Internet

I'm no longer forwarding cookie thieves to Natalie's site. I had been fussing around trying to make IPTables block all the botnet machines, and when that didn't work, I was just using deny rules in Apache, which sucked, because my include file of blocked hosts was 100,000 or so. That's in addition to the default "Block all of China, India, Eastern Europe" rules I apply. It also sucked because I'm still serving pages and so there were tons of ESTABLISHED, FIN_WAIT1/2, etc. connections, most of which were holding open Apache processes, which was crushing my machine.

The reason IPTables wasn't working turned out to be because of the VPS solution used by 1and1. There is a hard limit of 400 rules on the host, and I can't work around that, so I can't use IPTables with huge blacklists, at least, not that I've figured out.

What I'm doing now though is to use the LimitExcept directive to only allow GET requests in the virtual host which does the rewrites for nataliecurtiss.com. So now those fuckers are all just getting 403's or, in some cases, 500's (don't know why that is).

So yeah that was fun. A case has been opened with SquareSpace, since this attack traffic was all really directed at them. And the only logical thing I can think of is that the attackers are trying to guess session cookies of site admins who aren't explicitly logged out of their site admin tools. This would let the attackers exploit any XSS inherent in code generated by SquareSpace, or use the targeted site to infect more end user machines for this botnet.

Still, it's an awful lot of trouble to go to just to get your hands on Natalie's what, 12 legitimate users per month?

Now I just have a zillion connections in TIME_WAIT, but at least my site seems quick, all my services seem to be working at full speed ahead, and I'm going to stop thinking about this shit for a while. I'm not going to bother figuring out why I can't set tcp_tw_reuse to clean up all those TIME_WAITs.

Update:
The 500's are because I didn't set an auth-type for the user to be able to POST. Well, fuck 'em, they get 500's, since I never want anyone to ever do anything but GET, everything else can DIAF.

From Mike Ness:

To The Cramps:

I remember reading a record review for a rockabilly compilation (Which we own, and which is awesome) in which the writer claims it's disingenuous for the compilers to draw a line from 50's rockabilly to punk. He said in effect that punk owed nothin' to no one. Anyway, Johnny Cash came up followed by Hasil Adkins in iTunes just now and reminded me of that obvious music hater's review of a really good compilation. The review seems to have gone down the memory hole.

A Short list:

Sid Vicious covered an Eddie Cochran song, and it was popular.

Elvis Costello covered an an entire person. That was popular too.

The Cramps are a thing which exists

The Misfits, Ramones and Clash are also things which exist.

Jim Heath has a career.

As does Hank III.

GG Allin closes some sort of loop.

Of course, according to the natural law of maximum irony, my very next Facebook post resulted in this screenshot.

In my withering defense, I rate anything I read based on the relative historical trustworthiness of the writer. Ebert, Gibson, my wife, rate very high and are near-unimpeachable sources. William Gibson rated a cursory check of Google News to see that, yeah, there are other headlines from other sources telling the same story.

That said, don't do the crime if you can't do the good natured time :-)

Previously

Since Facebook sucks at telling time, the meat all happened within ten minutes of the tweet I read

I've been running IMAP services on my mailserver for many years, previously using Courier. I always had a pretty basic but solid-running system. Postfix, doing a Spam Assassin check, then delivers to the user folders, and Courier running IMAP.

"I really believe that the pagans, and the abortionists, and the feminists, and the gays and the lesbians who are actively trying to make that an alternative lifestyle, the ACLU, People For the American Way -- all of them who have tried to secularize America -- I point the finger in their face and say "you helped this happen."" -- Jerry Falwell, with Pat Robertson, discussing why God sent religious zealots to attack American cities on 9/11/2001.

----
This post is not an attempt at suppression of anyone's speech or opinions. It is an expression on my part of how those words make me feel. People's feelings, bigoted and horrifying though they may be to me, are their own. Americans have the right, and duty, to non-violently advocate their position as strenuously as possible. History and the sands of time will be the judges of which opinion was right or wrong. If you disagree with me and want to comment, feel free to speak your mind. I will certainly speak mine right back. This is ethical advocacy and will not prevent me from having a beer and a dog, and then another beer, with anyone, ever. And we shall breezily talk of other things. Weather. Inferior corn-height (I am a born Hoosier, remember that. I instinctively know what corn is supposed to look like, and when). Baseball. Kittens.
----

I've made it clear through the history of my posts that I'm a vocal advocate for equal protection under the law for all Americans. Many of my inlaws do not share this belief, and out of an abundance of respect for my wife, and the fact that their opinions are their own, I've not said anything about the bigotry I see on a pretty regular basis. I have simply kept my mouth shut and turned the other cheek when I have seen attacks against gays, women and those who they perceive to worship religions different to their own.

