[ale] OT: Is this for real? Fwd: Notice of Claim of Copyright Infringement.
Ron Frazier (ALE)
atllinuxenthinfo at techstarship.com
Thu Jun 7 16:16:42 EDT 2012
Hi Scott,
Make sure you stay on top of the potential legal issues. However,
regarding the technology, I'm pretty sure hiding the SSID doesn't deter
anyone with a sniffer. I think it's still embedded in the packets. I
just let mine broadcast, since it's simpler to make connections, if you
know the password.
You can go here to get a long ugly password that is essentially
uncrackable and unguessable:
https://www.grc.com/passwords.htm
I use a 63 digit random string for my password. You can't type it in,
but you can store it in a text file or something. If you have a tablet
or phone or something where it's hard to put the password in, you could
make it all caps and / or all alpha. That way you don't have to be
continuously be hitting the shift or number key on an on screen
keyboard. This reduces security but a 63 digit capitalized alphabetical
random password is still pretty strong.
Don't put a new password into the router unless your wifi connection is
already secured by WPA, otherwise someone could sniff your login and
access to the router. If you cannot guarantee a protected wifi
connection to administer it, plug a lan cable into it to set it up the
first time and disconnect from it's wifi radio.
Here's a checklist for checking your router security:
a) Router firmware as up to date as possible.
b) WPA / WPA 2 encryption on, with long secure password. Don't use
WEP. It's broken.
c) Router admin password changed from default.
d) Remote (internet side) router admin off.
e) UPNP off.
f) Router guest user login, if used, also has a long complex password.
These usually need to be easy to use, but can still be reasonably
secure. I have a 5 word phrase for my guest password. I don't have
many guests, but I use it for the internet connected DVD player, etc.
g) Guest user login, if used, only has access to the internet and not
the LAN. (This wouldn't help you in this particular case.)
h) I think that if your computer is continuously hunting your router,
and the computer is broadcasting the preferred SSID, that may create a
problem. I would allow the router to broadcast it's SSID and set the
computer NOT to try to connect if it cannot detect the router.
In addition, check the following in no particular order:
1) Make sure none of your computers, smart phones, tablets are in
internet connection sharing mode.
2) Make sure none of your devices are set up to be a wifi hotspot or
wifi relay or repeater.
3) Make sure the network connections are set up to support wifi
infrastructure only and not peer to peer.
4) Figure out if you've EVER given anyone within wifi range (say 1/2
mile) your wifi password, or if you've given it to anyone that visits
occasionally.
5) Make sure there is no one physically tapped into your cable wire
outside the house.
6) Also consider things like, a contractor comes by and sees the wifi
password on a postit note on the fridge, etc.
Those are the main things I can think of at this moment.
Sincerely,
Ron
On 6/7/2012 3:18 PM, Scott Castaline wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 06/07/2012 08:13 AM, Lightner, Jeff wrote:
>
>> Most of the responses seem to be implying the email was legit.
>>
>>
>>
>> First off what do the headers of the original message show? Can you
>>
> actually trace it back to a Comcast.net IP as sender?
>
>>
>>
>> Secondly remember that CUSTOMERS of Comcast get Comcast.net email
>>
> accounts. Even if it did come from a valid Comcast.net IP it is always
> possible it was sent by someone that uses Comcast as their own ISP (or
> someone?s whose PC was hijacked that does).
>
>>
>>
>> I wouldn?t respond to the email. I?d call Comcast directly and find out
>>
> if they in fact sent the email and ask to speak to the department that
> sent it.
>
>>
>>
> That's what we had done this morning. My wife called our usual point of
> contact at Comcast and after going through several layers she was able
> to find that the info (mailing address and phone #s) on the email were
> legit. However they had no means of confirming that the offence had
> actually occurred and that we had to call the number which they gave
> here was the same as what was in the email. She then called that number
> and again went through several layers before she got to someone that
> could confirm the info on the email (this is why I have my wife make
> phone calls, as I don't have the patience to go through too many layers
> in the phone system without melting the wires and phone with my abusive
> verbiage as well as ear drums at the other end). They indicated that
> they felt very strongly that someone had gotten in through my wireless
> on the day that this happened. This also seems to be about the same time
> that my wife's connection had dropped and came back reporting that the
> connection was now unsecured. Both smartphones and the Nook had lost
> their connections.
