Return-Path: X-Original-To: apmail-httpd-users-archive@www.apache.org Delivered-To: apmail-httpd-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id BCC1917AB9 for ; Mon, 11 May 2015 17:26:59 +0000 (UTC) Received: (qmail 7704 invoked by uid 500); 11 May 2015 17:26:54 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 7670 invoked by uid 500); 11 May 2015 17:26:53 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 7660 invoked by uid 99); 11 May 2015 17:26:53 -0000 Received: from Unknown (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 11 May 2015 17:26:53 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 620301A297D for ; Mon, 11 May 2015 17:26:53 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 4.631 X-Spam-Level: **** X-Spam-Status: No, score=4.631 tagged_above=-999 required=6.31 tests=[DEAR_SOMETHING=1.731, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=disabled Authentication-Results: spamd2-us-west.apache.org (amavisd-new); dkim=pass (1024-bit key) header.d=ymkatz.net Received: from mx1-us-west.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id SwC5EuKEVgwj for ; Mon, 11 May 2015 17:26:42 +0000 (UTC) Received: from mail-wi0-f180.google.com (mail-wi0-f180.google.com [209.85.212.180]) by mx1-us-west.apache.org (ASF Mail Server at mx1-us-west.apache.org) with ESMTPS id 1CF9520696 for ; Mon, 11 May 2015 17:26:42 +0000 (UTC) Received: by wicmc15 with SMTP id mc15so33503013wic.1 for ; Mon, 11 May 2015 10:26:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ymkatz.net; s=g; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=g60GXh8ncCGRGU7EMtT8dk1YrwsWfelcRbkT+zQu1y8=; b=Y+LLUnYjEHGp2v/r269orrIktg7ZKc5jc8YXJqV8NJbWdJpUEf7T4M41PIsA14bVX6 fY37yPqdSTb4hKPyaeVEwS89rAlzgi2zrU1lKdtDE2c+Pty2lP27PYubKgVuRWHqP8qP px9FFpxiUYjMmM/V4LCXnux6Q0+rhDBAj57t4= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:content-type; bh=g60GXh8ncCGRGU7EMtT8dk1YrwsWfelcRbkT+zQu1y8=; b=kHGqPUZOVgdXV9ssIzy3R8EBdE3WYfsAIOZZNKjHcXdD0rwDT0st2SFbcQ/pB4WpnJ tiDyhqCewvOLQeQaDJILO6cHviCt30blc70b7txO6Z8Cjlnf8rxwcn551O1pE1AwP/Bn 6u+xQnWK+eSNxSECywrZkm0tIlyOM2BHJou/ykg5yhMVtnYioSo7K79hAKoh4GfbYQzj Q9XAsZwm3QzKDosFj6R3AHxRQGfRWkkEUvvdkmMu0TwHUHsszh//btQtx5YL5UvxPr5O pOTCfLFc4CzOW1SraLqg2Wh7HC3vbOZx+ieyGrvlhumLC8v5JG++VAQZwkSjJiA0fzNE 0nSg== X-Gm-Message-State: ALoCoQn2SJZ95XRDVAcOZhTepUfsU0eZy0ueSvYOi16c0e55unvXijQT1s6vvpzLpFx2QnnPQE96 X-Received: by 10.180.100.194 with SMTP id fa2mr22390818wib.8.1431365200617; Mon, 11 May 2015 10:26:40 -0700 (PDT) Received: from mail-wg0-f52.google.com (mail-wg0-f52.google.com. [74.125.82.52]) by mx.google.com with ESMTPSA id v20sm23779199wjr.49.2015.05.11.10.26.39 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 11 May 2015 10:26:39 -0700 (PDT) Received: by wgic8 with SMTP id c8so108900870wgi.1 for ; Mon, 11 May 2015 10:26:38 -0700 (PDT) X-Received: by 10.194.222.230 with SMTP id qp6mr22761309wjc.70.1431365198863; Mon, 11 May 2015 10:26:38 -0700 (PDT) MIME-Version: 1.0 Received: by 10.28.148.201 with HTTP; Mon, 11 May 2015 10:26:18 -0700 (PDT) In-Reply-To: References: From: Yehuda Katz Date: Mon, 11 May 2015 13:26:18 -0400 Message-ID: To: stevio , "users@httpd.apache.org" Content-Type: multipart/alternative; boundary=001a11c3bad838e74c0515d1ae53 Subject: Re: [users@httpd] Fwd: E tag numbers --001a11c3bad838e74c0515d1ae53 Content-Type: text/plain; charset=UTF-8 1. It is considered rude to reply to an individual instead of to the entire mailing list when you have follow-up questions. Many people on the HTTPD list - including me - charge for consulting services, but answer questions in a public forum to help everyone learn more. 2. As I already said, the ETag header are generated by the server based on information about the file being served. This information can include the last modification date, the size, the inode number and possibly other pieces of metadata. The purpose of the ETag header is to allow caches to know whether the response has changed since the last time they saw it. ETag headers being the same could indicate that the file being served from multiple domains is the same file or just happens to be the same size as another file. *ETags are NOT a thing to be allocated or purchased. ETag headers are generated by each server individually based on the content being served.