Re: [anti-abuse-wg] Anti-social assholes
To put it alternatively: Imagine you walk down a street and there are lots of pubs (saloons?) that serve Alcohol and they all have drunken people swearing and trashing the place and you ask to report it to the manager but the bouncer of one premises says... "You have to put it in writing via email" and the next premises says "you have to telephone during business hours" and another says "you have to write a letter to an address". That is their choice. Sometimes with forms, it pre-loads it into a system that formats it for them. Sometimes there are email systems that can extract that information and format it anyway. But if they want you to use a form, they are indicating that's the best way for them to know what is happening. On 21/02/2021 2:38 pm, Ronald F. Guilmette wrote: I get an email spam so I report it... via email. I *do not * don snorkle gear. I do not contort my body into odd shapes. I do not make my report out-of-band, via smoke signals, or morse code, or via modulated infrared wavelengths. Call me old fashioned, but as I have already made plain, I do not think that I should be required to do any of these things. It is easier for me just to block all of Hostdime, which I had plenty of reasons to do already anyway. Regards, rfg P.S. Seriously, how much arrogance does it take for them to say to me that it is OK for me to have taken up *my* time to have read the crap that was originated by *their* customer, but *they* cannot be bothered to read *my* mail to them? ------- Forwarded Message Date: Sat, 20 Feb 2021 19:47:33 -0500 From: abuse@hostdime.com <abuse@hostdime.com> To: rfg@tristatelogic.com Subject: [AUTOREPLY] - Please submit complaint to https://www.hostdime.com/abus e-report/ Hello, Thank you for contacting HostDime. Please resubmit your original message at the following link for action to be co nsidered: - ------------------- HostDime Abuse Report Formhttps://www.hostdime.com/abuse-report/ - ------------------- Thank you, HostDime.com, Inc NOTE: This is an automated message. Please do not reply to this email. This mai lbox is not monitored. ------- End of Forwarded Message
The problem with the online form report abuse is that you can only submit 1 url at a time. When you submit the url, then they will ask for more information. The same as sending to abuse@ Once you submit the additional information, you usually do not hear anything back from these cloud hosting providers and I rarely see anything happen. The "abuse" they are looking for is email spam generated from their servers that do not follow the CAN-SPAM act. Any other type of "abuse" is not "abuse" as the usual response is "Oh I found what your're talking about i've fixed the problem". On Sat, Feb 20, 2021 at 9:02 PM JJS JJS <no0484985@gmail.com> wrote:
To put it alternatively:
Imagine you walk down a street and there are lots of pubs (saloons?) that serve Alcohol and they all have drunken people swearing and trashing the place and you ask to report it to the manager but the bouncer of one premises says... "You have to put it in writing via email" and the next premises says "you have to telephone during business hours" and another says "you have to write a letter to an address".
That is their choice. Sometimes with forms, it pre-loads it into a system that formats it for them. Sometimes there are email systems that can extract that information and format it anyway. But if they want you to use a form, they are indicating that's the best way for them to know what is happening.
On 21/02/2021 2:38 pm, Ronald F. Guilmette wrote:
I get an email spam so I report it... via email.
I *do not * don snorkle gear. I do not contort my body into odd shapes. I do not make my report out-of-band, via smoke signals, or morse code, or via modulated infrared wavelengths.
Call me old fashioned, but as I have already made plain, I do not think that I should be required to do any of these things. It is easier for me just to block all of Hostdime, which I had plenty of reasons to do already anyway.
Regards, rfg
P.S. Seriously, how much arrogance does it take for them to say to me that it is OK for me to have taken up *my* time to have read the crap that was originated by *their* customer, but *they* cannot be bothered to read *my* mail to them?
------- Forwarded Message
Date: Sat, 20 Feb 2021 19:47:33 -0500 From: abuse@hostdime.com <abuse@hostdime.com> To: rfg@tristatelogic.com Subject: [AUTOREPLY] - Please submit complaint to https://www.hostdime.com/abus e-report/
Hello,
Thank you for contacting HostDime.
Please resubmit your original message at the following link for action to be co nsidered: - ------------------- HostDime Abuse Report Formhttps://www.hostdime.com/abuse-report/ - ------------------- Thank you, HostDime.com, Inc
NOTE: This is an automated message. Please do not reply to this email. This mai lbox is not monitored.
------- End of Forwarded Message
P.S. I forgot to include "We don't have access to the server so we will have to wait until the customer responds". You can't see the data the server is sending or the spam links i've supplied to you? After they say they "fixed the problem", you can clearly see that it's still not fixed and any further attempt to reply goes ignored. That has been my experience with most cloud hosting providers. On Sun, Feb 21, 2021 at 8:48 AM steve payne <stevenp8844@gmail.com> wrote:
The problem with the online form report abuse is that you can only submit 1 url at a time.
