(trilema) mircea_popescu: but one can readily understand why a verizon for dns is worse than any alternative.
(trilema) asciilifeform: and a very demented isp with malignantly spamwildcardy dns
(trilema) asciilifeform: there isn't a 'good' dns, though. the very concept is a kind of contradiction, like a pleasant jail
(trilema) asciilifeform: mircea_popescu: traditionally they invite you to use google's dns (8.8.8.8)
(trilema) mircea_popescu: "While youre monkeying around with your router setting, consider changing the routers default DNS servers to those maintained by OpenDNS."
(trilema) Naphex: thats a dnsseed
(trilema) mircea_popescu: dns needs to go die in a fire.
(trilema) decimation: while asciilifeform reinvents data transport, he ought to consider reinventing dns
(trilema) assbot: 3000 Tor relays in an hour, all called LizardNSA[0-9]+Interesting.
(trilema) jurov: and i don't mean puny dns errors, but stuff like vanishing orders
(trilema) assbot: Sony leaks reveal Hollywood is trying to break DNS, the backbone of the internet | The Verge ... ( http://bit.ly/1AJwJKi )
(trilema) undata: Luke-Jr: http://www.theverge.com/2014/12/16/7401769/the-mpaa-wants-to-strike-at-dns-records-piracy-sopa-leaked-documents << does this remind you of anything?
(trilema) mircea_popescu: and in connectionless environments such as ntp or dns even, it would cost nothing to require 2 tits for every tat.
(trilema) mircea_popescu: fluffypony: I can't believe in 2014 we have GoDaddy leading the way in managed DNSSEC and Facebook leading the way in correct Tor hosting for clearnet sites <<< bwahaaha this IS a fucking point. and it goes on : microsoft leading the way for linux, on it goes.
(trilema) fluffypony: I can't believe in 2014 we have GoDaddy leading the way in managed DNSSEC and Facebook leading the way in correct Tor hosting for clearnet sites
(trilema) jurov: lol i realized the foundation's activity last month can be best described as "DNS scavenging"
(trilema) badon: Plutonium can and does get seized when it ends up in private handns.
(trilema) assbot: oss-sec: Re: CVE-request: systemd-resolved DNS cache poisoning ... ( http://bit.ly/1zNRZyO )
(trilema) mircea_popescu: in five years people will be asking me why they can't load qntra and instead of pointing to braindamaged "code is poetry" wordpress version 1-4, i'll point at braindamaged "code is poetry" wordpress versions 1-28, AND at systemd "hey, you can talk directly to the dns resolver, because it's on a fixed port, and the legit server can't even race you because it is standards compliant and waits while you rape the stack.
(trilema) mircea_popescu: sees the query from victims upstream DNS, but since systemd-resolved also uses fix
(trilema) assbot: oss-sec: CVE-request: systemd-resolved DNS cache poisoning ... ( http://bit.ly/11ocaaB )
(trilema) xanthyos: dns fail
(trilema) BingoBoingo: Vexual: Was poor yesterday, prolly because DNS DDoS
(trilema) mircea_popescu: https://www.whatsmydns.net/#A/trilema.com << and now i'ts perfect
(trilema) decimation: apparently nobody believes in caching dns anymore
(trilema) decimation: mircea_popescu: could it be that your nameservers (ns7 and ns8) are also inaccessible, thus causing the 'dns outage'?
(trilema) mircea_popescu: https://www.whatsmydns.net/#A/trilema.com << heh! wtf is this bizarro bs.
(trilema) davout: who configured the DNS ?
(trilema) kakobrekla: but that whitelist is separate from dns
(trilema) kakobrekla: but yeah, hosts fix would fix dns issue
(trilema) rithm: i have to remind them of what the fuck DNS is every goddamn day
(trilema) rithm: DNS is a good place to start too
(trilema) davout: rithm: thanks for the tip, just had a look seems DNS related
(trilema) mircea_popescu: chetty, i imagine some sort of dns mitm or whatever noob "techz" the nsa script kiddies worship\
(trilema) kakobrekla: they as well dont see dns
(trilema) assbot: oss-sec: CVE-request: systemd-resolved DNS cache poisoning
(trilema) mircea_popescu: there's something afoot with the dns service worldwide tho
(trilema) mircea_popescu: For your reference, please see the following video. It depicts one of Mr. Blanc's instructional seminars where he advocates illegal and racist behavior as well as video footage of Mr. Blanc in the act: https://www.youtube.com/watch?v=grV1iDns87s
(trilema) mircea_popescu: kakobrekla is like the dns cabal.
