Cable re-management

2008-11-11 Thread Tuc at T-B-O-H.NET
Hi, I wondered if any of the NANO's (Specifically NYCNANO's) have ever brought in another company, or offered as a service to the general world cable re-management. I know Hugh O'Kane is a big place that does it, but I'm looking for said services in NYC. I have client datatel closets that

Re: Potential Prefix Hijack

2008-11-11 Thread Tuc at T-B-O-H.NET
> > Hi! > > > We were hijacked aswell, by 27664 16735 > > > > Our affected prefixes were: > > > > 94.46.0.0/16 > > 194.88.142.0/23 > > 194.11.23.0/24 > > 82.102.0.0/18 > > 195.246.238.0/23 > > 194.107.127.0/24 > > 81.92.192.0/19 > > 193.227.238.0/23 > > > > We are trying to contact them in order

Re: Potential Prefix Hijack

2008-11-11 Thread Tuc at T-B-O-H.NET
> > On Tue, 11 Nov 2008, Mark Tinka wrote: > > Anyone know how we can contact AS16735 and their upstream > > AS27664. We think they are hijacking a number of our > > prefixes (AS24218- and AS17992-originated). > > Have you tried CERT-BR? Uh... I was about to say "they're usu

Re: Sprint / Cogent dispute over?

2008-11-02 Thread Tuc at T-B-O-H.NET
> > On Sun, Nov 02, 2008 at 04:40:20PM -0500, Randy Epstein wrote: > > Problem resolved? > > https://www.sprint.net/cogent.php > Check out the of the document. Me thinks it was a rush job to post up the page and a bit of cut/paste was done. ;) Tuc

Re: The DDOS problem & security BOF: Am i mistaken?

2008-10-15 Thread Tuc at T-B-O-H.NET
> > >> Vixie, Conrad, Manning, Woodcock, Curran, Plzak, Ed Lewis, etc all > >> worked together at ARIN, and have had 22 ARIN employees attend NANOG, > >> including the ARIN executive secretary. ARIN is giving NANOG $50,000 > >> checks, even though the Board members have undisclosed conflicts of >

Re: The DDOS problem & security BOF: Am i mistaken?

2008-10-15 Thread Tuc at T-B-O-H.NET
> > Vixie, Conrad, Manning, Woodcock, Curran, Plzak, Ed Lewis, etc all > worked together at ARIN, and have had 22 ARIN employees attend NANOG, > including the ARIN executive secretary. ARIN is giving NANOG $50,000 > checks, even though the Board members have undisclosed conflicts of > interest. A

Re: Google's PUE

2008-10-01 Thread Tuc at T-B-O-H.NET
> > On Oct 1, 2008, at 2:04 PM, Martin Hannigan wrote: > > >> Personally, I think only a self-owned DC could get that low. A > >> general purpose DC would have too many inefficiencies since someone > >> like Equinix must have randomly sized cages, routers and servers, > >> custom-built suites, e

Re: Silly PUCK/Outages question

2008-09-24 Thread Tuc at T-B-O-H.NET
> > http://downforeveryoneorjustme.com can't resolve it, either. > Sorry, I should have mentioned that. Tuc/TBOH

Silly PUCK/Outages question

2008-09-24 Thread Tuc at T-B-O-H.NET
Hi, I hate to use NANOG for outages... But can anyone else get to puck.nether.net or the outages.org list? A traceroute gets me into Chicago with NTT and then dies...(Along with high ping times between NY and IL for NTT) I'm looking to see if anyone has more info about an S&D pow

Re: So why don't US citizens get this?

2008-07-26 Thread Tuc at T-B-O-H.NET
Hi, So far with 2 test messages, neither have been delivered. It also does claim it leaves your IP in the email so there IS some "tracking" approximately where it came from. I can't verify, of course, since 2 messages have gone into never never land for me. Doesn't look like it ever got d

Re: Exploit for DNS Cache Poisoning - RELEASED

2008-07-24 Thread Tuc at T-B-O-H.NET
> > On Thu, Jul 24, 2008 at 10:32 AM, Tuc at T-B-O-H.NET <[EMAIL PROTECTED]> > wrote: > > > > - -- "Robert D. Scott" <[EMAIL PROTECTED]> wrote: > > > > > > >Now, there is an exploit for it. > > > > > > > >

Re: 2nd Exploit for DNS Cache Poisoning - RELEASED

2008-07-24 Thread Tuc at T-B-O-H.NET
> - -- "Tuc at T-B-O-H.NET" <[EMAIL PROTECTED]> wrote: > > >Not sure if anyone has seen yet, but there is a 2nd > >exploit being circulated. I just picked it up on metasploits > >SVN trunk > > I haven't seen that one yet, but I just ran acr

2nd Exploit for DNS Cache Poisoning - RELEASED

2008-07-24 Thread Tuc at T-B-O-H.NET
Hi, Not sure if anyone has seen yet, but there is a 2nd exploit being circulated. I just picked it up on metasploits SVN trunk The first was called "baliwicked_host", and the description was : This exploit attacks a fairly ubiquitous flaw in DNS implementations which Dan Kam

Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?

