Issues concerning the Desire of a New World Order

CHANNEL ISLAM INTERNATIONAL, Bringing Islam to the World and the World to You
American Free Press | America's Last Real Newspaper :
( possecasts : http://americanfreepress.net/?page_id=723 )
AMERICAN FREE PRESS
For anyone who can handle the Truth :
( mpg123 -@ http://republicbroadcasting.org/32k.pls )
REPUBLIC BROADCASTING NETWORK
into ground shaking radio that will snap your neck in odd directions :
( mplayer "mms://196.44.225.194/channel islam" on Tuesdays at 20-22 CET/2-4PM EDT/11-1PM PDT. )
THE FRENCH CONNECTION
Exposing Corruption, Informing Citizens and proclaiming Liberty :
( mpg123 http://lin1.ash.fast-serv.com:6040 )
LIBERTY NEWS RADIO
Your First Source For Reality & Honest Journalism :
( mpg123 -@ http://microeffect.purestream.net:9680/listen.pls )
RENSE.COM
The Home of Cutting Edge Talk Radio :
( mpg123 -@ http://www.oraclebroadcasting.com/48k.pls )
ORACLE BROADCASTING NETWORK
Veterans Truth Network - Truth in Media :
( mpg123 -@ http://192.240.102.133:7791/live )
VETERANS TRUTH NETWORK
All News Network - We are not CNN :
( mpg123 -@ http://50.7.71.219:7164/live )
ALLNEWS.NETWORK
Please help to get my car back :
( On July 21, 2009 my car was impounded (not by police), but by the
Dutch IRS, for failing to hand-over trumped up tax charges which my
small business could have never earned, according to my filed tax
deductions. In addition the bank account of my small business has been
impounded by the IRS as well. An important part of my business
activities involves the use of my car. The impoundment of my car can
only be explained as an outrageous attempt by the IRS to shutdown my
business by force, without a valid and sane reason.
It can be compared to those EXACTIONS reported only to happen in former
overseas colonies like India and Indonesia. The difference being that
today such exactions have moved into Western Europe and America as well
, the home countries of these old style colonialists themselves. My
conclusion is that today the old style Colonialist has started to
devour his own home country and town, through abuse of power of IRS
officials and police. )
 
For me PayPal doesn't seem to fulfill its purpose, which is collecting donations

When closing my PayPal account
my saldo was USD $1.62
on Mar 9, 2011. This is quite impossible
as since July 21, 2009 not a single
transaction has occurred on
my PayPal account.


AOL Hotmail Yahoo



MOSSAD's control over the Internet


Contents:

The Mossad takeover of popular Webmail
MOSSAD takes over MOSNEWS.COM
Re: MOSSAD takes over MOSNEWS.COM
High Alert, good websites get taken down
Cloak and Dagger under blackbox routing attack
Compromised DNS backbone providers
Re: [IANA #91363] Compromised DNS backbone providers
Keyboard JitterBug eavesdropping
The Anti Spam Controversy
Facebook Snubs Your E-mail
Firefox first-run page tracking
Downloads

The Mossad takeover of popular Webmail


It turns out that the output of a whois query is dependent on the specifics of the whois version used. Ain't that strange? In the below reports i used the Mandriva Linux 2007.0 version of whois, whois-4.7.13-1mdk :
   [jackson:stock]:(~)$ rpm -q -i whois-4.7.13-1mdk
   Name        : whois                        Relocations: /usr 
   Version     : 4.7.13                            Vendor: (none)
   Release     : 1mdk                          Build Date: Sat 15 Apr 2006 02:07:42 AM CEST
   Install Date: Tue 07 Nov 2006 04:36:18 AM CET      Build Host: jackson.stokkie.net
   Group       : Networking/Other              Source RPM: whois-4.7.13-1mdk.src.rpm
   Size        : 432712                           License: GPL
   Signature   : (none)
   URL         : http://www.linux.it/~md/software/
   Summary     : Enhanced WHOIS client
   Description :
   This is a new whois (RFC 954) client rewritten from scratch.

   It is derived from and compatible with the usual BSD and RIPE whois(1)
   programs.

   It is intelligent and can automatically select the appropriate whois
   server for most queries.
   [jackson:stock]:(~)$
When checking with http://www.linux.it/~md/software/ one is referred to :

http://ftp.debian.org/debian/pool/main/w/whois/

But ehh, how strange, whois-4.7.13.tar.gz is not listed there anymore. More specific, a whole range of whois versions from 2006 and 2005 have been removed. That is all versions between whois-4.7.5 and whois-4.7.20. It turns out that most people on my local linux maillinglist could not reproduce the below whois query's and got only a single whois server listed. For yahoo.com they then only got whois.markmonitor.com as a valid answer. So whats going on here?

A renewed installation of whois with urpmi on Mandriva Linux 2007.0 using a online Mandriva RPM archive still resulted in the same whois version, whois-4.7.13-1mdk.i586.rpm and is still able to reproduce the results below. whois-4.7.13-1mdk has been updated to whois-4.7.13-2mdk which contains updated references to new IP assignments. See the downloads below for a whois binary for your OS. whois.exe is Whois 2.5 from nsauditor.com. This win32 edition doesn't show all the details, but does show if compromised whois server records are added.

Date: Tue, 19 Jun 2007 07:58:12 +0200 (CEST)
From: "Robert M. Stockmann" 
To: cloak.dagger@gmail.com, lennybloom@gmail.com, 
    stefangrossmann@t-online.de, too@slingshot.co.nz, 
    skolnick@ameritech.net, eric@vaticanassassins.org, 
    tips@infowars.com, tarpley@tarpley.net, tom@tomflocco.com>, 
    takingaim@pacbell.net, stewwebb@sierranv.net, 
    prophecy@texemarrs.com, webmaster@rense.com, 
    wmreditor@waynemadsenreport.com, captainmay@prodigy.net, 
    palast@gregpalast.com, henry@savethemales.ca, 
    chamish@netvision.net.il, smith@iamthewitness.com, 
    crescentandcross@gmail.com, articles@davidicke.com
Subject: URGENT : The Mossad takeover of Email and Websites
Message-ID: 
MIME-Version: 1.0

Hi,

Do not become offended if your popular email adress ending with

   @hotmail.com,
   @aol.com,
   @yahoo.com,

is skipped from this small email list. There's a very simple
reason for this, as a whois of these three domains will show ;


WHOIS HOTMAIL.COM : TAKENOVER BY THE MOSSAD
========================================================================
[jackson:stock]:(~)$ whois hotmail.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.


   Server Name: HOTMAIL.COM.ZZZZZ.GET.LAID.AT.WWW.SWINGINGCOMMUNITY.COM
   IP Address: 69.41.185.211
   Registrar: INNERWISE, INC. D/B/A ITSYOURDOMAIN.COM
   Whois Server: whois.itsyourdomain.com
   Referral URL: http://www.itsyourdomain.com

   Server Name: HOTMAIL.COM.IS.N0T.AS.1337.AS.GULLI.COM
   IP Address: 80.190.192.24
   Registrar: KEY-SYSTEMS GMBH
   Whois Server: whois.rrpproxy.net
   Referral URL: http://www.key-systems.net

   Server Name: HOTMAIL.COM.IS.HOSTED.ON.PROFITHOSTING.NET
   IP Address: 66.49.213.213
   Registrar: COMPUTER SERVICES LANGENBACH GMBH DBA JOKER.COM
   Whois Server: whois.joker.com
   Referral URL: http://www.joker.com

   Server Name: HOTMAIL.COM.BR
   Registrar: ENOM, INC.
   Whois Server: whois.enom.com
   Referral URL: http://www.enom.com

   Server Name: HOTMAIL.COM.AU
   Registrar: WILD WEST DOMAINS, INC.
   Whois Server: whois.wildwestdomains.com
   Referral URL: http://www.wildwestdomains.com

   Domain Name: HOTMAIL.COM
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net
   Name Server: NS1.MSFT.NET
   Name Server: NS2.MSFT.NET
   Name Server: NS3.MSFT.NET
   Name Server: NS4.MSFT.NET
   Name Server: NS5.MSFT.NET
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 13-oct-2006		==========
   Creation Date: 27-mar-1996
   Expiration Date: 28-mar-2014


WHOIS AOL.COM : TAKENOVER BY THE MOSSAD
========================================================================
[jackson:stock]:(~)$ whois aol.com    

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.


   Server Name: AOL.COM.ZZZZZ.GET.LAID.AT.WWW.SWINGINGCOMMUNITY.COM
   IP Address: 69.41.185.197
   Registrar: INNERWISE, INC. D/B/A ITSYOURDOMAIN.COM
   Whois Server: whois.itsyourdomain.com
   Referral URL: http://www.itsyourdomain.com

   Server Name: AOL.COM.MORE.INFO.AT.WWW.BEYONDWHOIS.COM
   IP Address: 203.36.226.2
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net

   Server Name: AOL.COM.IS.N0T.AS.1337.AS.GULLI.COM
   IP Address: 80.190.192.24
   Registrar: KEY-SYSTEMS GMBH
   Whois Server: whois.rrpproxy.net
   Referral URL: http://www.key-systems.net

   Server Name: AOL.COM.IS.0WNED.BY.SUB7.NET
   IP Address: 216.78.25.45
   Registrar: INNERWISE, INC. D/B/A ITSYOURDOMAIN.COM
   Whois Server: whois.itsyourdomain.com
   Referral URL: http://www.itsyourdomain.com

   Server Name: AOL.COM.AINT.GOT.AS.MUCH.FREE.PORN.AS.SECZ.COM
   IP Address: 209.187.114.133
   Registrar: INNERWISE, INC. D/B/A ITSYOURDOMAIN.COM
   Whois Server: whois.itsyourdomain.com
   Referral URL: http://www.itsyourdomain.com

   Domain Name: AOL.COM
   Registrar: AMERICA ONLINE, INC. DBA AOL AND/OR COMPUSERVE-AOL
   Whois Server: whois.registrar.aol.com
   Referral URL: http://www.registrar.aol.com
   Name Server: DNS-01.NS.AOL.COM
   Name Server: DNS-02.NS.AOL.COM
   Name Server: DNS-06.NS.AOL.COM
   Name Server: DNS-07.NS.AOL.COM
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 24-oct-2006	=================
   Creation Date: 22-jun-1995
   Expiration Date: 23-nov-2007


WHOIS YAHOO.COM : TAKENOVER BY THE MOSSAD
========================================================================
[jackson:stock]:(~)$ whois yahoo.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.


   Server Name: YAHOO.COM.ZZZZZZ.MORE.INFO.AT.WWW.BEYONDWHOIS.COM
   IP Address: 203.36.226.2
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net

   Server Name: YAHOO.COM.ZZZZZ.GET.LAID.AT.WWW.SWINGINGCOMMUNITY.COM
   IP Address: 69.41.185.196
   Registrar: INNERWISE, INC. D/B/A ITSYOURDOMAIN.COM
   Whois Server: whois.itsyourdomain.com
   Referral URL: http://www.itsyourdomain.com

   Server Name: YAHOO.COM.ZOMBIED.AND.HACKED.BY.WWW.WEB-HACK.COM
   IP Address: 217.107.217.167
   Registrar: ONLINENIC, INC.
   Whois Server: whois.OnlineNIC.com
   Referral URL: http://www.OnlineNIC.com

   Server Name: YAHOO.COM.VN
   Registrar: MELBOURNE IT, LTD. D/B/A INTERNET NAMES WORLDWIDE
   Whois Server: whois.melbourneit.com
   Referral URL: http://www.melbourneit.com

   Server Name: YAHOO.COM.VIRGINCHASSIS.COM
   IP Address: 66.218.71.205
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.UNIQUELYUJEWELS.COM
   IP Address: 66.218.71.205
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net

   Server Name: YAHOO.COM.TWIXTEARS.COM
   IP Address: 66.218.71.205
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.TW
   Registrar: GO DADDY SOFTWARE, INC.
   Whois Server: whois.godaddy.com
   Referral URL: http://registrar.godaddy.com

   Server Name: YAHOO.COM.SG
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.OPTIONSCORNER.COM
   IP Address: 66.218.71.205
   Registrar: NAMESDIRECT.COM, INC.
   Whois Server: whois.namesdirect.com
   Referral URL: http://www.namesdirect.com

   Server Name: YAHOO.COM.MX
   Registrar: DIRECT INFORMATION PVT LTD D/B/A PUBLICDOMAINREGISTRY.COM
   Whois Server: whois.PublicDomainRegistry.com
   Referral URL: http://www.PublicDomainRegistry.com

   Server Name: YAHOO.COM.MORE.INFO.AT.WWW.BEYONDWHOIS.COM
   IP Address: 203.36.226.2
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net

   Server Name: YAHOO.COM.JOSEJO.COM
   IP Address: 66.218.71.205
   Registrar: NAMESDIRECT.COM, INC.
   Whois Server: whois.namesdirect.com
   Referral URL: http://www.namesdirect.com

   Server Name: YAHOO.COM.JENNINGSASSOCIATES.NET
   IP Address: 66.218.71.205
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.IS.N0T.AS.1337.AS.SEARCH.GULLI.COM
   IP Address: 80.190.192.24
   Registrar: KEY-SYSTEMS GMBH
   Whois Server: whois.rrpproxy.net
   Referral URL: http://www.key-systems.net

   Server Name: YAHOO.COM.HK
   Registrar: ENOM, INC.
   Whois Server: whois.enom.com
   Referral URL: http://www.enom.com

   Server Name: YAHOO.COM.ELPOV.COM
   IP Address: 66.21.71.205
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.DALLARIVA.COM
   IP Address: 66.218.71.205
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.CHRISIMAMURAPHOTOWORKS.COM
   IP Address: 66.218.71.205
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net

   Server Name: YAHOO.COM.BR
   Registrar: ENOM, INC.
   Whois Server: whois.enom.com
   Referral URL: http://www.enom.com

   Server Name: YAHOO.COM.BGPETERSON.COM
   IP Address: 66.218.71.205
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: YAHOO.COM.AU
   Registrar: WILD WEST DOMAINS, INC.
   Whois Server: whois.wildwestdomains.com
   Referral URL: http://www.wildwestdomains.com

   Domain Name: YAHOO.COM
   Registrar: MARKMONITOR INC.
   Whois Server: whois.markmonitor.com
   Referral URL: http://www.markmonitor.com
   Name Server: NS1.YAHOO.COM
   Name Server: NS2.YAHOO.COM
   Name Server: NS3.YAHOO.COM
   Name Server: NS4.YAHOO.COM
   Name Server: NS5.YAHOO.COM
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 22-jul-2005	   ========================
   Creation Date: 18-jan-1995
   Expiration Date: 19-jan-2012



WHOIS GMAIL.COM : STILL OK, AS OF Tue Jun 19 07:47:50 CEST 2007
========================================================================
[jackson:stock]:(~)$ whois gmail.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.


   Domain Name: GMAIL.COM
   Registrar: MARKMONITOR INC.
   Whois Server: whois.markmonitor.com
   Referral URL: http://www.markmonitor.com
   Name Server: NS1.GOOGLE.COM
   Name Server: NS2.GOOGLE.COM
   Name Server: NS3.GOOGLE.COM
   Name Server: NS4.GOOGLE.COM
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 10-apr-2006
   Creation Date: 13-aug-1995
   Expiration Date: 12-aug-2014

Registrant:
        Google Inc. (DOM-425410)
        Please contact gmail-abuse@google.com 1600 Amphitheatre Parkway Mountain View CA 94043 US

    Domain Name: gmail.com

        Registrar Name: Markmonitor.com
        Registrar Whois: whois.markmonitor.com
        Registrar Homepage: http://www.markmonitor.com

    Administrative Contact:
        DNS Admin (NIC-1467103)  Google Inc.
        1600 Amphitheatre Parkway Mountain View CA 94043 US
        dns-admin@google.com +1.6502530000 Fax- +1.6506188571
    Technical Contact, Zone Contact:
        DNS Admin (NIC-1467103)  Google Inc.
        1600 Amphitheatre Parkway Mountain View CA 94043 US
        dns-admin@google.com +1.6502530000 Fax- +1.6506188571

    Created on..............: 1995-Aug-13.
    Expires on..............: 2014-Aug-12.
    Record last updated on..: 2006-Dec-29 18:36:05.

    Domain servers in listed order:

    NS1.GOOGLE.COM
    NS2.GOOGLE.COM
    NS3.GOOGLE.COM
    NS4.GOOGLE.COM


Please warn your friends who use AOL.COM, YAHOO.COM or HOTMAIL.COM  for
email to take appropiate measures regarding your EMAIL communications,
SOON !!!!!!

Best Regards,

Robert
PS. I am not affiliated to GMAIL or GOOGLE in any way by name, relation,
    business, friendship, marriage or whatever way one can imagine.
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net


MOSNEWS MN Files

MOSSAD takes over MOSNEWS.COM


Date: Tue, 19 Jun 2007 08:27:56 +0200 (CEST)
From: "Robert M. Stockmann" 
To: cloak.dagger@gmail.com, lennybloom@gmail.com, 
     stefangrossmann@t-online.de, too@slingshot.co.nz, 
     skolnick@ameritech.net, eric@vaticanassassins.org, 
     tips@infowars.com, tarpley@tarpley.net, tom@tomflocco.com, 
     takingaim@pacbell.net, stewwebb@sierranv.net, 
     prophecy@texemarrs.com, webmaster@rense.com, 
     wmreditor@waynemadsenreport.com, captainmay@prodigy.net, 
     palast@gregpalast.com, henry@savethemales.ca, 
     chamish@netvision.net.il, smith@iamthewitness.com, 
     crescentandcross@gmail.com, articles@davidicke.com
Subject: MOSSAD takes over MOSNEWS.COM
Message-ID: 
MIME-Version: 1.0

Hi,

The MOSSAD has takenover the popular website MOSNEWS.COM, which had
tons of info on the Russian Oligarchs :

[jackson:stock]:(~)$ whois mosnews.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.


