Re: Netsweeper incident in Mauritius

From: Ish Sookun <ish_at_lsl.digital>
Date: Tue, 4 May 2021 21:02:21 +0400


Hi SM,

On 04/05/2021 20:38, S Moonesamy wrote:
> That is a response from Netsweeper Inc. There was CSA material on a
> domain and non-CSA material on another domain which are both hosted
> on the same IP address. The traffic was sent through Netsweeper in
> the Netherlands because of that. Netsweeper made a change to solve
> the location identification problem. The response also mentions that
> CSA material is identified by the Internet Watch Foundation. There
> is a memorandum of understanding at
> https://www.icta.mu/docs/laws/mou_iwf.pdf
> <https://www.icta.mu/docs/laws/mou_iwf.pdf>

The communique confirms that Netsweep [1] "directed" Internet Service
Providers in Mauritius to route the traffic to the server in
Netherlands. The traffic was intended to reach two Cloudflare [2] IP
addresses.

Is it a normal practice for ISPs to accept such BGP advertisements?

Regards,

Ish Sookun

[1] https://www.netsweeper.com
[2] https://whois.arin.net/rest/net/NET-104-16-0-0-1/pft?s=104.27.194.88
Received on Tue May 04 2021 - 17:02:48 PST

This archive was generated by hypermail 2.4.0 : Wed May 05 2021 - 05:00:01 PST