(trilema) mircea_popescu: who the fuck ever read whatever software the dns letters run ? who ever wrote a patch for it ?
(trilema) decimation: asciilifeform: re: verizon dns << didn't they announce that they would helpfully insert friendly cookies in your http stream?
(trilema) mircea_popescu: ben_vulpes jurov dns updated.
(trilema) asciilifeform: or is my dns cache still poisoned.
(trilema) asciilifeform: anyone on u.s. verizon fiber - your dns is being hijacked.
(trilema) ben_vulpes: re derpy domain names and dns
(trilema) kakobrekla: this time for real : if you see maintenance page on bitbet, flushdns
(trilema) punkman: nubbins`: expected deed id: 62Mg7bxwiWUSHFzytWMyDsLdDUKRDnsF4MoJbsMNFKcL << that can't be right
(trilema) nubbins`: expected deed id: 62Mg7bxwiWUSHFzytWMyDsLdDUKRDnsF4MoJbsMNFKcL
(trilema) asciilifeform: not a dns diddle either
(trilema) ben_vulpes: "dnsseed.bitcoin.dashjr.org",
(trilema) ben_vulpes: dns, hosting
(trilema) ben_vulpes: trilema dns still borkd for me
(trilema) ben_vulpes: log.bitcoin-assets.com dns also whacked for me
(trilema) ben_vulpes: dns is wacky around here
(trilema) mircea_popescu: URL tested:http://qntra.net Test performed from:New York, NY Test performed at:2014-10-24 02:21:20 (GMT +00:00) Resolved As:23.235.236.98 Status:OK Response Time:0.604 sec DNS:0.241 sec Connect:0.091 sec Redirect:0.000 sec First byte:0.091 sec Last byte:0.181 sec Size:35273 bytes
(trilema) Apocalyptic: mircea_popescu, can't resolve host, as you can see in https://www.whatsmydns.net/#A/qntra.net , some DNS servers all around still didn't catch up
(trilema) Apocalyptic: fwiw some DNS servers still don't resolve qntra.net, include mine
(trilema) mircea_popescu: okay. i have nfi what happened there, but rolled new dns servers and all seems well ?
(trilema) mircea_popescu: cazalla some dns issue i dunno wtf it is but being workt on
(trilema) Apocalyptic: bounce, https://www.whatsmydns.net/ ?
(trilema) bounce: what was that across-the-globe dns thingy again?
(trilema) mircea_popescu: some dns infrastructure just caught fire and fell over it seems
(trilema) mircea_popescu: there's some sort of dns attax at work.
(trilema) mike_c: *** google-public-dns-a.google.com can't find qntra.net: Server failed
(trilema) mircea_popescu: BingoBoingo http://pastebin.com/JUFBdyyp << that's how dns response should look
(trilema) mircea_popescu: BingoBoingo dns poisoned!
(trilema) mircea_popescu: BingoBoingo there's a dns issue in progress.
(trilema) mircea_popescu: mod6 possibly a dns isasue ? nobody;'s blocked.
(trilema) bounce: similarly with some of the vectors to use shell shock. how does a dns lookup request end up on the server being fed to a bash process, exactly?
(trilema) kakobrekla: ip has changed, beat your dns
(trilema) decimation: asciilifeform: w.r.t. the 'putty' controller above, I thought 'modern' malware used generated dns records to 'phone home'
(trilema) thestringpuller: might be dns
(trilema) mircea_popescu: Apocalyptic possibly because you need to flush dns ?
(trilema) thestringpuller: is the dns repropagating or something?
(trilema) jurov: and dns is still cached here
(trilema) thestringpuller: kakobrekla: qntra is up. check your dns records.
(trilema) thestringpuller: flush da dns cache
(trilema) jurov: ikr? google dns does it right
(trilema) bounce: did you force dns over tor too then?
(trilema) jurov: kakobrekla it's not my hosts, it's rela dns cache
(trilema) moldysnizz: "dns refresh" :(
(trilema) devthedev: All I've seen is "dns refresh"
(trilema) mircea_popescu: `jurov`: weird. clicked on comment, again 404 << sounds like some weird yet elusive dns issue.
