First lets start with a couple of utilities you may need at a later date or even during the review and stall of your security protocols
IP Address Lookup & Trace:
Second Review These Highly Recommended Security Downloads!
- PeerGuardian2! - Bad IP and IP-Range List Security Program highly recommended by us!
- Avast! Online Scanner
- Declude - Software - Security Suite for IMail and SmarterMail
- Mailprotector - Managed Service - Hands off approach to Email security. Clean and forward service built on Declude's comprehensive technology.
- BitDefender Online Scanner
- Computer Cops - UDP Port Scan Test
- eTrust Antivirus Web Scanner
- F-Secure Online Virus Scanner
- Kaspersky - Free Online Virus Scan
- Live OneCare - Clean Up Scan
- Live OneCare - Protection Scan
- Live OneCare - Tune Up Scan
- Live OneCare - Full Service Scan
- McAfee - Free Scan
- Microsoft - Malicious Software Removal Tool
- Microsoft - Windows Update
- Panda Software - ActiveScan
- Symantec - Security Check
- Webroot - Free Spy Audit
Personal Security:
PeerGuardian 2
Phoenix Labs The Creators of PeerGuardian Direct News Feed & Links:
Phoenix Labs The Creators of PeerGuardian, Tue, 20 Nov 2007 23:22:33 +0000
Strings of Incompetence
Blocklist.org Down
A taste of things to come
Immediate action required, European Copyright Directive needs to be opposed.
Some things that need more attention
Coral Cache
FileSharingPlace taken over
Woops
Congrats, tegehel!
Help out P2PNet!
Powered by: RSS-to-JavaScript.com
TorrentOOgle Suggested Reading:
We Suggest Using:PG2 Beta
By using MORE that one listing server on peerguardian you insure the ability to download and keep up to date regardless of who might be on or off-line for what ever reason! Highly Suggested: run Level-1 and P2P listings always! Got some more links to add? then e-mail them to us at : and we will add them for others to use and see too! (links must be PG compatible! e.g. : Range Name : blah blah:0.0.0.0-0.0.0.0 Recent findings by researchers from the University of California, Riverside, show that 15% of the IPs people connect to on the Gnutella P2P network are blocked by blocklist applications such as PeerGuardian. Statistics like this do not prove anything about the effectiveness of these lists, however, according to an insider who worked for several anti-piracy organizations, blocklists significantly decrease the risk of getting caught by the MPAA or RIAA. main conclusion: a user who is not using blocklist software is practically guaranteed to be monitored. (read more)
BitTorrent Client Security:
First... Turn off, change, and block port 6881 ! (default port) in your client and your firewall / router / sandbox! for both up and downloading! use another one of your choosing instead! There is a statement you’ll often see on p2p forums, and in IRC channels. It usually comes in a discussion about “getting caught” or “letters been sent” and it goes something like “the safest thing is to join a private site. The other oft-proposed solution, blocklists, has been discussed before. Are private sites any safer though? (read more) More and more ISP’s are limiting and throttling BitTorrent traffic on their networks. By throttling BitTorrent traffic the speed of BitTorrent downloads decrease, and high speed downloads are out of the question. The list of ISP’s that limit BitTorrent traffic, or plan to do so is growing every day, and according to the BBC, the ‘bandwidth war’ has begun. Are you not sure if your traffic is being throttled Check the list of bad ISP’s. But there is a solution. Encrypting your torrents will prevent throttling ISP’s from shaping your traffic. I will explain how to enable encryption in Azureus, uTorrent, and Bitcomet, the three most popular torrent clients. What does encryption Do? The RC4 encryption obfuscates not only the header but the entire stream. This means that it’s very hard for your ISP to detect that the traffic you are generating comes from BitTorrent. Note that RC4 uses more CPU time than the plain encryption or no encryption. It is however harder to identify for traffic shaping devices How can I do this? This is different for all clients; check the setting for your favorite client below.
General BitTorrent info for endusers
Since more and more users are affected by overly aggressive traffic shaping the client should implement this traffic obfuscation feature to allow users to use their bandwidth properly. Since this only works when a shaped peer can connect to any peer in the swarm with the crypto header it is currently not possible to turn this feature off. This feature does NOT provide anonymity and only very limited confidentiality, i.e. if somebody is in possession of the correct infohash he can obtain your IP/Port combination from public sources like a tracker or from other clients via Peer Exchange he will be able to connect to you as usual. Only a passive listener can't determine what you're downloading.
