Re: The scale of streaming video on the Internet.

On 12/3/2010 8:16 AM, Neil Harris wrote: On 02/12/10 20:21, Leo Bicknell wrote: Comcast has around ~15 million high speed Internet subscribers (based on year old data, I'm sure it is higher), which means at peak usage around 0.3% of all Comcast high speed users would be watching. That's an in

Re: (wikileaks) Fwd: [funsec] And Google becomes a DNS..

On 12/5/2010 9:50 AM, Gadi Evron wrote: I withhold comment... "discuss amongst yourselves". Best, Gadi. Original Message Subject: [funsec] And Google becomes a DNS.. Date: Sun, 5 Dec 2010 17:34:50 +0200 From: Imri Goldberg To: funsec Found on reddit: http://i.imgur.com

Re: ipfix/netflow/sflow generator for Linux

Have you considered argus? It can deliver "argus flows" from multiple interfaces. From http://www.qosient.com/argus/ : Argus can be considered an implementation of the architecture described in the IETF IPFIX Working Group. Argus pre-dates IPFIX, and the project has actively contributed to the I

Re: SSL Certificates and ... Providers

I've found rapidssl wildcards are generally the cheapest (~$120), and are not limited to a number of servers. In practice, neither are the other brands. Ken On 12/27/2012 1:47 PM, Blake Pfankuch wrote: > Ok, so this might be a little off topic but I am trying to validate something > a vendor is t

Re: SSL Certificates

theSSLstore has good reseller pricing on a variety of certs. ~ $10 domain validated rapidssl certs in about 5 minutes. More expensive and time consuming certs are available, Verisign, Geotrust, Thawte, greenbars, wildcards, etc.. Ken On 1/6/2012 8:15 AM, Michael Carey wrote: Looking for a reco

Re: DNS Attacks

On 1/18/2012 1:45 AM, Leigh Porter wrote: On 18 Jan 2012, at 05:06, "toor" wrote: Hi list, I am wondering if anyone else has seen a large amount of DNS queries coming from various IP ranges in China. I have been trying to find a pattern in the attacks but so far I have come up blank. I am

Re: No DNS poisoning at Google (in case of trouble, blame the DNS)

On 6/28/2012 6:05 AM, Tei wrote: If you use these project that already do 99% of what the customer need, plus a 120% the customer not need (and perhaps don't want). The code quality will be normally be good, with **horrible** exceptions. But sooner or later, (weeks) there will be exploits for

Re: Helix Solutions

I wonder who that building on their website actually belongs to, or if it even exists? http://www.tineye.com/search/776bee3aea6d8f901758534a2fb3b9d5718ad256/ heh heh. Ken On 7/5/2013 8:06 AM, Alessandro Ratti wrote: > Hi list, > > I have a question for you. > Anyone knows or has had to deal with

Re: Nato warns of strike against cyber attackers

On 6/9/2010 1:43 PM, Larry Sheldon wrote: On 6/9/2010 13:35, JC Dill wrote: IMHO it is impossible to regulate the internet as a whole. Exactly so. That is precisely why you don't want somebody else to attempt it. The only hope is for everybody to take personal responsibility for their litt

Re: UCEProtect Level 3

Suresh Ramasubramanian wrote: On Fri, May 8, 2009 at 12:04 AM, Raleigh Apple wrote: Is anyone else out there aware that the UCEProtect Level 3 email blacklist blocks entire AS? Is there anyone out there aware of any significant (or larger than 'man and his dog on a DSL') mail provider using

Re: RIPE NCC interview about IPv6 deployment with Randy Bush

http://downforeveryoneorjustme.com/http://youtube.com/ "It's not just you! http://youtube.com looks down from here." Ken Arno Meulenkamp wrote: As part of our IPv6 training project, that consists of face to face training and on-line learning modules and testimonials, we are proud to announce

Re: questionable email filtering policies?

On 07/24/2009 06:39 AM, Florian Weimer wrote: * Chris Hills: On the topic of mail rejection I have come across a few sites that reject mail, even to postmaster@, from domains that have one or more ipv6-only MX records listed (i.e. a domain name with but no A record(s)). The common factor s

Re: NANOG 44 and ARIN XXII - Live from Los Angeles in HD video

Anton Kapela wrote: Streams are back up for the last day of NANOG, later covering ARIN for the remainder of the week. Since it's mostly talking heads, I've lowered the bitrate of the h264 versions, and removed cpu-consuming options (i.e. no CABAC) ~27 megabit MPEG2 HD: udp://233.0.236.20:123

Re: postini contact?