>
> I used to have the wireless set up in non broadcast mode so that when
> one queried for WiFi availability they didn't "see" my router/access
> point. My wife's laptop worked fine that way, and my son and
> daughter-in-law's laptops were also fine with that. We did notice that
> her phone (iPhone 2) was ok but his phone wasn't able to connect (HTC
> Inspire). Then when I got the Nook I had trouble setting up the WiFi
> until set the router to broadcast. Once the Nook connected I was able to
> turn off Broadcast. My wife and I got our smartphones (HTC Inspire, both
> of them) and I could not get the phones to stay connected without
> Broadcast turned on. I had to manually reset-up the config and then
> after 5 or 10 minutes it would drop again, so I just turned it on and
> left it on. Is there a way to get these things to work with the router
> set to non-broadcast mode? I think the problem is, kids out of school,
> bored, check to see what's available and hack into it so they can get
> their illegit mp3s.
>
>> *From:*ale-bounces at ale.org [mailto:ale-bounces at ale.org] *On Behalf Of
>>
> *Ed Cashin
>
>> *Sent:* Thursday, June 07, 2012 7:28 AM
>> *To:* Atlanta Linux Enthusiasts
>> *Subject:* Re: [ale] OT: Is this for real? Fwd: Notice of Claim of
>>
> Copyright Infringement.
>
>>
>>
>> I think amazon.com<http://amazon.com> used an Adele "Someone Like You"
>>
> song as something automatically downloaded when their downloader
> software is installed at one point. Maybe just a coincidence, but if you
> did download that file accidentally, maybe that's how you got it.
>
>> On Wed, Jun 6, 2012 at 11:25 PM, Scott Castaline<skotchman at gmail.com
>>
> <mailto:skotchman at gmail.com>> wrote:
>
>>
>> Just received this , this evening. I'm not sure if it's bogus or real. I
>> don't download mp3 files and if I get music I prefer it on pressed
>> media. I definitely have not downloaded any Adele songs. The IP seems to
>> match but so doesn't my neighbours. Can someone shed some light on this
>> for me before I call Comcast and get nasty?
>>
>>
>>
>>
>>
>> -------- Original Message --------
>> Subject: Notice of Claim of Copyright Infringement.
>> Date: Wed, 6 Jun 2012 21:42:42 +0000 (GMT)
>> From: Comcast Customer Security Assurance<csa-noreply at comcast.net
>>
> <mailto:csa-noreply at comcast.net>>
>
>> To: Comcast Internet Subscriber<hscast at comcast.net
>>
> <mailto:hscast at comcast.net>>
>
>>
>>
>> Notice of Action under the Digital Millennium Copyright Act
>>
>> Abuse Incident Number: NA0000044757770
>> Report Date/Time: Tue, 05 Jun 2012 13:04:16 -0500
>>
>>
>> SCOTT CASTALANE
>> 1629 AMHEARST MILL DR
>> LAWRENCEVILLE, GA 300434755
>>
>>
>> Dear Comcast High-Speed Internet Subscriber:
>>
>> Comcast has received a notification by a copyright owner, or its
>> authorized agent, reporting an alleged infringement of one or more
>> copyrighted works made on or over Comcast's High-Speed Internet service
>> (the 'Service'). The copyright owner has identified the Internet
>> Protocol ('IP') address associated with your Service account at the time
>> as the source of the infringing works. The works identified by the
>> copyright owner in its notification are listed below. Comcast reminds
>> you that use of the Service (or any part of the Service) in any manner
>> that constitutes an infringement of any copyrighted work is a violation
>> of Comcast's Acceptable Use Policy and may result in the suspension or
>> termination of your Service account.
>>
>> If you have any questions regarding this notice, you may direct them to
>> Comcast in writing by sending a letter or e-mail to:
>>
>> Comcast Customer Security Assurance
>> Comcast Cable Communications, LLC
>> 1800 Bishops Gate Blvd., 3rd Floor East Wing
>> Mount Laurel, NJ 08054 U.S.A.
>> Phone: (888) 565-4329<tel:%28888%29%20565-4329>
>> Fax: (856) 324-2940<tel:%28856%29%20324-2940>
>>
>> For more information regarding Comcast's copyright infringement policy,
>> procedures, and contact information, please read our Acceptable Use
>> Policy by clicking on the Terms of Service link at http://www.comcast.net.