When you submit the url, then they will ask for more information. The same as sending to abuse@
Once you submit the additional information, you usually do not hear anything back from these cloud hosting providers and I rarely see anything happen.
The "abuse" they are looking for is email spam generated from their servers that do not follow the CAN-SPAM act. Any other type of "abuse" is not "abuse" as the usual response is "Oh I found what your're talking about i've fixed the problem".
On Sat, Feb 20, 2021 at 9:02 PM JJS JJS <no0484985@gmail.com> wrote:
To put it alternatively:
Imagine you walk down a street and there are lots of pubs (saloons?) that serve Alcohol and they all have drunken people swearing and trashing the place and you ask to report it to the manager but the bouncer of one premises says... "You have to put it in writing via email" and the next premises says "you have to telephone during business hours" and another says "you have to write a letter to an address".
That is their choice. Sometimes with forms, it pre-loads it into a system that formats it for them. Sometimes there are email systems that can extract that information and format it anyway. But if they want you to use a form, they are indicating that's the best way for them to know what is happening.
On 21/02/2021 2:38 pm, Ronald F. Guilmette wrote:
I get an email spam so I report it... via email.
I *do not * don snorkle gear. I do not contort my body into odd shapes. I do not make my report out-of-band, via smoke signals, or morse code, or via modulated infrared wavelengths.
Call me old fashioned, but as I have already made plain, I do not think that I should be required to do any of these things. It is easier for me just to block all of Hostdime, which I had plenty of reasons to do already anyway.
Regards, rfg
P.S. Seriously, how much arrogance does it take for them to say to me that it is OK for me to have taken up *my* time to have read the crap that was originated by *their* customer, but *they* cannot be bothered to read *my* mail to them?
------- Forwarded Message
Date: Sat, 20 Feb 2021 19:47:33 -0500 From: abuse@hostdime.com <abuse@hostdime.com> To: rfg@tristatelogic.com Subject: [AUTOREPLY] - Please submit complaint to https://www.hostdime.com/abus e-report/
Hello,
Thank you for contacting HostDime.
Please resubmit your original message at the following link for action to be co nsidered: - ------------------- HostDime Abuse Report Formhttps://www.hostdime.com/abuse-report/ - ------------------- Thank you, HostDime.com, Inc
NOTE: This is an automated message. Please do not reply to this email. This mai lbox is not monitored.
------- End of Forwarded Message
This is a standard problem with even Google Domain name(s) registered on Google Registrar Spam from google apps mail Domains hosted on a google cloud IP Redirect hosted on google firebase Report to google safe browsing Feed URLs to virus total - also owned by Google Suppose you have a phish campaign that has registered say a dozen domains, how many web forms do you end up submitting? Also - the language used is fast becoming a throwback to the old days of news.admin.net-abuse.email, I thought we’d all moved away from that sort of thing. --srs ________________________________ From: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> on behalf of steve payne <stevenp8844@gmail.com> Sent: Sunday, February 21, 2021 9:18:53 PM To: JJS JJS <no0484985@gmail.com> Cc: anti-abuse-wg@ripe.net <anti-abuse-wg@ripe.net> Subject: Re: [anti-abuse-wg] Anti-social assholes The problem with the online form report abuse is that you can only submit 1 url at a time. When you submit the url, then they will ask for more information. The same as sending to abuse@ Once you submit the additional information, you usually do not hear anything back from these cloud hosting providers and I rarely see anything happen. The "abuse" they are looking for is email spam generated from their servers that do not follow the CAN-SPAM act. Any other type of "abuse" is not "abuse" as the usual response is "Oh I found what your're talking about i've fixed the problem". On Sat, Feb 20, 2021 at 9:02 PM JJS JJS <no0484985@gmail.com<mailto:no0484985@gmail.com>> wrote: To put it alternatively: Imagine you walk down a street and there are lots of pubs (saloons?) that serve Alcohol and they all have drunken people swearing and trashing the place and you ask to report it to the manager but the bouncer of one premises says... "You have to put it in writing via email" and the next premises says "you have to telephone during business hours" and another says "you have to write a letter to an address". That is their choice. Sometimes with forms, it pre-loads it into a system that formats it for them. Sometimes there are email systems that can extract that information and format it anyway. But if they want you to use a form, they are indicating that's the best way for them to know what is happening. On 21/02/2021 2:38 pm, Ronald F. Guilmette wrote: I get an email spam so I report it... via email. I *do not * don snorkle gear. I do not contort my body into odd shapes. I do not make my report out-of-band, via smoke signals, or morse code, or via modulated infrared wavelengths. Call me old fashioned, but as