(trilema) `jurov`: also, i got dns refresh first and only after third reload the site has shown
(trilema) devthedev: DNS hasn't propagated over there yet?
(trilema) devthedev: dns refresh, brb
(trilema) jurov: it worked once, now i'm back at "dns refresh"
(trilema) cazalla: ok dns refreshed but i see old posts, not new ones, do you guys see the IS article or write for qntra on front page?
(trilema) jurov: i see only dns refresh now
(trilema) Apocalyptic: I see "dns refresh"
(trilema) cazalla: ok so site xferred, hopefully dns refresh fast
(trilema) mircea_popescu: * PTR "() { :;}; echo CVE-2014-6271, CVE-201407169, RDNS"
(trilema) assbot: Full Disclosure: CVE-2014-3671: DNS Reverse Lookup as a vector for the Bashvulnerability (CVE-2014-6271 et.al.)
(trilema) Adlai: right, just some dns hiccups on the one domain that i knew of
(trilema) artifexd: qntra.net << Awesome DNS
(trilema) mircea_popescu: sooo apparently a mpex proxy (mpex.co) got dns hijacked ?
(trilema) mircea_popescu: cazalla: it was good for seeing if dns refreshed elsewhere as i've been waiting ages on my own connection <<< i love browsershots for this purpose.
(trilema) mircea_popescu: cazalla:hanbot, amusingly, once you navigate the new menus to change the dns, you get access to the old interface although it's heavily wrapped with the new one << takes a bunch of scripting to transaform new pos back into old thing but it can be done.
(trilema) cazalla: it was good for seeing if dns refreshed elsewhere as i've been waiting ages on my own connection
(trilema) cazalla: hanbot, amusingly, once you navigate the new menus to change the dns, you get access to the old interface although it's heavily wrapped with the new one
(trilema) gribble: Why everything you think you know about DNS is entirely wrong pe ...: <http://trilema.com/2014/why-everything-you-think-you-know-about-dns-is-entirely-wrong/>; [Direct] BTC Growth - Forex Volatility Focus - Bitcoin Forum: <http://trilema.com/wp-content/uploads/2014/04/mulhauser.html>; Ycombinator continues to suck, jointly and severally pe Trilema - Un ...: (1 more message)
(trilema) RagnarDanneskjol: ok me neither, flushed dns still no
(trilema) BingoBoingo: TheNewDeal: DNS is repropagating
(trilema) kakobrekla: not all dns records were updated yet but i put that on anyway so it looks like its not my fault
(trilema) ADutchGamer: as in: just htis text: 'flush dns'
(trilema) ADutchGamer: I'm trying to catch up but all they show is flush dns
(trilema) dub: we can quibble over leap secodns
(trilema) bounce: *sigh* someone redirect dns.fail to icann.org
(trilema) gribble: Bitsquatting: DNS Hijacking without exploitation - dinaburg.org: <http://dinaburg.org/bitsquatting.html>; Bitsquatting - [media.blackhat.com] - Audio and Video from Black Hat: <https://media.blackhat.com/bh-us-11/Dinaburg/BH_US_11_Dinaburg_Bitsquatting_WP.pdf>; Examining the Bitsquatting Attack Surface - Cisco Blog: <http://blogs.cisco.com/wp-content/uploads/Schultz- (1 more message)
(trilema) ben_vulpes: stupid ipxcore dns mgmt
(trilema) ben_vulpes: cutting van dns over
(trilema) xmj: (use a proper browser and proper dns-based ad filtering solution and you won't have to deal with this shit.)
(trilema) ben_vulpes: to those whom it may concern: i'm cutting VAN's DNS over to a new server tomorrow morning.
(trilema) assbot: Why everything you think you know about DNS is entirely wrong pe Trilema - Un blog de Mircea Popescu.
(trilema) artifexd: http://trilema.com/2014/why-everything-you-think-you-know-about-dns-is-entirely-wrong/
(trilema) mircea_popescu: by zed.gendns.com with esmtps (UNKNOWN:DHE-RSA-AES256-GCM-SHA384:256)
(trilema) mircea_popescu: so that your nodes act as cjdns nodes too, help both projhects.
(trilema) benkay: <mircea_popescu> asciilifeform traffic should resemble people exchanging gpg messages maybe ? // run it over cjdns?