King Spook wrote: On Tue, Dec 16, 2008 at 9:36 PM, Frank Bulk wrote: I've only had to call them once (turned out to be our problem) but they were reasonably helpful. If I had to compare it to any other freemail provider, I would have to say Postini was fantastic. Frank [Sorry for the semi-h

Re: Network diagram software

Ray Burkholder wrote: Mathias Wolkert wrote: I'd like to know what software people are using to document networks. Visio is obvious but feels like a straight jacket to me. I liked netviz but it seems owned by CA and unsupported nowadays. What do you use? OmniGraffle is the better Visio. Omn

Re: sorta-OT graph snmp values

GD::Graph::lines does this easily, and there are plenty of examples to work from. (might be too much a pain if you don't have GD available) Ken Scott Weeks wrote: First, please don't respond with "use mrtg, rrdtool, cricket, etc, etc." Silly 'layer 8' reasons are keeping me from being able

Re: Yahoo and their mail filters..

Jo Rhett wrote: On Feb 25, 2009, at 8:14 AM, Ray Corbin wrote: It depends on your environment. I've seen where it is helpful and where it is overwhelming. If you are a smaller company and want to know why you keep getting blocked then those should help. If you are a larger company and get a se

Re: Redundant Array of Inexpensive ISP's?

Tim Utschig wrote: [Please reply off-list. I'll summarize back to the list if there is more than a little interest in me doing so.] Please do. There are many rural ISPs and WISPs that might benefit from a decent look at these products, or any open source clones that might be available to te

Re: Important New Requirement for IPv4 Requests

Chris Adams wrote: Once upon a time, Jo Rhett said: Since virtual web hosting has no technical justification for IP space, I refuse it. SSL and FTP are techincal justifications for an IP per site. Right. Also, monthly bandwidth monitoring/shaping/capping are more easily done using one i

Re: Important New Requirement for IPv4 Requests

Ricky Beam wrote: On Tue, 21 Apr 2009 19:22:08 -0400, Ken A wrote: Also, monthly bandwidth monitoring/shaping/capping are more easily done using one ip per hosted domain... That's why the infrastructure is "virtualized" and you monitor at or behind the firewall(s) and/or

Re: https

Robert Kisteleki wrote: Patrick W. Gilmore wrote: Anyone have a foolproof way to get grandma to always put "https://"; in front of "www"? I understand this is a huge can of worms, but maybe it's time to change the default behavior of browsers from http to https...? I'm sure it's doable in F

Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?

Paul Vixie wrote: "Refuses to patch" sounds likes FUD. go ask 'em, and let us all know what they say. AT&T dsl line. #dig +short porttest.dns-oarc.net TXT @68.94.157.1 z.y.x.w.v.u.t.s.r.q.p.o.n.m.l.k.j.i.h.g.f.e.d.c.b.a.pt.dns-oarc.net. "65.68.49.31 is POOR: 26 queries in 1.4 seconds from 1

Re: Paul Vixie: Re: [dns-operations] DNS issue accidentally leaked?

Steve Tornio wrote: On Jul 24, 2008, at 12:17 PM, Duane Wessels wrote: xpara.com tests to lock up my iPhone, or I would use that checker to verify the iPhone DNS. Anyone have a link to a decent test that I could run on the iPhone? Give this one a try: http://entropy.dns-oarc.net/test/

Re: Looking for an IPv6 naysayer...

On 2/9/2011 3:17 PM, George Bonser wrote: Hmm, I am not aware of Comcast (or any other large MSO) doing any NAT on large scale. Having said that almost all of the DSL customers in the US are being NAT'ed, but on the edge device (DSL modem) rather than in the core. -- Scott Helms Vice Presid

Re: Looking for an IPv6 naysayer...

On 2/9/2011 3:50 PM, Scott Helms wrote: On 2/9/2011 4:36 PM, Ken A wrote: 10/8 is the management network on my cable modem. The cable modem bridges your wan 'real' ip(s) through to your PC or router. At least that's how Suddenlink does it here. The customer is normally 

Re: Looking for an IPv6 naysayer...

On 2/10/2011 3:19 PM, George Herbert wrote: On Wed, Feb 9, 2011 at 6:11 PM, Fred Richards wrote: On Wed, Feb 9, 2011 at 6:47 PM, George Bonser wrote: I have yet to see a broadband provider that configures a network so that individual nodes in the home network get global IPs. One huge re