Bear in mind though that when the M$ SQL Slammer worm hit everyone, the same
attitude existed. The patch had been available for months. People knew
about the vulnerability and it wasn't anything "new".
And yet, look how much havoc was created there. It's always the "potential"
stuff that scar
And quite honestly, we can probably be pretty safe in assuming they will not
be running IPv6 (current exploit) or SNMP (older exploits) or BGP (other
exploits) or SSH (even other exploits) on that box. :) (the 1601 or the
2500's)
But, in the advisory that Cisco put out, it did mention free soft
Based on some pictures from
http://tomsnetworking.com/Sections-article131.php I would agree with you
that they were edited.
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Florian Weimer
Sent: Saturday, July 30, 2005 1:42 AM
To: Brad Knowles
Cc: NA
I think just about everyone's got reset. Internal and external folks from
what I've heard. *shrug*
On the other hand, people aren't usually good about resetting passwords, so
that's one way to mitigate problems. :)
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROT
No, it means that the password scheme of whatever the web-site uses to allow
access or not is not directly a Cisco product. It means it's something that
could happen to anyone.
One could have a great network of great products and all it takes is one
small door to remain open someplace in a seemi
Tags are simply a way to mark the routes. Typically people will do it if
they have multiple redistribution points (or if someone tells them to set a
tag).
Depending on the complexity of the network, tags are used for many different
reasons, but those are all "internal" reasons to a company unles
How about the source IP?
RIP v1 is sent to 255.255.255.255 broadcast. RIPv2 is sent to 224.0.0.9
multicast. Both are local-link only, so won't go THROUGH a router. The
sending source IP will tell you where they came from.
If you're using VLANs (trunks), there won't be any issues. If you're u
Works fine for me.
*shrug*
www.ual.com also forwards
appropriately.
Scott
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of John PalmerSent:
Thursday, September 01, 2005 1:55 PMTo:
nanog@merit.eduSubject: UNITED.COM (United Airlines) has been down
for days! Any info on
The problem with that (and many premises) is that we need to remember these
arguments and foreseen "problems" were all dreamed up 10 or so years ago.
The status of everyone's network, everyone's business needs and everyone's
network design (and capabilities) were drastically different that long ag
It appears they're really down. I just tried 'em, and the IP address that
comes back really does resolve to Ebay's holdings
Or someone scammed a whole /19 to make the whole thing up, in which case I
have to hand it to 'em! Compromising one host is dandy, but a whole
netblock is pretty damne
There was a 3.0 PDLM release on 11/1/05 for Bittorrent traffic. See
http://www.cisco.com/cgi-bin/tablebuild.pl/pdlm
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ejay
Hire
Sent: Thursday, December 01, 2005 8:41 AM
To: 'Kim Onnel'
Cc: 'NANGO'
S
So when the majority of people begin using a different operating system, is
there some reason that the majority of virus-writers or other malcontents
wouldn't focus on the flaws there?
Or are we stuck in this little bubble thinking that unix REALLY is THAT
secure?
Perhaps it is, but my viewpoint
As much as it pains me to say, I'm sure there is a little difference when it
comes to some of the big domains.
1. It doesn't take any rocket scientist to sit back and say "U... I
really don't think this is a legit move" without a lot of thinking!
2. If a lawyer for AOL or MS or some reall
Perhaps it varies by state, but I thought part of the E-911 service
regulations was that if you were offering (charging) for it, you had to
offer it as "lifeline" service which meant it had to survive power outage.
*shrug*
I guess the original regs weren't written with these things in mind!
Sc
built-in backup batteries. How does the power consumption profile of a VoIP
adapter compare to, say, a cellphone?
What would this add to the cost of the device, and how long could the
battery last?
-C
On Mar 3, 2005, at 10:25 PM, Scott Morris wrote:
>
> Perhaps it varies by state, but I though
None of the routers that are tested in the lab are capable of supporting a
full BGP feed
If you just want to play with BGP stuff, you can use Zebra (unix) or go to
www.nantech.com and get their BGP4WIN program.
That may help you a bit more.
Scott
-Original Message-
From: [EMAIL PR
-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Scott Morris
Sent: Wednesday, April 20, 2005 8:42 PM
To: 'Nathan Ward'; nanog@merit.edu
Subject: RE: Getting a BGP table in to a lab
None of the routers that are tested in the lab are capable of supporting a
full BGP fe
Closing people's systems down from "any" other software installations isn't
necessarily the solution. It can delay progress in many cases, and not
everyone has IT staff that may be as up to speed as necessary.
The requirement should be more along the lines of software designed to scan
the system
We could have been much better served adding 3-bits at the beginning.
Effectively giving a full IP v4 space to every continent (even Antartica)
and having an extra one for the extra-terrestrial working group. ;)
And it would have given us real geographic-based filtering capabilities at
the same
Scott
-Original Message-
From: Andre Oppermann [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 30, 2005 5:27 PM
To: [EMAIL PROTECTED]
Cc: 'Fergie (Paul Ferguson)'; [EMAIL PROTECTED]; nanog@merit.edu
Subject: Re: OMB: IPv6 by June 2008
Scott Morris wrote:
> We could h
But he DID make it more feasible and useful. And he DID throw thousands of
them away!