(trilema) dub: (i think its an artifact of mp having fucked up DNS for the old one somehow)
(trilema) FabianB: hm, dns lookup is 5 ms
(trilema) FabianB: dunno if i should cache it; on the other hand it's realistic, since clients make a dns lookup as well usually
(trilema) mircea_popescu: a the dns may be it yes.
(trilema) FabianB: since using mpex.bz instead of trade engine ip now it's doing a dns lookup
(trilema) mircea_popescu: damned dns finnickiness
(trilema) dub: # dig ns1.polimedia.us @ns11.gendns.com +short
(trilema) dub: 'gendns' doesnt have the records
(trilema) mircea_popescu: sooo... dns doesn't want to propagate ;/
(trilema) pankkake: more tlds is a small chance for less dns censorship
(trilema) mike_c: well, my end is. i don't think we ever got the dns right
(trilema) mod6: <+dignork> re: ATC, somebody has a live node? dns boostrap doesn't work << I'm asking about this in #altcoin
(trilema) moiety: i've changed the dns and stuff but i still need to do the ports
(trilema) dignork: re: ATC, somebody has a live node? dns boostrap doesn't work
(trilema) benkay: ^^ dns barker
(trilema) mircea_popescu: "Following the overtaking of Lees email, the attackers processed a password challenge, which then provided them with a list of all of the passwords that had been previously listed within the browser. They then retrieved Bitcoins Reserves domain register, and then proceeded to add another DNS record that gave them access through Google to the companys admin page for their apps account. "
(trilema) mike_c: that would be great.. not sure we ever got the dns sorted.
(trilema) pankkake: if only dns was a protocol with resiliency and caching built into it
(trilema) ThickAsThieves: antonopolous says DNS issues
(trilema) assbot: Millions of dynamic DNS users suffer after Microsoft seizes No-IP domains | Ars Technica
(trilema) asciilifeform: http://arstechnica.com/security/2014/06/millions-of-dymanic-dns-users-suffer-after-microsoft-seizes-no-ip-domains << 'your' dns - isn't.
(trilema) pankkake: otherwise, it's in my namecoin profile: http://oneid.io/pankkake http://dns.dnschain.net/id/pankkake
(trilema) assbot: No-IP's Formal Statement on Microsoft Takedown | No-IP Blog - Managed DNS Services
(trilema) FabianB: benkay: i do run a cjdns/hyperboria node in nyc
(trilema) benkay: is anyone running a cjdns node?
(trilema) FabianB: "rewrite the tcp/ip stack so that all traffic is encrypted" <-- as cjdns has done
(trilema) punkman: mike_c, only incidental experience with DNS stuff
(trilema) mike_c: how good are you at DNS :)
(trilema) davout: mircea_popescu: "we heard you like dns, so we put a dns server in your dns server ..."
(trilema) mircea_popescu: reading the logs, you bunch have been at this "let's fuck up dns" for a while by now huh
(trilema) punkman: "It is important to know that NS records are only responsible for defining the names of DNS servers within a zone, i.e. they do not represent IP addresses,"
(trilema) mircea_popescu: and speaking of which, now that mike_c is up he's prolly going to put bitcoin in once he's done destroying altcoin dns
(trilema) davout: mike_c: so what fqdns is your server going to resolve ?
(trilema) pankkake: seeds. has to be served by the self updating dns server
(trilema) mircea_popescu: ahahaha the interpretive dns dance! round robbin! the nut cracker!
(trilema) ThickAsThieves: i could not have guessed that DNS would be an interpretive thing...
(trilema) pankkake: the "format" for the altcoin client is a DNS reply
(trilema) assbot: dns - Can the value for a NS record be an IP address? - Server Fault
(trilema) davout: ThickAsThieves: it's very weird that your subdomain doesn't seem to have an associated nameserver when asking without asking dns1.registrar-servers.com
(trilema) punkman: davout, dig -t ANY seeds.therealaltcoin.org @dns1.registrar-servers.com
(trilema) davout: golden rule when fucking with dns : "test after changing the configuration, never before, or you'll be stuck with shit being cached"
(trilema) mircea_popescu: davout no dude he knows remotely the situation of dns in paris
(trilema) davout: there's no such thing as "the dns for paris" :D
(trilema) davout: dns caching is a bitch
(trilema) gribble: Wildcard DNS record - Wikipedia, the free encyclopedia: <http://en.wikipedia.org/wiki/Wildcard_DNS_record>; How can I set up a catch-all (wildcard) subdomain? (DNS Questions ...: <https://www.namecheap.com/support/knowledgebase/article.aspx/597/46/how-can-i-set-up-a-catchall-wildcard-subdomain>; Is a wildcard CNAME DNS record valid? - Server Fault: (1 more message)
(trilema) mircea_popescu: ;;google dns catchall
(trilema) ThickAsThieves: alright so basically i need to add all the DNS records that were in the host before, to the changed to nameserver, right?