   Domain Name: MOSNEWS.COM
   Registrar: REGISTER.COM, INC.
   Whois Server: whois.register.com
   Referral URL: http://www.register.com
   Name Server: DNS10.REGISTER.COM
   Name Server: DNS9.REGISTER.COM
   Status: clientDeleteProhibited
   Status: clientRenewProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 30-apr-2007
   Creation Date: 09-oct-2003
   Expiration Date: 09-oct-2007

   Registrant: 
      Eric Wolf
      Eric Wolf
      Slomtzion Ha-Malcha 24 
      Hertzelia, IL 46662
      IL
      Email: wolf.extreme@gmail.com

   Registrar Name....: REGISTER.COM, INC.
   Registrar Whois...: whois.register.com
   Registrar Homepage: www.register.com 

   Domain Name: mosnews.com

      Created on..............: Thu, Oct 09, 2003
      Expires on..............: Tue, Oct 09, 2007
      Record last updated on..: Wed, Feb 21, 2007

   Administrative Contact:
      Eric Wolf
      Eric Wolf
      Slomtzion Ha-Malcha 24 
      Hertzelia, IL 46662
      IL
      Phone: 972546236249
      Email: wolferic@mac.com

   Technical Contact:
      Register.Com
      Domain NULL Registrar
      575 8th Avenue 
      New York, NY 10018
      US
      Phone: 902-749-2701

   DNS Servers:

   dns10.register.com
   dns9.register.com

[jackson:stock]:(~)$ nslookup www.mosnews.com
Server:         10.0.18.71
Address:        10.0.18.71#53

Non-authoritative answer:
Name:   www.mosnews.com
Address: 67.19.18.66


[jackson:stock]:(~)$ whois 67.19.18.66

OrgName:    ThePlanet.com Internet Services, Inc. 
OrgID:      TPCM
Address:    1333 North Stemmons Freeway
Address:    Suite 110
City:       Dallas
StateProv:  TX
PostalCode: 75207
Country:    US

So the former valuable website MOSNEWS.COM is currently hosted
somewhere in Dallas, TX, under auspicious rendition by :

      Eric Wolf
      Eric Wolf
      Slomtzion Ha-Malcha 24 
      Hertzelia, IL 46662
      IL
      Email: wolf.extreme@gmail.com

Mr. Wolf (a family member of former Stasi DDR Spymaster Markus Wolf?) 
sure knew NOT to use email from aol.com, yahoo.com or hotmail.com.  I 
came to this remarkable insight after checking some links again on the 
webpage :

"Russian Israeli duel for power, oil and dirty cash"
 http://crashrecovery.org/fischer/

in particular :

  [7] "Campaign Against the Oligarchs", Updated: 23.09.2005 21:36 MSK
  http://www.mosnews.com/mn-files/oligarchs.shtml

  [8] "Boris Berezovsky", Updated: 31.10.2006 12:24 MSK
  http://www.mosnews.com/mn-files/berezovsky.shtml

To visit archived copies of these pages :

  [7] "Campaign Against the Oligarchs", Updated: 23.09.2005 21:36 MSK
  http://web.archive.org/web/20051121014913/http://www.mosnews.com/mn-files/oligarchs.shtml

  [8] "Boris Berezovsky", Updated: 31.10.2006 12:24 MSK
  http://web.archive.org/web/20051215132641/http://www.mosnews.com/mn-files/berezovsky.shtml


Checking Google for 

http://www.google.com/search?hl=en&q=Eric+Wolf%0D%0AMosnews&btnG=Google+Search

shows this :

Whatever happened to the WTC HARD-DRIVE recoveries? - Forums ...
You posting anymore lies about DNS entries and who owns MOSNEWS? 
... Eric Wolf Slomtzion Ha-Malcha 24 Hertzelia, IL 46662 IL Phone: 
972546236249 ...
www.libertyforum.org/showflat.php?Cat=& 
Board=news_crime&Number=1245955&page=0&view=collap... - 92k - 
Cached - Similar pages


  "seraphina
   (rebel)
   12/29/06 05:46 PM

   Re: Whatever happened to the WTC HARD-DRIVE recoveries?  [ To: 
   Aeryn_Sun  |  Post 295155565, reply to 295062100 ] (Score: 2)
   
    We must deal with Lie #25 from Aeryn_Sun: 
    
   The anally-obsessed Jew sex pest, writes:
   
   Quote:
   You posting anymore lies about DNS entries and who owns MOSNEWS?
    
   You don't even know how to obtain and read a DNS entry: 
    
   Quote:
   $ whois mosnews.com 
   [Querying whois.internic.net] 
   [Redirected to whois.register.com] 
   [Querying whois.register.com] 
   [whois.register.com] 
    
    Domain Name: MOSNEWS.COM 
    
    Created on..............: Thu, Oct 09, 2003 
    Expires on..............: Tue, Oct 09, 2007 
    Record last updated on..: Wed, Jul 05, 2006 
    
    Organization: 
    Eric Wolf 
    Slomtzion Ha-Malcha 24 
    Hertzelia, IL 46662 
    IL 
    Phone: 972546236249 
    Email: wolferic@mac.com 
    
    Administrative Contact: 
    Eric Wolf 
    Slomtzion Ha-Malcha 24 
    Hertzelia, IL 46662 
    IL 
    Phone: 972546236249 
    Email: wolferic@mac.com 
    
    Domain servers in listed order: 
    
    DNS9.REGISTER.COM 216.21.234.75 
    DNS10.REGISTER.COM 216.21.226.75 
    
   The admin contact for the MOSNEWS.COM domain is some yhid from 
   Herzelia, Israel. 
    
   End of Story, you devious piece of Jewish shit. "


Regards,

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

MOSNEWS MN Files

Re: MOSSAD takes over MOSNEWS.COM


From: Greg Hallett 
Subject: Re: MOSSAD takes over MOSNEWS.COM
Date: Tue, 19 Jun 2007 20:46:25 +1200
To: Robert M. Stockmann 
X-Mailer: Apple Mail (2.752.3)
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 (ftp://crashrecovery.org/pub/linux/amavis/)
X-Status: 
X-Keywords:                 

Robert,

Russia has been one big Jewish Olig since 1917.
As you know the Russian Revolution was a Jewish takeover of Russia,
which then spread communism, socialism and totalitarianism over the  
Western World
and formed the basis of the Cold War enemy, while  Israel ran the  
Cold War from other Jewlands, like London, New York Washington,
and other places the Israelis were occupying, like Fiordland, in the  
South Island of New Zealand.

Putin has been a Zionist for a long time, at least since 1980 when he  
was running
the Trawler Wars in and around New Zealand with the goal to launch a  
nuclear strike on Taupo in the North Island of New Zealand.
The Wairakei Geothermal Power Station, 20 km north of Taupo was  
producing all the heavy water for the Western World
from 1961 to around 1972 and was still on their nuclear hit list in  
2002.
The NZSIS base was Flight's Camp, just around the corner.

While in Wellington, Putin was getting his information off Helen  
Clark and Margaret Wilson, both KGB agents.
They are now the Prime Minister and Speaker of the House of Parliament.

So it's no wonder an Israeli secret service has taken over Moscow  
News/Mossad News.
No doubt this would have occurred with complete Putin complicity.
After all, it was Jewish bankers who put Putin in power by allowing  
Yeltsin to steal some US$1 billion or more,
have this 'discovered' then have Yeltsin call Putin for help.
Putin then bargained to help Yeltsin in exchange for the presidency  
before the end of 1999.
Yeltsin complied, at the last moment, on 31 December 1999 . . . and  
the rest of Russian history is Zionist history.
Not that the previous 83 years wasn't Zionist history also.

When you look at wars now, you have to look at what hand the Jews had  
in it,
and there are few notable wars without their involvement.

"Anti-Semitism" is the Jewish version of an 'eccumenical slap on the  
wrist'.
It is an empowered word designed to work like "excommunication for  
raising the paedophile issue".
Both are warranted . . . so its good to expose Catholic paedophiles
and its good to expose the wrongdoings of Jews and of Israel . . .
So when one is 'excommunicated' and labeled 'anti-Semitic', one  
should feel proud,
just as one should feel proud to be 'homophobic', if indeed, they are  
homophobic.

Since the Jews own so much of the media, most say it's bad to be  
'anti-Semitic' as a way of keeping their jobs secure.
I have certainly found, that in writing history', if you are prepared  
to be anti-Semitic, you can write the truth about history.
The truth of the 20th century has not been told, because the  
historians weren't prepared to write anything negative about Jews.

Since the Jews were so thoroughly involved in creating WWII and the  
Cold War,
misnamed 'anti-Semitic' writers can now write the truth, and feel  
proud about it.
So, in the name of 'truth',
let's disempower the word "anti-Semitic" and write how things really  
went down,
only not in Russia,
as the Mossad own MosNews,
so the chances of getting this message over their wireless are all  
but lost,
once again.

I think the public should know that Putin is a Zionist,
and that he is not acting in the best interests of Russia, but in the  
best interests of Jewish interests in Russia . . .
and Russian politics over the last 100 years can best be described as  
lies upon lies, upon lies, upon lies, and only the best liars reach  
the top.
So at the top of Russia is another Zionist liar, and his name is  
Vladimir Putin.

Remind me why Putin doesn't disclose where he was 1980-82?

King regards,

Greg Hallett


High Alert, good websites get taken down


Date: Tue, 8 Jan 2008 22:23:31 +0100 (CET)
From: "Robert M. Stockmann" 
To: stewwebb@sierranv.net, stefangrossmann@t-online.de, 
     too@slingshot.co.nz, wmreditor@waynemadsenreport.com, 
     palast@gregpalast.com, tom@tomflocco.com, skolnick@ameritech.net, 
     henry@savethemales.ca, leurenmoret@yahoo.com, 
     prophecy@texemarrs.com, smith@iamthewitness.com, 
     eric@iamthewitness.com, captainmay@prodigy.net, 
     tarpley@tarpley.net, takingaim@pacbell.net, webmaster@rense.com, 
     articles@davidicke.com, chamish@netvision.net.il, 
     michaelcollinspiper1960@yahoo.com, crescentandcross@gmail.com, 
     tips@infowars.com, cloak.dagger@gmail.com, lennybloom@gmail.com, 
     eric@vaticanassassins.org, email@spirituallysmart.com, 
     deadlinelive@yahoo.com, alanwattcuttingthrough@yahoo.com, 
     Tillawi@currentissues.tv
Subject: High Alert, good websites get taken down
Message-ID: 
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=ISO-8859-1
Content-Transfer-Encoding: 8BIT
Status: RO
X-Status: 
X-Keywords:                 

Hi,

Here's one :

   http://www.staatsbriefe.de/

This website is gone. How did i came across that? Check your favorite
webpages frequently, like this one :

   "OPERATION CYANIDE"
   http://www.wakeupfromyourslumber.com/node/1948

And check for missing pictures. Apparently this picture is gone :
http://www.staatsbriefe.de/1994/bilder/cyanide.jpg

But also this picture is gone :
http://www.talkingproud.us/ImagesHistory/LBJVietnamPhotos/Helms.jpg

From http://web.archive.org/web/20061125013154/www.staatsbriefe.de/start.htm
goto to the bottom and click on "VERWEISE" (links) :

   http://www.klaus-krusche.de/
   Unabhängiger Online-Publizist

Well he's gone too, what's next :

   http://www.johnkaminski.com/
   Unabhängiger Online-Publizist (USA)

Yep, John Kaminski has been stripped of his .com domain also.
Anyone who has heard from John Kaminski recently?

   http://www.americanfreepress.net/
   US-Zeitung, die sich nicht zum Mainstream zählt.

Well they are still here today. But it seems some nasty crap, annihilating
_INDEPENDENT_ reporting, is happening as we speak. So what's left today?

I'm getting a little sick and tired of that hyped up Ron Paul campaign. 
The guy tells some good things, but he omits certain key issues. STOP 
recycling that Ron Paul stuff, it will kill all your last working brain 
cells. I'm not gonna listen for another 9 months to all this Ron Paul 
Campaganda when the elections are only in November 2008. Sure go ahead, 
elect the guy, but it takes more as one guy to clean up Washington D.C.

Cheers,

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

A renewed reading of John Kaminksi's interesting blog articles comes highly recommended. His last published article is part III: Who Are They?" of a series titled Mindlock. In it Kaminski identifies the real hazards and dangers whom a Unabhängiger Online-Publizist can expect. From my own experience i can only admit that Kaminksi was right on the money. Interesting enough after Kaminski's Internet Essays were pulled down, running a blogsite became the new game in town.
Although John was stripped from his .com website, he soon after registered a .info domain instead on Jul 2, 2008, and today runs the website http://johnkaminski.info/.

Cloak and Dagger under blackbox routing attack


Date: Tue, 15 May 2007 12:27:30 +0200 (CEST)
From: "Robert M. Stockmann" 
To: cloak.dagger@gmail.com, lennybloom@gmail.com, 
     stefangrossmann@t-online.de, too@slingshot.co.nz, 
     skolnick@ameritech.net, eric@vaticanassassins.org, 
     tips@infowars.com, prisonplanetweb@hotmail.com, 
     tarpley@tarpley.net, tom@tomflocco.com, takingaim@pacbell.net, 
     stewwebb@sierranv.net, prophecy@texemarrs.com, 
     deadlinelive@yahoo.com, webmaster@rense.com, 
     wmreditor@waynemadsenreport.com, captainmay@prodigy.net, 
     palast@gregpalast.com, henry@savethemales.ca, 
     leurenmoret@yahoo.com, michaelcollinspiper1960@yahoo.com, 
     chamish@netvision.net.il, smith@iamthewitness.com
Subject: Cloak and Dagger under blackbox routing attack
In-Reply-To: <291a79940705142228t5b24f1a2y5a2a73c052b44575@mail.gmail.com>
Message-ID: 
MIME-Version: 1.0

Hi,

It seems that a couple of very nasty backbone router goons have 
recently aquired the capabilities of blackbox routing manipulation.  
These 'goons' turn out to be NOT your nextdoor hacker wannabee's, but 
are merely organized crime Corporations with full access and control of 
large IP-NETWORKS comprising A and B CLASS ip-ranges, which turn out to 
be in use at the most important backbone Global IP-ROUTING and ATM 
SWITCHING Internet Exchange Point's.

In the below presented case they are found present at the Amsterdam 
(AMS-IX) Internet Exchange Point [1], and The Pan American (PAIX) 
Internet Exchange Point in New York, MAE-East [2], and the Frankfurt 
Internet Exchange (F-IX) [3], and obviously the Toronto Internet 
Exchange (TorIX) [4] :

[1] Amsterdam : http://www.ams-ix.net/
[2] New York  : http://www.paix.net/
                http://www.mae.net/fac/mae-east.htm
                http://en.wikipedia.org/wiki/MAE-East
[3] Frankfurt : http://www.de-cix.net/
                http://www.franap.net/
                http://www.kleyrex.net/
[4] Toronto   : http://www.torix.net/


>From stock@stokkie.net Tue May 15 01:21:51 2007 +0200
Date: Tue, 15 May 2007 01:21:50 +0200 (CEST)
From: "Robert M. Stockmann" 
To: noc@cogentco.com, abuse@cogentco.com, ipalloc@cogentco.com
cc: cloak.dagger@gmail.com, lennybloom@gmail.com, stewwebb@sierranv.net, 
     tom@tomflocco.com, stefangrossmann@t-online.de, 
     too@slingshot.co.nz, eric@vaticanassassins.org
Subject: [ABUSE] PSI/COGENTCO blackbox routing harassment
In-Reply-To: 
Message-ID: 
MIME-Version: 1.0


Sent by EMAIL and FAX

      Cogent Communications/
      Performance Systems International
      1015 31ST ST NW
      WASHINGTON, DC 20007-4406
      USA
      tel: +1 202-295-4200 
      fax: +1 202-338-8798
      noc@cogentco.com, abuse@cogentco.com, ipalloc@cogentco.com.

Subject : [ABUSE] PSI/COGENTCO blackbox routing harassment

Dear Network Operators,

After further investigation, it's straightforward evident to me that 
the web-server hosting of www.cloakanddagger.de (213.68.215.8) is 
severely compromised. In previous months www.cloakanddagger.de simply 
was blocked, hacked or put offline. 

This time "they" (Orca Associates?) have installed/(or hired?) a more
sophisticated team of "Certified Ethical Hacker's" (www.eccouncil.org)??

Well so it seems to me. I did some traceroute's and added a new tool 
called tcptraceroute, which does the same as traceroute but uses the 
more commonly used tcp port 80 (http), which needs to be open for 
webservers.

I did a traceroute and tcptraceroute (on port 80) from my own ADSL at 
home, and at a ADSL located at a customer of my company Stockmann 
Automatisering :

Traceroute at home :
------------------------------------------------------------------------

[jackson:root]:(~)# traceroute www.cloakanddagger.de
traceroute to www.cloakanddagger.de (213.68.215.8), 30 hops max, 46 byte packets
 1  hubble (10.0.18.72)  0.264 ms  0.162 ms  0.500 ms
 2  1-28.bbned.dsl.internl.net (82.215.28.1)  10.272 ms  9.615 ms  9.560 ms
 3  ge1-1.xr1.nik-asd.internl.net (217.149.196.33)  10.090 ms  9.804 ms  10.184 
ms
 4  v265.mpd01.ams03.atlas.cogentco.com (130.117.242.149)  10.529 ms  10.500 ms 
 10.086 ms
 5  t4-2.mpd01.ams03.atlas.cogentco.com (130.117.2.65)  10.600 ms  10.515 ms  10
.618 ms
 6  t2-0-0.core01.ams03.atlas.cogentco.com (130.117.0.33)  88.223 ms  88.544 ms 
 87.917 ms
 7  p1-0.core01.lon01.atlas.cogentco.com (130.117.1.225)  90.183 ms  90.200 ms  
90.166 ms
 8  t1-4.mpd02.lon01.atlas.cogentco.com (130.117.1.74)  18.502 ms  18.128 ms  18
.164 ms
 9  * t8-1.mpd03.jfk02.atlas.cogentco.com (66.28.4.41)  90.459 ms  89.883 ms
10  v3491.mpd01.jfk05.atlas.cogentco.com (154.54.7.10)  93.609 ms  93.857 ms  93
.433 ms
11  g13-0-0.core01.jfk05.atlas.cogentco.com (154.54.1.154)  87.876 ms  87.863 ms
  87.892 ms
12  uunet.jfk05.atlas.cogentco.com (154.54.12.182)  94.153 ms  94.103 ms  93.367
 ms
13  0.so-2-3-0.XL3.NYC4.ALTER.NET (152.63.3.154)  92.895 ms  92.519 ms  93.331 m
s
14  0.so-2-0-0.IL1.NYC9.ALTER.NET (152.63.9.241)  93.415 ms  93.025 ms  93.846 m
s
15  0.so-1-0-0.IR1.NYC12.ALTER.NET (152.63.23.62)  93.667 ms  93.365 ms  93.622 
ms
16  so-7-0-0.TR1.FFT1.ALTER.NET (146.188.15.217)  183.575 ms  183.011 ms  183.53
0 ms
17  so-4-0-0.XR1.FFT4.ALTER.NET (146.188.3.110)  179.571 ms  179.640 ms  179.597
 ms
18  POS0-0-0.GW11.FFT4.ALTER.NET (149.227.22.6)  184.289 ms  184.049 ms  184.540
 ms
19  Orca-up.Wiesbaden.de.ALTER.NET (139.4.22.118)  185.225 ms  185.001 ms  184.7
79 ms
20  * * *
21  * * *
22  * * *

[jackson:root]:(~)#


TCPTraceroute at home :
------------------------------------------------------------------------

[jackson:root]:(~)# tcptraceroute www.cloakanddagger.de
Selected device eth0, address 10.0.18.71, port 33807 for outgoing packets
Tracing the path to www.cloakanddagger.de (213.68.215.8) on TCP port 80 (http), 
30 hops max
 1  10.0.18.72  0.280 ms  0.328 ms  0.485 ms
 2  1-28.bbned.dsl.internl.net (82.215.28.1)  10.470 ms  9.811 ms  9.582 ms
 3  ge1-1.xr1.nik-asd.internl.net (217.149.196.33)  10.305 ms  9.894 ms  10.597 
ms
 4  v265.mpd01.ams03.atlas.cogentco.com (130.117.242.149)  9.790 ms  10.114 ms  
9.878 ms
 5  t4-2.mpd01.ams03.atlas.cogentco.com (130.117.2.65)  10.502 ms  10.601 ms  10
.204 ms
 6  t2-0-0.core01.ams03.atlas.cogentco.com (130.117.0.33)  88.019 ms  88.085 ms 
 88.399 ms
 7  p1-0.core01.lon01.atlas.cogentco.com (130.117.1.225)  89.858 ms  89.793 ms  
89.682 ms
 8  t1-4.mpd02.lon01.atlas.cogentco.com (130.117.1.74)  23.749 ms  18.408 ms  18
.458 ms
 9  t8-1.mpd03.jfk02.atlas.cogentco.com (66.28.4.41)  90.349 ms  89.573 ms  91.1
02 ms
10  v3491.mpd01.jfk05.atlas.cogentco.com (154.54.7.10)  93.584 ms  93.477 ms  93
.807 ms
11  g13-0-0.core01.jfk05.atlas.cogentco.com (154.54.1.154)  87.632 ms  87.350 ms
  87.623 ms
12  uunet.jfk05.atlas.cogentco.com (154.54.12.182)  93.800 ms  94.339 ms  93.819
 ms
13  0.so-2-1-0.XL3.NYC4.ALTER.NET (152.63.3.150)  93.579 ms  93.458 ms  92.840 m
s
14  0.so-2-0-0.IL1.NYC9.ALTER.NET (152.63.9.241)  93.548 ms  93.528 ms  92.994 m
s
15  0.so-1-0-0.IR1.NYC12.ALTER.NET (152.63.23.62)  94.627 ms  93.224 ms  93.078 
ms
16  so-7-0-0.TR1.FFT1.ALTER.NET (146.188.15.217)  183.230 ms  182.705 ms  183.01
2 ms
17  so-0-1-0.XR1.FFT4.ALTER.NET (146.188.8.133)  178.609 ms  177.607 ms  178.047
 ms
18  POS0-0-0.GW11.FFT4.ALTER.NET (149.227.22.6)  201.967 ms  199.097 ms  200.252
 ms
19  Orca-up.Wiesbaden.de.ALTER.NET (139.4.22.118)  184.728 ms  184.591 ms  184.6
92 ms
20  * * *
21  213.68.215.8 [open]  184.966 ms  184.823 ms  185.730 ms
[jackson:root]:(~)# 


