Re: Enable BIND cache server to resolve chinese domain name?

On Mon, 4 Jul 2005, Paul Vixie wrote: for those excellent readers who didn't follow this, here's an excerpt from : [skip] what this means is, it can't conflict with ICANN data other than that if ICANN deletes something it might not show up in ORSN.

Re: Need BOGIES list

On Wed, 6 Jul 2005, Geoff White wrote: Hello All. I'm having trouble with Cracking Attempts and DoS attacks from a lot of places in China :) My client doesn't do any business in that region so they don't mind If I block the entire sub-continent :) Does anyone have a bad-guy list (or part of

Re: boycotting peers (was Re: E-Mail authentication fight looming: Microsoft pushing Sender ID)

On Sat, 9 Jul 2005, J.D. Falk wrote: On 07/09/05, Todd Vierling <[EMAIL PROTECTED]> wrote: (I may believe in the principles here, mind you, but I'm far to small to make a point. A workable net-boycott absolutely requires that action be taken by a non-castrated 800lb gorilla.) Boyc

Re: The whole alternate-root ${STATE}horse

On Sat, 9 Jul 2005, John Palmer (NANOG Acct) wrote: Repeat after me - COLLISIONS ARE BAD! We all agree with that. But you can't avoid collisions with multiple namespaces. This is exactly why Internet needs IANA - to avoid collisions in TLD names, used ip addresses, protocol parameters, etc.

Re: Yahoo and Cisco to submit e-mail ID spec to IETF

On Mon, 11 Jul 2005, Fergie (Paul Ferguson) wrote: DKIM combines Yahoo's DomainKeys and Cisco's Internet Identified Mail, two e-mail authentication technologies developed separately, which the companies announced in June they would combine with the intention of licensing the resulting specific

Re: OMB: IPv6 by June 2008

On Tue, 12 Jul 2005 [EMAIL PROTECTED] wrote: On Tue, Jul 12, 2005 at 08:41:04AM +0300, Hank Nussbacher wrote: At 12:24 PM 11-07-05 -0400, Rich Emmings wrote: According to IANA, (http://www.iana.org/assignments/ipv4-address-space) MIT & MERIT are the two .edu /8 holders on the list. Stanf

Re: Yahoo and Cisco to submit e-mail ID spec to IETF

On Tue, 12 Jul 2005, Dave Crocker wrote: "Roaylty-free" does not mean it can be used by everyone. it would probably help to debate the licensing details when folks have looked at the specific language of the licensing agreement(s). Not being lawyer myself, it would probably help to know op

"ICANN Blog" about their Luxembourg meeting

I think some of you may find the following "blog" (article) by Kieren McCarthy an interesting read: http://www.theregister.co.uk/2005/07/13/icann_blog_tues/ --- William Leibzon Elan Networks [EMAIL PROTECTED]

Re: "ICANN Blog" about their Luxembourg meeting

On Wed, 13 Jul 2005, Suresh Ramasubramanian wrote: I think some of you may find the following "blog" (article) by Kieren McCarthy an interesting read: http://www.theregister.co.uk/2005/07/13/icann_blog_tues/ Another good place to discuss it - Joi Ito's IRC channel http://joi.ito.com/archi

Completewhois New Features - RBL Lookup and Search Utilities

Hello everyone, Over the past month several new features and utilities have been added that are likely to be of interest here. In this post I'll focus on RBL lookup related utilities which have to do with rbl data from about 30 lists (with one or two exceptions, pretty much covers 25 most use

Completewhois New Utility - Traceroute

This post is a lot lot smaller as is traceroute utility interface at: http://www.completewhois.com/traceroute.htm Basicly this not some new utility but interface to public traceroute utilities of several ISPs all over the world (tried at least two per continent) from one common interface. You

Re: NANOG List Server on several BlockLists

On Tue, 26 Jul 2005, John Palmer wrote: FYI: The IP address of the mail server that sends out NANOG list messages (198.108.1.26) is once again on most of the major RBLs. Its only on SORBS (of the major ones) as far as I can tell. -- William Leibzon Elan Networks [EMAIL PROTECTED]

