On Mon, Jul 23, 2018 at 03:22:46PM +0200, Ramy Hashish wrote:
> I am planning to build up a security team of fresh engineers whom are
> "network oriented", any advice on the knowledge resources we can start
> with?
To add to the academic programs -
CU Boulder has an excellent telecom program f
Just to point out -
Data about md5 attacks from various organizations will depend on a number of
factors such as -
Is BGP TTL Security check being done?
Are anti-spoofing ACLs enabled?
uRPF enabled? Strict or Loose?
BGP Session over a separate interface (tunnel)?
With Gratitude,
Pratik Lotia
Instead of rtbh I would suggest blocking/rate limiting common ports used in
DDoS attacks. That will block 90% of the DDoS attacks. We recently open sourced
a BGP Flowspec based tool for DDoS Mitigation. It applies Flowspec rules per
victim IP Addr.
https://github.com/racompton/docker-auto-flowsp
t 31, 2018 11:13 AM
To: NANOG list
Subject: Re: automatic rtbh trigger using flow data
On 31 Aug 2018, at 23:53, Lotia, Pratik M wrote:
> Instead of rtbh I would suggest blocking/rate limiting common ports
> used in DDoS attacks.
This isn't an 'instead of', it's an &#x
Mike,
Can you shed some light on the use case? Looks like you are confusing ACLs and
BGP Flowspec. ACLs and Flowspec rules are similar in some ways but they have a
different use case. ACLs cannot be configured using Flowspec announcements.
Flowspec can be loosely explained as 'Routing based on
9498/Airtel seems to be leaking a lot of routes.
Source: https://bgpstream.com/
All Events for BGP Stream.
Event type
Country
ASN
Start time (UTC)
End time (UTC)
More info
BGP Leak
Origin AS: Etisalat Lanka (Pvt) Ltd. (AS 17470)
Leaker AS: BHARTI Airtel Ltd. (AS 9498)
2018-11-15 19:41:26
Hello all, was curious to know the community’s opinion on whether an ISP should
block domains hosting CPE (child pornography exploitation) content? Interpol
has a ‘worst-of’ list which contains such domains and it wants ISPs to block it.
On one side we want the ISP to not do any kind of censorshi
el, but even that has workarounds. I
would think CPE is a violation of terms of "most" registrars.
-John
On 12/7/18 1:06 AM, Lotia, Pratik M wrote:
Hello all, was curious to know the community’s opinion on whether an ISP should
block domains hosting CPE (child pornography exploitatio
>>What is “ROKSO's DROP list” ?
ROKSO:
The Register of Known Spam Operations database is a depository of information
and evidence on known persistent spam operations, assembled to assist service
providers with customer vetting and the Infosec industry with Actor Attribution.
Spamhaus (https://w
N exit
> IP addresses from another countries instead of their home IPs.
>
> Hey. It is a very very bad and very very danger game. Avoid it.
> Goal of that game is to SWITCH ON that system BY ANY REASON. CP, war,
> gambling - any reason that will work. After the syst
> >>
> >> On Tue, Dec 11, 2018, 10:56 William Anderson <mailto:ne...@well.com>
> >> <mailto:ne...@well.com <mailto:ne...@well.com>> wrote:
> >>
> >> On Fri, 7 Dec 2018 at 06:08, Lotia, Pratik M
&g
11 matches
Mail list logo
