Re: OpenNTPProject.org

On (2014-01-13 21:33 +), Bjoern A. Zeeb wrote: > BCP38! I am always surprised when people need crypto if they fail the simple > things. Saying that BCP38 is solution to the reflection attacks is not unlike 5 year old wishing nothing but world peace for christmas, endearing, but it's not goi

Google GCE

Can someone from GCE contact me off list? Your service is a big pile of 503s from multiple locations and from multiple servers. The console is inoperable and instances are unreachable. I'm getting sent across the country to a VIP in LAX. A friend in California is getting a VIP in Hong Kong. Yo

Re: [VoiceOps] (cross post) VoIP heat charts...

On Jan 9, 2014, at 2:38 PM, Jay Ashworth wrote: > - Original Message - >> >> >> Looking to "heat chart" where fraudelent calls are going. > > So you want to be able to feed "NPANXX Count" to something that will map > the call counts on a US map. > > You have anything that does NPANXX

Re: verify currently running software on ram

On 1/13/14 5:26 AM, Tassos Chatzithomaoglou wrote: > I'm looking for ways to verify that the currently running software on > our Cisco/Juniper boxes is the one that is also in the > flash/hd/storage/etc. Something that will somehow compare the running > software in ram with the software on flash/hd

Winstream engineer?

Looking for a windstream engineer that can help with BGP issue (not advertising from your network to the net).. hit me offlist. not getting anywhere with tech :( Dennis Burgess, Mikrotik Certified Trainer Author of "Learn RouterOS- Second Edition

Re: OpenNTPProject.org

On 13 Jan 2014, at 21:13 , Derek Andrew wrote: > nmap -sU -pU:123 -Pn -n --script=ntp-monlist serverIP Make that “all server IPs” if on different subnets, address families, ... > On Mon, Jan 13, 2014 at 3:07 PM, Jared Mauch wrote: > >> 4) Please prevent packet spoofing where possible on you

Re: OpenNTPProject.org

nmap -sU -pU:123 -Pn -n --script=ntp-monlist serverIP On Mon, Jan 13, 2014 at 3:07 PM, Jared Mauch wrote: > Greetings, > > With the recent increase in NTP attacks, I wanted to advise the community > of a few things: > > There are about 1.2-1.5 million of these servers out there. > > 1) You ca

OpenNTPProject.org

Greetings, With the recent increase in NTP attacks, I wanted to advise the community of a few things: There are about 1.2-1.5 million of these servers out there. 1) You can search your IP space to find NTP servers that respond to the ‘MONLIST’ queries. 2) I’ve found some vendors have old embe

Amazon help

Hi, Can someone from AWS/Amazon contact me off-list to help us with an issue? Thank you, Alvaro Pereira

VistaPrint?

Anyone have a worthwhile contact? Have a friend with domain/dns/email running on my equipment and web service on theirs. Web server isn't configured correctly for the domain.

Re: verify currently running software on ram

Original Message - > From: "Valdis Kletnieks" > You really need assistance from one layer further down - if you're in > a VM, you need to ask the hypervisor. If you're on bare metal, you need > to ask the SMM or equivalent. If you're in the SMM, you need to ask the > hardware. And of cou

Re: verify currently running software on ram

On Mon, 13 Jan 2014 12:26:02 +0200, Tassos Chatzithomaoglou said: > I'm looking for ways to verify that the currently running software on our > Cisco/Juniper boxes is the one that is also in the flash/hd/storage/etc. In general, asking the operating system if it's pwned is an insoluble problem, b

Re: verify currently running software on ram

Doh, tired and not reading - the util should help after you get a dump though. On Jan 13, 2014 7:29 AM, "shawn wilson" wrote: > dd kmem and see if it's what you'd expect (size of ram+swap). If so you > should be able to look at it > > Also see Volatility > On Jan 13, 2014 7:21 AM, "Tassos Chatzit

Re: verify currently running software on ram

dd kmem and see if it's what you'd expect (size of ram+swap). If so you should be able to look at it Also see Volatility On Jan 13, 2014 7:21 AM, "Tassos Chatzithomaoglou" wrote: > Saku Ytti wrote on 13/1/2014 12:51: > > On (2014-01-13 12:46 +0200), Saku Ytti wrote: > >> On (2014-01-13 12:26 +02

Re: verify currently running software on ram

Saku Ytti wrote on 13/1/2014 12:51: > On (2014-01-13 12:46 +0200), Saku Ytti wrote: >> On (2014-01-13 12:26 +0200), Tassos Chatzithomaoglou wrote: >> >>> I'm looking for ways to verify that the currently running software on our >>> Cisco/Juniper boxes is the one that is also in the flash/hd/storag

Re: verify currently running software on ram

That verifies the software that is stored somewhere, not the currently running one. Someone "insider" could load a "hacked" software into flash, boot the router with that file (supposing that he has found a way to do so) and then replace the file on the flash with the real one. How can you veri

Re: verify currently running software on ram

On (2014-01-13 12:46 +0200), Saku Ytti wrote: > On (2014-01-13 12:26 +0200), Tassos Chatzithomaoglou wrote: > > > I'm looking for ways to verify that the currently running software on our > > Cisco/Juniper boxes is the one that is also in the flash/hd/storage/etc. > > IOS: verify /md5 flash:file

Re: verify currently running software on ram

On (2014-01-13 12:26 +0200), Tassos Chatzithomaoglou wrote: > I'm looking for ways to verify that the currently running software on our > Cisco/Juniper boxes is the one that is also in the flash/hd/storage/etc. IOS: verify /md5 flash:file JunOS: filechecksum md5|sha-256|sha1 file But if your sy

verify currently running software on ram

I'm looking for ways to verify that the currently running software on our Cisco/Juniper boxes is the one that is also in the flash/hd/storage/etc. Something that will somehow compare the running software in ram with the software on flash/hd/storage/etc, so that i can verify that nobody has actual