Re: as numbers

On Tue, 2 Aug 2005, Geoff Huston wrote: There is a draft draft-ietf-idr-as4bytes-10.txt- it is a draft because under the current IETF procedures there needs to be 2 independent implementations of the specification, and at the moment only Redback's BGP has implemented this. Once there is a 2

Re: Real-time WHOIS for .COM

On Wed, 10 Aug 2005, Florian Weimer wrote: Is there some kind of real-time WHOIS for .COM (and friends) which allows you to determine at least the corresponding registrar? This is helpful if you have to pull a delegation in order to mitigate a particular threat. You can ask Verisign (NOT ne

Re: Real-time WHOIS for .COM

changes (i.e. what changes to nameservers had been done for domain within say last 24 hours)and nothing so far either (this is also very helpful when investigating phishes). On Wed, 10 Aug 2005, william(at)elan.net wrote: On Wed, 10 Aug 2005, Florian Weimer wrote: Is there some kind of real-t

Re: Real-time WHOIS for .COM

On Thu, 11 Aug 2005, Florian Weimer wrote: It seems that one of the largest Verisign competitors plans to hide the registrar information completely and permanently. (They operate according the thick registry model, if I got the terminology right, so this is quite possible.) If you don't like

Re: speaking of lynn...

On Sat, 13 Aug 2005, Stephen J. Wilcox wrote: i guess they're still reacting to old information. this one is well and truly in the public domain, heck.. if you google you can find foreign language translations of it Trying to censor something is one of the best ways to promote it, I'm surpr

Re: botnet reporting by AS - what about you?

On Mon, 15 Aug 2005, James Baldwin wrote: As far as standard reporting goes, please be aware of the existence of the following: http://www.shaftek.org/publications/drafts/abuse-report/ Limited focus for certain types of spam reports only and specifically not designed to be used for anythin

Re: Fixing .com DNS glue records - who to contact?

On Tue, 16 Aug 2005, Matthew Elvey wrote: A glue record for a .com domain (nextbus.com) is wrong, and I'm running into a brick wall trying to get it fixed. Do I need to switch to a more clueful registrar than GoDaddy**? Contact Network Solutions? Have I screwed up the domain's bind config? E

Re: Completely off-topic: Sprint Nextel's new logo ....

On Thu, 25 Aug 2005, Fergie (Paul Ferguson) wrote: http://www.engadget.com/entry/1234000243055975/ Isn't that only for Sprint Wireless and has no effect or rest of Sprint? If so this is *really* off-topic here... -- William Leibzon Elan Networks [EMAIL PROTECTED]

Re: Maybe the IETF Won't Publish SPF and Sender-ID as Experimental RFCs Af ter All

On Fri, 26 Aug 2005, Fergie (Paul Ferguson) wrote: John Levine writes over on CircleID: [snip] http://www.circleid.com/article/1178_0_1_0_C/ Some corrections to what is said in John's article: 1. The appeal is against publication of SID draft (3 SID drafts, although only one is actua

Re: Completely off-topic: Sprint Nextel's new logo ....

On Fri, 26 Aug 2005, Jeff Cole wrote: On Fri, Aug 26, 2005 at 11:32:44AM -0400, Chris Woodfield wrote: I did see an article a few days ago (can't find the url now) claiming that Sprint is planning on focusing purely on wireless and spinning off their "traditional" telco/internet operations.i

Re: Order of ASes in the BGP Path

On Mon, 29 Aug 2005, Abhishek Verma wrote: Legend: {} denotes the sequence, while [] denotes the set Path {1 2} [3 4] {5} Would somebody mind if this was represented as {1 2 5} [3 4] ? I see it as a bad idea for bgp table / routing analysis as it completely confuses who is #5 really peerin

Re: Yahoo! -- A "Phisher-friendly" hosting domain?

On Wed, 31 Aug 2005, Fergie (Paul Ferguson) wrote: Someone is... or trying to, at least, watch and contact the responsible owners/registrars, but in some cases they aren't apparently eager to assist. Some registrars are good and some are bad and without better controls being developed by ICA

Re: What happened to root-server serial number?

