OWN GOAL! 100s of websites blocked after UK Premier League drops ball

DNS Made Hard: How clumsy IP address ban branded legit sites pirates


Analysis Hundreds of legitimate websites were branded pirates and effectively kicked offline this week - after a court ordered UK ISPs to block access to an IP address they all shared with a copyright-infringing site.

That network address - 96.45.82.196 - resolves to DNS Made Easy's http-redirection-d.dnsmadeeasy.com service, which is used by (for example) the BBC's Radio Times to redirect radiotimes.com visitors to www.radiotimes.com.

And that redirection service, and hence the IP address, was also used by football-match-streaming website First Row Sports (FirstRow1.eu), access to which is now banned following a London High Court ruling against it.

When Blighty's ISPs halted internet access to that address, all manner of websites, from the Beeb's aforementioned telly mag to search engine DuckDuckGo and a number of football clubs, suddenly found themselves silenced on the net in the UK.

A public kerfuffle ensued as fans piled in to complain to Virgin Media, BSkyB and BT for unceremoniously "blocking" perfectly legal content. But it turns out that the telcos were not to blame for the cock-up.

The affected websites have one thing in common: they each use a managed DNS hosting service provided by DNS Made Easy that uses four IP addresses for load-balancing purposes.

One of those IP addresses is the banned 96.45.82.196. ISPs were instructed to prevent Brits from accessing it after a High Court judgment went against Sweden-based FirstRow1.eu following a successful copyright-infringement case fought by the FA Premier League. Footie bosses claim the Swedes had no right to show the matches online.

Mr Justice Arnold concluded at the time that the operators of First Row were "profiting from infringement on a large scale".

On Monday, site-blocking of First Row began, and that's when the trouble started as hundreds of legit sites temporarily fell victim to the court order.

Importantly, the websites in question that appeared to have been kicked off the net could easily be accessed by simply remembering to type in the prefix "www" in front of the URLs. DNS Made Easy also stopped redirecting sites that used the 96.45.82.196 IP address because that was on the court order's hit list.

It's down to rights-holders such as the Premier League to "accurately identify" which IP addresses should be blocked. Telcos, meanwhile, are not required to double check the list to help uncover such mistakes.

BT didn't have much to say about the FA's own goal. Instead it offered us this simple statement:

BT will only block access to websites for online copyright infringement when ordered by a court to do so.

Virgin Media told The Register:

As a responsible ISP we obey court orders when addressed to the company. However, we do not believe the instruction to block this particular IP address meets the criteria of the court order against First Row Sports so we have stopped blocking it and have written to the Premier League.

And BSkyB said:

Sky only ever blocks websites in line with court orders. However, if we believe a particular website is covered by a court order in error, we will raise this with the rights owner and re-enable access, as we have done in the case of the Front Row Sports order.

The Premier League insisted that ISPs should have immediately informed it of any issues from implementing the block.

Speak to the goalie gloves, cos the face ain't listening

Rights-holders in Britain can now use the law to force telcos to filter out sites that infringe their copyright. They can also regularly dictate to ISPs what IP addresses and URLs should be blocked, as well as including on that list proxies that simply link to that illegal content.

A landmark 2011 test case led to the blocking of Usenet-sweeping website Newzbin2, after a High Court judge ruled that BT was responsible under section 97A of the Copyright Act to take direct action to prevent its subscribers from accessing the site.

The judgment was significant for setting a precedent in the UK for blocking such content.

ISP industry sources have expressed "growing and widespread concern" to El Reg about rights-holders going too far by insisting that proxies should also be blocked.

Over the course of the past year, telcos have been ordered to block access to EZTV, The Pirate Bay, Fenopy, KAT and H33T.

This latest incident perhaps highlights that - while copyright owners are keen to try and put an end to their content being illegally snatched and repurposed - they really ought to be a little more careful with how they draw up their lists.

Making them public might just help put an end to this sorry affair. ®


Other stories you might like

  • Deepfake attacks can easily trick live facial recognition systems online
    Plus: Next PyTorch release will support Apple GPUs so devs can train neural networks on their own laptops

    In brief Miscreants can easily steal someone else's identity by tricking live facial recognition software using deepfakes, according to a new report.

    Sensity AI, a startup focused on tackling identity fraud, carried out a series of pretend attacks. Engineers scanned the image of someone from an ID card, and mapped their likeness onto another person's face. Sensity then tested whether they could breach live facial recognition systems by tricking them into believing the pretend attacker is a real user.

    So-called "liveness tests" try to authenticate identities in real-time, relying on images or video streams from cameras like face recognition used to unlock mobile phones, for example. Nine out of ten vendors failed Sensity's live deepfake attacks.

    Continue reading
  • Lonestar plans to put datacenters in the Moon's lava tubes
    How? Founder tells The Register 'Robots… lots of robots'

    Imagine a future where racks of computer servers hum quietly in darkness below the surface of the Moon.

    Here is where some of the most important data is stored, to be left untouched for as long as can be. The idea sounds like something from science-fiction, but one startup that recently emerged from stealth is trying to turn it into a reality. Lonestar Data Holdings has a unique mission unlike any other cloud provider: to build datacenters on the Moon backing up the world's data.

    "It's inconceivable to me that we are keeping our most precious assets, our knowledge and our data, on Earth, where we're setting off bombs and burning things," Christopher Stott, founder and CEO of Lonestar, told The Register. "We need to put our assets in place off our planet, where we can keep it safe."

    Continue reading
  • Conti: Russian-backed rulers of Costa Rican hacktocracy?
    Also, Chinese IT admin jailed for deleting database, and the NSA promises no more backdoors

    In brief The notorious Russian-aligned Conti ransomware gang has upped the ante in its attack against Costa Rica, threatening to overthrow the government if it doesn't pay a $20 million ransom. 

    Costa Rican president Rodrigo Chaves said that the country is effectively at war with the gang, who in April infiltrated the government's computer systems, gaining a foothold in 27 agencies at various government levels. The US State Department has offered a $15 million reward leading to the capture of Conti's leaders, who it said have made more than $150 million from 1,000+ victims.

    Conti claimed this week that it has insiders in the Costa Rican government, the AP reported, warning that "We are determined to overthrow the government by means of a cyber attack, we have already shown you all the strength and power, you have introduced an emergency." 

    Continue reading

Biting the hand that feeds IT © 1998–2022