However, the last week of batty Chick-Fil-A nonsense has brought things to a head. A string of updates, beginning with "It's unconstitutional for people to protest Chick-Fil-A" and culminating today in "[National Same Sex Kiss Day] is the start of Christian Persecution".

"I think we are inviting God's judgment on our nation when we shake our fist at Him and say, 'We know better than you as to what constitutes a marriage,'" -- Dan Cathy, President and COO, Chick-Fil-A

There is no requirement for people to support a company which actively works to discriminate against those very same people. Just black people and Jews "boycott" Resistance Records, so shall Gay people (and the people who love them) boycott Chick-Fil-A. Resistance Records' first amendment rights are not being infringed upon simply because the object of their hatred doesn't give them money, and neither are the rights of Chick-Fil-A being infringed upon.

This "persecution" angle has finally prompted me to respond.

In the lifetime of our nation, we've seen:

• Southern Christians abandoned the Republican party for 100 years after Lincoln took away their biblically mandated right to own other human beings. It wasn't until the 1960s until the Nixon/Goldwater Southern Strategy got them back on the team. (This makes me especially upset, because I often see people say both "Republicans, the party of Lincoln" and "Democrats, who opposed equal rights for blacks in the '50s/'60s", because it's not about the party when the demographic shifts 180 degrees, twice. Southern Evangelicals fled the Republican party because of Lincoln, and only returned to the party when racial intolerance became a plank of the Republican platform)
• Christians protesting the right for women to vote.
• Christians protesting the right for black people to vote.
• Christians protesting the right for black people to eat in the same restaurants, drink from the same fountains, and attending the same schools as whites
• Christians protesting and making laws against interracial marriage.
• Christians abandoned the Republican party for 100 years after the Republican Lincoln took away their biblically mandated right to own other human beings. Until the Nixon/Goldwater Southern Strategy got them back on the team. (This makes me especially upset, when people say both "Republicans, the party of Lincoln" and "Democrats, who opposed equal rights for blacks in the '50s/'60s", because it's not about the party. Southern Evangelicals fled the Republican party because of Lincoln, and only returned? to the party when racial intolerance became a plank of their platform)

Since it's been said that boycotts are first amendment violations of the rights of Chick-Fil-A's free speech, and that we are seeing the start of Christian oppression in this country. Below is what "Christian Oppression" would actually look like when presented as mirror images of acts of oppression which have actually happened to other groups :

• The 85% Atheist majority passes laws requiring science be taught to children in Sunday School
• The 85% Atheist majority taxes churches to the point that it's not financially feasible for them to hold services (Taxes churches out of existence)
• An Atheist-values-based chicken company gives millions of dollars to hate groups advocating the extermination, expulsion and imprisonment of Christians (Genocide! Ethnic Cleansing!)
• A pair of lesbians in Wyoming viciously beats a straight Christian man and leaves him to die tied to a fence post for the crime of speaking to them in a bar
• A lesbian Atheist group rises to national prominence by protesting that same Christian man's funeral carrying disgusting placards stating "God Hates Christians"
• That same extremist group grows over the next twenty years, protesting the funerals of American soldiers because those soldiers fight for a country which permits Christians to practice their faith
• A Christian is legally fired from their job simply because of the fact that they believe in Christ. The federal government does not recognize Christians as a protected group, safe from firing based on their religious beliefs.
• The federal government refuses to recognize Christian marriage, and denies federal tax and death benefits to Christians who were lucky enough to marry in the tiny minority of states which have chosen to permit them to.
• Athiest hate groups picketing and intimidating Christian Scientists and Jehovas Witnesses and shooting those who legally refuse to take their family to hospitals for medical care and blood transfusions
• The 85% Atheist majority looting and burning entire countries to find Christian believers and forcibly convert them away from Christ. If the Christians don't renounce religion, they are murdered after watching their entire family die
• A written test is required for segments of Americans to be allowed to vote. That test includes questions specifically pertaining to things of which Christians as a group have no knowledge. Additionally, a fee is imposed at the voting booth, which is then selectively enforced, but which Christians all must pay in order to cast their vote. If they pass the test, and pay the fee, the Christian vote then only counts as 3/5 the vote of an Atheist

Honestly, to equate yourselves to actual oppressed people is childish, disgusting, and shows a lack of knowledge of history and the struggles of oppressed peoples. The equal rights of gay, lesbian, bisexual and transgendered Americans is just the latest in a very, very long list of basic human rights and equality measures which have been violently opposed by Christians in the name of their bible over the last 400 years in the New World. For Christians to self-identify as some second-class put-upon minority class is frankly sickening.