On Fri, 2 Sep 2005, Peter Dambier wrote: To spare search and debug, here is the diff: (please forgive the long list) # SOA(".","2005090200","A.ROOT-SERVERS.NET.","NSTLD.VERISIGN-GRS.COM.","1800","900","604800","86400"). ADD: A.DNS.BR 2001:12FF:0:0

Re: SWIP and Rwhois in the Real World

On Tue, 6 Sep 2005, Will Yardley wrote: On Tue, Sep 06, 2005 at 01:37:53PM -0700, Crist Clark wrote: As best I can tell from ARIN documents, ISP still are supposed to SWIP or use Rwhois for subassignments of /29 and greater. However, is this still widely practiced these days? Especially amon

Re: SWIP and Rwhois in the Real World

On Wed, 7 Sep 2005, Andrew - Supernews wrote: "william" == william(at)elan net <[EMAIL PROTECTED]> writes: william> The above line is as clear as it gets (if the other two william> mentions that data is to be made available to public is not william> enough), so there this argument that rwhoi

Re: Correct inclusion of rwhois info in WHOIS server output?

On Wed, 7 Sep 2005, Albert Meyer wrote: I've been talking to ARIN about the rwhois setup on our SWIPped blocks, and there appears to be a problem with the standard output from whois.arin.net. Be carefull about using word "standard", there is no standard output for whois plus both for ARIN an

Re: OT - Vint Cerf joins Google

On Thu, 8 Sep 2005, Barry Shein wrote: On September 8, 2005 at 12:32 [EMAIL PROTECTED] (Steve Sobol) wrote: > > Uhhh... why does a dotcom need an Internet evangelist? To call for the assassination of certain other heads of companies? (no, don't bother, I know, ok?) Others don't. May I sugge

Re: 12/8 problems?

On Fri, 9 Sep 2005, Richard A Steenbergen wrote: On Fri, Sep 09, 2005 at 11:12:25AM -0400, Drew Linsalata wrote: Apologies for a post of an operational nature, but is anyone else seeing problems with AT&Ts 12/8 block? From a New York router connected to Global Crossing and Peer 1: border-1

Re: OT - Vint Cerf joins Google

On Fri, 9 Sep 2005, Daniel Golding wrote: Getting back on-topic - how can this be? I thought only service providers (with downstream customers) could get PI v6 space. Isn't this what policy proposal 2005-1 is about? Can someone (from ARIN?) explain the current policy? Its my understanding th

Re: OT - Vint Cerf joins Google

On Fri, 9 Sep 2005, Mr. James W. Laferriere wrote: However there is a difference between company becoming LIR and becoming member of ARIN and paying annual membership fee (based on network size) and company applying for single IPv6 assignment (as per 2005-1) and not having to pay membership

[db-wg] DNSSEC deployment on the reverse tree. (fwd)

FYI - RIPE seems to be getting ready to deploy DNSSEC on inaddr (rdns) tree so I thought nanog folks might want to know about it too being the kind operational issue that we don't seem to be discussing here lately quite as much... BTW - are there any plans to deploy DNSSEC for ARIN ip dns tr

Re: OT - Vint Cerf joins Google

On Mon, 12 Sep 2005, Randy Bush wrote: 8% seems high to me as well not by much more than O(10^1) :-). those who see full stats at ixes, v4/6 isps, etc will tell you that actual v6 traffic is miniscule. And I thought you were in Japan ... -- William Leibzon Elan Networks [EMAIL PROTECTED]

MEDIA: eBay to Acquire Skype

Let me play Paul Ferguson for a second ... : (and I wonder if we'll soon be trading voip minutes on ebay :) http://finance.lycos.com/home/news/story.asp?story=51709287 eBay to Acquire Skype - Sep 12, 2005 06:00 AM (BusinessWire) LONDON--(BUSINESS WIRE)--Sept. 12, 2005--eBay Inc. (Na

Re: Computer systems blamed for feeble hurricane response?

On Tue, 13 Sep 2005, Fergie (Paul Ferguson) wrote: It quoted a Department of Health official as saying every email it had sent to FEMA staff bounced. "They need a better internet provider during disasters," the Journal quoted her or him as saying. A number of US agencies made desperate call

Re: Computer systems blamed for feeble hurricane response?