* ETag headers are a part of the HTTP specification and have no meaning other than to allow caches to detect changes to content. (Some websites have been found to use ETag headers instead of cookies to identify unique users, but that is not the intended purpose of the header.) - Y On Mon, May 11, 2015 at 1:02 PM, steve owen wrote: > Yehuda, > > > > Thanks for the reply. I'm in contact with law enforcement but it's like > watching paint dry. > > > > Basically I've tracked these low lifes for the best part of 3 years. I've > managed to find > > some amazing facts as well as trace some unknown people which are now > held on police > > files. > > > > I look constantly for new outlets etc. this exercise came about only last > week whilst > > checking background info using Statcrops.com. This indicated (after an > afternoons work) > > that 5 Domains were using the exact same Apache server ref. as well as the > same Etag > > Number. > > I can find out the registrars details of each Domain that,s quite easy. > > > > I was hoping to find how E tag numbers are allocated! are they purchased, > where do they > > come from etc. if so it should be then possible to identify the actual > user (assuming they > > have used proper names, bank details etc etc.. > > > > Can you share any light on the E tag info that I seek?,many thanks. > > > > Kind regards > > > > Steve > > > > On Mon May 11 16:34 , Yehuda Katz sent: > > > > >E-tags are generated based on information about the file being > served. You can see the > > documentation here: > http://httpd.apache.org/docs/current/mod/core.html#fileetag > > >As you noted, Apache HTTPD is used by a significant number of people all > over the > > world.There is no central registry of who owns a particular server.If > criminal activity is > > occurring, contact your local law enforcement agency and try to have them > investigate.This > > varies by country, but in the United States, they can ask a court to force > an Internet > > Service Provider to reveal who owns a particular IP address. > > >- Y > > >On Mon, May 11, 2015 at 12:16 PM, steve owen > wrote: > > > > > > > > > > > > > > >Sirs, > > > > > > > > > > > > > > > > > > > > > > > >Don't know if I'm following the correct protocol! This is the enquiry I > sent Eric he > > > > > > > > > > > >informed that I should join this format. > > > > > > > > > > > > > > > > > > > > > > > >I would like an answer to the questions below if possible. > > > > > > > > > > > > > > > > > > > > > > > >regards Steve > > > > > > > > > > > > > > > > > > > > > > > >----- Original Message ----- > > > > > > > > > > > >From: steve owen > > > > > > > > > > > >To: webmaster@apache.org > > > > > > > > > > > >Sent: Mon May 11 9:46 > > > > > > > > > > > >Subject: Fwd: E tag numbers > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >Dear Sirs, > > > > > > > > > > > > > > > > > > > > > > > >Wonder if you could assist:- > > > > > > > > > > > > > > > > > > > > > > > >I know that the majority of web sites/domains use Apache servers. > > > > > > > > > > > > > > > > > > > > > > > >I'm currently tracking a number of Domains that are consistently using > the Internet for > > > > > > > > > > > >fraudulent purposes. > > > > > > > > > > > > > > > > > > > > > > > >If a Domain uses Apache for it's server and a given E tag number, who > provides the E tag ? > > > > > > > > > > > >Is it allocated or purchased? > > > > > > > > > > > > > > > > > > > > > > > >It would appear from my investigations that at least 5 Domains appear to > be using the > > > > > > > > > > > >identical E tag number, is this possible? They also use the exact same > Apache server > > > > > > > > > > > >reference. > > > > > > > > > > > > > > > > > > > > > > > >I can provide the details should you require for assistance. I do trust > you can assist, > > > > > > > > > > > >this is an extremely important matter, many thanks. > > > > > > > > > > > > > > > > > > > > > > > >Kind regards > > > > > > > > > > > > > > > > > > > > > > > >Steve Owen > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >--------------------------------------------------------------------- > > > > > >To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org > > > > > >For additional commands, e-mail: users-help@httpd.apache.org > > > > > > > > > > > > > > > > > > > > > --001a11c3bad838e74c0515d1ae53 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
1. It is considered rude to reply to an individual in= stead of to the entire mailing list when you have follow-up questions. Many= people on the HTTPD list - including me - charge for consulting services, = but answer questions in a public forum to help everyone learn more.

