So you would think that they would try to avoid getting phishing sites hosted on their servers.
You know, doing the easy stuff. Like preventing people from creating new hosts with names like "pay-pal-redirect"? Or perhaps every now and then scanning user-created content to find obvious copies of eBay or PayPal login pages?
But apparently they aren't doing this. With a few trivial searches you can find several PayPal phishing sites on Tripod:
Some examples of sites that were active this morning: