Re: IoT security

Yup! All the mapping Ive done is over port 80. Id have a lot more than I currently have if I was looking at other ports, probably. On Wed, Feb 8, 2017 at 10:00 PM, wrote: > On Wed, 08 Feb 2017 21:04:07 -0800, clinton mielke said: > > > As an ISP, scan your customers netrange, and notify customer

Re: IoT security

On Wed, 08 Feb 2017 21:04:07 -0800, clinton mielke said: > As an ISP, scan your customers netrange, and notify customers with known > vulnerable devices. With regards to the current Mirai threat, theres only a > handful of devices that are the most critical importance. IE, biggest > fraction of th

Re: IoT security

Having spent the last few months systematically scanning ~700k of these hosts, Im thinking the following could be considered: As an ISP, scan your customers netrange, and notify customers with known vulnerable devices. With regards to the current Mirai threat, theres only a handful of devices that

Re: American Airlines down

> On Feb 8, 2017, at 19:12, Michael Voity wrote: > > Looks like it _just_ came back. > I was delayed at LAX but apparently a global reboot of Windows actually worked and I'm on my plane. -b

Re: American Airlines down

Downdetector spiking at 20:00. Reports that captains cannot get flight plans because computers are down. -- Otto Monnig omon...@gmail.com > On Feb 8, 2017, at 9:11 PM, Michael Voity wrote: > > Hello > > Stuck at DCA after NANOG because America airlines system are down. > > Anyone know a

Re: American Airlines down

http://www.flyertalk.com/forum/american-airlines-aadvantage/1820617-aa-com-technical-outage-8feb17.html > On Feb 8, 2017, at 10:11 PM, Michael Voity wrote: > > Hello > > Stuck at DCA afte

Re: American Airlines down

Looks like it _just_ came back. Sent from my iPhone > On Feb 8, 2017, at 22:12, Michael Voity wrote: > > Hello > > Stuck at DCA after NANOG because America airlines system are down. > > Anyone know anything? > > Mike > > Sent from my iPhone

American Airlines down

Hello Stuck at DCA after NANOG because America airlines system are down. Anyone know anything? Mike Sent from my iPhone

Re: IoT security

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Wed, 2017-02-08 at 08:30 -0800, Damian Menscher wrote: > So here's a modest proposal: log in as root and brick the > device. I strongly suspect that when the problem gets bad *enough*, someone will do exactly that. Yes, it is illegal in many plac

Re: IoT security

Very clear illustration, thanks for sharing. It would seem solution would involve non market regulation (EPA for pollution), or aligning with market forces such as aligning impact to buyer of security with risk of public access to compromised information (like videos from IP cameras). Michael Yoo

Re: ATT-Level 3 Peering

I had a very clueless ATT salesperson tell me yesterday that “Our company policy is we don’t do BGP sessions.” I have a client wanting to use ATT as an upstream and they won’t do BGP (mainly due to clueless sales). If this is the level of comp tenancy then good luck. :-) Justin Wilson j...@m

Re: Telia network quality

We've been using Telia for about 3 years in Philly, and have great success. Most of our European customers noticed faster services right away when we turned them up. John Zettlemoyer Sr. Director of I.T. Infrastructure ::  WCiT LLC 856.310.1375 x221 :: j...@wcit.net :: www.wcit.net Philadelp

Re: IoT security

On Wed, Feb 8, 2017 at 11:30 AM, Damian Menscher wrote: > On Wed, Feb 8, 2017 at 7:22 AM, William Herrin wrote: >> On Wed, Feb 8, 2017 at 10:12 AM, Rich Kulawiec wrote: >> > We need to make it their problem. >> >> How? > > > The devices are trivially compromised (just log in with the default roo

Re: IoT security

On Wed, Feb 8, 2017 at 7:22 AM, William Herrin wrote: > On Wed, Feb 8, 2017 at 10:12 AM, Rich Kulawiec wrote: > > In a better world, vendors would be far more > > responsible, professional, and ethical. But we don't live in that > > world. We live in one where they will happily dump toxic wast

Re: IoT security

On Wed, Feb 8, 2017 at 10:12 AM, Rich Kulawiec wrote: > In a better world, vendors would be far more > responsible, professional, and ethical. But we don't live in that > world. We live in one where they will happily dump toxic waste on > the Internet as fast as they can shovel it -- as long as

Re: IoT security

On Tue, Feb 07, 2017 at 10:01:29PM +, Ed Lopez quoted Bruce Schneier: > There is no market solution, because the insecurity is what economists > call an externality: It's an effect of the purchasing decision that > affects other people. This is precisely correct. The only way to change this i

AW: Telia network quality

We are connected to Telia in Europe for about 2 years now. We've never had any issues with them and the response times of the NOC, when we do have questions, have always been great. Latencies to several destinations are good and we don't have any bandwidth issues. ___

Re: IoT security

In a recent article ( https://www.schneier.com/blog/archives/2017/02/security_and_th.html), Bruce Schneier sums up the IoT security mitigation issue quite nicely in this paragraph: "The market can't fix this because neither the buyer nor the seller cares. The owners of the webcams and DVRs used in

Re: Telia network quality

We use them globally and often work with their teams. Pros – customer service is excellent, very fast response times and good engineers. They are don’t beat around the bush if the issue is their fault, they will come right out and tell you so you can stop scrambling. They are also pretty good

Re: ATT-Level 3 Peering

We’ve been running into a lot of problems lately with ATT peering lately. Level3 included. We have multiple carriers and most of them have run into this issue over the past couple months where there is congestion between ATT and our carriers, it appears there is a political issue on who should

Re: Data Plane open solutions available for BGP Prefix hijacking

Christos Papadopoulos from Colorado State University just spoke about this yesterday at NANOG 69. The presentation https://www.nanog.org/sites/default/files/3_Papadopoulos_Bgpmon_The_Next_v1.pdf. I'm sure the video will be out soon if it isn't already. On Wed, Feb 8, 2017 at 3:48 AM, Nagarjun Govi

Data Plane open solutions available for BGP Prefix hijacking

Hi All, Does there exists any open source implementations for detection of BGP prefix hijacking using data plane solutions. If not data plane, what are the methods used for detecting BGP IP prefix hijacking. Regards, Nagarjun