Traceroute at customer :
------------------------------------------------------------------------
[mail:root]:(~)# traceroute www.cloakanddagger.de
traceroute to www.cloakanddagger.de (213.68.215.8), 30 hops max, 38 byte packets
 1  sdsllan (194.123.233.249)  0.348 ms  0.279 ms  0.293 ms
 2  gv-dc2-ias-ard11.nl.kpn.net (62.12.4.26)  7.908 ms  5.360 ms  5.365 ms
 3  gv-dc2-ipc-cr02.nl.kpn.net (195.190.232.74)  9.774 ms  285.277 ms  8.002 ms
 4  rt-dc2-ipc-br02.nl.kpn.net (195.190.232.75)  8.937 ms  8.710 ms  11.327 ms
 5  195.190.233.98 (195.190.233.98)  9.347 ms  10.428 ms  9.221 ms
 6  asd-dc2-ias-ur10.nl.kpn.net (195.190.227.7)  7.400 ms  7.849 ms  7.882 ms
 7  asd-dc2-ipc-br02.nl.kpn.net (195.190.227.203)  8.961 ms  11.157 ms  8.852 ms
 8  asd-dc2-ias-csg01.nl.kpn.net (195.190.227.202)  8.264 ms  8.291 ms  7.811 ms
 9  193.172.217.118 (193.172.217.118)  8.281 ms  7.544 ms  7.813 ms
10  so-1-2-0.TR1.AMS2.ALTER.NET (146.188.5.93)  10.765 ms  9.427 ms  9.922 ms
11  so-6-1-0.TR2.FFT1.ALTER.NET (146.188.15.214)  16.144 ms  15.238 ms  16.109 ms
12  so-2-0-0.XR2.FFT4.ALTER.NET (146.188.8.145)  16.551 ms  14.879 ms  15.277 ms
13  POS12-0-0.GW11.FFT4.ALTER.NET (149.227.22.34)  14.456 ms  14.458 ms  15.288 ms
14  Orca-up.Wiesbaden.de.ALTER.NET (139.4.22.118)  15.729 ms  15.742 ms  15.261 ms
15  * * *
16  * * *
17  * * *

[mail:root]:(~)# 


TCPTraceroute at customer :
------------------------------------------------------------------------

[mail:root]:(~)# tcptraceroute www.cloakanddagger.de
Selected device eth0, address 194.123.233.250, port 44752 for outgoing packets
Tracing the path to www.cloakanddagger.de (213.68.215.8) on TCP port 80 (http), 30 hops max
 1  sdsllan (194.123.233.249)  0.284 ms  0.257 ms  0.232 ms
 2  gv-dc2-ias-ard11.nl.kpn.net (62.12.4.26)  31.691 ms  6.207 ms  6.142 ms
 3  gv-dc2-ipc-cr02.nl.kpn.net (195.190.232.74)  9.746 ms  10.404 ms  9.492 ms
 4  rt-dc2-ipc-br02.nl.kpn.net (195.190.232.75)  10.251 ms  10.045 ms  9.857 ms
 5  195.190.233.98  10.268 ms  10.080 ms  10.306 ms
 6  asd-dc2-ias-ur10.nl.kpn.net (195.190.227.7)  7.954 ms  8.351 ms  7.789 ms
 7  asd-dc2-ipc-br02.nl.kpn.net (195.190.227.203)  10.156 ms  9.936 ms  9.862 ms
 8  asd-dc2-ias-csg01.nl.kpn.net (195.190.227.202)  8.369 ms  8.352 ms  7.813 ms
 9  193.172.217.118  8.224 ms  8.447 ms  9.082 ms
10  so-1-2-0.TR1.AMS2.ALTER.NET (146.188.5.93)  9.446 ms  9.110 ms  9.005 ms
11  so-6-0-0.TR1.FFT1.ALTER.NET (146.188.8.162)  31.839 ms  16.427 ms  15.015 ms
12  so-0-1-0.XR1.FFT4.ALTER.NET (146.188.8.133)  15.272 ms  14.927 ms  14.818 ms
13  POS0-0-0.GW11.FFT4.ALTER.NET (149.227.22.6)  14.843 ms  14.649 ms  14.847 ms
14  Orca-up.Wiesbaden.de.ALTER.NET (139.4.22.118)  16.498 ms  16.117 ms  15.701 ms
15  213.68.215.8  16.528 ms  16.779 ms  17.745 ms
16  213.68.215.8 [open]  16.057 ms  16.289 ms  16.927 ms
[mail:root]:(~)# 

It's clear that, in my case, two Corporations called PSI and COGENTO 
are at play here. PSI uses 130.117.xxx.yyy and 154.54.xxx.yyy and 
COGENTO uses 66.28.xxx.yyy in the example from my home :

PSI :
------------------------------------------------------------------------
OrgName:    Performance Systems International Inc. 
OrgID:      PSI
Address:    1015 31st St NW
City:       Washington
StateProv:  DC
PostalCode: 20007
Country:    US

NetRange:   130.117.0.0 - 130.117.255.255 
CIDR:       130.117.0.0/16 
NetName:    COGENT-EUROPEAN-OPERATIONS-001
NetHandle:  NET-130-117-0-0-1
Parent:     NET-130-0-0-0-0
NetType:    Direct Assignment

NetRange:   154.54.0.0 - 154.54.255.255 
CIDR:       154.54.0.0/16 
NetName:    PSINET-B2-54
NetHandle:  NET-154-54-0-0-1
Parent:     NET-154-0-0-0-0
NetType:    Direct Assignment


COGENTCO:
------------------------------------------------------------------------
OrgName:    Cogent Communications 
OrgID:      COGC
Address:    1015 31st St NW
City:       Washington
StateProv:  DC
PostalCode: 20007
Country:    US

NetRange:   66.28.0.0 - 66.28.255.255 
CIDR:       66.28.0.0/16 
NetName:    COGENT-NB-0000
NetHandle:  NET-66-28-0-0-1
Parent:     NET-66-0-0-0-0
NetType:    Direct Allocation

COGENTCO and PSI are clearly close business partners in what ever they 
are doing. Comparing the above traceroute and tcptraceroute results 
with those at my customers location, its clear that 'certain' regular 
visitors of cloakanddagger.de are being harrassed by blackbox routing 
over ip-networks in the ownership of COGENTCO/PSI..

It's most likely that both Lenny Bloom and Tom Heneghan, site owners of 
www.cloakanddagger.de, are faced with the same 'blackbox' PSI/COGENTCO 
harassment, as they stated that access to their webserver 
www.cloakanddagger.de was severely compromised because they could not 
publish or edit their own website content anymore.

I'm most confident that the 'blackbox' routing will be removed from the 
IP-NETWORK ranges in ownership of COGENTCO and PSI. Thanking you for 
your cooperation, I reside,

Yours Sincerely,

Robert M. Stockmann
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net



On Tue, 15 May 2007, Lenny Bloom wrote:

> Date: Tue, 15 May 2007 01:28:43 -0400
> From: Lenny Bloom 
> To: Robert M. Stockmann 
> Subject: Re: Give us some Cloak audio!
> 
> I cannot get access to publish to the Cloak.
> For whatever reason which I dont know I can't and really am handcuffed.
> Be Patient.
> Lenny
> 
> 
> On 5/14/07, Robert M. Stockmann  wrote:
> >
> >
> > Hi Lenny,
> >
> > As Dunblaine Tony gets kicked out of Downingstreet 10, and Bush has
> > moved to COG (Continuity of Government) and COOP (Continuity of
> > Operations), a clear defensive strategy to save ones Presidential butt,
> > I wonder to myself :
> >
> > Where's the new Cloak audio's ?
> >
> > Cheers,
> >
> > Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net


Register.com Internet Assigned Numbers Authority






Compromised DNS backbone providers


It turns out that my own DNS servers, hooked up to my ADSL at home, are blocked, somehow, from querying when finding certain websites. e.g. http://xckd.com/, http://www.globalhealthfreedom.org/, etc. all result in :
An error occurred while loading http://www.globalhealthfreedom.org/:

Unknown host www.healthfreedomusa.org
Interesting enough when inserting the dialup nameserver ip's from my ADSL ISP, into /etc/resolv.conf or as forwarders inside named.conf, the above two websites suddenly work normally again. So this looks like a harassement targeted at my 100% independent running DNS/Web/Email servers, which i setup to work from my ADSL at home.
Date: Fri, 29 Jun 2007 07:39:35 +0200 (CEST)
From: "Robert M. Stockmann" 
To: iana@iana.org
Subject: Compromised DNS backbone providers
Message-ID: 
MIME-Version: 1.0


Internet Assigned Numbers Authority
4676 Admiralty Way, Suite 330 
Marina del Rey, CA  90292 
USA

+1-310-823-9358 (phone) 
+1-310-823-8649 (facsimile)

Subject: Compromised DNS backbone providers

Dear Sir/Madam,

As many of you have noticed recently, is that a lot, and i mean
a LOT of usefull websites have gone offline. Typically websites
which report about serious issues concerning all kind of aspects
with regards to our current troubled times. So how far does
this dirty gambit rabbit hole go?

Here's a couple :

www.mediabypass.com 		Registrar of Record: TUCOWS, INC.
				Whois Server: whois.tucows.com
				Name Server: NS1.WVR.NET
				Problem: No DNS records active

www.healthfreedomusa.org	Registrar of Record: Go Daddy Software, Inc.
				Whois Server: whois.godaddy.com
				Name Server:NS29.1AND1.COM
				Problem: No DNS records active

www.crystalinks.com		Registrar of Record: NETWORK SOLUTIONS, LLC.
                          	Whois Server: whois.networksolutions.com
				Name Server: NS29.1AND1.COM
				Problem: No DNS records active

www.newworldorderchat.com	Registrar: DOTSTER, INC.
				Whois Server: whois.dotster.com
				Name Server: NS1.STORMDNS.COM
				Problem: No DNS records active

www.lp.org			Registrar of Record: NETWORK SOLUTIONS, LLC.
                          	Whois Server: whois.networksolutions.com
				Name Server: NS1.LP.ORG
				Problem: No DNS records active

Although the nameservers of the above DNS-less domains could still be 
alive with their ip-numbers, the whois service of the Registrar of 
Record could have been compromised by secret service. So lets check the 
whois servers of the above 4 domains :

WHOIS TUCOWS.COM :
========================================================================
[jackson:stock]:(~)$ whois tucows.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Server Name: TUCOWS.COM.RESPECTED.BY.WWW.DNDIALOG.COM
   IP Address: 81.177.3.240
   Registrar: MONIKER ONLINE SERVICES, INC.
   Whois Server: whois.moniker.com
   Referral URL: http://www.moniker.com/whois.html

   Domain Name: TUCOWS.COM
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net
   Name Server: DNS1.TUCOWS.COM
   Name Server: DNS2.TUCOWS.COM
   Name Server: DNS3.TUCOWS.COM
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 13-oct-2006
   Creation Date: 07-sep-1995
   Expiration Date: 06-sep-2007


WHOIS NETWORKSOLUTIONS.COM :
========================================================================
[jackson:stock]:(~)$ whois networksolutions.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Server Name: NETWORKSOLUTIONS.COM.RESPECTED.BY.WWW.DNDIALOG.COM
   IP Address: 81.177.3.240
   Registrar: MONIKER ONLINE SERVICES, INC.
   Whois Server: whois.moniker.com
   Referral URL: http://www.moniker.com/whois.html

   Domain Name: NETWORKSOLUTIONS.COM
   Registrar: NETWORK SOLUTIONS, LLC.
   Whois Server: whois.networksolutions.com
   Referral URL: http://www.networksolutions.com
   Name Server: NS1.NETSOL.COM
   Name Server: NS2.NETSOL.COM
   Name Server: NS3.NETSOL.COM
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 26-jun-2006
   Creation Date: 27-apr-1998
   Expiration Date: 26-apr-2016


WHOIS DOTSTER.COM :
========================================================================
[jackson:stock]:(~)$ whois dotster.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Server Name: DOTSTER.COM.RESPECTED.BY.WWW.DNDIALOG.COM
   IP Address: 81.177.3.240
   Registrar: MONIKER ONLINE SERVICES, INC.
   Whois Server: whois.moniker.com
   Referral URL: http://www.moniker.com/whois.html

   Server Name: DOTSTER.COM.IMAGESOFWNC.COM
   IP Address: 64.94.117.196
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com


   Server Name: DOTSTER.COM.GOLDENHEARTGROUP.COM
   IP Address: 66.11.230.74
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Domain Name: DOTSTER.COM
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com
   Name Server: NS1.DOTSTER.COM
   Name Server: NS2.DOTSTER.COM
   Status: clientDeleteProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 27-apr-2007
   Creation Date: 12-dec-1999
   Expiration Date: 12-dec-2011


WHOIS GODADDY.COM :
========================================================================
[jackson:stock]:(~)$ whois godaddy.com

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Server Name: GODADDY.COM.THEANTHEMS.NET
   IP Address: 68.178.211.122
   Registrar: TUCOWS INC.
   Whois Server: whois.tucows.com
   Referral URL: http://domainhelp.opensrs.net

   Server Name: GODADDY.COM.SANGRAALBODYWORK.COM
   IP Address: 68.178.211.122
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: GODADDY.COM.RUSSIANHORNY4U.COM
   IP Address: 68.178.211.9
   Registrar: WILD WEST DOMAINS, INC.
   Whois Server: whois.wildwestdomains.com
   Referral URL: http://www.wildwestdomains.com

   Server Name: GODADDY.COM.RESPECTED.BY.WWW.DNDIALOG.COM
   IP Address: 81.177.3.240
   Registrar: MONIKER ONLINE SERVICES, INC.
   Whois Server: whois.moniker.com
   Referral URL: http://www.moniker.com/whois.html

   Server Name: GODADDY.COM.QUINTAFLORIDA.COM
   IP Address: 68.178.254.161
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: GODADDY.COM.NIFTYENGLISH.NET
   IP Address: 64.202.165.10
   IP Address: 64.202.167.92
   Registrar: A TECHNOLOGY COMPANY, INC. D/B/A NAMESYSTEM.COM
   Whois Server: whois.namesystem.com
   Referral URL: http://www.NameSystem.com

   Server Name: GODADDY.COM.NAIVEDESIGN.NET
   IP Address: 68.178.254.73
   Registrar: WILD WEST DOMAINS, INC.
   Whois Server: whois.wildwestdomains.com
   Referral URL: http://www.wildwestdomains.com

   Server Name: GODADDY.COM.MADE4BABES.COM
   IP Address: 68.178.254.107
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: GODADDY.COM.KOEUNPARK.COM
   IP Address: 64.202.167.92
   IP Address: 64.202.165.10
   Registrar: A TECHNOLOGY COMPANY, INC. D/B/A NAMESYSTEM.COM
   Whois Server: whois.namesystem.com
   Referral URL: http://www.NameSystem.com

   Server Name: GODADDY.COM.KARLAADAMS.COM
   IP Address: 63.241.136.156
   Registrar: GO DADDY SOFTWARE, INC.
   Whois Server: whois.godaddy.com
   Referral URL: http://registrar.godaddy.com

   Server Name: GODADDY.COM.JMAHERREALTOR.COM
   IP Address: 64.202.165.70
   Registrar: NAMESDIRECT.COM, INC.
   Whois Server: whois.namesdirect.com
   Referral URL: http://www.namesdirect.com

   Server Name: GODADDY.COM.INDYMETROWOMAN.COM
   IP Address: 68.178.254.122
   Registrar: DSTR ACQUISITION. I, LLC DBA 000DOMAINS.COM
   Whois Server: whois.000domains.com
   Referral URL: http://www.000domains.com

   Server Name: GODADDY.COM.HOPEHASFAILEDUS.COM
   IP Address: 64.202.163.148
   Registrar: GO DADDY SOFTWARE, INC.
   Whois Server: whois.godaddy.com
   Referral URL: http://registrar.godaddy.com

   Server Name: GODADDY.COM.GGONYA.NET
   IP Address: 64.202.167.92
   IP Address: 64.202.165.10
   Registrar: A TECHNOLOGY COMPANY, INC. D/B/A NAMESYSTEM.COM
   Whois Server: whois.namesystem.com
   Referral URL: http://www.NameSystem.com

   Server Name: GODADDY.COM.DATINGMATCHUP.NET
   IP Address: 68.178.232.44
   Registrar: WILD WEST DOMAINS, INC.
   Whois Server: whois.wildwestdomains.com
   Referral URL: http://www.wildwestdomains.com

   Server Name: GODADDY.COM.DAHLGLASS.NET
   IP Address: 64.202.163.8
   Registrar: DOTSTER, INC.
   Whois Server: whois.dotster.com
   Referral URL: http://www.dotster.com

   Server Name: GODADDY.COM.AND.ALEX.FUCKED.BY.WWW.DNDIALOG.COM
   IP Address: 81.177.3.240
   Registrar: MONIKER ONLINE SERVICES, INC.
   Whois Server: whois.moniker.com
   Referral URL: http://www.moniker.com/whois.html

   Domain Name: GODADDY.COM
   Registrar: GO DADDY SOFTWARE, INC.
   Whois Server: whois.godaddy.com
   Referral URL: http://registrar.godaddy.com
   Name Server: CNS1.SECURESERVER.NET
   Name Server: CNS2.SECURESERVER.NET
   Name Server: CNS3.SECURESERVER.NET
   Status: clientDeleteProhibited
   Status: clientRenewProhibited
   Status: clientTransferProhibited
   Status: clientUpdateProhibited
   Updated Date: 24-jan-2007
   Creation Date: 02-mar-1999
   Expiration Date: 02-mar-2016

So it seems that none of the above 4 toplevel whois/dns providers have 
their own whois record secured. Through this security flaw, the whois  
service hijackers can render any website offline by publishing 
false DNS server records for the client domain. 

Probably by overruling whois servers like WHOIS.TUCOWS.COM, 
WHOIS.NETWORKSOLUTIONS.COM, WHOIS.DOTSTER.COM and WHOIS.GODADDY.COM by 
using a different whois server, the DNS record nuke Gig is executed.

Through the listing of "extra" additional whois server records _ABOVE_ 
the real whois server, the published DNS server records for the client 
domain can be changed into erroneous DNS nameserver names or ip-numbers.

This means serious trouble, and if not resolved and cleaned up soon,
these offenders might take the whole internet down.

