to AVD
said by AVD:
Refresh my memory, what's so bad about running a web server in the first place?
See, "technically" it's against the TOS. However, a web server is only going to affect people on a node, which at max would be 500 people, but usually a lot less.

An open email server that has been compromised, can potentially cause problems for over a million users.

So there really isn't a way to compare the two when you look at what each one can do to the network. But if you were to try and compare the two; running a web server is the least of OOL's problems at the moment. At least I think so.

And I didn't mean to turn this into a debate about the two. But I was just trying to figure out what OOL is thinking by trying to compare the two and figure out why they prefer to protect 500 people (much less than that in most areas) and not the million or so that rely on email...

Kip patterson
Premium
join:2000-10-23
Columbus, OH
reply to AVD
The OOL mail server is blacklisted because spam was sent through it. It is not an open relay, so someone on the OOL net was spamming and it was reported to SORBS. The destination system used SORBS as the basis for rejecting the email.


nothing00

join:2001-06-10
Centereach, NY
reply to Jmartz

Re: 167.206.5.85/32 [*.srv.hcvlny.cv.net] BLACKLIS

said by Jmartz:
It's not irresponsible on the part of them. It's irresponsible on the part of Cablevision that they can't control the problem, or don't want to control the problem. All they have to do is start enforcing the TOS for people who have mail servers on the network. Start disconnecting peoples services without warning.
I agree with you entirely that Cablevision bears some burden. I even said as much. However, I definitely disagree on the point regarding usage of a blacklist in a business critical function such as recruiting. That is irresponsible on the part of the company.

I also agree with how you suggest to deal with the issue. The reason they go after "bandwidth hogs" and TOS "violators" is that it's easy for them. Correcting the spam problem seems to be entirely out of their grasp.

I have no idea why Cablevision allows an unsubscribed modem free and unrestricted access to their network for nearly two weeks.
--
I want my - I want my - I want my port ayyyeetteee!
(to the tune of "I want my MTV" Money for Nothing)


StreetSpirit
This spot reserved for Xenu.
Premium
join:2002-08-13
Roslyn, NY
kudos:3
Reviews:
·Optimum Online

2 edits
reply to AVD
said by AVD:
said by Jmartz:
These people are worse then running a web server if you ask me.

...

edit: I'm confused, is the OOL MTA blacklisted, or is the streetspirit's ip blacklisted, and if so did the mail bounce because his setup sent the mail direct, or is the filter so sophisticated that it figured out his IP was sending through OOL's mail transfer agent

The OOL MTA is blacklisted. My IP has nothing to do with it.

SORBS Hostname Span
Blacklist Extends to the following hostname(s).
Automated removal is not possible.

167.206.005.085 DNS mta10.srv.hcvlny.cv.net

[EDIT: This machine has a shell login, acts as a DNS server, has a webserver that throws a 403, and is an MTA. Perhaps that machine is exploited - Good point Rainier.]

SixSpeed

join:2001-12-24
USA
reply to Kip patterson

Re: 167.206.5.85/32 [*.srv.hcvlny.cv.net] BLACKLISTED.

said by Kip patterson:
The OOL mail server is blacklisted because spam was sent through it. It is not an open relay, so someone on the OOL net was spamming and it was reported to SORBS. The destination system used SORBS as the basis for rejecting the email.

In order for a IP range to get blocked its more than one person sending spam. OOL's mail appliances on the net and outside their DMZ are most likely being owned and used a relays without them even knowing. Zombied mail servers or even peoples virus-ed PC's can generate thousands of mails a day to anywhere in the world. Lots of ISP's are blocking OOL addys these days, there was even a news article on it. Its a case of having a weak mail system.


Rainier
Shingo

join:2003-11-23
Flushing, NY
reply to StreetSpirit

Re: 167.206.5.85/32 [*.srv.hcvlny.cv.net] BLACKLIS

I looked closer at the SORBS pic.
Something about maybe EXPLOITABLE servers? See if a tech can check out if all the servers are patched and protected?


Lurkerer

@66.113.x.x
reply to StreetSpirit
"Its a case of having a weak mail system."

You aren't making any sense. You first argue about exploited mail servers and virus infects pcs, but then out of the nowhere blame all of these blacklisted problem on ool mail servers.


StreetSpirit
This spot reserved for Xenu.
Premium
join:2002-08-13
Roslyn, NY
kudos:3
reply to Rainier
mta10.srv.hcvlny.cv.net [167.206.005.085] has a shell login, runs a public DNS daemon, has a webserver that throws a 403 and is a mail transfer agent. I wonder if the box is owned.