2008-07-24 Thread Tuc at T-B-O-H.NET
> > Jorge Amodio wrote: > > > /etc/hosts rulez !!! :-) > > Wonder if SRI wstill has the files. > Using the methods in RFC-952 and RFC-953 I wasn't able to get them. I can't find if there is an updated RFC/name to use. Tuc/TBOH ;)

Re: Exploit for DNS Cache Poisoning - RELEASED

2008-07-23 Thread Tuc at T-B-O-H.NET
> - -- "Robert D. Scott" <[EMAIL PROTECTED]> wrote: > > >Now, there is an exploit for it. > > > >http://www.caughq.org/exploits/CAU-EX-2008-0002.txt > > Now also (mirrored) here: > > http://www.milw0rm.com/exploits/6122 > > ...and probably a slew of other places, too. ;-) > The change

Re: Exploit for DNS Cache Poisoning - RELEASED

2008-07-23 Thread Tuc at T-B-O-H.NET
> > Now, there is an exploit for it. > > http://www.caughq.org/exploits/CAU-EX-2008-0002.txt > For anyone looking to use it, you MUST update the frameworks libraries. Some of the code only came out ~5 hours ago that it needs. Tuc/TBOH

Re: Multiple DNS implementations vulnerable to cache poisoning

2008-07-11 Thread Tuc at T-B-O-H.NET
> Reading through the JavaScript that drives , > it appears to be pretty easy to write a non-AJAX client to query Dan's > service. I threw one together in perl, named "noclicky", that allows you > to use Dan's service against any nameserver specified on the command line. >

Re: ICANN opens up Pandora's Box of new TLDs

2008-06-29 Thread Tuc at T-B-O-H.NET
> > You do have a choice if you're not concerned about the deliverability of > your e-mail. Remember, the Internet remains a group of service > providers/organizations/subscribers that voluntarily work together and can > choose what goes in or out. And so if they decide not to receive traffic >

Re: ICANN opens up Pandora's Box of new TLDs

2008-06-29 Thread Tuc at T-B-O-H.NET
> > This requires serious elaboration. How could you use a domain in > > ".exe" to actually attack someone? (No handwaving, please, actual > > study.) > > > > I think it would be the other way around - I would assume that that > was a near worthless TLD, as it > would come with a built in DOS :

Re: what problem are we solving? (was Re: ICANN opens up

2008-06-28 Thread Tuc at T-B-O-H.NET
> > One way to provide protection is too allow those who have the domain portion > of any domain.(com|net|org|...) to have first dibs for the domain of any new > gTLD. i.e. if nanog.org, nanog.com, nanog.net, etc. would have first dibs > on nanog.thisisgreatstuff. > > Or is that too simplistic a

Re: ICANN opens up Pandora's Box of new TLDs

2008-06-26 Thread Tuc at T-B-O-H.NET
> > Once upon a time, Ken Simpson <[EMAIL PROTECTED]> said: > > Oooh -- dibs on that one. And .some, so you can register awe.some, > > trouble.some, and fear.some. And .ous, which would allow humm.ous, > > seri.ous, fabul.ous, etc.. > > Somebody on /. mentioned .dot, so you could tell someone

Re: ICANN opens up Pandora's Box of new TLDs

2008-06-26 Thread Tuc at T-B-O-H.NET
> > Two years ago I posed the question here about the need for TLDs > (http://www.mcabee.org/lists/nanog/May-06/msg00110.html). > This all should have been solved by allowing those who wanted/applied for TLDs to be granted them back in 1995 when originally requested : http://www.gtld-mou.

Re: How not to make an error page (was: OT: www.Amazon.com down?)