>>
>> Sincerely,
>> Comcast Customer Security Assurance
>>
>> Copyright work(s) identified in the notification of claimed infringement:
>>
>> Infringing Work : SOMEONE LIKE YOU
>> Filename : Adele - Someone Like You.mp3=20
>> Filename : Adele - Someone Like You.mp3=20
>> First found (UTC): 2012-06-04T20:36:58.90Z
>> Last found (UTC): 2012-06-04T20:37:43.08Z
>> Filesize : 4487709 bytes=20
>> IP Address: 98.252.209.55
>> IP Port: 55794
>> Network: BitTorrent
>> Protocol: BitTorrent =20
>>
>>
>>
>>
>> _______________________________________________
>> Ale mailing list
>> Ale at ale.org<mailto:Ale at ale.org>
>> http://mail.ale.org/mailman/listinfo/ale
>> See JOBS, ANNOUNCE and SCHOOLS lists at
>> http://mail.ale.org/mailman/listinfo
>>
>>
>>
>>
>> --
>> Ed Cashin<ecashin at noserose.net<mailto:ecashin at noserose.net>>
>> http://noserose.net/e/
>> http://www.coraid.com/
>>
>>
>>
>>
>>
>> Athena®, Created for the Cause?
>>
>> Making a Difference in the Fight Against Breast Cancer
>>
>>
>>
>>
>>
>> *How and Why I Should Support Bottled Water!
>> *Do not relinquish your right to choose bottled water as a healthy
>>
> alternative to beverages that contain sugar, calories, etc. Your support
> of bottled water will make a difference! Your signatures count! Go to
> http://www.bottledwatermatters.org/luv-bottledwater-iframe/dswaters and
> sign a petition to support your right to always choose bottled water.
> Help fight federal and state issues, such as bottle deposits (or taxes)
> and organizations that want to ban the sale of bottled water. Support
> community curbside recycling programs. Support bottled water as a
> healthy way to maintain proper hydration. Our goal is 50,000 signatures.
> Share this petition with your friends and family today!
>
>>
>>
>> ---------------------------------
>> CONFIDENTIALITY NOTICE: This e-mail may contain privileged or
>>
> confidential information and is for the sole use of the intended
> recipient(s). If you are not the intended recipient, any disclosure,
> copying, distribution, or use of the contents of this information is
> prohibited and may be unlawful. If you have received this electronic
> transmission in error, please reply immediately to the sender that you
> have received the message in error, and delete it. Thank you.
>
>> ----------------------------------
>>
>>
>>
>>
>>
>> _______________________________________________
>> Ale mailing list
>> Ale at ale.org
>> http://mail.ale.org/mailman/listinfo/ale
>> See JOBS, ANNOUNCE and SCHOOLS lists at
>> http://mail.ale.org/mailman/listinfo
>>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.12 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iQIcBAEBAgAGBQJP0P6VAAoJEIefqZ0kni1dm8YQAJlzDMAVX9LQ8M4xAUZ2olOx
> 24Lar7PFNakNZUcc35drB4Cm1n9xGHbxvrmUTn6L8G/K+G1LuQnjTS6NnjtBOx1F
> EQpbXJbx6UJ3gCqICBBis2W7/ELIB61UKi8aKAeMoAZoTj8y9xbNBF5Hn0n1ysRG
> WjjWpe81tY/I72E/g3Jg9DNLwu6CrKgQiZKiXbFBxwEvWmn0hwzpNeqkecYNUui5
> LqXgTKidFMa4g2tKslXkgTJMvY7o2W2WHaV7OjFdPEvlQX6G98WZNBy06lO1JmI2
> axGaYHqQyVFZ8IfRSPqFfDThlPO50KhiUT2E8/evtBIXoO5YOy9e3XNMDrjozjfD
> qwzH/ZtTdWI8jWRvylciRxuCMXR0RYTZXna57Hfg9gRrdazkLgU7E+WhsgjWpA+a
> cHClReUP7GA0S4Bon/cPAi+ngVvkPWTs3X+Z64cpH52Sc6sZoNGXEhCNj2vEQhMZ
> aPSGkaThsnHj2/zsEQpbAQm5qgWk6zhnrr5w3U6SZlC/Me95nPm2QrYHZQzED/aV
> Qj6vTvtD432UGaaV2YQAhB2NIrETd/JK/vsD3U/QsCI5HtLW2Zr+HtLozIxyy9J1
> PYe4Mnp8NlfN64d5wdmgUAtZeP7w17u1Sh0BXbHUXb9jSdlPGHFid4oIDq+Q73be
> j3CUGei9h2BvE/0d1/nJ
> =Z8bH
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
>
--
(To whom it may concern. My email address has changed. Replying to former
messages prior to 03/31/12 with my personal address will go to the wrong
address. Please send all personal correspondence to the new address.)
(PS - If you email me and don't get a quick response, you might want to
call on the phone. I get about 300 emails per day from alternate energy
mailing lists and such. I don't always see new email messages very quickly.)
Ron Frazier
770-205-9422 (O) Leave a message.
linuxdude AT techstarship.com
More information about the Ale
mailing list