(trilema) TomServo: Is that your DNS server?
(trilema) pankkake: you can ask the responsible dns server directly, bypassing ISP caches
(trilema) ThickAsThieves: how do i know if it's working, does an NS record show up on whatsmydns.net?
(trilema) punkman: not DNS1.NAMECHEAPHOSTING.COM
(trilema) punkman: maybe the hosting account menu has something about dns?
(trilema) punkman: do you see a link on the menu that says "Transfer DNS Back to Us"?
(trilema) ThickAsThieves: i shoulda just used my own DNS
(trilema) ThickAsThieves: i was only there as a last resort, cuz the DNS secrtion only allowed TXT or CNAME
(trilema) assbot: Which record type option should I choose for the information Im about to enter?(DNS Questions) Namecheap.com Knowledgebase
(trilema) ThickAsThieves: <+mike_c> so ThickAsThieves, if you put a nameserver record in your DNS (NS, not an A record) pointing seeds.therealaltcoin.org at 54.197.241.190 // Having trouble finding where to do this in Namecheap... bear with me
(trilema) mike_c: so ThickAsThieves, if you put a nameserver record in your DNS (NS, not an A record) pointing seeds.therealaltcoin.org at the above IP address, we should have seeding.
(trilema) ThickAsThieves: <+mike_c> you add a bunch of A records in the DNS for active nodes. i'll let you know.// ah, i assumed i needed to place some sort of text file at the domain to get picked up, but i am somewhat comfortable with DNS so I can do that too if needed
(trilema) mike_c: you add a bunch of A records in the DNS for active nodes. i'll let you know.
(trilema) mike_c: sure, it's not a web page though, it's a DNS thing
(trilema) fluffypony: mike_c: dnsseeds don't work that way
(trilema) assbot: Network Tools: DNS,IP,Email
(trilema) gribble: #bitcoin-assets +m pe Trilema - Un blog de Mircea Popescu.: <http://trilema.com/2014/bitcoin-assets-m/>; Why everything you think you know about DNS is entirely ... - Trilema: <http://trilema.com/2014/why-everything-you-think-you-know-about-dns-is-entirely-wrong/>; Ca tot… sa tras tot sa fumat tot sa baut tot cum e peste tot ... - Trilema: <http://trilema.com/2014/ca-tot-s-a-tras- (1 more message)
(trilema) gribble: #bitcoin-assets +m pe Trilema - Un blog de Mircea Popescu.: <http://trilema.com/2014/bitcoin-assets-m/>; Why everything you think you know about DNS is entirely ... - Trilema: <http://trilema.com/2014/why-everything-you-think-you-know-about-dns-is-entirely-wrong/>; Ca tot… sa tras tot sa fumat tot sa baut tot cum e peste tot ... - Trilema: <http://trilema.com/2014/ca-tot-s-a-tras- (1 more message)
(trilema) benkay: no man i swear there's something weird in the dns
(trilema) CryptoConsultor: isn't namecoin tied to decentralized DNS?
(trilema) mircea_popescu: against the dns ? nah. the fbi.
(trilema) mircea_popescu: if that's done away with, dns may even survive as a going concern
(trilema) mircea_popescu: the fact that organised scammers can currently steal domain names is the most important vector of attack reducing the credibility of the dns system
(trilema) dub: DNS needs oversight
(trilema) mircea_popescu: Naphex: whats wrong with DNS << that you didn't document your thing.
