BBC NEWS now using spyware - imrworldwide.com
Dane Pestano
Bad news. BBC now using this shit.
sponge
the first spyware that I've identified as running as Java. It's really
big in the U.K., apparently, as I have not seen any evidence that it's
being used by U.S. or other countries, but there are a number of U.K.
companies, even a few ISPs I think, that are using it.
You might be able to block it with DNSKong. I would not recommend
using HOSTS for this one. However, I strongly recommend blocking it by
firewall. Add the following rules (IP filters):
Network Mask Spyware name
203.89.243.0 255.255.255.0 RedSheriff
203.166.18.0 255.255.255.0 RedSheriff
212.187.205.0 255.255.255.0 RedSheriff
More rules are available in the Spyware Filter list posted a few weeks
back.
"Dane Pestano" <da...@danep.plus.com> wrote in message news:<9Ykr8.244259$2q2.21...@bin4.nnrp.aus1.giganews.com>...
GrimReaper
You say;-
>You might be able to block it with DNSKong. I would not recommend
>using HOSTS for this one
Does that mean that the hosts file does not work too well with IP addresses?
GrimReaper
---
All our outgoing e-mails and attachments are checked for Virus.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.344 / Virus Database: 191 - Release Date: 02/04/02
Randall Bart
awe as "GrimReaper" <I...@hadasickle.com> uttered:
>>You might be able to block it with DNSKong. I would not recommend
>>using HOSTS for this one
>
>Does that mean that the hosts file does not work too well with IP addresses?
All Hosts does is translate domain names into IP addresses. If it's already
an IP address, Hosts is not referenced.
--
RB |\ © Randall Bart
aa |/ ad...@RandallBart.spam.com Bart...@att.spam.net
nr |\ Please reply without spam 1-917-715-0831
dt ||\ Here I am: http://RandallBart.com/ I LOVE YOU
a |/ Terrorism: http://progressive.playstream.com/emphemp/ad.mov
l |\ No War: http://theonion.com/onion3811/drugs_now_legal.html
l |/ DOT-HS-808-065 MS^7=6/28/107 http://theblackday.net/
GrimReaper
Regards
Morv
>Message-ID: <9Ykr8.244259$2q2.21...@bin4.nnrp.aus1.giganews.com>
>Hi all,
>
>Bad news. BBC now using this shit.
>
>
What I want to know is, why is one of the world's most respected news-services,
and a public service company to boot, using a piece of spyware, or at the very
least allowing it to be used through it's site?
And, on a related note, is it possible to complain to MPs and various ombudsmen
about the use of spyware in general, and on the Beeb site in particular?
--------
Morv
'The holly and the ivy, when they are both full grown,
Of all the trees that are in the wood, the holly bears the crown,'
Dane Pestano
Yes, agreed. I have written them an email complaining, and although the
email has had an automated response that it has been received I have as yet
had no explanation. Perhaps as you say, an email to my MP might be an
option.
Regards
Dane
"Morv" <morv...@aol.comAHOYHOY> wrote in message
news:20020407154754...@mb-ci.aol.com...
John Roth
"sponge" <yosp...@yahoo.com> wrote in message
news:8d76ec03.02040...@posting.google.com...
I don't understand this one. My firewall logs (sygate) don't show
any of the above IP's, either in or out, and Ad-aware doesn't
show anything related to "Red Sheriff." I use BBC News
as one of my daily news providers.
Please explain why I wouldn't see this if BBC News is, indeed
using this package?
John Roth
Dane Pestano
On http://news.bbc.co.uk just look at the source and do search for
imrworldwide. AdAware doesn't spot it. That was the first thing I tried. As
well as the IP addresses mentioned I have added two more to my firewall,
212.187.205.148 and 150. Check your registry for it as well to see if it is
there.
Regards
Dane
"John Roth" <john...@ameritech.net> wrote in message
news:ub1p43k...@news.supernews.com...
John Niven
> Hi Morv,
>
> Yes, agreed. I have written them an email complaining, and although the
> email has had an automated response that it has been received I have as
yet
> had no explanation. Perhaps as you say, an email to my MP might be an
> option.
>
An old-fashioned letter may be the most effective way - e-mail to our
elected representatives (at least in the UK) has a tendency to evaporate
into the ether. Asking your MP (or national equivalent in NI, Scotland &
Wales) to refer the matter to the relevant minister ensures that (a) your MP
pays attention; (b) the minister is informed about your concerns. (MPs
*have* to pass the matter on to ministers when requested by constituents;
without your MP's intervention ministers are not obligated to reply to
letters addressed directly to them).