;)
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jay
R. Ashworth
Sent: Sunday, July 03, 2005 10:07 PM
To: nanog@merit.edu
Subject: Re: Fundamental changes to
Without getting into the entire conceptual argument about
capitalism in general and why some semi-sane economic decisions are
made... What is it that makes you think that boycotting a company
(particularly one the size or deployment of Cisco and/or Juniper) would make
someone say "oh, I'm s
You can't logically, in the same e-mail talk about Cisco wanting to dominate
a new/growing market (e.g. would account for new jobs, new stuff, new monies
previously unseen) and then talk about Bush (or whomever) getting money from
this and not caring therefore screwing US workers.
If it's a new m
Now perhaps this is a little off, but given the logic that you suggest his
mention of He Who Had a Short Mustache might be offensive (by merely
mentioning the name)... Aren't you therefore guilty of the same offensive
violation? Gratuitous mentioning does imply that there is a context, and
the c
2:05 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: Another one bites the dust
On Thu, 14 Oct 2004 13:26:55 -0400
"Scott Morris" <[EMAIL PROTECTED]> wrote:
> Bear in mind, I apparantly haven't paid attention or noticed any of
> his past behavior that m
Oh, how festive. Anyone got that "Bill (Gates) Blocker" filter ready? :)
Left to their own devices, congressmen should NOT be allowed to write bills
about things they don't understand. Well... Ok, that's too restrictive.
No bills would ever get written.
We'll still see the same problems co
I want the MP3 of the theme song to the game! ;)
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Martin J. Levy
Sent: Friday, October 22, 2004 1:17 AM
To: 'Brian Wallingford'; 'Bill Woodcock'
Cc: [EMAIL PROTECTED]
Subject: RE: Okay, I'm just goi
We see it all the time...
It's call "percussive maintenance" !!!
It's actually Step 4 in TAC's escalation procedures! (smirk)
Scott
-Original Message-
From: Chris Moody [mailto:[EMAIL PROTECTED]
Sent: Monday, October 25, 2004 12:40 AM
To: Scott Morris
Cc:
Tcp/1719 is part of the H323 Gatekeeper default ports (which can be changed)
Tcp/1720 is the H.225 call setup port, and I haven't heard of this being a
configurable port.
HTH,
Scott Morris, MCSE, CCDP, CCIE4 (R&S/ISP-Dial/Security/Service Provider)
#4713, JNCIP, CCNA-WAN Switch
Does that mean if we rip them off that we may be prosecuted?
;)
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Kevin Loch
Sent: Friday, November 19, 2004 1:41 PM
To: [EMAIL PROTECTED]
Subject: Re: Stupid Ipv6 question...
Leo Bicknell wrote:
>
ssage-
From: Dan Mahoney, System Admin [mailto:[EMAIL PROTECTED]
Sent: Friday, November 19, 2004 2:12 PM
To: Scott Morris
Cc: 'Kevin Loch'; [EMAIL PROTECTED]
Subject: Re: [nanog] RE: Stupid Ipv6 question...
On Fri, 19 Nov 2004, Scott Morris wrote:
No, nobody ever reads that tag. I
While the concept of classes has changed, I'm not so sure that I agree with
the complaint here...
Everything I've seen about the multi TLA/SLA concepts always seem to leave
64 bits at the end for the actual host address, so it would be a logical
step at that point to have the ASICs spun so that 6
You make it sound like the politics involved in a regulatory/governed
setting are different than those involved in a commercial setting. In the
end, it's all about economics.
I think the UN has enough trouble managing the things it attempts to manage
right now. Don't let them try to be technica
3 bits as a prefix would work perfectly fine IMHO.
This gives us an entire 32-bit space PER CONTINENT. As I noted before I
don't think the penguins really need that many Ips in Antartica, but that
could always be set aside. In addition, there's an extra set (only 7
continents at last count) for
In the interconnected world, geography is very much irrelevant to best path
routing. It's all about speeds and feeds where a local-access T-1 is
obviously not preferable to a cross-country OC-3.
Sounds nice on paper, but isn't really where things are at these days. Now
on the other hand if band
lf Of
Iljitsch van Beijnum
Sent: Tuesday, November 30, 2004 2:55 PM
To: NANOG list
Subject: Re: Sensible geographical addressing [Was: 16 vs 32 bit ASNs yadda,
yadda]
On 30-nov-04, at 16:29, Scott Morris wrote:
> In the interconnected world, geography is very much irrelevant to best
> path rou
lf Of
Iljitsch van Beijnum
Sent: Tuesday, November 30, 2004 7:01 PM
To: [EMAIL PROTECTED]
Cc: 'NANOG list'
Subject: Re: Sensible geographical addressing [Was: 16 vs 32 bit ASNs yadda,
yadda]
On 30-nov-04, at 23:32, Scott Morris wrote:
> At large NAP points (the higher order ISP's) t
Not to mention that many IP's may be set to one device, yet there are
multiple things NAT'd behind it.
