On 4/25/12, Jack Bates jba...@brightok.net wrote:
On 4/25/2012 10:31 AM, Owen DeLong wrote:
There is nothing whatsoever wrong with providing the information to
ARIN under NDA. ARIN provides a very good (IMHO) plain English mutual
--
Sure, and small ISP techs immediately think of NDAs when
Owen DeLong wrote:
RWHOIS is a perfectly valid alternative to SWIP.
Owen
I actually got RWHOIS working a while back. But then faced with the
prospect of loading it up, I decided that ARIN templates were actually
easier to use.
And with their restful interface, even more so.
It is an extremely rare ISP that has an rwhois server, and then
ensures that it remains available, up and answering queries.
And even rarer when the ISP ensures that its rwhois records are up to
date and not hopelessly stale.
On Thu, Apr 26, 2012 at 7:22 PM, Joe Maimon jmai...@ttec.com wrote:
Actually, most of the ISPs I know that use RWHOIS instead of SWIP do so tying
the RWHOIS server into their IP management database through an automated
process (if not just live queries).
However, you are right that most ISPs use SWIP.
Owen
On Apr 26, 2012, at 7:02 AM, Suresh Ramasubramanian
They do, they do .. but there's all kinds of rwhois unfortunately.
suresh@frodo 07:41:38 :~$ telnet rwhois.level3.net 4321
Trying 209.244.1.179...
^C [keeps timing out]
suresh@frodo 07:48:17 :~$ telnet rwhois.hostnoc.net 4321
Trying 64.191.49.26...
Connected to rwhois.hostnoc.net.
Escape
Though to be fair that is probably legacy and level3 does swip its customers.
On Thu, Apr 26, 2012 at 8:19 PM, Suresh Ramasubramanian
ops.li...@gmail.com wrote:
suresh@frodo 07:41:38 :~$ telnet rwhois.level3.net 4321
Trying 209.244.1.179...
^C [keeps timing out]
--
Suresh Ramasubramanian
On 4/26/2012 1:05 AM, Jimmy Hess wrote:
If resources are used to provide service to a customer, it is not
unreasonable that ARIN require that this to be shown, what customer,
etc -- the org. assigning or reallocating the resources is required
to have documented this.
In addition to this
On 4/26/12, Joe Maimon jmai...@ttec.com wrote:
Owen DeLong wrote:
RWHOIS is a perfectly valid alternative to SWIP.
I actually got RWHOIS working a while back. But then faced with the
prospect of loading it up, I decided that ARIN templates were actually
easier to use.
The rwhois software
On 4/26/12, Jack Bates jba...@brightok.net wrote:
On 4/26/2012 1:05 AM, Jimmy Hess wrote:
In addition to this documentation, for reallocations of /29 or more
IPs, SWIP or Rwhois is also required by policy.
It is unreasonable to require detailed customer information on /32
static
Excuse the horrible subject :-)
Anyone have anything insightful to say about it? Is it just lots of fuss
about nothing or is it an actual substantial problem?
http://www.fbi.gov/news/stories/2011/november/malware_110911
Update on March 12, 2012: To assist victims affected by the DNSChanger
On Thu, Apr 26, 2012 at 5:38 PM, Jeroen van Aart jer...@mompl.net wrote:
Excuse the horrible subject :-)
Anyone have anything insightful to say about it? Is it just lots of fuss
about nothing or is it an actual substantial problem?
http://www.fbi.gov/news/stories/2011/november/malware_110911
On 26 Apr 2012, at 22:47, Andrew Latham
lath...@gmail.commailto:lath...@gmail.com wrote:
On Thu, Apr 26, 2012 at 5:38 PM, Jeroen van Aart
jer...@mompl.netmailto:jer...@mompl.net wrote:
Yes its a major problem for the users unknowingly infected. To them
it will look like their Internet
On 04/26/2012 11:44 AM, Andrew Latham wrote:
On Thu, Apr 26, 2012 at 5:38 PM, Jeroen van Aartjer...@mompl.net wrote:
Excuse the horrible subject :-)
Anyone have anything insightful to say about it? Is it just lots of fuss
about nothing or is it an actual substantial problem?
I suggest you reach out to Shadowserver or Team Cymru if you're a
netblock owner. They can provide daily reports of infected IPs.
Andy
Andrew Fried
andrew.fr...@gmail.com
On 4/26/12 5:50 PM, Leigh Porter wrote:
On 26 Apr 2012, at 22:47, Andrew Latham
http://www.fbi.gov/news/stories/2011/november/malware_110911/DNS-changer-malware.pdf
On Apr 26, 2012 5:48 PM, Leigh Porter leigh.por...@ukbroadband.com
wrote:
On 26 Apr 2012, at 22:47, Andrew Latham lath...@gmail.commailto:
lath...@gmail.com wrote:
On Thu, Apr 26, 2012 at 5:38 PM, Jeroen van
On Thu, Apr 26, 2012 at 5:57 PM, Kyle Creyts kyle.cre...@gmail.com wrote:
http://www.fbi.gov/news/stories/2011/november/malware_110911/DNS-changer-malware.pdf
On Apr 26, 2012 5:48 PM, Leigh Porter leigh.por...@ukbroadband.com
wrote:
On 26 Apr 2012, at 22:47, Andrew Latham
On Wed, Apr 25, 2012 at 08:31:44AM -0700, Owen DeLong wrote:
On Apr 24, 2012, at 9:57 PM, Jack Bates wrote:
I sometimes wonder what happens to that information; if it sits around
in an archive somewhere in the vast digital repositories of ARIN
awaiting someone to steal it.
That's a very
Thanks, Andrew. I was out and about, and couldn't remember the prefixes
off-hand. They should have been in that PDF, iirc
On Apr 26, 2012 6:01 PM, Andrew Latham lath...@gmail.com wrote:
On Thu, Apr 26, 2012 at 5:57 PM, Kyle Creyts kyle.cre...@gmail.com
wrote:
On 4/26/12, Jack Bates jba...@brightok.net wrote:
In addition to this documentation, for reallocations of /29 or more
IPs, SWIP or Rwhois is also required by policy.
It is unreasonable to require detailed customer information on /32
static assignments which make up the smallest fraction of
The good folks at Shadowserver has been giving us a feed of IPs that are
hitting those DNS server since November and last month we got the last of the
customers cleaned up. Not all ISPs are non-proactive.
Frank
-Original Message-
From: Paul Graydon [mailto:p...@paulgraydon.co.uk]
On Apr 26, 2012, at 8:47 AM, Jack Bates wrote:
On 4/26/2012 1:05 AM, Jimmy Hess wrote:
If resources are used to provide service to a customer, it is not
unreasonable that ARIN require that this to be shown, what customer,
etc -- the org. assigning or reallocating the resources is required
On 4/26/12, Owen DeLong o...@delong.com wrote:
On Apr 26, 2012, at 8:47 AM, Jack Bates wrote:
It is unreasonable to require detailed customer information on /32 static
assignments which make up the smallest fraction of space compared to the
huge blocks of dhcp pools (pools which justify
On 4/26/2012 7:09 PM, Jimmy Hess wrote:
ome show commands will show DHCP server usage, but not conclusive
proof of the utilization of the address space. Because the show
commands are not independently verifiable -- for all the RIR knows,
someone plugged in a big stack of $10 modems just to
On 4/26/2012 5:44 PM, Andrew Latham wrote:
Yes its a major problem for the users unknowingly infected. To them
it will look like their Internet connection is down. Expect ISPs to
field lots of support calls.
And what about the millions of users unknowingly infected with
something else ??
24 matches
Mail list logo