Yours Sincerely,

Robert M. Stockmann
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net


Register.com Internet Assigned Numbers Authority






Re: [IANA #91363] Compromised DNS backbone providers


Date: Sun, 15 Jul 2007 21:10:48 +0200 (CEST)
From: "Robert M. Stockmann" <stock@stokkie.net>
To: Kim Davies via RT <iana-questions@icann.org>
Subject: Re: [IANA #91363] Compromised DNS backbone providers 
In-Reply-To: <rt-3.5.HEAD-12433-1184352479-730.91363-6-0@icann.org>
Message-ID: <Pine.LNX.4.44.0707152051450.25012-100000@hubble.stokkie.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Status: RO
X-Status: 
X-Keywords:                 

On Fri, 13 Jul 2007, Kim Davies via RT wrote:

> Date: Fri, 13 Jul 2007 11:48:00 -0700
> From: Kim Davies via RT <iana-questions@icann.org>
> To: stock@stokkie.net
> Subject: [IANA #91363] Compromised DNS backbone providers 
> 
> Dear Mr Stockmann,
> 
> We received your facsimile transmission dated 29 June 2007 concerning 
> "Compromised DNS backbone providers".
> 
> We reviewed the information you provided and have found no evidence 
> there are any serious issues or problems in what you have provided.
> 
> Your first issue is that a number of domains have "No DNS records 
> active". This is not correct:
> 
> * www.healthfreedomusa.org resolves as an A record to 74.208.10.167
> * www.crystalinks.com resolves as an A record to 82.165.148.74
> * www.newworldorderchat.com resolves as an A record to 74.200.66.7
> * www.lp.org resolves as a CNAME record to lp.org

Ok, well there is indeed a weird thing going on with my own DNS servers :

  "[jackson:root]:(~)# nslookup 
   > www.microsoft.com
   Server:         10.0.18.72
   Address:        10.0.18.72#53

   Non-authoritative answer:
   www.microsoft.com       canonical name = toggle.www.ms.akadns.net.
   toggle.www.ms.akadns.net        canonical name = g.www.ms.akadns.net.
   g.www.ms.akadns.net     canonical name = lb1.www.ms.akadns.net.
   Name:   lb1.www.ms.akadns.net
   Address: 207.46.19.190
   Name:   lb1.www.ms.akadns.net
   Address: 207.46.19.254
   Name:   lb1.www.ms.akadns.net
   Address: 207.46.192.254
   Name:   lb1.www.ms.akadns.net
   Address: 207.46.193.254
   > www.healthfreedomusa.org
   ;; Got SERVFAIL reply from 10.0.18.71, trying next server
   ;; Got SERVFAIL reply from 10.0.18.72, trying next server
   Server:         10.0.18.84
   Address:        10.0.18.84#53

   ** server can't find www.healthfreedomusa.org: SERVFAIL
   > www.crystalinks.com
   ;; Got SERVFAIL reply from 10.0.18.71, trying next server
   ;; Got SERVFAIL reply from 10.0.18.72, trying next server
   Server:         10.0.18.84
   Address:        10.0.18.84#53
   
   ** server can't find www.crystalinks.com: SERVFAIL
   > www.newworldorderchat.com
   ;; Got SERVFAIL reply from 10.0.18.71, trying next server
   ;; Got SERVFAIL reply from 10.0.18.72, trying next server
   Server:         10.0.18.84
   Address:        10.0.18.84#53
   
   ** server can't find www.newworldorderchat.com: SERVFAIL
   > www.lp.org
   ;; Got SERVFAIL reply from 10.0.18.71, trying next server
   ;; Got SERVFAIL reply from 10.0.18.72, trying next server
   Server:         10.0.18.84
   Address:        10.0.18.84#53
   
   ** server can't find www.lp.org: SERVFAIL
   > 
   [jackson:root]:(~)# "

The above results are obtained, when my named.conf has no forwarder
nameservers active. If I activate the forwarders from my ISP inside
named.conf :

        // INTER.NL.NET
        forwarders { 217.149.196.6; 217.149.192.6; };

I get the following results :

  "[jackson:root]:(~)# nslookup 
   > www.healthfreedomusa.org
   Server:         10.0.18.71
   Address:        10.0.18.71#53

   Non-authoritative answer:
   Name:   www.healthfreedomusa.org
   Address: 74.208.10.167
   > www.crystalinks.com
   Server:         10.0.18.71
   Address:        10.0.18.71#53
   
   Non-authoritative answer:
   Name:   www.crystalinks.com
   Address: 82.165.148.74
   > www.newworldorderchat.com
   Server:         10.0.18.71
   Address:        10.0.18.71#53
   
   Non-authoritative answer:
   Name:   www.newworldorderchat.com
   Address: 74.200.66.7
   > www.lp.org
   Server:         10.0.18.71
   Address:        10.0.18.71#53
   
   Non-authoritative answer:
   www.lp.org      canonical name = lp.org.
   Name:   lp.org
   Address: 74.53.96.35
   > 
   [jackson:root]:(~)# "

After consulting with the tech support desk of my ISP, INTER.NL.NET
they assured me that the ip-number of my ADSL connection , 82.215.30.181 ,
has no restrictions imposed of any kind, like those needed
for a DNS name server. This means that higher upstream my ip-number
is somehow blocked from direct DNS access to certain backbone DNS
nameservers.

If you can find out how my ip-number is blocked, you may be able
to prevent future DNS blocking on other nameservers, which may have
a more drastic impact on blocking whole parts on the internet.

> The only address for which we could not resolve a DNS record for was 
> www.mediabypass.com. This is due to SERVFAIL errors with the two 
> authoritative  name servers for the domain, which is a problem with the 
> name server operators  for the domain, not with any "DNS backbone".
> 
> As to your list of WHOIS outputs, we do not see anything wrong with 
> them. We note you have listed WHOIS records for 'host' objects like 
> 'TUCOWS.COM.RESPECTED.BY.WWW.DNDIALOG.COM' as well as for 'domain' 
> objects like 'TUCOWS.COM' -- perhaps that is causing you some 
> confusion. The two are unrelated objects in the database.
> 
> If you have evidence of actual problems with the Internet whereby 
> there are security problems, or any erroneous data -- we will happily 
> research them. However nothing you have provided shows any indication 
> of such problems.
> 
> With kindest regards,
> 
> Kim Davies
> Internet Assigned Numbers Authority
> 

I thank you for your response,
Best Regards,

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

Normally spoken DNS queries on UDP port 53 to the DNS Root Servers are not blocked, but recently, it seems, times have changed [1][2]. It's a sad situation, where the nasty odor of a staged and orchestrated problem, the fabricated reaction inside 'mainstream IT press' and a MOSSAD desired solution has been forced upon the small ISP's and independent DNS servers. A solution which results in my name.cache zone file failing to directly retrieve information regarding 'certain' domain names. As of Oct 31, 2007, the workaround offered is to 'rely' on the nameserver cache of your upstream ISP's DNS nameservers. This should be enough food for thought about _WHO IS_ creating these weird situations and problems.

[1] "Health of the Domain Name System (DNS Garbage)"
©2002-2007 BIND9.NET.
All rights reserved.
Page last modified on Mon 12 March 2007 03:20:58 CET
http://www.bind9.net/dnshealth

[2] "UPDATE: Lessons learned from Internet root server attack"
By Carolyn Duffy Marsan
, Network World, 02/08/07
http://www.networkworld.com/news/2007/020807-internet-root-server-hack.html

Secure your keyboard











Keyboard JitterBug eavesdropping


Date: Sat, 28 Jul 2007 02:56:06 +0200 (CEST)
From: "Robert M. Stockmann" 
To: stewwebb@sierranv.net, stefangrossmann@t-online.de, 
     too@slingshot.co.nz, wmreditor@waynemadsenreport.com, 
     palast@gregpalast.com, tom@tomflocco.com, skolnick@ameritech.net, 
     henry@savethemales.ca, prophecy@texemarrs.com, 
     smith@iamthewitness.com, eric@iamthewitness.com, 
     captainmay@prodigy.net, tarpley@tarpley.net, 
     takingaim@pacbell.net, webmaster@rense.com, 
     articles@davidicke.com, chamish@netvision.net.il, 
     crescentandcross@gmail.com, tips@infowars.com, 
     cloak.dagger@gmail.com, lennybloom@gmail.com, 
     eric@vaticanassassins.org
Subject: Keyboard JitterBug eavesdropping
Message-ID: 
MIME-Version: 1.0

Hi,

In this vibrant era of getting the truth out, signed, sealed, delivered
and published on the Internet, its important to make sure your
working place, i.e. your workstation is also securely signed and sealed.

I came across the following USENIX article :

"Keyboards and Covert Channels"
 by Gaurav Shah, Andres Molina and Matt Blaze , 2006-05-17
 Department of Computer and Information Science 
 University of Pennsylvania 
http://www.usenix.org/events/sec06/tech/shah/shah_html/jbug-Usenix06.html

In it the authors demonstrate that todays unwarrented wiretapped
NSA activities, normally don't result in much success as serious
internet users routinely apply encryption into their communications,
like IPSec tunneling, ssh, VPN access connections, secure webtraffic
https when i.e. doing Internet banking activities.

However, secret service found a clever approach to all this, by covertly
installing a Keyboard JitterBug into your keyboard :

  "5.1 Architecture 

   Our Keyboard JitterBug is implemented as a hardware interception 
   device that sits between the keyboard and the computer. It is also 
   possible to implement a JitterBug by modifying the keyboard 
   firmware or the internal keyboard circuits, but the 
   bump-in-the-wire implementation lends itself to easy installation 
   on existing keyboards without the need for any major modification. 
   Figure 2 shows the high-level architecture of the Keyboard 
   JitterBug. 

   The Keyboard JitterBug adds timing information to keypresses in the 
   form of small jitters that are unnoticeable to a human operator. If 
   the user is typing in an interactive network application, then each 
   keystroke will be sent in its own network packet. Ignoring the 
   effects of buffering and network delays (the ideal case), the 
   timing of the network packets will mirror closely the times at 
   which the keystroke were received by the keyboard controller on the 
   host. By observing these packet timings, an eavesdropper can 
   reconstruct the original information that was encoded by the 
   Keyboard JitterBug."

There's however a straighforward effective solution to this possibility,
and that is to seal some screws of your keyboard. You must of course
be sure your keyboard has not yet been "JitterBug"-ed yet.

Cheers,

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net


Sender Policy Framework, Censure the Independent?



The Anti Spam Controversy


From: "Robert M. Stockmann" <stock@stokkie.net>
Subject: The libspf/libsrs vs. libspf2/libsrs2 controversy
Date: Wed, 17 Oct 2007 00:23:21 +0200
User-Agent: Pan/0.14.2.91 (As She Crawled Across the Table)
Message-Id: <pan.2007.10.16.22.23.21.827112@stokkie.net>
Newsgroups: comp.os.linux.advocacy
X-Pan-Internal-Post-Server: XS4ALL
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-15
Content-Transfer-Encoding: 8bit


Hi,

After i sent the below email to the Developers of libspf , the email
server of Meng Weng Wong from pobox.com responded with a interesting but
also strange error message :

   delivery 29415:
   failure:207.106.133.15_does_not_like_recipient./
   Remote_host_said:_554_<mengwong@pobox.com>:_Recipient_address_rejected:_broadband/
   _returned_deny:_161-98.mxp.dsl.internl.net_looks_like_a_consumer_broadband_machine/
   Giving_up_on_207.106.133.15./

So today anti-spam efforts go as far as to reject email because the
sending email server is using a "consumer_broadband_machine" ip-number. If
that is all what anti-spam is about, then the true agenda of anti-spam
guru's has been exposed : Make email a costly service, censure certain
people's email from the internet using misty anti-spam rules, and in the
end allow the old times rulers to take over the Internet, go back to
pre-Internet ages and resume business as usual.

Date: Wed, 17 Oct 2007 00:04:33 +0200 (CEST)
From: "Robert M. Stockmann" <stock@stokkie.net>
To: root@teddy.ch
cc: Patrick Earl <patearl@patearl.net>, Sean Comeau <scomeau@obscurity.org>, 
    Matthias Ruttmann <ruttmann@bartels.de>, 
    Rob McMahon <Rob.McMahon@warwick.ac.uk>, 
    Meng Weng Wong <mengwong@pobox.com>
Subject: The libspf/libsrs vs. libspf2/libsrs2 controversy
Message-ID: <Pine.LNX.4.44.0710162354420.14634-100000@hubble.stokkie.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Status: RO

Hello Dominik Mahrer,

I am a little confused about the SPF/SRS and SPF2/SRS2 competition. 
libspf-1.0.0-RC6/AUTHORS lists the following active developers :

  "Active developers:
   ------------------
  
   James Couzens .......... <jcouzens@codeshare.ca>
   Michael Weiner ......... <mweiner@codeshare.ca>
   Teddy .................. <teddy@codeshare.ca>
   Travis Anderson ........ <tanderson@codeshare.ca>"

I assume you are teddy@codeshare.ca as you support libspf on

	http://www.teddy.ch/libspf/

and started your own company teddy.ch. If that is the case, i have a 
couple of questions for you.  

1. there seems to be some controversy which
   libraries to use :
   libspf or libspf2
   libsrs or libsrs2

2. Do you have a working libsrs (the original James Couzens implementation),
   and also the qmail and sendmail MTA patches for this?

From the FreeBSD ports i downloaded libsrs.0.3.beta.tar.bz2 which 
clearly is designed and written for performance, where the spf2 and 
srs2 crowd clearly is tailored around the Perl::Whatever:Plugin 
culture. For email and a sound MTA server i detest such Perl::XYZ 
solutions.

In fact Larry Wall's Perl is absolutely 100% orthogonal in contradiction 
of what the UNIX Linux philosophy stands for. What the secret agenda is 
behind the zealous promotion of Perl on UNIX/Linux I today have some 
well funded explanations, who clearly point to the objective to 
have the UNIX/Linux platform migrated in a below average platform, both 
in performance and scalability.

Qmail is one of the MTA's out there who still stick to the old diehard 
UNIX philosophy, of building a complex service out of a number of 
separate but fast programs in the C programming language. That's what 
UNIX is : the blinding fast execution of complicated tasks using a 
chain of many small, fast and rock-solid programs. 

From libsrs.3/TODO we read :

  "libsrs v0.3 beta
   (c) 2004 James Couzens <jcouzens@obscurity.org>
  
   TODO:
   - MTA patches
   -- Qmail 99% done
   -- Sendmail 50% done
   -- Exim3 0%
   -- Exim4 0%
   -- Postfix 0%
   -- Courier 0%
   -- Autoconf this library - someone with experience please do this!
      Would be nice to use configure and have it build proper make files
      for BSD/Linux etc..
  
   - OTHER
   -- Get this to compile in solaris "
 
Currently it seems that www.libsrs.org is offline and also
codeshare.ca. Luckily we now have http://libspf.userfriendly.net/.
But still I'm in the dark where the qmail MTA patch for James Couzens
version of libsrs can be downloaded.

I found somewhere on a obscure ftp server this patch : 
qmail-srs-0.3.patch which obviously is to used together with 
libsrs.0.3.beta.tar.bz2 . But when inspecting this patch it seems to 
link with -lsrs2 instead of -lsrs

qmail-srs-0.3.patch :

  "INSTALL INSTRUCTIONS
   
   1) Download and install libsrs2 from http://www.libsrs2.org/download.html

   2) Apply this patch

   tar -xzf /path/to/qmail-1.03.tar.gz
   cd qmail-1.03
   patch -p1 < qmail-srs-0.2.patch "

Then again it seems there's a lot of cash to be made with SPF/SRS as 
besides aol.com now also gmail.com is implementing spf1 records inside 
its DNS. 

I somehow have the impression that the libspf2/libsrs2 crowd is 
seriously trying to eat you guys lunch/diner and mortgage for the house 
with this. And from what i am seeing they are actually are getting away 
with it. This needs to be stopped.

Certainly as James Couzens has been the True pioneer for the SPF DNS 
record anti-spam solution. See the news article collections on 
http://libspf.userfriendly.net/ (***), i.e. [1][2][3][4].

Thanks,
Best Regards,

Yours Sincerely,

Robert M. Stockmann
PS.
[1] "Spoofed From: Prevention"
   Posted by timothy  on Sun Oct 05, 2003 09:18 PM
   http://yro.slashdot.org/article.pl?sid=03/10/06/0044200&mode=thread

[2] "SPF Design Frozen"
   Posted by timothy  on Tue Dec 16, 2003 12:29 AM
   http://developers.slashdot.org/article.pl?sid=03/12/16/0349243&mode=thread

[3] "AOL Now Publishing SPF Records"
   Posted by CowboyNeal  on Fri Jan 09, 2004 05:03 AM
   http://it.slashdot.org/article.pl?sid=04/01/09/0435234&mode=thread

[4] "AOL Tests Sender Permitted From / E-mail Caller ID"
   Posted by timothy  on Sun Jan 25, 2004 10:22 PM
   http://yro.slashdot.org/article.pl?sid=04/01/26/0043227&mode=thread
--
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

(***) [1] libspf.org - The Original ANSI C SPF Reference Library
by James Couzens
published and last edited on May 17, 2005
http://crashrecovery.org/internet/libspf.org.html

[2] libspf.org - The Original ANSI C SPF Reference Library
by James Couzens
published and last edited on Nov 9, 2004
http://crashrecovery.org/internet/libspf.org2.html

[3] FTC Email Authentication Summit and Sender ID
Groklaw
Tuesday, November 09 2004 @ 03:16 AM EST
http://www.groklaw.net/article.php?story=20041109031629840

[4] Electronic Commerce in Canada - Task Force on Spam
Industry Canada Site
Created: 2005-06-06, Updated: 2008-02-08
http://www.ic.gc.ca/epic/site/ecic-ceac.nsf/en/h_gv00248e.html

[5] Stopping Spam Creating a Stronger, Safer Internet
Report of the Task Force on Spam
, May 2005
http://www.ic.gc.ca/epic/site/ecic-ceac.nsf/en/h_gv00317e.html
http://crashrecovery.org/internet/stopping_spam_May2005.pdf

[5] Sender Policy Framework: Authorizing Use of Domains in MAIL FROM
draft-lentczner-spf-00
Created: October 12, 2004, Expires: April 12, 2005
http://www.ozonehouse.com/mark/spf/draft-lentczner-spf-00.html

After checking my spam logs, i noticed how a spammer was sending countless emails using jrabbit@mmsrep.com as his from address :


From SRS0=QORU=PV=mmsrep.com=jrabbit@srs.stokkie.net Sat Oct 27 06:35:12 2007
Return-Path: <SRS0=QORU=PV=mmsrep.com=jrabbit@srs.stokkie.net>
Delivered-To: stock@hubble.stokkie.net
Received: (qmail 6889 invoked by alias); 27 Oct 2007 06:35:12 -0000
Delivered-To: anonymous@stokkie.net
Received: (qmail 6565 invoked from network); 27 Oct 2007 06:35:11 -0000
Received: from unknown (HELO mercermc.com) (88.210.54.251)
  by dmz.stokkie.net with SMTP; 27 Oct 2007 06:35:11 -0000
Received-SPF: none (dmz.stokkie.net: domain of jrabbit@mmsrep.com
 does not designate permitted sender hosts)
Return-Path: <Joni@mmsrep.com>
Received: from 208.65.144.13 (HELO mmsrep.com.inbound15.mxlogic.net)
     by stokkie.net with esmtp (VKBMGJBRVQ XPROK)
     id YlTWr3-sTEW2u-R0
     for anonymous@stokkie.net; Sat, 27 Oct 2007 10:35:13 +0400
Message-ID: <fc7301c81863$87554340$ac100b73@Joni>
From: "Joni D. Driscoll" <Joni@mmsrep.com>
To: "Staci Y. Dahl" <anonymous@stokkie.net>
Subject: Our wonder-medicine will make your dick so impressive
Date: Sat, 27 Oct 2007 10:35:13 +0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
        boundary="----=_NextPart_64625_FCDB_01C81885.0E66E340"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1506
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1506
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 (ftp://crashrecovery.org/pub/linux/amavis/)
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 (ftp://crashrecovery.org/pub/linux/amavis/)
X-DSPAM-Result: Spam
X-DSPAM-Processed: Sat Oct 27 08:35:14 2007
X-DSPAM-Confidence: 0.9997
X-DSPAM-Probability: 1.0000
X-DSPAM-Signature: 4722dc2169345126716110
X-DSPAM-Factors: 15,
	bed+We, 0.99990,
	style7+font, 0.99990,
	pleasure, 0.99990,
	Subject*medicine, 0.99990,
	Pakistan, 0.99990,
	From*D, 0.99990,
	breaker!, 0.99990,
	a+Rely, 0.99990,
	To*anonymous+stokkie, 0.99990,
	Subject*will, 0.99990,
	color+#FF2F2F, 0.99990,
	bed+span, 0.99990,
	Delivered-To*anonymous+stokkie, 0.99990,
	#2B3235+span, 0.99990,
	xual+reality!, 0.99990
Status: O
X-Status: 
X-Keywords:                  

When checking upon the mmsrep.com website i however found the following notice :

MMSREP.COM Email Hi-Jacked

What's interesting though is that the mmsrep.com domain does not designate SPF1 records inside its DNS, and then of course SPF/SRS enabled email servers never can check if the used ip-address by the hijacker from jrabbit@mmsrep.com was valid or not.