The newspaper did not say which computer systems FEMA uses. $ dig mx fema.gov ;; ANSWER SECTION: fima.org. 3600IN MX 0 smtp.secureserver.net. fima.org. 3600IN MX 10 mailstore1.secureserver.net That's interesting -- I'm not getting that

Re: Computer systems blamed for feeble hurricane response?

On Tue, 13 Sep 2005, Christian Kuhtz wrote: william(at)elan.net wrote: Which indeed means they have no MX servers listed and that MAY be a problem for some mail servers (though normally mail servers are supposed to send email based on A record then). Uh, which mainstream mail server

mail service with no mx (was - Re: Computer systems blamed for feeble hurricane response?)

On Tue, 13 Sep 2005, Joseph S D Yao wrote: There is no requirement - even in this century - for MX records. It is a Good Idea(tm). But not a requirement. Lack of MX records does NOT mean that you lose the store-and-forward capability of SMTP. Lack of a secondary server, while equally not a

Re: mail service with no mx (was - Re: Computer systems blamed for feeble hurricane response?)

On Wed, 14 Sep 2005, Roy Badami wrote: william(at)elan> Could you elaborate on how firewall will william(at)elan> determine if the connection is from mail server william(at)elan> or from telnet on port 25? Perhaps because most telnet clients will attempt telnet option negotiation? I

Re: LA power outage?

On Wed, 14 Sep 2005, Fergie (Paul Ferguson) wrote: It's also interesting to note that, at least by some estimates, the brief power outage in L.A. yesterday took down more networks than Hurrucane Katrina: http://www.techweb.com/showArticle.jhtml?articleID=170702966 Of course, So. California i

RE: Anyone seen 172.15/16 lately?

I checked my historic files from 1991, 1997 and 1999 and don't see this block being allocated to anyone (don't have much data from 1991 - 1997 unfortunetly...). My guess is that this /16 was never allocated. On Wed, 28 Sep 2005, Edward Lewis wrote: At 14:35 -0400 9/28/05, Hannigan, Martin

Re: .iq [ was: Re: Paul Vixie serving ORSN ]

On Fri, 30 Sep 2005, Bill Woodcock wrote: ...whereas post-redelegation, .iq is administered by the Iraqi communications ministry from Bhagdad, Current Iraq government exists because there is substantial US military presence in the country. Lets assume that at some future point US gets tired

Re: TLD anycast clouds?

On Tue, 4 Oct 2005, Steve Gibbard wrote: I'm attempting to come up with a list of all the top level domain DNS servers How are you attempting to do it? One of the problems is that you need to check from multiple locations around the world because dns server would appear to be different dep

Re: TLD anycast clouds?

On Wed, 5 Oct 2005, Elmar K. Bins wrote: I'd propose taking the list of TLDs, generating the list of associated authoritative DNS servers (and their IP addresses) and try that list on the routing registries... Assuming that you do that, what would you be your criteria to find based on RR if

Re: TLD anycast clouds?

On Wed, 5 Oct 2005, Elmar K. Bins wrote: [EMAIL PROTECTED] (william(at)elan.net) wrote: authoritative DNS servers (and their IP addresses) and try that list on the routing registries... Assuming that you do that, what would you be your criteria to find based on RR if the ip is anycasted

Re: Cogent/Level 3 depeering

Since Cogent was depeered couple times before and each time they fairly quickly setup transit connection (without statement like the one below), I seem to be getting an impression that they are a lot more angry this time for whatever reason and it might not be resolved quite as easily. Am I wro

RE: Cogent/Level 3 depeering

On Thu, 6 Oct 2005, Hannigan, Martin wrote: The dialup case results in a very large number of users of a large number of ISPs being single-homed to one or the other of these outfits. Keep that in mind too when you next sign a contract for wholesale dialup service. Dialup costs are $5 a month

RE: Cogent move without renumbering

On Fri, 7 Oct 2005, Hannigan, Martin wrote: Is it reasonable to think that numerous /24's from L3's IP space could be reassigned elsewhere without causing significant trouble for L3 and others? Even if it could work, what would be the justification for taking L3's property? Depending upon th

