🚨 COCK.LI IS ON RED ALERT.

[JoshPlz]

KF is hosted in the US and to my knowledge always was (however I am new), a few years ago Null tried looking for another country he could host KF but couldn't find anywhere better.

You may be right as far as the actual backend hosting goes. I don't remember if that was ever hosted anywhere outside of the US. But during DropKiwiFarms and several times after, it was necessary to host the frontend, NS servers and domains (.net still links to .st even now) on all kinds of different international services. Sometimes for months at a time. Same with DDoS mitigation and upstream providers. Null was just throwing mud against the wall to see what sticks for a while.

The result was this thread:

https://kiwifarms.st/threads/nulls-tier-list-for-internet-services.129513/

 

[you's you a you you]

Breaking: Far-Right E-Mail Provider "Cock.li" Purchased By The Onion & Turned Into Gay Satire Site "Cockly" After Court Order

 

[Jump]

https://mail.cock.li is back on normienet.

I'm not going to jump ship if they are going to keep fighting.

 

[Psychonaut]

I honestly think that setting up your own E-Mail Server is for the best, I would rather have to deal with taking care of its security and hosting than having to switch E-Mail Providers only for those Mail Providers or Feds having to fuck you over & over again. The only issue is that I think no one in this forum has experience of hosting a private or public server, all I know so far from what I can gather is that in order to host your own E-Mail server you have to.

1. Purchase a domain
2. Purchase an Ubuntu Server from places like INCOGNET or Rumble Cloud
3. Download Mail Software's like Mail-in-a-Box or Mailcow
4. Set it up
5. Setup the its security from its Mail Software to the Server itself, and your Domain

That is from what I can gather. Again I have no experience of setting up an E-Mail Server.

 

[Hexadecimal Machine]

I honestly think that setting up your own E-Mail Server is for the best, I would rather have to deal with taking care of its security and hosting than having to switch E-Mail Providers only for those Mail Providers or Feds having to fuck you over & over again. The only issue is that I think no one in this forum has experience of hosting a private or public server, all I know so far from what I can gather is that in order to host your own E-Mail server you have to.

1. Purchase a domain
2. Purchase an Ubuntu Server from places like INCOGNET or Rumble Cloud
3. Download Mail Software's like Mail-in-a-Box or Mailcow
4. Set it up
5. Setup the its security from its Mail Software to the Server itself, and your Domain

That is from what I can gather. Again I have no experience of setting up an E-Mail Server.

Years of hacked-on specifications and security policies make it incredibly difficult to self-host your own email service without getting anally raped by every primary email service. It is far from a relatively simple process. You have to account for shit like DKIM, DMARC, SPF, and shit like postfix is difficult to properly configure. God forbid one thing is slightly off, then you have to troubleshoot why you aren't getting or able to send any mail. Don't expect anything to tell you why either.

There is a reason why individual-hosted email services are few and autistic: It takes autism to host and maintain one.
Source: I host a public one.

 

[Tismguide]

why you aren't getting or able to send any mail.

I think this mostly applies to you sending mail. The primary providers seem to be happy to deliver mail to wherever the DNS record points. Autism isn't required to run a simple dovecot IMAP server to receive mail, merely Asperger's.

Of course, if you want to actually send email, you are indeed fucked, and an account that can only receive email isn't really useful for much. It would at least let you do account recovery at a place like this, but if your goal is anonymity, it's probably harder to get a server (and a DNS record) than an email account that isn't attached to your identity.

There's also mailinator and similar. Some sites block it but surprisingly many don't. You probably don't want to use it as a recovery email though lmao.

 

[UNIXLover]

It's back up, but the canary hasn't been updated since the beginning.

 

[⠠⠠⠅⠑⠋⠋⠁⠇⠎ ⠠⠠⠊⠎ ⠠⠠⠁ ⠠⠠⠋⠁⠛]

It's back up, but the canary hasn't been updated since the beginning.

The PGP signed version was updated today. But only at the end:

~!~

LIBERTY CANARY
Date updated: 2024-11-19

Cock.li is in 100% control of all of its hardware, and the service is still operating normally. The website (account registration+pw change) is currently offline.

Cock.li will shut down before becoming complicit in crimes against its own userbase under duress of any government or organization.

Cock.li is not under duress of any government or organization.

Until further notice, THIS CANARY SHOULD BE UPDATED DAILY. Under no circumstances will we let this canary go 48 hours without changing the "Date updated" above unless a PGP-signed message changes the schedule.

The schedule or PGP key used to sign this message may be changed only according to signed message from key 5CB49CDCEAC797FBF8BDC074FD71AD2771A5CC1B. Any message certifying the change of PGP key should be displayed alongside all messages signed with the new key for at least 7 days.

~!~

(It was updated the day before, as well, if you look at the archive.is archives)

https://cock.li/index.asc.txt

https://archive.is/KPzHX

Signature checks out:

mahmadi@t440:~/Downloads$ gpg --verify index.asc_19.txt
gpg: Signature made Mon 18 Nov 2024 22:05:25 PST
gpg:                using RSA key 5CB49CDCEAC797FBF8BDC074FD71AD2771A5CC1B
gpg:                issuer "vc@cock.li"
gpg: checking the trustdb
gpg: marginals needed: 3  completes needed: 1  trust model: pgp
gpg: depth: 0  valid:   1  signed:   1  trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 1f, 0u
gpg: next trustdb check due at 2024-12-17
gpg: Good signature from "Vincent Canfield <vc@cock.li>" [full]

 

[Psychonaut]

Source: I host a public one

Is it a bit easier if you host a private one?