When to turn it on
Generally this feature will not help you with any kind of download speed or other problems unless
- you're affected by P2P/BitTorrent traffic shaping or it is completely blocked (see Bad ISPs listed on Azureus pages or our current listing)
- you're on torrents with a large fraction of traffic shaped users
- you want to hide what protocol you're using from passive surveillance
Please note: You should make sure that you don't violate any rules (e.g. 'reasonable use' clauses) that are associated with your internet connection such as the contract with your ISP. So before you turn this feature on you should verify you have good settings and no NAT problems.
uTorrent
Go to: Options > Preferences > BitTorrent
Go to ‘Protocol encryption’, you can choose between ‘enabled’ and ‘forced’. ‘Enabled’ will give you more connections but offers less protection against traffic shapers. I would recommend to try ‘enabled’ first, if that doesn’t increase your speeds you need to swich to ‘forced’.
Ticking ‘Allow legacy incoming connections’ allows non ecrypted clients to connect to you. This improves compatibility between clients but makes you more vulnerable to traffic shapers.
I would recommend to tick this box, but if that doesn’t increase your speeds, untick it! That’s it, your BitTorrent traffic is encrypted now.
Azureus
- 1. Go to: Tools > Options > Connection > Transport Encryption
- 2. Check the ‘require encrypted transport’ box.
- 3. Choose RC4 in the ‘minimum encryption’ dropdown box note that RC4 uses more CPU time than the plain encryption or no encryption. It is however harder to identify for traffic shaping devices
- 4. You can choose to tick the ‘Allow non-encrypted outgoing connections if encrypted connection attempt fails’ box. This will ensure compatibility with clients that are not using encryption. However, it makes it easier for your ISP to detect BitTorrent traffic. I recommend that you try to tick this box first. If you are still not getting proper speeds untick it
- 5. Tick the ‘Allow non-encrypted incoming connections’ box That’s it, your BitTorrent traffic is encrypted now.
Bitcomet
- 1. Go to: Options > Preferences > Advanced > Connection
- 2. Go to: ‘Protocol encryption’ You can choose between ‘auto detect’ and ‘always’. Auto detect will give you more connections but offers less protection against traffic shapers.
We would recommend to try auto detect first, if that doesn’t increase your speeds you need to switch to always That’s it, your BitTorrent traffic is encrypted now.
Proxy Server List
Using an proxy server you won't allow anybody to find out your IP address to use it in their own interests. Any web resource you access can gather personal information about you through your IP address. Anonymous proxy servers hide your IP address thereby saving you from vulnerabilities concerned with it.
Setting up Web Proxies in Mozilla Firefox
- Go to Preferences (in Windows, it is Tools | Options | Preferences and Linux, it is Edit | Preferences).
- Click on General tab on the left and the button labelled Connection Settings.
- Select Manual Proxy Connection and enter the HTTP proxy server address and port number.
- Check if you are behind the proxy by visiting this.
Here are the variables sent by the server
Variables Values REMOTE_ADDR 75.171.35.14 HTTP_VIA HTTP_X_FORWARDED_FOR
Setting up Web Proxies in Internet Explorer
- Click on Tools | Internet Options | Connection.
- Click on the button labelled LAN Settings.
- Under Proxy Server, check the box corresponding to "Use a proxy server for your LAN".
- Enter the address and port from the list below.
- Click on OK and then OK again and you should be back to your normal Internet Explorer browser window.
IP Address Port Country 200.65.0.25 80 Mexico 85.18.242.30 80 NA 221.209.18.18 8000 China 148.233.159.58 8080 Mexico 148.233.159.58 3128 Mexico 200.65.0.25 3128 Mexico 203.160.1.146 554 Vietnam 82.127.121.173 3128 NA 140.123.19.200 3127 Taiwan
Our Full Featured Toolbar!
Feed
IndigoDragon on MyVideoChat
Profile
Twitter
StumbleUpon
Technorati
Digg
Flickr
Last.fm
MySpace
YouTube
del.icio.us
IndigoÐragon 
on del.icio.us
Skype
Add us to your del.icio.us network!