Re: Level 3's side of the story

And after November 9, what is then? Cogent/L3 depeering part 2? On Fri, 7 Oct 2005, Richard A Steenbergen wrote: http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=104&STORY=/www/story/10-07-2005/0004164041&EDATE= "On October 6, Level 3, as it had repeatedly advised Cogent it would, terminate

Re: Level 3's side of the story

BTW - it sounds like maybe somebody was required to give 30 days notice of service changes to certain customers with good laywers On Fri, 7 Oct 2005, william(at)elan.net wrote: And after November 9, what is then? Cogent/L3 depeering part 2? On Fri, 7 Oct 2005, Richard A Steenbergen

Re: How to multihome endusers [was: Cogent/Level 3 depeering]

Look into multi6 - which basically proposes new network layer above ip but below tcp and that new layer would provide common end-point for system with multiple ip addresses. A closer possibility right now is dns "multi-homing" based on incoming request ip, i.e. dns server would answer with o

Re: IPv6 news

On Wed, 12 Oct 2005, Randy Bush wrote: if you look at the recent ipv4 burn rate of ripe and apnic especially, we run out of v4 space in about three years. this should not be surprising, as it matches what frank was saying a decade ago at ale. so having dual stack backbones is very important.

Re: IPv6 news

On Wed, 12 Oct 2005, Sean Figgins wrote: On Wed, 12 Oct 2005, william(at)elan.net wrote: addresses. But of those "few" many are those doing P2P sharing especially with BitTorent and this application requires open port on the user end, so in fact P2P and BT may prove to be the corn

Re: shim6 (was Re: IPv6 news)

On Fri, 14 Oct 2005 [EMAIL PROTECTED] wrote: Since shim6 requires changes in protocol stacks on nodes, my impression has been that it isn't a _site_ multihoming solution, but rather a _node_ multihoming solution. Is my impression incorrect? There is no shortage of rough corners to file down

Re: shim6 (was Re: IPv6 news)

On Fri, 14 Oct 2005, Paul Vixie wrote: [EMAIL PROTECTED] (David Conrad) writes: (shouldn't that be [EMAIL PROTECTED] now?) If my impression is correct, then my feeling is that something else is required. I am somewhat skeptical that shim6 will be implemented in any near term timeframe and

Re: IPv6 news

I reread this and still don't see how geographical ip address allocation is going to work if typical customer connections are network-centric and any large area has number of competitive access providers (unless you're fine with multiple providers announcing aggregate summary in anycast fashion)

Re: ADSL multiplexing (bonding)

On Mon, 24 Oct 2005, Gregory Edigarov wrote: Hello List, Need an advice on what type of equipment/manufacturer would one use to multiplex 2 or 4 ADSL lines? E.g we need to get 2 ADSL line to act as one. Something like Etherchanel with Ciscos. Are all these DSLs parallel to each other fro

Re: ADSL multiplexing (bonding)

On Mon, 24 Oct 2005, Gregory Edigarov wrote: Let's think I will answer "yes" to the questions one at a time. :-) I do not have the formal task description yet, so I am merely looking for opinions on options available, so I could start making decisions. If you have direct connection (mu

Re: What is multihoming was (design of a real routing v. endpoint id seperation)

On Mon, 24 Oct 2005, Owen DeLong wrote: Yes... The network is still multihomed, but, instead of using routing to handle the source/dest addr. selection, it is managed at each end host independent of the routers. The routers function sort of like the network is single homed. It's very convolu

Re: ICANN and Verisign settle over SiteFinder

On Tue, 25 Oct 2005, Florian Weimer wrote: http://www.businessweek.com/ap/financialnews/D8DEL2TO7.htm? campaign_id=apn_tech_down&chan=tc I don't understand what VeriSign receives in return for their kowtow (under the agreement, they basically waive any right to criticize ICANN's role). The

Re: Scalability issues in the Internet routing system

On Thu, 27 Oct 2005 [EMAIL PROTECTED] wrote: Another thing, it would be interesting to hear of any work on breaking the "router code" into multiple threads. Being able to truly take advantage of multiple processors when receiving 2M updates would be the cats pajamas. Has anyone seen this? I

Re: ASN database files from LACNIC or AFRINIC?