Perhaps they're even non-related folks. Do we go after the ISP, the smaller
ISP, the Starbucks WiFi hotspot (example), or the user with the compromised
laptop that plugged in a whatever time t
, December 26, 2005 2:47 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; nanog@merit.edu
Subject: Re: Infected list
* Scott Morris:
> Not to mention that many IP's may be set to one device, yet there are
> multiple things NAT'd behind it.
Are there any devices which perform non-st
Many products have default STARTING passwords. Whose fault is it that
someone can't figure out that it's not real bright if they don't change it?
The hidden ones are more an issue (with static passwords as opposed to
generated ones).
Scott
PS. If your briefcase still uses as the combinat
If you're treating them as two separate links (e.g. two POPs, etc.) then
that's correct, it'll be done by the routers choice of load-balancing (L3).
If you are going to the same POP (or box potentially) you can do MLPPP and
have a more effective L2 load balancing.
Otherwise, it's possible to get
arate vendors.
*shrug*
Scott
-Original Message-
From: Elijah Savage [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 24, 2006 8:20 PM
To: [EMAIL PROTECTED]
Cc: 'Matt Bazan'; nanog@merit.edu
Subject: Re: T1 bonding
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Scott Morris wrote:
&
So while this may look nice and sound good and all that, I hate to ask the
obvious question... Who is going to obtain the authority and/or balls to
take everyone's currently allocated IP addresses away and start over?
Perhaps I missed something in an earlier discussion, but this to me sounds
lik
The isolated grounds are definitely a recommended idea for telco/server
rooms... Perhaps an array of them depending on the size power feed we're
talking about. I'm assuming it's a sizeable UPS that runs your telco and
data equipment (or small server room). The irritation, if you haven't done
th
Not that I have a whole lot to add (other than we're spending lots of time
talking about something only affecting UK --:> US flights at this moment)...
But I was intrigued by your latin there.
"E-mail rest in peace?
A cause does not create/allow action? "
My memories from high school are a tad
My whois program returns:
97.81.31.19
Host unreachable
97.81.24.0 - 97.81.31.255
Charter Communications
12405 Powerscourt Dr.
St. Louis
MO
63131
United States
IPAddressing
+1-314-288-3889
[EMAIL PROTECTED]
Abuse:
+1-314-288-3111
[EMAIL PROTECTED]
KNG-TN-97-81-24
Created: 2007-04-11
Updated:
Routing in general is based of the premise of "my decision, my control" and
therefore you have some (albeit limited) controls about how YOU can
influence someone else's routing decision.
So any time you have more than one connection to the collective ('Net) then
you simply run the risk of you mak
And unless you are on only certain particular devices (e.g. L3 switches)
then the end device won't necessarily have any relevant clue what VLAN it's
on.
I have never seen/heard of an RFC for it either and would certainly wonder
"WHY?". :)
Scott
-Original Message-
From: [EMAIL PROTECTE
You mean do you have to express it in hex? The original spec allowed both
ways I believe... but just so you realize, this has been deprecated.
Mostly 'cause people can't subnet. :)
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
snort bsd
Sent
But they clearly have too much time on their hands. Whodathunkit?
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Suresh Ramasubramanian
Sent: Tuesday, October 10, 2006 10:51 AM
To: Fergie
Cc: [EMAIL PROTECTED]
Subject: Re: Broadband ISPs taxed for "ge
It sounds like government work! When something doesn't work, they just make
numbers up! (Just be sure to create more plausible numbers next time!
(smirk))
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Geoff Huston
Sent: Sunday, November 12, 2
So we're saying that a lawsuit is an intelligent method to force someone
else to correct something that you are simply using to avoid the irritation
of manually updating things yourself???
That seems to be the epitomy of laziness vs. litigousness.
Scott
-Original Message-
From: [EMAIL
Works fine for me.
And a 403 Forbidden is a web server error, not a resolution error if I
remember right.
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mike
Tancsa
Sent: Wednesday, January 03, 2007 11:35 AM
To: James Baldwin; [EMAIL PROTECTED]
It's called cable lacing... And CO guys have done it forever. Looks really
pretty, but it's a pain in the butt to do. :) And sucks if you have to rip
a cable out to replace things.
Other than that, check out:
http://www.dairiki.org/hammond/cable-lacing-howto/
Cheers,
Scott
PS. A really g
HAHAHAHAHA I always knew that this stuff was the most prevalent and
billable content on the web, but I never thought of using it as a motivating
factor for chage!
Good one!
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Stephane Bortzmeyer
Sen
They could always configure destination-based NAT and perhaps "assist" by
allocating 10/8 space for those networks if they so choose to reach them!
(smirk)
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Joseph S D Yao
Sent: Monday, April 16, 2
There are a few books out there that will give mention of IPv6
configurations, but most are vendor-specific as far as I have seen.
Cisco and Juniper both have at least modules (if not full courses) on IPv6.
Each is obviously not vendor-agnostic. Something could always be customized
to cover what
57 matches
Mail list logo
