Black Viper
Stalk BV
Jan 282004

This morning I found in my E-Mail 73 W32.Novarg.A@mm viruses. In order to reduce my bandwidth consumption from this attack, I am taking the following actions: The "sending" E-Mail server must declare the size of the E-Mail, in advance (practically all do this, however the zombie spammers/virus ridden systems don’t). Any E-Mail over 30,000 bytes is rejected and the connection is dropped before it is even sent across the internet. Any particular IP address may only send me one E-Mail every 30 minutes. This restriction may be lifted after the [Continue Reading]

Jan 272004

I knew the virus outlined below was going to be big. This morning at 10:15 AM, I found in my E-Mail a CERT security warning about this latest virus issue. You can view the complete warning at this link: I knew this virus was going to be big. Why? Due to the volume I have been getting. This morning I found in my E-Mail 57 W32.Novarg.A@mm viruses. You may have misunderstood my previous posting, though. I am NOT sending out these viruses. A reader asked "If I am so [Continue Reading]

Jan 262004

In the last 6 hours, I have found in my E-Mail 38 W32.Novarg.A@mm viruses. This includes "the one" that spoofed my "from" E-Mail address and sent it back to me. The IP address it was "actually" sent from is located in Canada. This does not include the 27 "bounced" messages from servers telling me the "user does not exist." It also does not include the 15 automated messages some system administrators insisting on "warning" the sender of the "virus" attachment. I have Ranted about viruses before and this is no [Continue Reading]

Dec 292003

I have information about AdShield and the reason the particular software performs as it does (outlined in several news posts below). An explanation was forwarded to me by the particular reader this issue affected: Robots.txt files are used by web sites to control which of their pages are indexed by search engine spiders.  AdShield isn’t a search engine so it doesn’t conform to this standard even in version 3.  The caching option has always been disabled by default.  Version 3 does have an exclude list which could be used to [Continue Reading]

Dec 252003

I have been selected SETI@Home user of the day [link removed]. I think it could have something to do with my profile’s [link removed] picture involving Santa. Coincidence? The world may never know. 🙂 I have also been told that the person mentioned in the last couple of news updates may be using an "older" version of AdShield. Unfortunately, due to the Holiday season, they have not been able to get any answer from technical support as to the issues outlined below. If it does turn out that the older [Continue Reading]

Dec 232003

Well, the person outlined two updates below "is" using a plain version of IE6, that is, if you do not include using AdShield. AdShield blocks pop-ups and banner ads. Since I do not have any, it is rather pointless to have it running on my site. However, this is the intriguing thing. Cut and pasted from the home page is this "feature:" Improves performance using optional background downloading and caching of pages/images linked to the ones you’re viewing. Improves performance for "whom?" That completely explains the reason for the log [Continue Reading]

Dec 222003

In an attempt to give my readers a little insight as to "what goes on behind the scenes," I have posted the following news update. Time to start the latest Quick Rant. This is the longest news update I have had in awhile. The reason? I am banging my head up against the monitor. I, once again, fired up the automatic banning of IP addresses last night. This is due to my desire to stop "bad" robots from sucking too much bandwidth. More information on this practice is located in [Continue Reading]

Dec 172003

I have had several complains from readers about my web server automatically banning their IP address because of "abuse." This is due to my recently implemented configuration to stop "bad" robots from sucking too much bandwidth. More information on this practice is located in my Abuse Rant. I implemented a "hidden link" which all "good" robots, including all major search engines, would ignore. Some proxy servers, pre-fetchers and firewall’s chose to ignore the robots.txt standard. This is an issue to take up with the creators of those programs, not my [Continue Reading]

Dec 072003

A sharp reader identified a news update that I posted a few days ago for only 30 minutes, then deleted. It outlined the steps that I have recently implemented to stop abuse of my content. I will now go into greater detail in the Abuse Rant. For several months, I have been attacking my bandwidth problem from a totally different angle than I recently have. I was optimizing images, cutting down on all "extra" content, and compressing content for faster download time. However, after looking through my log files, that [Continue Reading]

Nov 172003

This is another round of warnings that I feel compelled to inform people. My previous page instructed people how to deal with the MSBlast worm. This one, however, deals with yet another mass mailing worm with its purpose in life to steal PayPal account information. This discovery was prompted by one E-Mail that fits the Symantec description perfectly: The subject line contains "YOUR PAYPAL.COM ACCOUNT EXPIRES" and comes from the address of "" It arrived at my inbox at 11:41 AM today. This information was posted November 14, 2003 by [Continue Reading]