On Fri, 28 Oct 2005, Andreas Ott wrote: Hi, On Sat, Oct 29, 2005 at 01:30:23AM -0200, Rubens Kuhl Jr. wrote: ftp://ftp.lacnic.net/pub/stats/lacnic/delegated-lacnic-latest has IP space and ASN allocations. ASN lines look like this: lacnic|MX|asn|278|1|19890331|allocated ... I found that one

MEDIA: Grokster shuts down

http://www.latimes.com/business/la-110705grokster_lat,0,4450717.story? coll=la-home-headlines Grokster Ltd. today shut down its online file sharing service to settle an entertainment industry lawsuit aimed at stopping illegal downloads of copyrighted music, movies and other programming. Th

Re: a record?

On Tue, 15 Nov 2005, Peter Dambier wrote: Moving sshd from port 22 to port 137, 138 or 139. Nasty eh? Or run two daemons. One on port 22 does not allow ANY logins at all but just tracks incoming connections and attempts (and possibly allows to block-list them in real time - typically not wor

Re: Wifi Security

On Mon, 21 Nov 2005, Randy Bush wrote: As others pointed out (to me as well), for a _man in the middle_ attack (e.g. impersonating www.paypal.com) it is necessary to play ARP games or otherwise insert yourself in the flow of traffic. not really. you just need to be there first with a bogus,

RE: BGP Security and PKI Hierarchies (was: Re: Wifi Security)

On Tue, 22 Nov 2005, Bora Akyol wrote: Furthermore, given that a trust algebra may yield a trust value, rather than a simple 0/1, is it reasonable to use that assessment as a BGP preference selector? That would tie the security very deeply -- too deeply? -- into BGP's guts. If you take the

Re: BGP Security and PKI Hierarchies (was: Re: Wifi Security)

On Tue, 22 Nov 2005, Randy Bush wrote: [ before you say it, i have suggested that a pseudo-rir be created for legacy asns and prefixes ] I also seem to remember Bill Woodcock suggesting this at some ARIN meeting in 2001 or 2002. If I recall he proposed that this be somewhat like a document

Re: BGP Security and PKI Hierarchies (was: Re: Wifi Security)

On Thu, 24 Nov 2005, George Michaelson wrote: According to what I understand, there have to be two certificates per entity: one is the CA-bit enabled certificate, used to sign subsidiary certificates about resources being given to other people to use. the other is a s

Re: IP Prefixes are allocated ..

On Mon, 28 Nov 2005, Glen Kent wrote: to different Autonomous systems. Is there a central/distributed database somewhere that can tell me that this particular IP prefix (say x.y.z.w) has been given to foo AS number? IP prefixes are not "given" to AS numbers. They are assigned & allocated t

Re: IP Prefixes are allocated ..

On Sun, 27 Nov 2005, Bill Woodcock wrote: On Mon, 28 Nov 2005, Glen Kent wrote: > to different Autonomous systems. > Is there a central/distributed database somewhere that can tell me > that this particular IP prefix (say x.y.z.w) has been given to foo AS > number? We have a

Re: BGP Security and PKI Hierarchies

Of course we could all quickly move to IPv6 and then IPv4 legacy allocations and related legal challenges wouldn't be an issue any more ... :) On Mon, 28 Nov 2005 [EMAIL PROTECTED] wrote: Do you suppose that if a Microsoft salesman had given me a free copy of Windows back in 1990, I would h

Re: BGP Security and PKI Hierarchies (was: Re: Wifi Security)

On Mon, 28 Nov 2005, Randy Bush wrote: proof of identity S(withRIRkey, AS_A_key, AS_A) or S(withwebofttrustkeys, AS_A_key, AS_A) maybe Randy is saying this is two steps, not an "OR" S(withRIRkey, someNonRIRidentity, asA) Good idea. And this "someNonRIRidentity" may actually

[Sidr] Re: S-BGP and IP prefix aggregation

field (that is the only thing I can think of that in how that post was different from others) - I can't think of a good reason to have this filtering rule though... -- Forwarded message -- Date: Fri, 2 Dec 2005 00:22:44 -0800 (PST) From: "william(at)elan.net" &