Some claim SPF is a Harmful solution, see links collection at "Criticism of Anti-spam Research", but a simple DNS TXT entry addition to the zone file of mmsrep.com would at least prevent My Email Server to accept spam from jrabbit@mmsrep.com .

The MX records of mmsrep.com seem ok :


   [hubble:stock]:(~)$ nslookup 
   > set type=MX
   > mmsrep.com.
   Server:         10.0.18.72
   Address:        10.0.18.72#53

   Non-authoritative answer:
   mmsrep.com      mail exchanger = 15 mmsrep.com.inbound15.mxlogicmx.net.
   mmsrep.com      mail exchanger = 15 mmsrep.com.inbound15.mxlogic.net.
   
   Authoritative answers can be found from:
   mmsrep.com      nameserver = ns.oneononeinternet.com.
   mmsrep.com      nameserver = ns2.oneononeinternet.com.
   mmsrep.com.inbound15.mxlogic.net        internet address = 208.65.144.13
   mmsrep.com.inbound15.mxlogic.net        internet address = 208.65.144.12
   mmsrep.com.inbound15.mxlogicmx.net      internet address = 208.65.144.12
   mmsrep.com.inbound15.mxlogicmx.net      internet address = 208.65.144.13
   >
   [hubble:stock]:(~)$ 

This jrabbit@mmsrep.com dude seems to know his spam job, as he even inserted a fake Received: from header, see the red part above, and compare this with the real Received: from header in green. In effect SPF/SRS would effectively dismiss and rule out the Email MX intermediairy from Russia with ip-number 88.210.54.251.

The Find Us on Facebook Campaign logo


Facebook Snubs Your E-mail



From MAILER-DAEMON Sun Aug  5 01:07:47 2012
Date: 05 Aug 2012 01:07:47 +0200
From: Mail System Internal Data <MAILER-DAEMON@stokkie.net>
Subject: DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA
X-IMAP: 1344121667 0000000000
Status: RO

This text is part of the internal format of your mail folder, and is not
a real message.  It is created automatically by the mail system software.
If deleted, important folder data will be lost, and it will be re-created
with the data reset to initial values.

From stock@stokkie.net Sun Aug  5 01:03:46 2012 +0200
Date: Sun, 5 Aug 2012 01:03:46 +0200 (CEST)
From: "Robert M. Stockmann" <stock@stokkie.net>
To: tarpley@tarpley.net
cc: stewwebb@stewwebb.com,  <skolnick@ameritech.net>,  <tom2@tomflocco.com>, 
     <too@slingshot.co.nz>,  <timrifat@rvscience.com>, 
     <pseudoskylax@gmail.com>,  <shanktalk@yahoo.com>,  <one_ibl@yahoo.com>, 
     <stefangrossmann@t-online.de>,  <palast@gregpalast.com>, 
     <henry@savethemales.ca>,  <leurenmoret@yahoo.com>,  <rick458@cox.net>, 
     <stangfeedback@gmail.com>,  <smith@iamthewitness.com>, 
     <eric@iamthewitness.com>,  <ognir2@gmail.com>,  <prothink@yahoo.com>, 
     <captainmay@prodigy.net>,  <tarpley@tarpley.net>, 
     <takingaim@pacbell.net>, Max Keiser <keiserreport@rttv.ru>, 
     <OnTheEdge@presstv.com>,  <eirns@larouchepub.com>, 
     <info@larouchepac.com>,  <freeworldalliance@yahoo.com>, 
     <articles@davidicke.com>,  <springmeiermessages@hotmail.com>, 
     <chamish@netvision.net.il>,  <michaelcollinspiper1960@yahoo.com>, 
     <crescentandcross@gmail.com>,  <Tillawi@currentissues.tv>, 
     <tips@infowars.com>,  <wmreditor@waynemadsenreport.com>, 
     <cloak.dagger@gmail.com>, Lenny Bloom <lennybloom@gmail.com>, 
     <eric@vaticanassassins.org>,  <email@spirituallysmart.com>, 
     <deadlinelive@yahoo.com>,  <vyzygothraw@hotmail.com>, 
     <alanwattcuttingthrough@yahoo.com>,  <cartalucci@gmail.com>
Subject: sending email to tarpley.net
Message-ID: <Pine.LNX.4.44.1208050055450.2904-100000@hubble.stokkie.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Status: RO
X-Status: 
X-Keywords:                 


Hello Webster,

This must be a total joke :

  [hubble:stock]:(~)$ telnet tarpley.net 25
  Trying 174.120.201.94...
  Connected to tarpley.net (174.120.201.94).
  Escape character is '^]'.
  220-gator1124.hostgator.com ESMTP Exim 4.77 #2 Sat, 04 Aug 2012 17:54:01 -0500
  220-We do not authorize the use of this system to transport unsolicited, 
  220 and/or bulk e-mail.
  helo stokkie.net
  250 gator1124.hostgator.com Hello stokkie.net [82.161.213.135]
  mail from: stock@stokkie.net
  250 OK
  rcpt to: tarpley@tarpley.net
  451 Temporary local problem - please try later
  quit
  221 gator1124.hostgator.com closing connection
  Connection closed by foreign host.
  [hubble:stock]:(~)$ 

Please contact your Exim administrator to fix the email server
configuration in case someone is sending email to you.

Best Regards,

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net


From MAILER-DAEMON Sat Aug 04 23:04:17 2012
Return-Path: <>
Delivered-To: stock@stokkie.net
Received: (qmail 6612 invoked from network); 4 Aug 2012 23:04:17 -0000
Received: from bosmailout07.eigbox.net (66.96.190.7)
  by hubble.stokkie.net with SMTP; 4 Aug 2012 23:04:17 -0000
Received-SPF: none (hubble.stokkie.net: domain of bosmailout07.eigbox.net 
  does not designate permitted sender hosts)
Received: from bosmailscan07.eigbox.net ([10.20.15.7])
	by bosmailout07.eigbox.net with esmtp (Exim)
	id 1SxnNz-0007eo-0J
	for stock@stokkie.net; Sat, 04 Aug 2012 19:03:55 -0400
Received: from exim by bosmailscan07.eigbox.net with local (Exim)
	id 1SxnNy-0006yI-BG
	for stock@stokkie.net; Sat, 04 Aug 2012 19:03:54 -0400
X-Failed-Recipients: tillawi@currentissues.tv
Auto-Submitted: auto-replied
From: Mail Delivery System <Mailer-Daemon@eigbox.net>
To: stock@stokkie.net
Subject: Mail delivery failed: returning message to sender
Message-Id: <E1SxnNy-0006yI-BG@bosmailscan07.eigbox.net>
Date: Sat, 04 Aug 2012 19:03:54 -0400
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 ClamAV 0.97.3/15218/Sat 
   Aug  4 21:50:33 2012 (http://crashrecovery.org/amavis.html)
Status: RO
X-Status: 
X-Keywords:                 

This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:

  tillawi@currentissues.tv
    mailbox is full: retry timeout exceeded

------ This is a copy of the message's headers. ------

Return-path: <stock@stokkie.net>
Received: from bosimpinc01.eigbox.net ([10.20.13.1])
	by bosmailscan07.eigbox.net with esmtp (Exim)
	id 1SxnNw-0005Kg-VA
	for tillawi@currentissues.tv; Sat, 04 Aug 2012 19:03:52 -0400
Received: from stokkie.net ([82.161.213.135])
	by bosimpinc01.eigbox.net with NO UCE
	id in3s1j00N2vqad609n3sl8; Sat, 04 Aug 2012 19:03:53 -0400
X-EN-OrigIP: 82.161.213.135
X-EN-IMPSID: in3s1j00N2vqad609n3sl8
Received: (qmail 2945 invoked by uid 500); 4 Aug 2012 23:03:46 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 4 Aug 2012 23:03:46 -0000
Received-SPF: pass (localhost: domain of stock@stokkie.net designates 127.0.0.1
  as permitted sender) receiver=localhost; client_ip=127.0.0.1; 
  envelope-from=stock@stokkie.net;
Date: Sun, 5 Aug 2012 01:03:46 +0200 (CEST)
From: "Robert M. Stockmann" <stock@stokkie.net>
To: tarpley@tarpley.net
cc: stewwebb@stewwebb.com,  <skolnick@ameritech.net>,  <tom2@tomflocco.com>, 
     <too@slingshot.co.nz>,  <timrifat@rvscience.com>, 
     <pseudoskylax@gmail.com>,  <shanktalk@yahoo.com>,  <one_ibl@yahoo.com>, 
     <stefangrossmann@t-online.de>,  <palast@gregpalast.com>, 
     <henry@savethemales.ca>,  <leurenmoret@yahoo.com>,  <rick458@cox.net>, 
     <stangfeedback@gmail.com>,  <smith@iamthewitness.com>, 
     <eric@iamthewitness.com>,  <ognir2@gmail.com>,  <prothink@yahoo.com>, 
     <captainmay@prodigy.net>,  <tarpley@tarpley.net>, 
     <takingaim@pacbell.net>, Max Keiser <keiserreport@rttv.ru>, 
     <OnTheEdge@presstv.com>,  <eirns@larouchepub.com>, 
     <info@larouchepac.com>,  <freeworldalliance@yahoo.com>, 
     <articles@davidicke.com>,  <springmeiermessages@hotmail.com>, 
     <chamish@netvision.net.il>,  <michaelcollinspiper1960@yahoo.com>, 
     <crescentandcross@gmail.com>,  <Tillawi@currentissues.tv>, 
     <tips@infowars.com>,  <wmreditor@waynemadsenreport.com>, 
     <cloak.dagger@gmail.com>, Lenny Bloom <lennybloom@gmail.com>, 
     <eric@vaticanassassins.org>,  <email@spirituallysmart.com>, 
     <deadlinelive@yahoo.com>,  <vyzygothraw@hotmail.com>, 
     <alanwattcuttingthrough@yahoo.com>,  <cartalucci@gmail.com>
Subject: sending email to tarpley.net
Message-ID: <Pine.LNX.4.44.1208050055450.2904-100000@hubble.stokkie.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 ClamAV 0.97.3/15218/Sat 
   Aug  4 21:50:33 2012 (http://crashrecovery.org/amavis.html)
X-EN-Class: impinc

From MAILER-DAEMON Sat Aug 04 23:04:24 2012
Return-Path: <>
Delivered-To: stock@stokkie.net
Received: (qmail 6712 invoked from network); 4 Aug 2012 23:04:24 -0000
Received: from smtpout001-bnc.ash2.facebook.com (HELO smtpin.mx.facebook.com) (66.220.157.24)
  by hubble.stokkie.net with SMTP; 4 Aug 2012 23:04:24 -0000
Received-SPF: none (hubble.stokkie.net: domain of smtpin.mx.facebook.com does 
  not designate permitted sender hosts)
Return-Path: <>
Message-ID: <27.BA.28430.26AAD105@smtpin.mx.facebook.com>
From: Facebook <mailer-daemon@mx.facebook.com>
To: stock@stokkie.net
Subject: Sorry, your message could not be delivered
Date: Sat, 04 Aug 2012 16:04:02 -0700
Content-Type: multipart/report; report-type=delivery-status;
 boundary="7S+GzeMGPlHubG3Q6ZwrI88X0sPCgcszKBmCDg=="
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 ClamAV 0.97.3/15218/Sat 
  Aug  4 21:50:33 2012 (http://crashrecovery.org/amavis.html)
Status: RO
X-Status: 
X-Keywords:                 

--7S+GzeMGPlHubG3Q6ZwrI88X0sPCgcszKBmCDg==
Content-Type: text/plain; charset=UTF-8

This message was created automatically by Facebook.

Based on the email preferences of the person you're trying to email, this 
message could not be delivered.

--7S+GzeMGPlHubG3Q6ZwrI88X0sPCgcszKBmCDg==
Content-Type: message/delivery-status

Reporting-MTA: dns; 10.138.205.193
Arrival-Date: Sat, 04 Aug 2012 16:04:01 -0700

Last-Attempt-Date: Sat, 04 Aug 2012 16:04:32 -0700
Action: failed
Diagnostic-Code: smtp; 550 5.1.1 RCP-P2 
  http://postmaster.facebook.com/response_codes?ip=184.170.143.155#rcp 
  Refused due to recipient preferences
Final-Recipient: rfc822; tlthe5th@facebook.com
Status: 5.1.1

--7S+GzeMGPlHubG3Q6ZwrI88X0sPCgcszKBmCDg==
Content-Type: text/plain; charset=UTF-8
Content-Disposition: inline


Hello Webster,

This must be a total joke :

  [hubble:stock]:(~)$ telnet tarpley.net 25
  Trying 174.120.201.94...
  Connected to tarpley.net (174.120.201.94).
  Escape character is '^]'.
  220-gator1124.hostgator.com ESMTP Exim 4.77 #2 Sat, 04 Aug 2012 17:54:01 -0500
  220-We do not authorize the use of this system to transport unsolicited, 
  220 and/or bulk e-mail.
  helo stokkie.net
  250 gator1124.hostgator.com Hello stokkie.net [82.161.213.135]
  mail from: stock@stokkie.net
  250 OK
  rcpt to: tarpley@tarpley.net
  451 Temporary local problem - please try later
  quit
  221 gator1124.hostgator.com closing connection
  Connection closed by foreign host.
  [hubble:stock]:(~)$ 

Please contact your Exim administrator to fix the email server
configuration in case someone is sending email to you.

Best Regards,

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

--7S+GzeMGPlHubG3Q6ZwrI88X0sPCgcszKBmCDg==--

The enforced Firefox 3.6 'Upgrade'






















Firefox first-run page tracking



From stock@stokkie.net Sat Mar  3 14:56:21 2012 +0100
Date: Sat, 3 Mar 2012 14:56:21 +0100 (CET)
From: "Robert M. Stockmann" <stock@stokkie.net>
To: dmcanotice@mozilla.com,  <credits@mozilla.org>,  <webmaster@mozilla.org>, 
     <trademarks@mozilla.org>,  <licensing@mozilla.org>
cc: stewwebb@stewwebb.com,  <skolnick@ameritech.net>,  <tom2@tomflocco.com>, 
     <too@slingshot.co.nz>,  <timrifat@rvscience.com>, 
     <pseudoskylax@gmail.com>,  <shanktalk@yahoo.com>,  <one_ibl@yahoo.com>, 
     <stefangrossmann@t-online.de>,  <palast@gregpalast.com>, 
     <henry@savethemales.ca>,  <leurenmoret@yahoo.com>,  <rick458@cox.net>, 
     <stangfeedback@gmail.com>,  <smith@iamthewitness.com>, 
     <eric@iamthewitness.com>,  <ognir2@gmail.com>,  <prothink@yahoo.com>, 
     <captainmay@prodigy.net>,  <tarpley@tarpley.net>, 
     <takingaim@pacbell.net>, Max Keiser <keiserreport@rttv.ru>, 
     <OnTheEdge@presstv.com>,  <eirns@larouchepub.com>, 
     <info@larouchepac.com>,  <freeworldalliance@yahoo.com>, 
     <articles@davidicke.com>,  <springmeiermessages@hotmail.com>, 
     <chamish@netvision.net.il>,  <michaelcollinspiper1960@yahoo.com>, 
     <crescentandcross@gmail.com>,  <Tillawi@currentissues.tv>, 
     <tips@infowars.com>,  <wmreditor@waynemadsenreport.com>, 
     <cloak.dagger@gmail.com>, Lenny Bloom <lennybloom@gmail.com>, 
     <eric@vaticanassassins.org>,  <email@spirituallysmart.com>, 
     <deadlinelive@yahoo.com>,  <vyzygothraw@hotmail.com>, 
     <alanwattcuttingthrough@yahoo.com>,  <cartalucci@gmail.com>, 
     <curtcrosby@gmail.com>,  <webmaster@rense.com>, 
    Micha Kat <drsmkat@yahoo.com>, Micha Kat <michaombudsman@gmail.com>, 
    "Fred N. van Kempen" <fred.van.kempen@microwalt.nl>,  <ohb@hardebol.nl>, 
    "Dasia, Stephan" <stephan.dasia@capgemini.com>,  <arend@argusoog.org>, 
    JDTV Producties <jdtvproducties@live.nl>,  <anton@niburu.nl>, 
     <sdn@planet.nl>,  <mr.drs.bou@planet.nl>,  <rudy.hannah@planet.nl>, 
     <freespirit01@planet.nl>,  <andrevergeer@ziggo.nl>
Subject: Questionable conduct with Firefox first-run page
Message-ID: <Pine.LNX.4.44.1203031409220.31051-100000@hubble.stokkie.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Status: RO
X-Status: 
X-Keywords:                                                   
X-UID: 2
Content-Length: 3290


Dear Sir/Madam, 

Whenever firing up a mozilla firefox edition, on my ubuntu Linux 
laptop, which has no Cache directory and files yet, the browser will 
redirect itself to a start-up page :

   http://www.mozilla.org/en-US/projects/firefox/3.6.23/firstrun/

where i use firefox v.3.6.23 . I personally want to run with v.3.6.23.  
Now your most favorable one-liner will most probably be "please upgrade 
to firefox 10", but i don't want that. What next happens is that a 
$HOME/.mozilla/firefox/profiles.ini file is generated which shows the 
following content :

   [acer20:stock]:(~/.mozilla/firefox)$ ll
   total 20
   drwx------ 4 stock stock 4096 Mar  3 14:17 ./
   drwx------ 4 stock stock 4096 Mar  3 13:54 ../
   drwx------ 6 stock stock 4096 Mar  3 14:11 76htm1qh.default/
   drwx------ 2 stock stock 4096 Mar  3 13:54 Crash Reports/
   -rw-r--r-- 1 stock stock   94 Mar  3 14:04 profiles.ini
   [acer20:stock]:(~/.mozilla/firefox)$
   
   [acer20:stock]:(~/.mozilla/firefox)$ cat profiles.ini 
   [General]
   StartWithLastProfile=1
   
   [Profile0]
   Name=default
   IsRelative=1
   Path=76htm1qh.default
   
   [acer20:stock]:(~/.mozilla/firefox)$

So any intrusive 3rd party software add-on , wherever it may interface, 
can blindly read $HOME/.mozilla/firefox/profiles.ini and locate the 
rest of the Cache directory :

   $HOME/.mozilla/firefox/76htm1qh.default

The strange thing is that when i remove $HOME/.mozilla/firefox/profiles.ini
a restart of the firefox browser leads me again to the start-up page
http://www.mozilla.org/en-US/projects/firefox/3.6.23/firstrun/
and a new cache and profile directory is created with a subsequently
updated $HOME/.mozilla/firefox/profiles.ini  :

   [acer20:stock]:(~/.mozilla/firefox)$ rm profiles.ini
   
After Firefox is restarted ....

   [acer20:stock]:(~/.mozilla/firefox)$ ll
   total 24
   drwx------ 5 stock stock 4096 Mar  3 14:17 ./
   drwx------ 4 stock stock 4096 Mar  3 13:54 ../
   drwx------ 7 stock stock 4096 Mar  3 14:17 76htm1qh.default/
   drwx------ 2 stock stock 4096 Mar  3 13:54 Crash Reports/
   -rw-r--r-- 1 stock stock   94 Mar  3 14:17 profiles.ini
   drwx------ 6 stock stock 4096 Mar  3 14:18 ya5zfcob.default/
   [acer20:stock]:(~/.mozilla/firefox)$ 
   [acer20:stock]:(~/.mozilla/firefox)$ cat profiles.ini 
   [General]
   StartWithLastProfile=1

   [Profile0]
   Name=default
   IsRelative=1
   Path=ya5zfcob.default
   
   [acer20:stock]:(~/.mozilla/firefox)$ 

So not only do the Boys and Girls of the Mozilla Firefix start-up
department warn the user that he/she is running a 'oldie' version of firefox,
they also keep a database, where all the details of the users cache
directory are stored, as real-time data at mozilla.org, which then in
turn can be used to convert their warning into a hard-fact reality Trojan
intrusion.
This should not be the case, ever. Now we all witnessed what happened 
when GoDaddy decided to pro-actively support SOPA and block its 
customers domains DNS. Please be warned that Mozilla Firefox could be 
affected with the same fate, when above described practices remain
unanswered by mozilla.com or mozilla.org.

