Heads up to relay operators, this may be some kind of attack.
I recieved a DMCA infringment notice on my relay from "Travis Garner" of Amazon Content Services LLC.
Discussion
[mike@brindylln Desktop]$ dig javzero.xyz
; <<>> DiG 9.18.13 <<>> javzero.xyz
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20310
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;javzero.xyz. IN A
;; ANSWER SECTION:
javzero.xyz. 300 IN A 104.21.24.168
javzero.xyz. 300 IN A 172.67.219.192
;; Query time: 46 msec
;; SERVER: 8.8.8.8#53(8.8.8.8) (UDP)
;; WHEN: Fri Apr 28 14:26:47 NZST 2023
;; MSG SIZE rcvd: 72
Spewing out fake DMCA notices could probably be used as a form of DOS attack. Vultr said I have 24 hours to respond or they will stop the server. Nearly missed the email too.
curl to the IP address with a Host header does NOT confirm that is where the site is hosted. If vultr passed this on to you, they passed on nonsense/spam/abuse/harassment. They ought to have checked it first.
Yeah I sent them another reply after my first one basically saying if they waste my time with this again I'll move my servers elsewhere.
This is completely bogus. Notice that they entered “LCC”, instead of LLC, and that “Travis”’s email isn’t @amazon.com.
It's phishy