RE: QoS for ADSL customers

On Wed, 7 Dec 2005, Joe Shen wrote: Could IPtables control traffic with inspecting layer7 information? Not layer 7. IPtables works on L3 & L4 (and another similar system for linux called ebtables provides filtering at L2) but it can be used for setting up qos depending on where from (and to

RE: QoS for ADSL customers

On Tue, 6 Dec 2005, Ejay Hire wrote: There are quite a few modules for iptables that will reach up to Layer 7, including several specifically for file sharing applications... And one really nifty one that makes non-passive ftp work through NAT. These are "action" modules - they receive the

RE: QoS for ADSL customers

Somebody else emailed me privately link for L7 filtering with linux (its all experimental and requires custom linux patches for now): http://l7-filter.sourceforge.net/L7-HOWTO-Netfilter Also in previous post it was supposed to be: For ebtables it is http://ebtables.sourceforge.net (this is

RE: Let's talk about ICANN

On Mon, 12 Dec 2005, Hannigan, Martin wrote: I would think that ICANN is off topic for NANOG? Are you saying there is no operational impact in the decisions made by ICANN? -- William Leibzon Elan Networks [EMAIL PROTECTED]

Re: www.google.com latency/packet loss/very slow thru savvis

On Tue, 13 Dec 2005, Christopher L. Morrow wrote: [BGP/170] 00:04:21, localpref 200 AS path: 7473 17557 17557 17557 17557 5400 15169 I Singtel -> Pakistan Telecom -> British Telecom -> Google. AS17557 is leaking its BGP table, and AS7473 is not filter

Re: who's receiving comvalid/bgpsentinel spam? (Re: BGP )

On Thu, 15 Dec 2005 [EMAIL PROTECTED] wrote: is anybody else receiving this spam when they advertise a new AS nowadays? (i'm trying to figure out which whois information is being policy-violated and who to complain about, but if i'm the only one receiving it, i may JHD.) They are likely viol

Re: http://weblog.disgu.st down

I think you're confusing nanog-l with #nanog On Wed, 21 Dec 2005, Tyrone Chickenbone wrote: ne one able to reach0r this site, it appearz to be d0wnz0rs!!! sev0!!! 0h n0z!!! supply of cirpple and midget scat pix0rz gone!!!1 __ Do You Yahoo!? T

Re: is reverse dns required? (policy question)

On Sat, 4 Dec 2004, Henning Brauer wrote: > > The wildcards are in the DNS server zone file for interpretation by the > > DNS server itself. It would not be published as such because that obviously > > wouldn't work as you prove. But nothing is preventing BIND or whatever > > from taking this

Re: is reverse dns required? (policy question)

On Sat, 4 Dec 2004, Henning Brauer wrote: > > So if I want to check on 127.1.2.3, I first do lookup on > > _srv.3.2.1.127.IN-ADDR.ARPA > > if that does not give any answer, I'll have to do lookup on > > _srv.2.1.127.IN-ADDR.ARPA > > if that does not give any answer, I'll have to do lookup o

Re: Bogon filtering (don't ban me)

On Sun, 5 Dec 2004, Joe Abley wrote: > On 5 Dec 2004, at 06:50, Cliff Albert wrote: > > > I have one question regarding the CYMRU bogon route-server. What good > > is > > it if more-specific bogons are going around in the BGP table ? > > With OpenBSD 3.6 running pf and bgpd, you can apply a f

Re: Bogon filtering (don't ban me)

On Sun, 5 Dec 2004, william(at)elan.net wrote: > On Sun, 5 Dec 2004, Joe Abley wrote: > > > On 5 Dec 2004, at 06:50, Cliff Albert wrote: > > > > > I have one question regarding the CYMRU bogon route-server. What good > > > is > > > it if more-spec

Re: Bogon filtering (don't ban me)

On Sun, 5 Dec 2004, Joe Maimon wrote: > >PF and bgpd with local filter table is good when you're expecting those > >filtered ip routes to change often. > > > I dont understand this attitude. Automating everything that is safely > automatable is the only right way to do things. Its always wor

Re: no whois info ?

On Thu, 9 Dec 2004, Mike Tancsa wrote: > While doing a quick sample of my spam to see where spamvertized web sites > were hosted and registered, I came across the domain vestigial3had.com > > shell1% whois vestigial3had.com ... > No match for "VESTIGIAL3HAD.COM". > What gives ? How can their b

Re: no whois info ?