(trilema) Naphex: whats wrong with DNS
(trilema) fluffypony: speaking of DNS
(trilema) fluffypony: definitely DNS round robin borking
(trilema) fluffypony: so DNS round robin
(trilema) mircea_popescu: this is some fucking dns absurdity in here
(trilema) Naphex: mircea_popescu: regarding DNS2address resolve for bitcoin, i am setting up an updated example that includes support for BIP32 xpub keys for address derivation
(trilema) Naphex: morning, fluff`, did you check out my working example for addresses? complete with dnssec, and server pubkey?
(trilema) mircea_popescu: dns serves no useful purpose for mpex.
(trilema) mircea_popescu: i couldn't need a dns less : you know where to send funds becasuse yu get a gpg signed deposit slip.
(trilema) Naphex: and you keep your own dns, your own zonefile
(trilema) mircea_popescu: so from dns.
(trilema) Naphex: addresses.btcxchange.ro has DNSKEY record 257 3 13 hTj/xt+OErAHwCrCY7LKmkO9HhS4RG9c4yW2gowo8I2dwCGRkpbLE1b6 BJrA+4TGJcbdKfFWoT7dpK/zJPzgIg==
(trilema) Naphex: 1 way, # host -t dnskey addresses.btcxchange.ro
(trilema) Naphex: pub key directory, from service site, or from dns
(trilema) Naphex: by whichever dns resolves it
(trilema) mircea_popescu: so i'm dns, i replace all of them.
(trilema) Naphex: DNS
(trilema) ozbot: # dig +dnssec +multi @pluto.btcxchange.ro txt naphex.addresses.btcxchange.ro - Pastebin.com
(trilema) Naphex: creating a dns alias would go like this 1.get your server's pub ksk, 2. sign message of domain dnssec-ksk, 3. add record containing issuer
(trilema) Naphex: DNSKEY record 257 3 13 hTj/xt+OErAHwCrCY7LKmkO9HhS4RG9c4yW2gowo8I2dwCGRkpbLE1b6 BJrA+4TGJcbdKfFWoT7dpK/zJPzgIg==
(trilema) Naphex: # host -t dnskey addresses.btcxchange.ro 127.0.0.1
(trilema) Naphex: signature includes DNSSEC KSK key
(trilema) mircea_popescu: on one hand, having a third party involved in any bitcoin transaction, in any way, is breaking the protocol. on the other hand, the pki/dns infrastructure is beyond rotten. tying it into any sort of live project is like taking a spleen off a rotting cadaver and putting it into someone's gut.
(trilema) mircea_popescu: Naphex: you could just use google pub dns servers, and place some trust on them, they support dnssec << myeah. some people learned the hard way why not trust linode. it cost them 40k btc or so, linode offered a half-apology and $50 in vouchers.
(trilema) Naphex: mircea will like it cause you can use GPG directories/certs http://tools.ietf.org/html/draft-ietf-dnssec-certs-04#section-3.2
(trilema) Naphex: or another record field, where you can reverse associate the address to the specific dns signature
(trilema) Naphex: i'll build up a service and see if we can poke holes in it, dnssec sign each zone, and reverse/point fowards for the addresses
(trilema) Naphex: and dnssec setup if he wants to authenticate that data
(trilema) fluffypony: ok but for the sake of simplicity a person in control of their DNS records can just add a TXT record for themselves with their BTC addy + signature, right?
(trilema) Naphex: you can go dynamic on it using bip32 pub keys, or have custom dns software deliver unique addresses
(trilema) Naphex: but with dnssec you can move validation up
(trilema) Naphex: you could still stick to the dns and use x509/pki in the same way
(trilema) ozbot: Bitcoin DNS addresses
(trilema) ozbot: Supply Bitcoin addresses in DNS records
(trilema) Naphex: you could just use google pub dns servers, and place some trust on them, they support dnssec
(trilema) Naphex: well you can do dnssec and stuff
(trilema) fluffypony: if a malicious person runs a DNS server
(trilema) Naphex: i meant someone hopping on your dns server and just setting all addresses to his:p
(trilema) fluffypony: no wait nm, I just twigged what you meant wrt dns spoofing
(trilema) fluffypony: Naphex my DNS knowledge is spotty
(trilema) Naphex: to prevent dns spoofing
(trilema) mircea_popescu: prolly runs you through crappy local dns servers
(trilema) fluffypony: although it is multicast so I dunno, ZA DNS providers are just slow and stupid
(trilema) Duffer1: 1MatthewNWrightisaScammer124DNsfX