I have already made plain, I do not think that I should be required to do any of these things. It is easier for me just to block all of Hostdime, which I had plenty of reasons to do already anyway. Regards, rfg P.S. Seriously, how much arrogance does it take for them to say to me that it is OK for me to have taken up *my* time to have read the crap that was originated by *their* customer, but *they* cannot be bothered to read *my* mail to them? ------- Forwarded Message Date: Sat, 20 Feb 2021 19:47:33 -0500 From: abuse@hostdime.com<mailto:abuse@hostdime.com> <abuse@hostdime.com<mailto:abuse@hostdime.com>> To: rfg@tristatelogic.com<mailto:rfg@tristatelogic.com> Subject: [AUTOREPLY] - Please submit complaint to https://www.hostdime.com/abus e-report/ Hello, Thank you for contacting HostDime. Please resubmit your original message at the following link for action to be co nsidered: - ------------------- HostDime Abuse Report Form https://www.hostdime.com/abuse-report/ - ------------------- Thank you, HostDime.com, Inc NOTE: This is an automated message. Please do not reply to this email. This mai lbox is not monitored. ------- End of Forwarded Message
First of all, can we please avoid insulting people here, particularly on email subjects? I understand how we are all fed up at times with the abuse handling of certain providers (or lack thereof) but, even if it wasn't what rfg was intending this could easily be construed as a personal attack by certain people on this list (completely unrelated to HostDime, I should note) which won't help having healthy discussions with everyone involved. Thanks JJS JJS writes:
To put it alternatively: Imagine you walk down a street and there are lots of pubs (saloons?) that serve Alcohol and they all have drunken people swearing and trashing the place and you ask to report it to the manager but the bouncer of one premises says... "You have to put it in writing via email" and the next premises says "you have to telephone during business hours" and another says "you have to write a letter to an address".
That is their choice. Sometimes with forms, it pre-loads it into a system that formats it for them. Sometimes there are email systems that can extract that information and format it anyway. But if they want you to use a form, they are indicating that's the best way for them to know what is happening.
That's perfectly fine. They can prefer receiving abuse complaints via a form. Or using separate reporting emails for phishing / spam / child abuse… Or receiving everything in one big mail. Or as separate emails for every url, even if it only differs in a trailing slash. Some would like to get a call for urgent matters. Or they would prefer that you were logged in on their system. That's all fine, as far as they are *preferences*. I have my preferences as well. I may accommodate them if it's easy for me, but perhaps only if that doesn't make it too burdensome for me. For instance, I may have to fill my own ticket with what was reported to the provider. This is zero-cost for reports performed by email, but may mean taking three times more if choosing to report instead via an abuse form. Which may not always have available on a given day to jumping through hoops in order to please yet another provider that day (and, sadly, the lack of response don't encourage taking the extra effort of doing it _their way_. There are providers doing great, but too many deaf ears out there). Best regards -- INCIBE-CERT - Spanish National CSIRT https://www.incibe-cert.es/ PGP keys: https://www.incibe-cert.es/en/what-is-incibe-cert/pgp-public-keys ==================================================================== INCIBE-CERT is the Spanish National CSIRT designated for citizens, private law entities, other entities not included in the subjective scope of application of the "Ley 40/2015, de 1 de octubre, de Régimen Jurídico del Sector Público", as well as digital service providers, operators of essential services and critical operators under the terms of the "Real Decreto-ley 12/2018, de 7 de septiembre, de seguridad de las redes y sistemas de información" that transposes the Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union. ==================================================================== In compliance with the General Data Protection Regulation of the EU (Regulation EU 2016/679, of 27 April 2016) we inform you that your personal and corporate data (as well as those included in attached documents); and e-mail address, may be included in our records for the purpose derived from legal, contractual or pre-contractual obligations or in order to respond to your queries. You may exercise your rights of access, correction, cancellation, portability, limitationof processing and opposition under the terms established by current legislation and free of charge by sending an e-mail to dpd@incibe.es. The Data Controller is S.M.E. Instituto Nacional de Ciberseguridad de España, M.P., S.A. More information is available on our website: https://www.incibe.es/proteccion-datos-personales and https://www.incibe.es/registro-actividad. ====================================================================
participants (4)
-
JJS JJS -
steve payne -
Suresh Ramasubramanian -
Ángel González Berdasco