 

[Internet Brain Rot]

"I LOVE YOU LADAR LEVISON" (Lavabit creator) has been removed from the canary:

$ diff index_11-18.asc index_11-19.asc

...

82,85d82
<
< ~!~
<
< I LOVE YOU LADAR LEVISON

 

[Hexadecimal Machine]

Is it a bit easier if you host a private one?

It's really no different. You still have to account for all the security shit if you want to send any email anywhere, and you have to make sure your server can't be used as a relay when you don't want it so bots don't send spam through it. All that has really changed is who you've given access to.

 

[Psychonaut]

It's really no different. You still have to account for all the security shit if you want to send any email anywhere, and you have to make sure your server can't be used as a relay when you don't want it so bots don't send spam through it. All that has really changed is who you've given access to.

I guess from my point of view coming from all of this is that E-Mail is extremely outdated. I personally think that E-Mail needs to rebuilt from scratch like E-Mail 2.0.

 

[Hegaylian Dialolctic]

I guess from my point of view coming from all of this is that E-Mail is extremely outdated. I personally think that E-Mail needs to rebuilt from scratch like E-Mail 2.0.

Funny enough, the IETF is kind of trying to do that right now:
- Revision of Core Email Specifications
- Structured Email
- JSON Mail Access Protocol

...but it is the IETF so expect countless rounds of revision and infighting until something there garners attention from normies or some giant like Google or Microsoft swoops in and starts actually implementing it.

 

[Frenzy of Sharks]

Just remember, CISA was something that was created during the Trump administration (Trump wanted this).

I know some people have hopes for Trump and the Internet but honestly I just think he will crack down on websites and online services that are popular with gray hats and black hats on the Internet.

It doesn't help that Elon Musk is on Team Trump now where he may push for the Republicans and Trump to enact harsher revisions for the Computer Fraud and Abuse Act of 1986 (because Elon Musk doesn't like doxing and detest hackers).

Today is Cock Mail, tomorrow it could be another one.

https://mail.cock.li is back on normienet.
View attachment 6659834
I'm not going to jump ship if they are going to keep fighting.

Just because it's back online doesn't mean they're out of the woods.

It's clear the feds want Cock Mail gone (otherwise they wouldn't be going after them).

If you're aware of the Russian hacker group Evilcorp (although they go by many names), the feds managed to take down their domains used for the ransomware known as LockBit and while LockBit is still online it's clear that the walls are closing in on them (the same thing happened with websites like Raid Forums and WeLeakInfo back in the day); Cock Mail and other similar services and websites that provide a service to gray hats and black hats are on borrowed time.

If the feds are coming after someone, then they will be willing to spend hundreds of millions of dollars to catch them. I'd say just jump ship because it probably won't be long until we see the Seizure banner on Cock Mail sooner or later.

 

[Sphere of Many Eyes]

I'm sorry but... COCK.li?

 

[Frenzy of Sharks]

What do they mean when they say 'being complicit in crimes against it's userbase'? What's the actual issue they're having with CISA? Can someone who actually knows what the fuck is going on give me a rundown in plain english?

The likely reason, it's a popular service used by skids, gray hats, and black hats that engage in nefarious activities on the Internet.

That may be true if you are running anything entirely normal and unoffensive. For websites like Kiwi Farms and cock.li, the lawlessness in shithole countries may be the only way to host at all. I don't know know if that was the reason for cock.li, but it certainly was/is for KF.

Interesting information about who may be their host, though. I hope they get named & shamed if true.

Even then, that's not a bulletproof option either.

If a website is hosted in a lawless shithole country (like Somalia) or in a country that is anti-West (like Russia or Venezuela or Belarus) then that part of the Internet will be subject to heavy economic sanctions and being put on watchlist by the three letter agencies (this has already happened with Yandex being sanctioned and the Linux Project being forced to cut their ties with Russian coders).

If tomorrow Null is forced to host Kiwi Farms in a different country that is outside of the developed world; he'll keep the website up but at the same time be put on several government watchlists where unmarked surveillance vans will be outside of his house and FBI agents will watch his every move.

The American government have already seized various American domains that had connections to Russian state actors this year; so if Null were to host Kiwi Farms in a country that is anti-West or lawless then he would be put on a watchlist and even potentially get arrested for doing business with a country deemed a hostile foreign power by the American government and other Western countries for that matter.

I also seriously doubt Trump would support any online platforms that do business with America's foreign enemies anyway.

 

[Internet Brain Rot]

New canary update:

Everything was down for about 24 hou-MULTIPLE DAYS AND COUNTING due to upstream datacenter outage affecting DNS, and the disk *disappearing* when the host came back. Uh oh.

A bit vague. Was it a technical issue, or was the disk seized? Has it reappeared yet? Is it another situation like this?

We recently had to fly someone to another country and hire a private investigator to track down a disappeared host who refused to allow us any access to our disks while he had them plugged into his computers to try to crack into them.

Webmail has been available this whole time through Tor as far as I'm aware, so this wasn't enough to take down anything important. Maybe there are redundant disks in place, or this disk was for something else?

 

[Frenzy of Sharks]

New canary update:

A bit vague. Was it a technical issue, or was the disk seized? Has it reappeared yet? Is it another situation like this?


Webmail has been available this whole time through Tor as far as I'm aware, so this wasn't enough to take down anything important. Maybe there are redundant disks in place, or this disk was for something else?

It sounds like the disk got seized and is likely in the hands of some FBI forensics lab, I'm sure of it.

So assume Cock Mail has been compromised and you should consider other options for an email provider now.

 

[SentinentCloud]

cock lol

cock li lmao

 

[NOT Sword Fighter Super]

Wasn't Monero the reason this site is listed as a maleware threat?

Hey, let me finally register an email account and I'll donate.