On Fri, 10 Dec 2004, Elmar K. Bins wrote: > > william(at)elan.net <[EMAIL PROTECTED]> wrote: > > [...] > > > Read NANOG archives - Verisign now allows immediate (well, within > > > about 10 minutes) updates of .com/.net zones (also same for .biz) > > &

Re: no whois info ?

On Fri, 10 Dec 2004, kent crispin wrote: > > I disagree, I think this may be ok, but its specifically because its > > for .com/.net whois (not ok for general TLD). Reasons are: > > 1. Internic.net / CRSNIC whois has no limit set on number of queries > > client from particular ip can make be

Re: verizon.net and other email grief

On Fri, 10 Dec 2004, Rich Kulawiec wrote: > Verizon has put in place an exceedingly stupid "anti-spam" system which > does not work, which facilitates DoS attacks, and which provides active > assistance to spammers. The technique discussed is called callback verification and I do not agree tha

Re: no whois info ?

On Sun, 12 Dec 2004, Janet Sullivan wrote: > william(at)elan.net wrote: > > > It matters if we're talking about Tom, John or Susan working for some > > commercial company and contacting me as part of the activity of that > > entity, in that case I'd like to kn

Re: Interesting DNS problem.

On Thu, 16 Dec 2004, Bob Martin wrote: > I've just been hired to fix problems at a small ISP. One of their > customers has listed several nameservers with a single IP. > I didn't know this was possible. I thought there was a 1 to 1 > relationship with nameserver names/addresses. I'm trying to

RE: verizon.net and other email grief

On Fri, 10 Dec 2004, Christopher X. Candreva wrote: > That would be 1000's of other people's servers getting traffic from you > because someone forged their address in the spam. You are effectively > doubleing the total load spam places on the net. That is already what happens when spammer fo

Re: no whois info ?

On Sat, 11 Dec 2004, Janet Sullivan wrote: > Rich Kulawiec wrote: > > > 1. Anyone controlling an operational resource (such as a domain) can't > > be anonymous. This _in no way_ prevents anyone from doing things > > anonymously on the Internet: it just means that they can't control an > > ope

Re: Botnet pointer

Can somebody also share good definition of "BOT" and "BOTNET" for glossary and description of 2-4 lines? Should I also list it as synonymous with Zombie (bot being more hacker-oriented use and zombie being more toward spammer-oriented use)? On Mon, 20 Dec 2004, Hannigan, Martin wrote: > I've

Re: IPv6, IPSEC and deep packet inspection

BTW - One of the most fascinating things is that some miscreants when they hack your ipv4 host, the first thing they do (if kernel can support ipv6) is setup ipv6 tunnel to their home (or more likely another hacked box) destination, then they setup a bot which has only ipv6 adddress. Apparentl

Re: Da, Shrimp Daddy has invited you to open a Google mail account

Whatever you decide about list moderation, this behavior with invites sent to public list by anonymous poster should be considered inappropriate and subject to removal of posting rights. (once I can understand it be an error, but not twice) On Fri, 7 Jan 2005, Shrimp Daddy wrote: > gmail la l

Re: [eweek article] Window of "anonymity" when domain exists, whois not updated yet

On Tue, 11 Jan 2005, Suresh Ramasubramanian wrote: > and it is being abused - well, nanog found out about this a while > back, but the popular press (read - eweek magazine) seems to have > discovered it now, or at least think they've discovered it .. their > idea of the situation is a bit skewed

Email Security Glossary

I recently created email security glossary out of the smaller one that was included in mta-signatures paper (its now > 5 times larger with almost 300 terms and abbreviations!), it includes primarily email and cryptography abbreviations and terms but number of related network and dns terms are

Re: fixing insecure email infrastructure (was: Re: [eweek article] Window of "anonymity" when domain exists, whois not updated yet)

On Wed, 12 Jan 2005, Steven Champeon wrote: > > In a sense, I am suggesting a similar reallocation of resources. > > Rather than put those resources into filtering spam, I'd suggest that > > we will get a better result by shifting the resources into mail > > relaying and managing mail peering ag

  1   2   3   4   >