Yours Sincerely,

Robert M. Stockmann
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

From gerv@mozilla.org Mon Mar 05 10:24:04 2012
Return-Path: <gerv@mozilla.org>
Delivered-To: stock@stokkie.net
Received: (qmail 14626 invoked from network); 5 Mar 2012 10:24:04 -0000
Received: from dm-mail03.mozilla.org (63.245.208.213)
  by hubble.stokkie.net with SMTP; 5 Mar 2012 10:24:04 -0000
Received-SPF: none (hubble.stokkie.net: domain of gerv@mozilla.org does not designate permitted sender hosts)
Received: from [192.168.0.101] (93.243.187.81.in-addr.arpa [81.187.243.93])
	(Authenticated sender: gerv@mozilla.org)
	by dm-mail03.mozilla.org (Postfix) with ESMTP id 876904AED9F;
	Mon,  5 Mar 2012 02:23:22 -0800 (PST)
Message-ID: <4F549418.9030006@mozilla.org>
Date: Mon, 05 Mar 2012 10:23:20 +0000
From: Gervase Markham <gerv@mozilla.org>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:10.0) Gecko/20120118 Thunderbird/10.0
MIME-Version: 1.0
To: "Robert M. Stockmann" <stock@stokkie.net>
CC: dmcanotice@mozilla.com, credits@mozilla.org, webmaster@mozilla.org, 
 trademarks@mozilla.org, licensing@mozilla.org, stewwebb@stewwebb.com, 
 skolnick@ameritech.net, tom2@tomflocco.com, too@slingshot.co.nz, 
 timrifat@rvscience.com, pseudoskylax@gmail.com, shanktalk@yahoo.com, 
 one_ibl@yahoo.com, stefangrossmann@t-online.de, palast@gregpalast.com, 
 henry@savethemales.ca, leurenmoret@yahoo.com, rick458@cox.net, 
 stangfeedback@gmail.com, smith@iamthewitness.com, 
 eric@iamthewitness.com, ognir2@gmail.com, prothink@yahoo.com, 
 captainmay@prodigy.net, tarpley@tarpley.net, takingaim@pacbell.net, 
 Max Keiser <keiserreport@rttv.ru>,
 OnTheEdge@presstv.com, eirns@larouchepub.com, info@larouchepac.com, 
 freeworldalliance@yahoo.com, articles@davidicke.com, 
 springmeiermessages@hotmail.com, chamish@netvision.net.il, 
 michaelcollinspiper1960@yahoo.com, crescentandcross@gmail.com, 
 Tillawi@currentissues.tv, tips@infowars.com, 
 wmreditor@waynemadsenreport.com, cloak.dagger@gmail.com, 
 Lenny Bloom <lennybloom@gmail.com>,
 eric@vaticanassassins.org, email@spirituallysmart.com, 
 deadlinelive@yahoo.com, vyzygothraw@hotmail.com, 
 alanwattcuttingthrough@yahoo.com, cartalucci@gmail.com, 
 curtcrosby@gmail.com, webmaster@rense.com, Micha Kat <drsmkat@yahoo.com>, 
 Micha Kat <michaombudsman@gmail.com>,
 "Fred N. van Kempen" <fred.van.kempen@microwalt.nl>, ohb@hardebol.nl, 
 "Dasia, Stephan" <stephan.dasia@capgemini.com>,
 arend@argusoog.org, JDTV Producties <jdtvproducties@live.nl>, 
 anton@niburu.nl, sdn@planet.nl, mr.drs.bou@planet.nl, 
 rudy.hannah@planet.nl, freespirit01@planet.nl, andrevergeer@ziggo.nl
Subject: Re: Questionable conduct with Firefox first-run page
References: <Pine.LNX.4.44.1203031409220.31051-100000@hubble.stokkie.net>
In-Reply-To: <Pine.LNX.4.44.1203031409220.31051-100000@hubble.stokkie.net>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 ClamAV 0.97.3/14584/Mon Mar  5 10:34:35 2012 (http://crashrecovery.org/amavis.html)
Status: RO
X-Status: A
X-Keywords:                                                   
X-UID: 3
Content-Length: 2026

Hi Robert,

I'm afraid you have misunderstood a few things.

On 03/03/12 13:56, Robert M. Stockmann wrote:
> So any intrusive 3rd party software add-on , wherever it may interface, 
> can blindly read $HOME/.mozilla/firefox/profiles.ini and locate the 
> rest of the Cache directory :
> 
>    $HOME/.mozilla/firefox/76htm1qh.default

If software can read your profiles.ini, it can almost certainly just
look inside $HOME/.mozilla/firefox/ and find the name of the profile
directory that way. The profile directory name is randomized to mitigate
limited privilege attacks, not full privilege attacks.

(Note that this directory is your entire user profile - bookmarks,
passwords, form filling information etc., not just the cache.)

> The strange thing is that when i remove $HOME/.mozilla/firefox/profiles.ini
> a restart of the firefox browser leads me again to the start-up page
> http://www.mozilla.org/en-US/projects/firefox/3.6.23/firstrun/
> and a new cache and profile directory is created with a subsequently
> updated $HOME/.mozilla/firefox/profiles.ini  :

Why is this strange? If you delete your profiles.ini, Firefox can no
longer find your profile - so it assumes you have just installed the
browser, creates a new one, and takes you to the First Run page. Which
is exactly what you document happens.

> So not only do the Boys and Girls of the Mozilla Firefix start-up
> department warn the user that he/she is running a 'oldie' version of firefox,

Yes... nothing wrong with that, is there?

> they also keep a database, where all the details of the users cache
> directory are stored, as real-time data at mozilla.org, which then in
> turn can be used to convert their warning into a hard-fact reality Trojan
> intrusion.

I don't fully understand that point, but insofar as I do, it's entirely
wrong, and does not follow at all from the things you have described.

There is no mozilla.org-hosted central database of the profile directory
names of users. Why on earth would we want or need such a thing?

Gerv

From stock@stokkie.net Mon Mar  5 12:44:46 2012 +0100
Date: Mon, 5 Mar 2012 12:44:46 +0100 (CET)
From: "Robert M. Stockmann" <stock@stokkie.net>
To: Gervase Markham <gerv@mozilla.org>
cc: dmcanotice@mozilla.com,  <credits@mozilla.org>,  <webmaster@mozilla.org>, 
     <trademarks@mozilla.org>,  <licensing@mozilla.org>, 
     <stewwebb@stewwebb.com>,  <skolnick@ameritech.net>,  <tom2@tomflocco.com>, 
     <too@slingshot.co.nz>,  <timrifat@rvscience.com>, 
     <pseudoskylax@gmail.com>,  <shanktalk@yahoo.com>,  <one_ibl@yahoo.com>, 
     <stefangrossmann@t-online.de>,  <palast@gregpalast.com>, 
     <henry@savethemales.ca>,  <leurenmoret@yahoo.com>,  <rick458@cox.net>, 
     <stangfeedback@gmail.com>,  <smith@iamthewitness.com>, 
     <eric@iamthewitness.com>,  <ognir2@gmail.com>,  <prothink@yahoo.com>, 
     <captainmay@prodigy.net>,  <tarpley@tarpley.net>, 
     <takingaim@pacbell.net>, Max Keiser <keiserreport@rttv.ru>, 
     <OnTheEdge@presstv.com>,  <eirns@larouchepub.com>, 
     <info@larouchepac.com>,  <freeworldalliance@yahoo.com>, 
     <articles@davidicke.com>,  <springmeiermessages@hotmail.com>, 
     <chamish@netvision.net.il>,  <michaelcollinspiper1960@yahoo.com>, 
     <crescentandcross@gmail.com>,  <Tillawi@currentissues.tv>, 
     <tips@infowars.com>,  <wmreditor@waynemadsenreport.com>, 
     <cloak.dagger@gmail.com>, Lenny Bloom <lennybloom@gmail.com>, 
     <eric@vaticanassassins.org>,  <email@spirituallysmart.com>, 
     <deadlinelive@yahoo.com>,  <vyzygothraw@hotmail.com>, 
     <alanwattcuttingthrough@yahoo.com>,  <cartalucci@gmail.com>, 
     <curtcrosby@gmail.com>,  <webmaster@rense.com>, 
    Micha Kat <drsmkat@yahoo.com>, Micha Kat <michaombudsman@gmail.com>, 
    "Fred N. van Kempen" <fred.van.kempen@microwalt.nl>,  <ohb@hardebol.nl>, 
    "Dasia, Stephan" <stephan.dasia@capgemini.com>,  <arend@argusoog.org>, 
    JDTV Producties <jdtvproducties@live.nl>,  <anton@niburu.nl>, 
     <sdn@planet.nl>,  <mr.drs.bou@planet.nl>,  <rudy.hannah@planet.nl>, 
     <freespirit01@planet.nl>,  <andrevergeer@ziggo.nl>
Subject: Re: Questionable conduct with Firefox first-run page
In-Reply-To: <4F549418.9030006@mozilla.org>
Message-ID: <Pine.LNX.4.44.1203051242550.564-100000@hubble.stokkie.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Status: RO
X-Status: 
X-Keywords:                                                   
X-UID: 1
Content-Length: 4349

On Mon, 5 Mar 2012, Gervase Markham wrote:

> Date: Mon, 05 Mar 2012 10:23:20 +0000
> From: Gervase Markham <gerv@mozilla.org>
> To: Robert M. Stockmann <stock@stokkie.net>
> Cc: dmcanotice@mozilla.com, credits@mozilla.org, webmaster@mozilla.org,
>      trademarks@mozilla.org, licensing@mozilla.org, stewwebb@stewwebb.com,
>      skolnick@ameritech.net, tom2@tomflocco.com, too@slingshot.co.nz,
>      timrifat@rvscience.com, pseudoskylax@gmail.com, shanktalk@yahoo.com,
>      one_ibl@yahoo.com, stefangrossmann@t-online.de, palast@gregpalast.com,
>      henry@savethemales.ca, leurenmoret@yahoo.com, rick458@cox.net,
>      stangfeedback@gmail.com, smith@iamthewitness.com, eric@iamthewitness.com,
>      ognir2@gmail.com, prothink@yahoo.com, captainmay@prodigy.net,
>      tarpley@tarpley.net, takingaim@pacbell.net,
>      Max Keiser <keiserreport@rttv.ru>, OnTheEdge@presstv.com,
>      eirns@larouchepub.com, info@larouchepac.com, freeworldalliance@yahoo.com,
>      articles@davidicke.com, springmeiermessages@hotmail.com,
>      chamish@netvision.net.il, michaelcollinspiper1960@yahoo.com,
>      crescentandcross@gmail.com, Tillawi@currentissues.tv, tips@infowars.com,
>      wmreditor@waynemadsenreport.com, cloak.dagger@gmail.com,
>      Lenny Bloom <lennybloom@gmail.com>, eric@vaticanassassins.org,
>      email@spirituallysmart.com, deadlinelive@yahoo.com,
>      vyzygothraw@hotmail.com, alanwattcuttingthrough@yahoo.com,
>      cartalucci@gmail.com, curtcrosby@gmail.com, webmaster@rense.com,
>      Micha Kat <drsmkat@yahoo.com>, Micha Kat <michaombudsman@gmail.com>,
>      Fred N. van Kempen <fred.van.kempen@microwalt.nl>, ohb@hardebol.nl,
>      "Dasia, Stephan" <stephan.dasia@capgemini.com>, arend@argusoog.org,
>      JDTV Producties <jdtvproducties@live.nl>, anton@niburu.nl, sdn@planet.nl,
>      mr.drs.bou@planet.nl, rudy.hannah@planet.nl, freespirit01@planet.nl,
>      andrevergeer@ziggo.nl
> Subject: Re: Questionable conduct with Firefox first-run page
> 
> Hi Robert,
> 
> I'm afraid you have misunderstood a few things.
> 
> On 03/03/12 13:56, Robert M. Stockmann wrote:
> > So any intrusive 3rd party software add-on , wherever it may interface, 
> > can blindly read $HOME/.mozilla/firefox/profiles.ini and locate the 
> > rest of the Cache directory :
> > 
> >    $HOME/.mozilla/firefox/76htm1qh.default
> 
> If software can read your profiles.ini, it can almost certainly just
> look inside $HOME/.mozilla/firefox/ and find the name of the profile
> directory that way. The profile directory name is randomized to mitigate
> limited privilege attacks, not full privilege attacks.
> 
> (Note that this directory is your entire user profile - bookmarks,
> passwords, form filling information etc., not just the cache.)
> 
> > The strange thing is that when i remove $HOME/.mozilla/firefox/profiles.ini
> > a restart of the firefox browser leads me again to the start-up page
> > http://www.mozilla.org/en-US/projects/firefox/3.6.23/firstrun/
> > and a new cache and profile directory is created with a subsequently
> > updated $HOME/.mozilla/firefox/profiles.ini  :
> 
> Why is this strange? If you delete your profiles.ini, Firefox can no
> longer find your profile - so it assumes you have just installed the
> browser, creates a new one, and takes you to the First Run page. Which
> is exactly what you document happens.
> 
> > So not only do the Boys and Girls of the Mozilla Firefix start-up
> > department warn the user that he/she is running a 'oldie' version of firefox,
> 
> Yes... nothing wrong with that, is there?
> 
> > they also keep a database, where all the details of the users cache
> > directory are stored, as real-time data at mozilla.org, which then in
> > turn can be used to convert their warning into a hard-fact reality Trojan
> > intrusion.
> 
> I don't fully understand that point, but insofar as I do, it's entirely
> wrong, and does not follow at all from the things you have described.
> 
> There is no mozilla.org-hosted central database of the profile directory
> names of users. Why on earth would we want or need such a thing?

So why are we enforced to visit a mozilla start-up page in the first
place? is there an option inside firefox to switch this off ?

Robert
-- 
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

From gerv@mozilla.org Mon Mar 05 12:09:40 2012
Return-Path: <gerv@mozilla.org>
Delivered-To: stock@stokkie.net
Received: (qmail 12518 invoked from network); 5 Mar 2012 12:09:40 -0000
Received: from dm-mail03.mozilla.org (63.245.208.213)
  by hubble.stokkie.net with SMTP; 5 Mar 2012 12:09:40 -0000
Received-SPF: none (hubble.stokkie.net: domain of gerv@mozilla.org does not designate permitted sender hosts)
Received: from [192.168.0.101] (93.243.187.81.in-addr.arpa [81.187.243.93])
	(Authenticated sender: gerv@mozilla.org)
	by dm-mail03.mozilla.org (Postfix) with ESMTP id 9F3384AEE21;
	Mon,  5 Mar 2012 04:09:01 -0800 (PST)
Message-ID: <4F54ACDB.5010103@mozilla.org>
Date: Mon, 05 Mar 2012 12:08:59 +0000
From: Gervase Markham <gerv@mozilla.org>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:10.0) Gecko/20120118 Thunderbird/10.0
MIME-Version: 1.0
To: "Robert M. Stockmann" <stock@stokkie.net>
CC: stewwebb@stewwebb.com, skolnick@ameritech.net, tom2@tomflocco.com, 
 too@slingshot.co.nz, timrifat@rvscience.com, pseudoskylax@gmail.com, 
 shanktalk@yahoo.com, one_ibl@yahoo.com, stefangrossmann@t-online.de, 
 palast@gregpalast.com, henry@savethemales.ca, leurenmoret@yahoo.com, 
 rick458@cox.net, stangfeedback@gmail.com, smith@iamthewitness.com, 
 eric@iamthewitness.com, ognir2@gmail.com, prothink@yahoo.com, 
 captainmay@prodigy.net, tarpley@tarpley.net, takingaim@pacbell.net, 
 Max Keiser <keiserreport@rttv.ru>,
 OnTheEdge@presstv.com, eirns@larouchepub.com, info@larouchepac.com, 
 freeworldalliance@yahoo.com, articles@davidicke.com, 
 springmeiermessages@hotmail.com, chamish@netvision.net.il, 
 michaelcollinspiper1960@yahoo.com, crescentandcross@gmail.com, 
 Tillawi@currentissues.tv, tips@infowars.com, 
 wmreditor@waynemadsenreport.com, cloak.dagger@gmail.com, 
 Lenny Bloom <lennybloom@gmail.com>,
 eric@vaticanassassins.org, email@spirituallysmart.com, 
 deadlinelive@yahoo.com, vyzygothraw@hotmail.com, 
 alanwattcuttingthrough@yahoo.com, cartalucci@gmail.com, 
 curtcrosby@gmail.com, webmaster@rense.com, Micha Kat <drsmkat@yahoo.com>, 
 Micha Kat <michaombudsman@gmail.com>,
 "Fred N. van Kempen" <fred.van.kempen@microwalt.nl>, ohb@hardebol.nl, 
 "Dasia, Stephan" <stephan.dasia@capgemini.com>,
 arend@argusoog.org, JDTV Producties <jdtvproducties@live.nl>, 
 anton@niburu.nl, sdn@planet.nl, mr.drs.bou@planet.nl, 
 rudy.hannah@planet.nl, freespirit01@planet.nl, andrevergeer@ziggo.nl
Subject: Re: Questionable conduct with Firefox first-run page
References: <Pine.LNX.4.44.1203051242550.564-100000@hubble.stokkie.net>
In-Reply-To: <Pine.LNX.4.44.1203051242550.564-100000@hubble.stokkie.net>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 ClamAV 0.97.3/14584/Mon Mar  5 10:34:35 2012 (http://crashrecovery.org/amavis.html)
Status: RO
X-Status: 
X-Keywords:                                                   
X-UID: 4

On 05/03/12 11:44, Robert M. Stockmann wrote:
> So why are we enforced to visit a mozilla start-up page in the first
> place? is there an option inside firefox to switch this off ?

Yes, I believe so, as a little Googling would reveal. Set the
about:config preference "browser.startup.homepage_override.mstone" to
the string value "ignore".

