Spot and I received some reports about the fedorproject.org site. We referred this to Red Hat's legal department, and they're looking into it. However, given the site's origin it may take a while to see any effects from that work.
What technical steps might we want to take with regard to this site in the meantime? I would feel comfortable with the Infrastructure team doing whatever they deem appropriate to protect our users or potential users, to whatever extent we can.
On Mon, May 3, 2010 at 3:21 PM, Paul W. Frields stickster@gmail.com wrote:
Spot and I received some reports about the fedorproject.org site. We referred this to Red Hat's legal department, and they're looking into it. However, given the site's origin it may take a while to see any effects from that work.
What technical steps might we want to take with regard to this site in the meantime? I would feel comfortable with the Infrastructure team doing whatever they deem appropriate to protect our users or potential users, to whatever extent we can.
Oh joy... another HostGator spam/malware site.
First thought on the issue would be that we could check for redirects from it .. that we can send to a page explaining that they have come from a possibly malware site that has no connection with Fedora or Red Hat. As such they should beware of anything they downloaded from the site (even if they are running Linux).
On Mon, 3 May 2010, Paul W. Frields wrote:
Spot and I received some reports about the fedorproject.org site. We referred this to Red Hat's legal department, and they're looking into it. However, given the site's origin it may take a while to see any effects from that work.
What technical steps might we want to take with regard to this site in the meantime? I would feel comfortable with the Infrastructure team doing whatever they deem appropriate to protect our users or potential users, to whatever extent we can.
We'll see if it sticks, I've put in a redirect (shift refresh to see it). If anyone has a problem with it let me know and I'll remove it. I'm not a fan of mucking up our configs with stuff like that (others feel the same)
-Mike
On Mon, May 03, 2010 at 04:58:19PM -0500, Mike McGrath wrote:
On Mon, 3 May 2010, Paul W. Frields wrote:
Spot and I received some reports about the fedorproject.org site. We referred this to Red Hat's legal department, and they're looking into it. However, given the site's origin it may take a while to see any effects from that work.
What technical steps might we want to take with regard to this site in the meantime? I would feel comfortable with the Infrastructure team doing whatever they deem appropriate to protect our users or potential users, to whatever extent we can.
We'll see if it sticks, I've put in a redirect (shift refresh to see it). If anyone has a problem with it let me know and I'll remove it. I'm not a fan of mucking up our configs with stuff like that (others feel the same)
So interestingly...
Our legal counsel sent me an email admiring the team's fast response, and a helpful email we got from a community member to get Red Hat Legal in touch with the folks at Hostgator.
Legal did run into one unexpected problem, which is that the security folks at Hostgator get the expected "This is a spam site" message, so they can't view the problem for themselves. (I think that's partly why the fast response was so impressive.) Is there a way for a viewer to forcibly see the original page content so that discussion with Hostgator can proceed? Or would we need to lift the block?
Alternately, are there any legitimate sites that we know are blocked by the redirect? I would expect not, else you might have chosen not to do one, but if so, that would also help in those discussions.
As I mentioned, I think the Infra team is in the best position to make the call on what's appropriate to do. If you feel doing that redirect isn't the best thing to do, you can choose to let Legal handle it from their side, and revert the change.
On 2010-05-04 12:45:03 PM, Paul W. Frields wrote:
Our legal counsel sent me an email admiring the team's fast response, and a helpful email we got from a community member to get Red Hat Legal in touch with the folks at Hostgator.
Legal did run into one unexpected problem, which is that the security folks at Hostgator get the expected "This is a spam site" message, so they can't view the problem for themselves. (I think that's partly why the fast response was so impressive.) Is there a way for a viewer to forcibly see the original page content so that discussion with Hostgator can proceed? Or would we need to lift the block?
In my email to spot, I sent a screenshot taken with browsershots.com:
http://api.browsershots.org/png/original/69/69405a6d33d52c163c468898edf8a70e...
We can also remove the redirect if they'd like to see it.
Alternately, are there any legitimate sites that we know are blocked by the redirect? I would expect not, else you might have chosen not to do one, but if so, that would also help in those discussions.
I don't think so - Mike put in a block based on referers containing fedorproject, so only typo-squatting sites should be affected :-)
As I mentioned, I think the Infra team is in the best position to make the call on what's appropriate to do. If you feel doing that redirect isn't the best thing to do, you can choose to let Legal handle it from their side, and revert the change.
We'd like to avoid having junk like this in the configs, sure :-) Mike, what do you think?
Thanks, Ricky
On Tue, 4 May 2010, Ricky Zhou wrote:
On 2010-05-04 12:45:03 PM, Paul W. Frields wrote:
Our legal counsel sent me an email admiring the team's fast response, and a helpful email we got from a community member to get Red Hat Legal in touch with the folks at Hostgator.
Legal did run into one unexpected problem, which is that the security folks at Hostgator get the expected "This is a spam site" message, so they can't view the problem for themselves. (I think that's partly why the fast response was so impressive.) Is there a way for a viewer to forcibly see the original page content so that discussion with Hostgator can proceed? Or would we need to lift the block?
In my email to spot, I sent a screenshot taken with browsershots.com:
http://api.browsershots.org/png/original/69/69405a6d33d52c163c468898edf8a70e...
We can also remove the redirect if they'd like to see it.
Alternately, are there any legitimate sites that we know are blocked by the redirect? I would expect not, else you might have chosen not to do one, but if so, that would also help in those discussions.
I don't think so - Mike put in a block based on referers containing fedorproject, so only typo-squatting sites should be affected :-)
I can also always disable the redirect if it's important for them to actually see what is going on. Alternatively you can send them here:
http://mmcgrath.fedorapeople.org/trix/
I've recreated the site you get if you view source on the fedorproject.org site.
-Mike
On Tue, May 04, 2010 at 02:05:02PM -0500, Mike McGrath wrote:
On Tue, 4 May 2010, Ricky Zhou wrote:
On 2010-05-04 12:45:03 PM, Paul W. Frields wrote:
Our legal counsel sent me an email admiring the team's fast response, and a helpful email we got from a community member to get Red Hat Legal in touch with the folks at Hostgator.
Legal did run into one unexpected problem, which is that the security folks at Hostgator get the expected "This is a spam site" message, so they can't view the problem for themselves. (I think that's partly why the fast response was so impressive.) Is there a way for a viewer to forcibly see the original page content so that discussion with Hostgator can proceed? Or would we need to lift the block?
In my email to spot, I sent a screenshot taken with browsershots.com:
http://api.browsershots.org/png/original/69/69405a6d33d52c163c468898edf8a70e...
We can also remove the redirect if they'd like to see it.
Alternately, are there any legitimate sites that we know are blocked by the redirect? I would expect not, else you might have chosen not to do one, but if so, that would also help in those discussions.
I don't think so - Mike put in a block based on referers containing fedorproject, so only typo-squatting sites should be affected :-)
I can also always disable the redirect if it's important for them to actually see what is going on. Alternatively you can send them here:
http://mmcgrath.fedorapeople.org/trix/
I've recreated the site you get if you view source on the fedorproject.org site.
I sent those links on -- I'm pretty sure these should suffice, but if not I'll let you know here.
infrastructure@lists.fedoraproject.org