Needless to say, e-mail copies may speed things up; and it would be helpful
if you could publicise your letters as "inspiration" for other UK citizens
considering a similar course of action!
Best of luck
John
> Regards
> Dane
>
--
John Niven
(Reply through newsgroup)
John Roth
> Hi john,
>
> On http://news.bbc.co.uk just look at the source and do search for
> imrworldwide. AdAware doesn't spot it. That was the first thing I
tried. As
> well as the IP addresses mentioned I have added two more to my
firewall,
> 212.187.205.148 and 150. Check your registry for it as well to see if
it is
> there.
>
> Regards
> Dane
Thanks. I found them in my firewall log. They'll be blocked quickly.
John Roth
sponge
> >From: "Dane Pestano" da...@danep.plus.com
>
> >Message-ID: <9Ykr8.244259$2q2.21...@bin4.nnrp.aus1.giganews.com>
>
> >Hi all,
> >
> >Bad news. BBC now using this shit.
> >
> >
>
> What I want to know is, why is one of the world's most respected news-services,
> and a public service company to boot, using a piece of spyware, or at the very
> least allowing it to be used through it's site?
Mor any more companies are figuring they can wring out more profit
that way. They can sell their product and make money, or they can
collect information on visitors to their sites and make even more
money.
> And, on a related note, is it possible to complain to MPs and various ombudsmen
> about the use of spyware in general, and on the Beeb site in particular?
Don't a lot about U.K. courts, but from what I do know most you might
be able to file a claim for 1. invasion of privacy, 2. abuse/breach of
civil rights, 3. theft, 4. hacking. You might be able to try one or
more of these claims. Contact an attorney, get his advice under the
law. Then, go to the police and tell them this and, if you feel it
necessary, file a complaint. And, if you want to go after them for
civil damages, go back to that lawyer and have him follow it up.
Harry Mofo
>Bad news. BBC now using this shit.
Pardon my ignorance, but how does the BBC manage to get this onto your computer?
-- Harry --
"An infinite number of monkeys at an infinite number of keyboards could produce something like Usenet."
Gene Spafford's Corollary #3
sponge
browsers and email progams can -- then you're running executable code.
That means a website can store an applet (a small program) which
downloads to and runs on your system.
Java is awful. Not as heavily exploited as ActiveX, but it's as bad.
There is no reason to have it running in your email program, in your
browser, or on your machine, unless you're a developer.
Proxomitron reportedly stop RedSheriff. Better yet, just disable Java
(and ActiveX) and you'll be protected from much if not most of the
nastiest stuff out there.
Harry Mofo <nos...@hotmail.com> wrote in message news:<hqm5bus0f6krt6of9...@4ax.com>...
Harry Mofo
>It's a Java applet.
Now that I reread your original response to Dane, I see that you already mentioned that. Never mind!
>...just disable Java (and ActiveX) and you'll be protected from
>much if not most of the nastiest stuff out there.
Done that. Thanks!
-- Harry --
When personal computers are outlawed, only outlaws will have personal computers
http://www.wired.com/news/politics/0,1283,46655,00.html
http://www.theregister.co.uk/content/54/24262.html
http://www.bayarea.com/mld/bayarea/business/2764054.htm
http://forums.anandtech.com/messageview.cfm?catid=27&threadid=728226&STARTPAGE=1
http://cryptome.org/sssca.htm
Morv
>Message-ID: <mT2s8.29408$r7.29...@bin8.nnrp.aus1.giganews.com>
>Hi Morv,
>
>Yes, agreed. I have written them an email complaining, and although the
>email has had an automated response that it has been received I have as yet
>had no explanation.
Well, the Beeb are fairly good about replying to things...if you could post the
reply here (assuming you ever get one).
> Perhaps as you say, an email to my MP might be an
>option.
Hmmm, I'm going to try and dig up some stuff about the Data Protection Act and
that sort of stuff before I write any proper letters.
CatThief
> But if you use *real* Java (1.3.1_02 ver.) it doesn't seem to active,
> possibly only works with MS Java???
As I understand it, permissions for IE must be set to "enabled" for this
action to take place without the user's knowledge. Where Netscape is
concerned, no applet or script is allowed to access your computer or
network without your permission. Period. A window would pop-up
with a request to either "grant" or "deny" that permission. There is no
way to enable this "granting" by default unless you have already
granted permission and stored that certificate from a prior session.
I have to snicker a little at your comment *real* Java. hehehe - as that
certainly is the *real* one. No insult intended toward all of you die-hard
IE users. :o) But it certainly is nice that my browser has never, ever
been hijacked.
Regards,
CatThief
--
"It's always something."
- Roseanne Rosannadanna