Gerv


references :

total 6272
drwxr-xr-x    1 crashrec klant          32 May  4  2008 [DIR] tcptraceroute/
-rw-r--r--    1 crashrec klant       19014 Oct 17  2007 libsrs.0.3.beta.tar.bz2
-rw-r--r--    1 crashrec klant        1522 Jul  4 00:47 MD5SUM
-rw-r--r--    1 crashrec klant       25428 Oct 17  2007 qmail-srs-0.3.patch
-rw-r--r--    1 crashrec klant     1633256 Jun 18  2008 stopping_spam_May2005.pdf
-r--r--r--    1 crashrec klant      120432 Jun 29  2007 whois-4.7.13-1mdk.i586.rpm
-r--r--r--    1 crashrec klant       57469 Jun 29  2007 whois-4.7.13-1mdk.src.rpm
-r--r--r--    1 crashrec klant      122911 Jun 29  2007 whois-4.7.13-1mdk.x86_64.rpm
-rw-r--r--    1 crashrec klant      120923 Jan 18  2008 whois-4.7.13-2mdk.i586.rpm
-rw-r--r--    1 crashrec klant       64179 Jan 18  2008 whois-4.7.13-2mdk.src.rpm
-rw-r--r--    1 crashrec klant      123625 Jan 18  2008 whois-4.7.13-2mdk.x86_64.rpm
-rw-r--r--    1 crashrec klant      121729 Jan 23  2009 whois-4.7.13-3mdk.i586.rpm
-rw-r--r--    1 crashrec klant       64349 Jan 23  2009 whois-4.7.13-3mdk.src.rpm
-rw-r--r--    1 crashrec klant      124483 Jan 23  2009 whois-4.7.13-3mdk.x86_64.rpm
-rw-r--r--    1 crashrec klant       59582 Jan 23  2009 whois_4.7.13-Dec08.tar.gz
-rw-r--r--    1 crashrec klant       59651 Jul 29  2007 whois_4.7.13-Jul07.tar.gz
-r--r--r--    1 crashrec klant       52951 Jun 29  2007 whois_4.7.13.tar.bz2
-r--r--r--    1 crashrec klant       59490 Jun 29  2007 whois_4.7.13.tar.gz
-rw-r--r--    1 crashrec klant       88747 Jul  4 00:31 whois-5.0.11-2mdk.src.rpm
-rw-r--r--    1 crashrec klant       58680 Jul  4 00:31 whois-5.0.11-2mdk.x86_64.rpm
-r--r--r--    1 crashrec klant      486037 Jun 29  2007 whois.exe
-r-xr-xr-x    1 crashrec klant      298838 Jun 29  2007 whois.sco506.coff.bin
-r-xr-xr-x    1 crashrec klant       42980 Jun 29  2007 whois.sco506.dynamic.bin
-r-xr-xr-x    1 crashrec klant      274128 Jun 29  2007 whois.sco506.static.bin
-r-xr-xr-x    1 crashrec klant       34764 Jun 29  2007 whois.sco600.dynamic.bin
-r-xr-xr-x    1 crashrec klant       35744 Jun 29  2007 whois.sol8.dynamic.bin
-r-xr-xr-x    1 crashrec klant      791792 Jun 29  2007 whois.tru64.coff.bin
-r-xr-xr-x    1 crashrec klant       65024 Jun 29  2007 whois.tru64.dynamic.bin

First published on Tue, 19 Jun 2007

From prvs=1221b23499=nigel.farage@europarl.europa.eu Sat May 24 15:01:39 2014
Return-Path: <prvs=1221b23499=nigel.farage@europarl.europa.eu>
Delivered-To: stock@stokkie.net
Received: (qmail 7202 invoked from network); 24 May 2014 15:01:39 -0000
Received: from smtp30.ep.europa.eu (136.173.162.208)
  by hubble.stokkie.net with SMTP; 24 May 2014 15:01:39 -0000
Received-SPF: none (hubble.stokkie.net: domain of 
        prvs=1221b23499=nigel.farage@europarl.europa.eu does not designate permitted sender hosts)
Received: from UCEXBWP011.ep.parl.union.eu ([10.127.249.45])
	by smtp30.ep.europa.eu (8.14.5/8.14.5) with ESMTP id s4OF1FLR004285
	for <stock@stokkie.net>; Sat, 24 May 2014 17:01:15 +0200
Received: from UCEXBWP009.ep.parl.union.eu ([169.254.7.153]) by
 UCEXBWP011.ep.parl.union.eu ([169.254.3.248]) with mapi id 14.03.0174.001;
 Sat, 24 May 2014 17:01:15 +0200
From: FARAGE Nigel <nigel.farage@europarl.europa.eu>
To: "Robert M. Stockmann" <stock@stokkie.net>
Subject: RE: The EU elections (fwd)
Thread-Topic: The EU elections (fwd)
Thread-Index: AQHPd0vOR3yzYhjbm02a1CrJtG3crZtP02Lo
Date: Sat, 24 May 2014 15:01:16 +0000
Message-ID: <4101E8C6CE4CD2498B213D6A700AD58546562B63@UCEXBWP009.ep.parl.union.eu>
References: <Pine.LNX.4.44.1405241423490.30192-100000@hubble.stokkie.net>
In-Reply-To: <Pine.LNX.4.44.1405241423490.30192-100000@hubble.stokkie.net>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.127.249.6]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-AntiVirus: scanned for viruses by AMaViS 0.2.4 ClamAV 0.98.1/19026/Sat 
        May 24 10:00:28 2014 (http://crashrecovery.org/amavis.html)
Status: RO
X-Status: 
X-Keywords:                 

Thank you.
________________________________________
From: Robert M. Stockmann [stock@stokkie.net]
Sent: Saturday 24 May 2014 14:29
To: FARAGE Nigel; mail@ukip.org
Cc: stock4901@yahoo.com
Subject: The EU elections (fwd)

Dear Nigel,

Be warned that when the going gets tough, strange things
are bound to happen. Good Luck with the elections.

Yours Sincerely,

Robert Stockmann
--
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net

---------- Forwarded message ----------
Date: Fri, 23 May 2014 21:38:31 +0200 (CEST)
From: Robert M. Stockmann <stock@stokkie.net>
To: stewwebb@stewwebb.com, skolnick@ameritech.net, tom2@tomflocco.com,
     TomFlocco@cs.com, too@slingshot.co.nz, timrifat@rvscience.com,
     pseudoskylax@gmail.com, shanktalk@yahoo.com, one_ibl@yahoo.com,
     stefangrossmann@t-online.de, palast@gregpalast.com, henry@savethemales=
.ca,
     leurenmoret@yahoo.com, rick458@cox.net, stangfeedback@gmail.com,
     smith@iamthewitness.com, salbuchi@fibertel.com.ar, eric@iamthewitness.=
com,
     ognir2@gmail.com, prothink@yahoo.com, captainmay@prodigy.net,
     tarpley@tarpley.net, takingaim@pacbell.net,
     Max Keiser <keiserreport@rttv.ru>, OnTheEdge@presstv.com,
     eirns@larouchepub.com, info@larouchepac.com, freeworldalliance@yahoo.c=
om,
     articles@davidicke.com, springmeiermessages@hotmail.com,
     chamish@netvision.net.il, michaelcollinspiper1960@yahoo.com,
     crescentandcross@gmail.com, tillawi@currentissues.tv, tips@infowars.co=
m,
     wmreditor@waynemadsenreport.com, cloak.dagger@gmail.com,
     Lenny Bloom <lennybloom@gmail.com>, eric@vaticanassassins.org,
     email@spirituallysmart.com, deadlinelive@yahoo.com,
     vyzygothraw@hotmail.com, alanwattcuttingthrough@yahoo.com,
     cartalucci@gmail.com, curtcrosby@gmail.com, Micha Kat <drsmkat@yahoo.c=
om>,
     Micha Kat <michaombudsman@gmail.com>, info@frontierworld.nl,
     jdtvproducties@gmail.com, Anton Teuben <antonteuben@outlook.com>,
     sdn@planet.nl, ekc.avanrooij@gmail.com, mr.drs.bou@planet.nl,
     rudy.hannah@planet.nl, freespirit01@planet.nl, andrevergeer@ziggo.nl,
     HansMauritz@Home.nl, j.g.reuchlin@t-online.de, dank@xs4all.nl,
     info@wearechangerotterdam.tv, talkradiomyra@gmail.com,
     volksnieuwsuitamsterdamnoir@gmail.com, deferwerdatjes@hetnet.nl,
     martinvrijland@gmail.com
Subject: The EU elections


Hi,

The much hailed Democratic society is something which many if not all
cherish, desire and long to. But one must be very aware of phony
democratic societies. To identity problems one should very closely
investigate matters and details of organised democratic elections.
There are several possibilities and outcomes pictured. The one which is
best, if possible, is one where all peoples are allowed to vote. Noted
and proven complications arise, and have arisen in the past, when the
Jewish and Zionist lobby take foothold and grab control in the House of
Representatives and the Senate. Representatives elect are to obey their
never openly disclosed rules , regulations and guidelines, or else your
campaign funding for re-election will be terminated. It does not take
much imagination that such lobby groups demand that people who do not
approve of their policies, even when not being aware of it themselves,
will never make it on the ballot. One observes this by placing men and
women of renown at unelectable positions. This seems to happen with all
political parties across the board, from left to right, conservative to
liberal. A few exceptions seem to exist, but such parties will never be
granted acceptance in the media and TV. Ron Paul is a good example.
In the Netherlands of most recent it has been the party of Geert
Wilders, the PVV, The Party for Freedom, which has been ostracized,
ridiculized and criminalized in the most evil fashion. This all after
Wilders had criticized the faith of Islam, foremost when actions are
taken to the detriment of women and christians. Such behavior does not
fit inside a Western culture and society.
Another never directly observed policy, like who can make it on the
ballot, is determining who will be eligible to vote or register to
vote, which is likewise obscured. Who will be allowed to vote ? Jews,
Gentiles, Slaves?  In recent times all who are in the possession of a
valid passport or drivers license are eligible to vote. Thats pretty
democratic for the uninformed layman and observer. And it is. What
occurs however is that through other means people are removed from the
possibility to vote, before the event, and these days also observed,
after the election event. In the case of the PVV of Geert Wilders it
turns out that not a single Jew or Zionist would ever vote for him,
because his policies are in direct confrontation with the World Zionist
Agenda of allowing ethnic groups from regions of domestic warfare and
economic trouble to immigrate into Western Europe and Northern America.
As it turns out that all peoples who vote for such political party's,
which of recent have also become EU- and Euro-skeptic as well, are the
Gentiles, the hidden Jewish controllers of congress will never have any
problems with ordering selected delegates to insert casted ballots
together with registered voting cards for the PVV into the
paper-shredder. Recruiting selected delegates for such a task, is not
likely to be a problem, when the main stream media and press turn out
to have become involved in a almost demonic campaign to ridicule,
marginalize and demonize the involved party - PVV - to absurd levels.
I fear that is exactly what has happened last Thursday May 22, 2014,
when the PVV only ended in third place, because, apparently, the voter
turnout was at a dramatic low.

Best Regards,

Robert
--
Robert M. Stockmann - RHCE
Network Engineer - UNIX/Linux Specialist
crashrecovery.org  stock@stokkie.net




Issues concerning the Desire of a New World Order

Issues concerning the Desire of a New World Order

CHANNEL ISLAM INTERNATIONAL, Bringing Islam to the World and the World to You
American Free Press | America's Last Real Newspaper :
( possecasts : http://americanfreepress.net/?page_id=723 )
AMERICAN FREE PRESS
For anyone who can handle the Truth :
( mpg123 -@ http://republicbroadcasting.org/32k.pls )
REPUBLIC BROADCASTING NETWORK
into ground shaking radio that will snap your neck in odd directions :
( mplayer "mms://196.44.225.194/channel islam" on Tuesdays at 20-22 CET/2-4PM EDT/11-1PM PDT. )
THE FRENCH CONNECTION
Exposing Corruption, Informing Citizens and proclaiming Liberty :
( mpg123 http://lin1.ash.fast-serv.com:6040 )
LIBERTY NEWS RADIO
Your First Source For Reality & Honest Journalism :
( mpg123 -@ http://microeffect.purestream.net:9680/listen.pls )
RENSE.COM
The Home of Cutting Edge Talk Radio :
( mpg123 -@ http://www.oraclebroadcasting.com/48k.pls )
ORACLE BROADCASTING NETWORK
Veterans Truth Network - Truth in Media :
( mpg123 -@ http://192.240.102.133:7791/live )
VETERANS TRUTH NETWORK
All News Network - We are not CNN :
( mpg123 -@ http://50.7.71.219:7164/live )
ALLNEWS.NETWORK
Please help to get my car back :
( On July 21, 2009 my car was impounded (not by police), but by the
Dutch IRS, for failing to hand-over trumped up tax charges which my
small business could have never earned, according to my filed tax
deductions. In addition the bank account of my small business has been
impounded by the IRS as well. An important part of my business
activities involves the use of my car. The impoundment of my car can
only be explained as an outrageous attempt by the IRS to shutdown my
business by force, without a valid and sane reason.
It can be compared to those EXACTIONS reported only to happen in former
overseas colonies like India and Indonesia. The difference being that
today such exactions have moved into Western Europe and America as well
, the home countries of these old style colonialists themselves. My
conclusion is that today the old style Colonialist has started to
devour his own home country and town, through abuse of power of IRS
officials and police. )
 
For me PayPal doesn't seem to fulfill its purpose, which is collecting donations

When closing my PayPal account
my saldo was USD $1.62
on Mar 9, 2011. This is quite impossible
as since July 21, 2009 not a single
transaction has occurred on
my PayPal account.


"Dark Matter, a result of the heliocentric doctrine" Last edited on Mon, May 29, 2023 15:37:10 CEST

Contents :
"Dark Matter, a result of the heliocentric doctrine"
Art Bell - The Philidelphia Experiment - Al Bielek
The Temple of Man
Stellar Death Shrouds : The all-seeing evil eye?
Theory of Everything
Downloads
"The Earth is not moving" is a astounding scholarly work debunking the BIGGEST DECEPTION laid upon the grand public by the Science Establishment ever. What Deception? The Heliocentric system turns out to be a fabricated model of our planetary system, written up in Latin, which started around the year 1600, whilest the King James Bible was getting translated into English. Marshall Hall starts of by mentioning that all NASA calculations which should deliver the highest accuracy are based on a non-moving earth.
-rw-r--r-- 2 crashrecovery klant 66628 May 29 15:37 fixedearth/index.html
93a59512a6b34ae969b622442147d5d1 fixedearth/index.html

The Curse of Canaan, A Demonology of History Last edited on Thu, Dec 30, 2021 07:06:55 CET

Contents :
The Curse of Canaan, A Demonology of History
Ezra Pound, the ultimate researcher of the unknown and hidden
The Curse inside Dictionaries
Khazarian Smokescreen in the Caucasus
Commentaries on the Curse
The Seed of Cain
Downloads
Eustace Mullins, a protege of the late poet and novelist Ezra Pound, who wrote the book "The Secrets of the Federal Reserve", presents history from beginning of time to present day with "The Curse of Canaan", as laid out inside the Holy Bible, as guideline. His findings of fact are most worrying with regards to the survival of mankind and humanity as we have known it.
-rw-r--r-- 2 crashrecovery klant 66305 Dec 30 2021 canaan/index.html
087e21052c77be31ee70a797bfe85bba canaan/index.html

"A pre Jesuit history" Last edited on Tue, Oct 19, 2021 21:43:18 CEST

Contents :
A pre Jesuit history
The 1605 Gun Powder Plot debunked
Interview with Leo Zagami
The Coup inside the Vatican
Opus Dei Massacre and The Davinci Code
Kissinger to Serve As Papal Adviser?
Former 'Jesuit' Fr. Malachi Martin
A Jew as Catholic Cardinal
The Treaty of Rome, Mar 25, 1957
Catholic Church is "the one true Church of Christ"
THE BLACK POPE Hoax
The 'Black Pope' steps back
Chinks hunting down last remaining loot
The beatification of Pope Pius XII
The Jesuit takeover of the Vatican
The Vigano Tapes: The Complete Interview
Downloads
A lot of controversy exists around the role of the Jesuit order in obtaining a new world order. To fully understand this role, a history overview is presented.
-rw-r--r-- 2 crashrecovery klant 184605 Oct 19 2021 jesuit/index.html
1916af1e5a933e457ded7c1c1030e3e7 jesuit/index.html

"Report from IRON MOUNTAIN" Last edited on Tue, Apr 13, 2021 09:55:45 CEST

Contents :
REPORT FROM IRON MOUNTAIN : On the Possibility and Desirability of Peace
Google's Ice Earth Hoax Day
L'histoire, se répète : Organic Fuel
Report from IRON MOUNTAIN : Microwaved!
Seperation of the world into 10 DVD region codes
Codex Alimentarius and the "Nutricide" Gig
The Dutch Milk Mafia
"Conspiracy of Cells: One Woman's Immortal Legacy - and the Medical Scandal It Caused"
Esophageal Cancer
Silent Tsunami
"Report from IRON MOUNTAIN" is a secret study by 15 researchers ordered by JFK in 1961. JFK got killed, Lyndon Johnsen received the report in 1966, and kept it silent as bottom drawer material. In 1967 one of the researchers who called himself "John Doe" published it, and the media denounced it as a Hoax.... BUT...Never before has a Hoax, "REPORT FROM IRON MOUNTAIN ON THE POSSIBILITY AND DESIRABILITY OF PEACE", developed into a accurate description of the factual plans which are layed out before us, day by day.
-rw-r--r-- 2 crashrecovery klant 104972 Apr 13 2021 ironmountain/index.html
586bf2041ea08cc355e70ead0a71ad45 ironmountain/index.html

"Russian Israeli duel for power, oil and dirty cash" Last edited on Sun, Apr 04, 2021 00:42:26 CEST

Contents :
The real Master(s) in control
Alexander Litvinenko
Chief of Russian Gas Company Shot Dead
Russian MP Crashes His Million Dollar Ferrari in France
Boris Berezovsky
Vreeland's notes and the Oligarch Connection
Michael Chertoff and the Russian Mafiya
"A Strategy for Israel in the Nineteen Eighties"
The Dutch Real Estate business
Bobby Fischer, America's intellectual hero
Putin's role
The Takeover Of America according Brig. General Ben Partin
So who's panicking? BIG OIL
The Chinatown Gang from Russia
Downloads
A report about Yukos OIL and the assassinations recently observed. This battle is part of a world coup as we will find out. 911 is just the beginning.
-rw-r--r-- 2 crashrecovery klant 165995 Apr 4 2021 fischer/index.html
a5ebd4e8ff190fa26c410a5131c5d59d fischer/index.html

"911 was a Mossad Operation" Last edited on Sat, Nov 28, 2020 00:55:17 CET

Contents :
911 was a Mossad Operation
Barbara Olson was on Flight 77, BBC reports!
Rafi Eitan: Ready shelters for Iran attack
FOX News : Israelis Spying in and on the US
Zionist Circles Benefit From WTC Collapse
The 'Bollyn' Website
The bollyn.com domainname scam
THE RUMOR MILL NEWS AGENCY
The Bijlmer disaster
Was the Mossad involved in the JFK Assassination 1963 ?
The New Hampshire Vote Fraud
The USS Liberty attack : OPERATION CYANIDE
WTC 270 ton beam flew over highway
9-11 WTC: CONFUSION AROUND 270 TON FLYING DETAIL
REBUTTAL ARGUMENT: YES, 270 TONS AND MORE DID FLY SIDEWAYS
Barry Jennings interviewed at MIKE'S PAPAYA
Downloads
Evidence is presented which show Mossad involvement in the 911 Attacks on the World Trade Center.
-rw-r--r-- 2 crashrecovery klant 186186 Nov 28 2020 911/index.html
68fe40eb847f70479a5d7e110e18686c 911/index.html

"The Illuminati and the Counsel on Foreign Relations Conspiracy" Last edited on Fri, Jan 04, 2019 20:24:24 CET

Contents :
The Illuminati and the Counsel on Foreign Relations
Anthony J. Hilder about 'Red Ronny'
Harry Hopkins
Silent Book/DVD Censorship in the free western world
Hitler didn't invade Poland, only the Polish corridor
Re: The 'Ugly Secret' Of World War Two
Barack Zeke Midas Obama
Downloads
Myron C. Fagan, a Hollywood Writer Director, was given access in 1945 to evidence from "Illuminati" circles comprising a set of micro-films and recordings of the SECRET meetings at Yalta attended only by Franklin Roosevelt, Alger Hiss, Harry Hopkins, Stalin, Molotov, and Vishinsky when they hatched the plot to deliver the Balkans, Eastern Europe and Berlin to Stalin. A month after the Six-Day war and the attack on the USS Liberty, Fagan stepped forward in July 1967 and presented his knowledge in a audio recording, today available in mp3 format.
-rw-r--r-- 2 crashrecovery klant 99251 Jan 4 2019 fagan/index.html
c6dced6ea44c614c81a77b68c739bdd5 fagan/index.html