2008-06-06 Thread Tuc at T-B-O-H.NET
Maybe they should buy time on their own EC2 if they are short of webservers. :) The staus page http://status.aws.amazon.com/ shows them "Green and Clean" Tuc > > I've no idea what Amazon uses for Load Balancers, but I'm pretty sure > that error message is the default erro

Re: NANOG NYC Event

2008-06-02 Thread Tuc at T-B-O-H.NET
> NYC is so large and interesing that I wouldn't spend much time chasing > food. You're in foodie heaven. See the Statute of Liberty, the 9/11 > memorial, Empire State Building, ride the subway, go to Hoboken, or > catch a glimpse of the UN. All great sites. Personally, I'd like to > find a karaoke

Re: [OFFTOPIC] Re: NANOG NYC Event

2008-06-02 Thread Tuc at T-B-O-H.NET
> > Datavision on 5th avenue near 40th street (Manhattan) has saved me in a > pinch when I've needed multimode cables (still dunno where to buy smf at > a retail shop in nyc). > Just be careful you pay 100% attention to what you want and what you get. I went for a disk drive, brought it

Re: L3/RR "incident" (Previously Network meltdowns anywhere in US?)

2008-05-29 Thread Tuc at T-B-O-H.NET
Hi, Another case of getting much better help via NANOG than through a NOC. Turns out there was an issue, and it subsequently was fixed in a relatively small timeframe. Atleast a /20 of RR was not visible inside of L3, I'm not sure if it was more. Thanks again to those pe

Re: Network meltdowns anywhere in US?

2008-05-28 Thread Tuc at T-B-O-H.NET
> On Wed, May 28, 2008 at 4:05 PM, Tuc at T-B-O-H.NET <[EMAIL PROTECTED]> wrote: > > > Hi, > > > >Sorry, would have posted this elsewhere, but I can't get > > to alot of places... > > > >I originally started chasing not bein

Network meltdowns anywhere in US?

2008-05-28 Thread Tuc at T-B-O-H.NET
Hi, Sorry, would have posted this elsewhere, but I can't get to alot of places... I originally started chasing not being able to get to 71.74.56.243 (RR Mail server). I then found out neither L3 nor my other connection saw it in the table. I checked a few other router servers, so

Re: Hurricane season starts June 1: Carriers harden networks

2008-05-27 Thread Tuc at T-B-O-H.NET
> > > On May 27, 2008, at 6:47 PM, Jerry Dixon wrote: > > > Jared nailed it on the head. It is absolutely critical to get to > > know who > > your State JFO POC is, State EOC POC, and have the National > > Communication > > Systems Hotline on speed dial or at least in your cell. They can h

Re: Hurricane season starts June 1: Carriers harden networks

2008-05-27 Thread Tuc at T-B-O-H.NET
> > > > > > The official spokespeople don't mention it, but there is also a tendency > > for local officials to divert fuel delivery trucks for their use instead > > of maintaining communication facilities. > > > > Perhaps a company will get in the business of labeling trucks that > normally

Re: [NANOG] IOS rootkits

2008-05-17 Thread Tuc at T-B-O-H.NET
> > > > I'd love to know what magical mystical protection your routers have that > > will > > enable them to avoid the same fate as every other device and operating > > system > > has. There's only one thing up there that doesn't have known rootkits > > in the wild. Yet. > > > The question

Re: ASN Name of the week

2007-07-25 Thread Tuc at T-B-O-H.NET
> Hi, > > ASNV6, no clue... but 32-bit ASN are already prepared, at least in > the registry world. > It was just a joke, since the AS is getting high up there in the 2 byte range (2/3's of the available ones down I think) and was implying that moving to 4 byte would be as fast/efficient/

Re: San Francisco Power Outage

2007-07-24 Thread Tuc at T-B-O-H.NET
> On Jul 24, 2007, at 6:54 PM, Seth Mattinen wrote: > > > > I have a question: does anyone seriously accept "oh, power trouble" > > as a reason your servers went offline? Where's the generators? UPS? > > Testing said combination of UPS and generators? What if it was > > important? I honestly

Re: ASN Name of the week

2007-07-24 Thread Tuc at T-B-O-H.NET
> > > This just appeared in my BGP > > ASN Number NameHandle > Location Organization >40543 1-800-GOT-JUNK [ABI19-ARIN] > {Vancouver, BC, CA} 1-800-GOT-JUNK > > I guess somebo

Email lists pertaining to NA colo sites?

2007-07-24 Thread Tuc at T-B-O-H.NET
Hi, I was wondering if someone was running a single repository of lists run by either Colo sites, or others in support of colo sites, in the North America. (Like for 25 Broadway {Adam?}, or even more specifically 118th, 5th floor, room 518 and anyone that might be in that room in the next