[nsp-sec] block.blars.org

Johnson, Ron RJohnson at newedgenetworks.com
Wed Feb 13 14:05:59 EST 2008 

I have had the unfortunate pleasure of communicating with Blars about a
couple of years ago. 
His modus-operandi was to list a /8 or larger block of address space in
his list then attempt to extort money from the ISPs when they would ask
for removal. Our attorney was finally called in to discuss the matter
with him, and our address blocks were ultimately removed. 

What I find especially puzzling about the Blars block list, is that it
so clearly states on the block-list webs sites that Blars is a nut, and
his block list should not be taken seriously, but somehow, his block
list manages to receive enough use to become a nuisance to legitimate
business. 
How can this be? I always suspected that he subtly promoted his list
into the email server admin community perhaps by shilling on forums, in
order to drum up extortion targets.
 
Has anyone ever seen or known an email admin that took Blars seriously? 

Ron Johnson


-----Original Message-----
From: nsp-security-bounces at puck.nether.net
[mailto:nsp-security-bounces at puck.nether.net] On Behalf Of Chris Morrow
Sent: Wednesday, February 13, 2008 10:34 AM
To: Tim Wilde
Cc: nsp-security NSP; Campisano,Mario
Subject: Re: [nsp-sec] block.blars.org

----------- nsp-security Confidential --------



On Wed, 13 Feb 2008, Tim Wilde wrote:

> ----------- nsp-security Confidential --------
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Campisano, Mario wrote:
> | ----------- nsp-security Confidential --------
> |
> | Has anyone ever heard of "block.blars.org"?  It appears that their 
> | domain is no longer active, yet, I had a customer who reports that 
> | they are that block list?  I find it kind of strange that this list 
> | is affecting them, since the domain is dead, but, I figured I would 
> | throw it out there for a possible contact?
>
> I don't think I've ever come across a reasonable way to contact Blars 
> - the BlarsBL has always been a "do not use this, it's for my use
only"

his website used to say this, and for a time he was one of the 'I'll
take 5000 to respond to your email abut the blocking' guys...

https://gallery.debconf.org/d/24277-2/CIMG0153.jpg

also he's a nudist! WEE! (no that pick is not nude)

> kind of list, with an enormous amount of collateral damage.  If it's 
> no longer around, good riddance, if you ask me.  Googling for
"blarsbl"
> will find you plenty of others who aren't too happy with it either, 
> but not much luck as far as contact info.

There was a time when one of the blacklist checker sites listed blars's
list, we (at uunet) would take customer calls when their 'secuerity
consultant' would do whatever they did and tripped across the BL
listing... fun times!

-Chris
goog-sec-guy


_______________________________________________
nsp-security mailing list
nsp-security at puck.nether.net
https://puck.nether.net/mailman/listinfo/nsp-security

Please do not Forward, CC, or BCC this E-mail outside of the
nsp-security community. Confidentiality is essential for effective
Internet security counter-measures.
_______________________________________________

More information about the nsp-security mailing list