Torrent Search Public Chat:
Posts
3 :Comments:
Need to *lookup* some user or ip address? or maybe a site you are wondering about? well then just use the free tools at DNS Stuff and get all the information about them all on one site at once!
Share Responsibly
Sharing is not illegal as long as you obey all relevant copyright laws. Using P2P programs to download and distribute copyrighted music, movies and games without permission is illegal. Purchasing a membership does not give you license to download and distribute copyrighted material.
We do not condone piracy or breaking copyright laws. The services available through our site are powerful search tools & we recommend that you use your discretion when downloading music and movie files.
Copyright Infringement Liability -
P2P technology makes it possible to share all kinds of information. Some information is protected by copyright, which means that you generally need the copyright owner's permission before you make it available to other P2P users. Popular music, movies, games, and software are often protected by copyright. Copyright infringement can result in significant monetary damages, fines and even criminal penalties. Some copyright owners have filed civil lawsuits against individuals that they believe unlawfully distributed large numbers of copyrighted songs.
Original works of authorship, including literary, dramatic, musical, artistic, and certain intellectual compositions are protected by copyright law. If a person publicly performs, reproduces, distributes copies, or displays works without consent of the copyright owner could be in violation of the law. Go to http://www.loc.gov/copyright/ and learn more about U.S. copyright law. Registering on a site or Purchasing a membership does not give you license to download or upload copyright material. We implores you to respect copyright laws and share responsibly. Click here for important information from the US Federal Trade Commission (FTC) about the risk and use of P2P software.
Using file-sharing (P2P) software for the uploading or downloading of copyrighted works without the permission or authorization of the copyright holders may be illegal and could subject you (or the ISP subscriber) to civil and/or criminal liability and penalties. For more information about U.S. copyright law, please visit http://lcweb.loc.gov/copyright/ and http://www.copyright.gov/title17. Some content found on file-sharing (P2P) networks may be reproduced, uploaded and downloaded. There are a significant number of copyright holders who have authorized the sharing of their content for non-commercial purposes, such as some content with Creative Commons format licenses§, and there is also content available in the public domain and not protected by copyright. Most commercially released popular songs, films, and software is NOT authorized for free redistribution but requires separate purchase or licensing.
Copyright Infringement: Some files contained on these networks are copyrighted works, like popular games, movies, music, and software. P2P software makes it possible to upload and download copyrighted material from the Internet without proper authorization, but that can violate copyright laws and subject you to criminal and civil penalties. Please consult the user guide provided with the application. Data Security P2P software allows any user to access the files you place or move into your shared folder. If you’re not careful, files containing your personal and confidential information could inadvertently be uploaded for distribution on the Internet. This could cause a number of problems, including identity theft. We strongly suggest purchasing one of the major spyware applications available or visit our bonus software section for a free version.Pornography Files downloaded from the Internet using P2P software could contain pornographic material. These files may be mislabeled with seemingly innocent names. This can result in users, including children, being inadvertently exposed to pornography. Redistributing files containing child pornography or obscene content can be a crime.Spyware Files downloaded from the Internet using P2P software may contain spyware that can track your online activity, control your computer, or harm its operation. These files typically are disguised and can go undetected. We strongly suggest purchasing one of the major spyware applications available or visit our bonus software section for a free version.Viruses Files downloaded from the Internet using P2P software may carry computer viruses, worms, or Trojans that can damage your computer or cause other problems. These files typically are mislabeled to disguise their true purpose. We strongly suggest purchasing one of the major anti-virus applications such as Avast, Norton, and Mcafee.
I pilfered these comments from torrentfreak that is pertinent to the current security issues some of the users are having and asking about. so read them carefully:
[user]
I tried Peer Guardian a while back, noticed that I got "Error contacting URL" every time I tried to update it (when it wasn't crashing on me), and uninstalled it. The forums weren't very helpful, nor was Google. *shrug*
[user]
I mean is it even legal to put a file online, call it something (that it's not), have someone download it,l then sue them for downloading it, when it in fact wasn't even the real 'illegal' file in the first place? What grounds is the lawsuit on? I just don't get the point of what they're doing here. Fake trackers, and fake torrents, do nothing but.. waste bandwidth.