2. As I already said, the ETag header are generated by the ser= ver based on information about the file being served. This information can = include the last modification date, the size, the inode number and possibly= other pieces of metadata. The purpose of the ETag header is to allow cache= s to know whether the response has changed since the last time they saw it.= ETag headers being the same could indicate that the file being served from= multiple domains is the same file or just happens to be the same size as a= nother file.=C2=A0

ETags are NOT a thing to be alloca= ted or purchased. ETag headers are generated by each server individually ba= sed on the content being served.

ETag headers = are a part of the HTTP specification and have no meaning other than to allo= w caches to detect changes to content.
(Some websites have been f= ound to use ETag headers instead of cookies to identify unique users, but t= hat is not the intended purpose of the header.)

- = Y

On M= on, May 11, 2015 at 1:02 PM, steve owen <stevio@talktalkbusiness= .net> wrote:
Yehuda,



Thanks for the reply. I'm in contact with law enforcement but it's = like watching paint dry.



Basically I've tracked these low lifes for the best part of 3 years. I&= #39;ve managed to find

some amazing facts=C2=A0 as well as trace some unknown people which are now= held on police

files.



I look constantly for new outlets etc. this exercise came about only last w= eek whilst

checking background info using Statcrops.com. This indicated (after an afte= rnoons work)

that 5 Domains were using the exact same Apache server ref. as well as the = same Etag

Number.

I can find out the registrars details of each Domain that,s quite easy.



I was hoping to find how E tag numbers are allocated! are they purchased, w= here do they

come from etc. if so it should be then possible to identify the actual user= (assuming they

have used proper names, bank details etc etc..



Can you share any light on the E tag info that I seek?,many thanks.



Kind regards



Steve



On Mon May 11 16:34 , Yehuda Katz <= yehuda@ymkatz.net> sent:



>E-tags are generated based on information about the file being served.= =C2=A0You can see the

documentation here:=C2=A0http://httpd.apache.org/docs/curren= t/mod/core.html#fileetag

>As you noted, Apache HTTPD is used by a significant number of people al= l over the

world.There is no central registry of who owns a particular server.I= f criminal activity is

occurring, contact your local law enforcement agency and try to have them i= nvestigate.This

varies by country, but in the United States, they can ask a court to force = an Internet

Service Provider to reveal who owns a particular IP address.

>- Y

>On Mon, May 11, 2015 at 12:16 PM, steve owen <stevio@talktalkbusiness.net> wrote:

>

>

>

>

>Sirs,

>

>

>

>

>

>

>

>Don't know if I'm following the correct protocol! This is the e= nquiry I sent Eric he

>

>

>

>informed that I should join this format.

>

>

>

>

>

>

>

>I would like an answer to the questions below if possible.

>

>

>

>

>

>

>

>regards=C2=A0 Steve

>

>

>

>

>

>

>

>----- Original Message -----

>

>

>

>From: steve owen <ste= vio@talktalkbusiness.net>

>

>

>

>To: webmaster@apache.org
>

>

>

>Sent: Mon May 11=C2=A0 9:46

>

>

>

>Subject: Fwd: E tag numbers

>

>

>

>

>

>

>

>

>

>

>

>Dear Sirs,

>

>

>

>

>

>

>

>Wonder if you could assist:-

>

>

>

>

>

>

>

>I know that the majority of web sites/domains use Apache servers.

>

>

>

>

>

>

>

>I'm currently tracking a number of Domains that are consistently us= ing the Internet for

>

>

>

>fraudulent purposes.

>

>

>

>

>

>

>

>If a Domain uses Apache for it's server and a given E tag number, w= ho provides the E tag ?

>

>

>

>Is it allocated or purchased?

>

>

>

>

>

>

>

>It would appear from my investigations that at least 5 Domains appear t= o be using the

>

>

>

>identical E tag number, is this possible?=C2=A0 They also use the exact= same Apache server

>

>

>

>reference.

>

>

>

>

>

>

>

>I can provide the details should you require for assistance. I do trust= you can assist,

>

>

>

>this is an extremely important matter, many thanks.

>

>

>

>

>

>

>

>Kind regards

>

>

>

>

>

>

>

>Steve Owen

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>

>---------------------------------------------------------------------
>

>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org

>

>For additional commands, e-mail: users-help@httpd.apache.org

>

>

>

>

>






--001a11c3bad838e74c0515d1ae53--