THE MONEY MASTERS Last edited on Wed, Sep 12, 2018 23:13:15 CEST

Contents :
"THE UNITED STATES IS STILL A BRITISH COLONY"
Re: America is a British Plantation State occupied by Tax Debt Slaves
The Confederacy and the Federal Union
Abraham Lincoln's "Bank War"
The Great Red Dragon : facsimile pdf of first print
Gold Warriors
More troops in Iraq?
The state of our union
Eminent Domain
The Empire's Echelon
The ABN Amro takeover
THE GROSSMANN AFFIDAVIT ON AIG
"THE MADOFF CHRONICLES" ©2008 BLOOMBERG.COM
China's Dollar Trap
Re: S.Korea wins $40bn UAE Nuclear contract
Don't Invest in Money Standards
"MEET THE WORLD MONEY POWER"
Re: The Emperor has NO Clothes
PROTOCOL No. 20, Financial Programme
OHIO CONGRESSMAN TRAFICANT'S 1993 BANKRUPTCY SPEECH
Bankrupt on Credit
Dexia Investment [Belgian-French] Bank goes Anorexial
Downloads
the money masters documentary from 1996 is a classic. Its a stunning expose of history and governmental conduct explained in a straightforward manner with money and power as sole motive, bypassing conflicts of religion, race and other cooked up charges. The best circumstantial supporting evidence for this is maybe the banning of The Money Masters dvd on amazon.com and sort alike retail shops, and of course on google and youtube video.
-rw-r--r-- 2 crashrecovery klant 244665 Sep 12 2018 moneymasters/index.html
838f4d0926d03a9d104d4a3deceaecc3 moneymasters/index.html

"The Infowar Techniques of the Rendon Group: a possible theory " Last edited on Thu, May 17, 2018 00:25:39 CEST

Contents :
The Infowar Techniques of the Rendon Group: a possible theory
The electricity scam
The Trial of 'Scooter' Libby
CIA Whites Out National Intelligence Estimate
Whats up with Condoleeza's eyes?
Irving Lewis Leibowitz
Ray McGovern's open letter
Ambassador Richard W. Carlson
Downloads
As all the info coming to us is mostly in online articles and videos, The White House outsourced propaganda to company's like The Rendon Group. As no-one is able to visit the place of terrorist attacks to make a independent report, faking news is a easy task. If a fascist group propagates false propaganda using forged documents like the yellow cake ones, the emerging picture becomes a evil nightmare. James Bamford wrote a couple of articles about the Rendon Group. John Rendon and the U.S. propoganda . I think this goes even further, like the ultimate "1984" scenario, The Infowar Techniques of the Rendon Group: a possible theory. Recently the Trial of Scooter Libby was brought for the Grand Jury for a final verdict. A overview is given on how Valerie Plame's Non Official Cover (NOC) for the CIA was leaked to the press.
-rw-r--r-- 2 crashrecovery klant 93195 May 17 2018 rendon/index.html
84f74b26d5c473173d4af6bf3f60664a rendon/index.html

"Benjamin Freedman warns America" Last edited on Mon, Apr 03, 2017 17:23:01 CEST

Contents :
Benjamin Freedman warns America
Zionism Exposed
The Cause of Our Conflict
Revelation exposes the Rev. Hagee movement
Vindication
Fired from Oxford : Edward Gibbon (1737-1794)
The secret history of the 2nd Amendment
A note on Eric Hufschmid
Endpoint Software, Goleta CA
Eric Phelps on Zionism
The GCN v. RBN battle
Peter Schaenk's falling out with RBN and VOR
The Deguello Report Hoax
Downloads
In the 1960's a former insider at the highest levels of Jewish organizations inside America stepped forward and warned the public what most probable was going to happen. Almost all he predicted to happen has in fact become a reality today.
-rw-r--r-- 2 crashrecovery klant 167905 Apr 3 2017 freedman/index.html
fa515e9bbc218e2c35889837a8740588 freedman/index.html

The National Security Agency (NSA) Last edited on Sat, Mar 18, 2017 19:23:45 CET

Contents :
Public Safety Canada March 23, 2008
James Forrestal, the 1st US Secretary of Defense
Majesty 12 (MJ-12)
NORDEX, NSA proprietary in Vienna, Austria
Downloads
The NSA has always been taken for granted by the Grand Public, despite that its existance was never officially published. It was only leaked to the public, through books and research articles. There never was really a need to be worried, as the NSA was taking care of America's security, and since all was fine, noone was really interested to do their own research. Then 911 happened, where the role of the NSA became somehow ... different.
-rw-r--r-- 2 crashrecovery klant 74097 Mar 18 2017 forrestal/index.html
3737f47df6761f1795ff897835260476 forrestal/index.html

MOSSAD's control over the Internet Last edited on Sun, Nov 29, 2015 18:23:25 CET

Contents :
The Mossad takeover of popular Webmail
MOSSAD takes over MOSNEWS.COM
Re: MOSSAD takes over MOSNEWS.COM
High Alert, good websites get taken down
Cloak and Dagger under blackbox routing attack
Compromised DNS backbone providers
Re: [IANA #91363] Compromised DNS backbone providers
Keyboard JitterBug eavesdropping
The Anti Spam Controversy
Facebook Snubs Your E-mail
Firefox first-run page tracking
Downloads
The Mossad and affiliated organizations nowadays try to control or even takeover popular websites and email services.
-rw-r--r-- 2 crashrecovery klant 120481 Nov 29 2015 internet/index.html
1bd3bca76a2a3b3223da6189b3b8b4a0 internet/index.html

"HITLER was a BRITISH AGENT" Last edited on Thu, Jun 11, 2015 01:27:45 CEST

Contents :
"HITLER was a BRITISH AGENT"
Jewish v. Gentile Mafia
Top Kiwis Smeared
House of Stuart, Sinclair and Wettin
The Trojan Prime Ministers
Downloads
Greg Hallett, a researcher and writer from the intelligence community wrote a book titled "Hitler was a BRITISH AGENT". a interesting and intriguing book which presents a theory which fits like a glove inside the official stories and official biographies published since the 1970's on the subject. Normally a person never would even think of this possibility, but Greg Hallett's contacts from the community have issued numerous hints and warnings. The disturbing trends in global geo-politics we all have seen happening since 2001, left Hallett not much room as to publish this book.
-rw-r--r-- 2 crashrecovery klant 90205 Jun 11 2015 hallett/index.html
a81cb0ec4c45365d95bbd20917a65010 hallett/index.html

"The NWO : a Tarnung by Teutonic Knights?" Last edited on Mon, Apr 27, 2015 17:43:20 CEST

The Vatican Church has supported the Nazi's in the 1930's 40's and 50's. This connection turns out to be a very old one, as middle eave Popes were emanating the agenda and mindset for the crusades. This Nazi connection actually turns out to be a Teutonic connection.
-rw-r--r-- 2 crashrecovery klant 13247 Apr 27 2015 teutonic/index.html
06ff9e540c95e3c1d3aaeff5083413eb teutonic/index.html

"HAMDAN v. RUMSFELD, SECRETARY OF DEFENSE, ET AL." Last edited on Thu, Mar 26, 2015 18:20:12 CET

Contents :
Rahm Emanual, Obama and H.R.3604
Obama makes Census a White House project
Obama's amnesty-by-fiat: Naked lawlessness
HAMDAN v. RUMSFELD, SECRETARY OF DEFENSE, ET AL.
Capt. Eric H. May : Geneva Conventions now, Nuremberg Principles later
David Ray Hate Crimes Prevention Act of 2007
Downloads
An analysis which shows how the Bush administration reflected to this law case.
-rw-r--r-- 2 crashrecovery klant 90455 Mar 26 2015 hamdan/index.html
5e1a2781d6c974ce22197b38ce748c3d hamdan/index.html

"Testimonials of Illuminati and Zionist influence in Present Day America" Last edited on Fri, Jun 13, 2014 15:22:15 CEST

Norman Dodd, Paul Findley and Alan Hart present their findings of facts which have directed America towards a highly controversial direction, where as the late Norman Dodd stated : "Since World War one, the men who lead this country, have institutionalized conflicting interests to such an extend that they can never be resolved. The Tax-Exempt foundations like the Cargenie Endowment, The Ford and Rockerfeller foundation have been instrumental in this"
-rw-r--r-- 2 crashrecovery klant 11498 Jun 13 2014 testimonials/index.html
615bfd6d028804ad76f107b4340cd22c testimonials/index.html

"Satanic Voices, Ancient & Modern" Last edited on Fri, Dec 06, 2013 19:02:44 CET

Contents :
"Satanic Voices, Ancient & Modern"
"The Islam needs a French Revolution"
Chirac's apprentice
Barry Chamish on Gaza
Downloads
David Musa Pidcock, a leading figure from the Islamic Party of Britain, found himself seriously offended with many other people with Islamic believes, when in 1988 Salman Rushdie published his book "Satanic Verses". The media hype on tv was almost ludricous with how Satanic Verses was promoted into highest circles of the 'Literature establishment'. Pidcock however lowered his blood pressure and wrote a respons titled "Satanic Voices, Ancient & Modern", which indeed, as he describes, is a game set and match expose on the subject.
-rw-r--r-- 2 crashrecovery klant 61533 Dec 6 2013 pidcock/index.html
b9af836edf5b78c254f0692d9f995c61 pidcock/index.html

EU Software Patent Directive Last edited on Wed, Apr 18, 2012 15:02:48 CEST

Contents :
Transcript of the EU Council on the Software Patent Directive
Queen abdicates her constitutional responsibility
"Total Controlled Demolition" Copyright
The Fall of Poland
Downloads
On Mar 7, 2005 the EU Commission tried to pass the controversial EU Software Patent Directive, neglecting Democratic rule inside EU Parliament. On Feb 27, 2006 former Soviet Dissident Vladimir Bukovksy warns for EU Dictatorship. On Dec 12, 2007 The EU Commission and Council denied the referendum as part of the Democratic process to create the European Constitution. It just seems that PART THREE of the book "Waters flowing Eastward, The War against the Kingship of Christ" by L.Fry titled "THE SOVIETIZATION OF GREAT BRITAIN AND THE UNITED STATES" is indeed in full progress.
-rw-r--r-- 2 crashrecovery klant 38115 Apr 18 2012 council-transcript/index.html
83332b950ae2054d8ac6d495edf00c7d council-transcript/index.html

"The History of Mind Control" Last edited on Fri, Feb 24, 2012 02:16:03 CET

Contents :
The History of Mind Control
Jewry, the biggest identity theft in the history of mankind
Mysterious Monuments and Buildings
Hidden Wars
Downloads
A hands-on down to earth summary about mind control is given, and next the history of Mind Control inside the USA is presented.
-rw-r--r-- 2 crashrecovery klant 34246 Feb 24 2012 mindcontrol/index.html
de226a3cbabc2fb421ed3d356622a698 mindcontrol/index.html

"Judaism Discovered (Entdecktes Judenthum)" Last edited on Thu, Feb 23, 2012 04:52:11 CET

Contents :
Israeli Talmudic Internet Domain Sales
Mossad an Evil Secret Service?
Re: New Old Jewish Lady
Michael Hoffman II aka Johann Andreas Eisenmenger III
Talmudic spitting on Holy Crosses
Re: Michael Hoffman II aka Johann Andreas Eisenmenger III
Johannes Andrea Eisenmenger
Re: Bishop Williamson's dismissal as Seminary Rector
Downloads
(a discussion of why i came to purchase this book).
Michael Hoffman II from revisionisthistory.org is an astounding researcher into areas of long forgotten history, which today can be recognized as missions into un-embarked territory with severe dangers for ones health and survival. His recent monumental work, Judaism Discovered, will become the most important book in its field for all future times to come.
-rw-r--r-- 2 crashrecovery klant 47355 Feb 23 2012 hoffman/index.html
359cd4768c38574e3e1084ebb5fe0376 hoffman/index.html

"The protocols are for real" Last edited on Thu, Apr 07, 2011 22:08:32 CEST

Contents :
"The protocols are for real"
Re: Who killed Yitzhak Rabin?
Downloads
Barry Chamish, a political writer from Israel has connected some dots regarding "the protocols of the learned elders of Zion" which seem not to be the playbook of the Jewish people, but turn out to be a masterplan designed by the Illuminati to take over the world. A masterplan which denounces all wellbeing and prospering of normal people.
-rw-r--r-- 2 crashrecovery klant 40072 Apr 7 2011 chamish/index.html
c2d3d55cd32182b60efd79e0b79bd1b0 chamish/index.html

"Susan Lindauer -- Reporter Held Political Prisoner" Last edited on Sun, Jan 16, 2011 05:34:21 CET

In March 2001 Susan Lindauer carried a message from the Iraqi government to her cousin, the White House Chief of Staff, requesting the return of weapons inspectors. But Bush nevertheless attacked and invaded Iraq using WMD as a pretext, murdered as many as 500,000 people, and spread radioactive poison over the entire country, which will murder millions more. Susan Lindauer was for over period of almost a year in prison on false claims of insanity, sentenced on Feb 15, 2006 by then U.S. District Judge Michael Mukasey. On Sept. 8, 2006 the forced mental hospitalization was however dropped by Mukasey, and she was subsequently released. A most weird case as the hearings carousel is continuing to this very day.
-rw-r--r-- 2 crashrecovery klant 16424 Jan 16 2011 lindauer/index.html
d0a70db8516ff629caea6e40f5bb451a lindauer/index.html

"To Eliminate the Opiate" Last edited on Wed, Mar 04, 2009 20:15:27 CET

Contents :
To Eliminate The Opiate, Vol.1 Vol.2
The Hebrew Bible : from Aleppo Codex to "Rothschild Mahzor"
Post WWII Bibles seriously flawed
Downloads
Rabbi Marvin S. Antelman wrote a two volume book which presents a overwhelming amount of evidence, names, dates and events throughout the last century's which describe the abolishment of Religion, in particular the Jewish, in order to spiritually dumb down the grand public, in effect eliminating The Opiate of the people, their religion as stated inside the Illuminati masterplan.
-rw-r--r-- 2 crashrecovery klant 52675 Mar 4 2009 antelman/index.html
101cb332d6266f05954dab804947baef antelman/index.html

The secret Downing Street memo Last edited on Wed, Feb 25, 2009 08:52:12 CET

Contents :
Kelly had 'no right' to anonymity
The secret Downing Street memo
Memo: Bush manipulated Iraq intel
Bush asked to explain UK war memo
Indignation Grows in U.S. Over British Prewar Documents
Downloads
David Kelly was a renowned Weapons Inspector for the U.N. and U.K. Military. A 2002 dossier titled "IRAQ'S WEAPONS OF MASS DESTRUCTION" triggered Kelly for a renewed WMD inspection inside Iraq and became convinced that the only purpose of the IRAQ WMD dossier had been to get a war going in Iraq. After testifying before the UK Congress, Kelly went missing and was found dead on July 18, 2003. The Lord Hutton inquiry concluded that Kelly had committed 'suicide'. Then on May 1, 2005 a verbatim copy of a secret "Downing Street memo" from July 23, 2002 was published stating that "intelligence and facts were being fixed around the policy" to get a war going in Iraq. The authenticity of this document, to this very day, has not been disputed.
-rw-r--r-- 2 crashrecovery klant 42271 Feb 25 2009 kelly/index.html
06fba9d412b7d49741099e950d3930b5 kelly/index.html

"Fr. Leonard Feeney M.I.C.M." Last edited on Fri, Dec 26, 2008 18:53:42 CET

A catholic Jesuit priest published a number of articles in the 1950s illustrating numerous efforts by governmental sponsored groups to systematic abolish the Catholic Religion and religious faith in general.
-rw-rw-r-- 2 crashrecovery klant 5654 Dec 26 2008 fatherfeeney/index.html
a92383f048c341092665c33dfa9829ad fatherfeeney/index.html

Louis Madelin, "La Revolution" Last edited on Fri, Dec 26, 2008 18:53:40 CET

a analysis about the French Revolution, still to be completed and translated.
-rw-r--r-- 2 crashrecovery klant 28310 Dec 26 2008 madelin/index.html
af9c7b7c8044e11488657a27e46a6d4f madelin/index.html

"U.S. Patent No. 4,686,605 : H.A.A.R.P." Last edited on Fri, Dec 26, 2008 18:53:39 CET

A illustration of how H.A.A.R.P works in practice, based on a U.S. Patent document.
-rw-r--r-- 2 crashrecovery klant 15527 Dec 26 2008 haarp/index.html
ea47220b98929df89cd92c8539cd9ab3 haarp/index.html

King James Reference Bible Last edited on Thu, Mar 08, 2007 19:42:23 CET

A lot of content concerning the NWO is somehow related to the Bible. As a convenience i present a restaurated copy of http://www.htmlbible.com/ which recently somehow disappeared from the internet.
-rw-r--r-- 2 crashrecovery klant 348 Mar 8 2007 htbible/index.html
36050cb040cc8bb8212411aefe640e11 htbible/index.html

To verify the meaning of a word

consult the website http://dict.stokkie.net/ or http://dict.crashrecovery.org/. Three dictionaries are available :
Webster's Revised Unabridged Dictionary (1913) (web1913)
WordNet (r) 1.7 (Jun 23, 2001) (wn)
Easton's 1897 Bible Dictionary (easton)

To verify the md5sum checksum and file size of list.html

make an ftp connection to crashrecovery.org i.e. ftp://crashrecovery.org/pub/nwo . Download list.html to check its contents and size and download MD5SUM to verify the md5sum of list.html .

To verify the md5sum checksum and file sizes, load the same url, with https.

So when you have http://crashrecovery.org/moneymasters/ inside your browser, reload the same url with https://crashrecovery.org/moneymasters/ in a new window or tab and save the new loaded page as a file, i.e. internet.html. The md5 checksum and file size of internet.html should be the same as internet/index.html as listed above.

Note that the "Save Page As..." option in many modern browserslike e.g. Mozilla Firefox produces bad md5 checksums. Somehow some extra garbage html is added. In such cases one should use wget and md5sum.

For the Microsoft Windows platform see wget and md5sums. Wget version 1.10 on Windows is currently a mess when using https, so get version 1.9.1. I recommend to download ftp://ftp.sunsite.dk/projects/wget/windows/wget-1.9.1b.zip , ftp://ftp.sunsite.dk/projects/wget/windows/ssllibs097c.zip and http://www.pc-tools.net/files/win32/freeware/md5sums-1.2.zip

Unzip the contents of these three zipfiles into a directory (Folder) and proceed as follows from the windows command shell cmd.exe :

C:\Documents and Settings\Administrator\check>dir Volume in drive C has no label. Volume Serial Number is 04B8-FFFC Directory of C:\Documents and Settings\Administrator\check 04/15/2008 12:33 PM <DIR> . 04/15/2008 12:33 PM <DIR> .. 10/01/2003 10:50 AM 876,544 libeay32.dll 01/31/2005 01:20 AM 28,160 md5sums.exe 01/31/2005 07:51 PM 4,205 md5sums.txt 11/07/2003 03:38 PM 16,121 News 11/14/2003 02:23 PM 375 Readme.txt 11/30/2001 08:32 AM 4,022 sample.wgetrc 10/01/2003 10:50 AM 159,744 ssleay32.dll 11/14/2003 02:19 PM 225,280 wget.exe 11/14/2003 02:19 PM 148,259 wget.hlp 11/14/2003 02:19 PM 186,238 wget.html 10 File(s) 1,648,948 bytes 2 Dir(s) 372,518,912 bytes free C:\Documents and Settings\Administrator\check> C:\Documents and Settings\Administrator\check> wget https://www1.crashrecovery.org/moneymasters/index.html --12:43:44-- https://www1.crashrecovery.org/moneymasters/index.html => `index.html' Resolving www1.crashrecovery.org... 10.0.18.84 Connecting to www1.crashrecovery.org[10.0.18.84]:443... connected. HTTP request sent, awaiting response... 200 OK Length: 95,659 [text/html] 100%[====================================>] 95,659 --.--K/s 12:43:44 (1.94 MB/s) - `index.html' saved [95659/95659] C:\Documents and Settings\Administrator\check>md5sums index.html MD5sums 1.2 freeware for Win9x/ME/NT/2000/XP+ Copyright (C) 2001-2005 Jem Berkes - http://www.pc-tools.net/ Type md5sums -h for help [Path] / filename MD5 sum ------------------------------------------------------------------------------- [C:\Documents and Settings\Administrator\check\] index.html d6080d29d30085ac82d9c2ed39729294 C:\Documents and Settings\Administrator\check>

which corresponds with :

-rw-r--r-- 3 crashrec klant 95659 Apr 15 07:55 moneymasters/index.html
d6080d29d30085ac82d9c2ed39729294 moneymasters/index.html

Robert M. Stockmann
Last changed Fri Aug 4 18:45:05 CEST 2023