[user]
pg is a joke
[user]
I've been using peerguardian forever, saves a heck lot of my bandwith!
[user]
Good, time to add this to my list! =]
[user]
PG...it couldn't hurt.
[user]
How do you do this if you are using SafePeer?
[user]
From the looks of it peerguardians servers are feeling the digg effect. Cannot check for updates
[user]
i was on my site www.sublimestylee.com and saw that there were 66 users currently online. normally its like 6-7. so i thought someone was playing a trick, until i checked digg again.
[user]
thanks for making this my first front page item!
[user]
Can I block these ranges with my firewall? Im using Comodo firewall. Anyone? Anyone?
[user]
Thanks!
[user]
My last update of my blocklist was done on 12/16/2006 and already included these ranges, except for the 209.204.61.1-209.204.61.255 one. I used to use PG but found that to block the max IP's ONLY on my downloads, and not inhibit my browsing, was to use BlockList Manager from B.I.S.S. at http://www.bluetack.co.uk/index.php . Unfortunately they appear to be offline themselves the last couple of days. BLM creates a nice compiled ipfilter.dat file from its own database of IP's that can then be used with uTorrent and other p2p apps.
[user]
Gracias!
[user]
i don't get the purpose of peerguardian and other similar programs . Aren't alot of ip addresses temporary and change to another web user? i dunno just my "n00b -ness"
[user]
Anyone care to share their 'safe lists'?
[user]
Mines has been teh blank for a while due to user error sometime in the past... :p
[user]
any similar solutions for Macintosh users? (PeerGuardian 2)
[user]
thanks
[user]
Hello, I am firstaid from the bluetack forums; I would like to confirm that these ip's are all in the bluetack lists but one of them if you have the current up to date lists.
66.177.58.XXX
66.177.0.0 - 66.177.127.255
Comcast Cable Communications Holdings, Inc. JACKSONVILLE-3 (NET-66-177-0-0-1) 66.177.0.0 - 66.177.127.255
[user]
The comcast range we do not block, these fake trackers can change at any time they want. For this kind of attack on p2p we have developed a list called the templist. Now our servers are down atm, but the link normally is, http://www.bluetack.co.uk/config/templist.zip or http://www.bluetack.co.uk/config/templist.gz
these kinds of reports are always welcome. If the range continues to be anti-p2p it stays in the list, but as you may know, comcast customers periodically change IP addresses so blocking them permanently is not that good of a solution. If we kept every comcast report in our main level1 list soon the whole comcast would not be able to connect, I don't think that is what anyone wants. The best way is for people to report them so we can get them into the templist or if bad for a long period of time into our level1 list. The main thing is to inform yourself about our lists, from that point you can decide if you like them or not, you always have the option to remove/add something if you want, our lists are just a starting point to block what we recommend.
[user]
Comcast has been reported before with bad torrents close to these ip's but it is not limited to these ip's. Another isp in California is sbc witch is also shown many antip2p activities.
[user]
I know people are concerned that our server is down atm, we are working on getting it back up so that people can get their lists once again.
[user]
PS: we were working on a list of allot of newly allocated ranges that had been in bogon/IANA ranges to remove them from our servers iptables shortly before we encountered our server problems. Please do not assume we are blocking people on purpose when you do not know the facts behind the case. It is common to block ranges that noone should be coming from. Sometimes it takes a while for a server admin to get them out of IPtables. Sometimes people need to be blocked for being childish and then go around saying we block everyone.
[user]
SafePeer plugin for Azureus already includes 3 of 5 of these IP ranges.
The 66.177.58.1-66.177.58.255 and 216.151.155.1-216.151.155.255 are missing.
[user]
i'm a bit of a noob on this - how do i add the list? please step by step instruction - i can't find the list,which the post way above mentions off.
[user]
thanks :-)
[user]
I just loaded the ip in PG2 and in seconds detected the MPAA. Not downloading any movies but that scared the shit out of me.
[user]
Thanks sub.
[user]
trouble updating pg2... hey, try disabling educational list... with that one blocked i could not update... after i disabled it and clicked update it said downloading and it downloaded... it also said university of Washington---------allowed.... so i figure the updates are coming from a university such as the afore-mentioned one, anyway that was the one that was allowed... not seen until download started... well, hope this helps
Post a Comment