RE: Broadcast television in an IP world

Besides Netflix, does anyone else offer CDN boxes for their services? I'm also guessing that most content won't benefit from multicast to homes too much? I can see where multicast benefits sports and news (and probably catching commercials for people). But in a world where I'm more than happy to

Re: A perl script to convert Cisco IOS/Nexus/ASA configurations to HTML for easier comprehension

Cpan? Cpan minus? Or just download [1] and there's probably a Make::Maker or similar Build.PL to build a makefile or just install it for you - there's a #perl channel on freenode if you need more and Google doesn't get you set. 1.

Re: CALEA

The OP is also asking someone to register a throwaway email, subscribe, and respond "yes" so that the owner can't be tracked to their employer. That's kind of a steep ask for something that's almost moot. On May 9, 2016 23:16, "Greg Sowell" wrote: I haven't had a request in

Re: improved NANOG filtering

AFAIK (IDK how either) this hasn't been a big issue in the past few years. Is it really worth worrying about? I notified the MARC admin and it was removed there within a few hours too - a dozen easily tracked messages in a few hours and a few hours after that, it's done (or more like, filteres).

Fw: new message

Hey! New message, please read <http://kovvali.org/matter.php?sj44> shawn wilson --- Този имейл е проверен за вируси от Avast. https://www.avast.com/antivirus

Fw: new message

Hey! New message, please read <http://funezy.com/outside.php?rl5> shawn wilson --- Този имейл е проверен за вируси от Avast. https://www.avast.com/antivirus

Re: inexpensive url-filtering db

On Oct 16, 2015 6:52 AM, "MKS" wrote: > > Now I'm looking for an inexpensive url-filtering database, for integration > into a squid like solution. > Perhaps there is another mailing-list more relevant for this kind of issues? Squid like or squid? I'd ask on the squid

Re: Residential VSAT experiences?

On Jun 22, 2015 6:14 PM, William Herrin b...@herrin.us wrote: Two-way satellite systems based on SV's in geostationary orbit (like the two you're considering) have high latency. 22,000 miles out, another 22,000 miles back and do it again for the return packet. Just a minor nitpick - that's

Re: REMINDER: LEAP SECOND

On Jun 23, 2015 6:26 AM, Nick Hilliard n...@foobar.org wrote: Blocking NTP at the NTP edge will probably work fine for most situations. Bear in mind that your NTP edge is not necessarily the same as your network edge. E.g. you might have internal GPS / radio sources which could

Re: REMINDER: LEAP SECOND

On Mon, Jun 22, 2015, 08:29 Stephane Bortzmeyer bortzme...@nic.fr wrote: On Mon, Jun 22, 2015 at 01:15:41PM +0100, Tony Finch d...@dotat.at wrote a message of 15 lines which said: The problems are that UTC is unpredictable, That's because the earth rotation is unpredictable. Any time

Re: REMINDER: LEAP SECOND

On Jun 19, 2015 2:05 PM, Saku Ytti s...@ytti.fi wrote: On (2015-06-19 13:06 -0400), Jay Ashworth wrote: Hey, The IERS will be adding a second to time again on my birthday; 2015-06-30T23:59:60 Hopefully this is last leap second we'll ever see. Non-monotonic time is an abomination and

Re: REMINDER: LEAP SECOND

On Sat, Jun 20, 2015, 14:16 Harlan Stenn st...@ntp.org wrote: shawn wilson writes: ... I mean letting computers figure out slower earth rotation on the fly would seem more accurate than leap seconds anyway. And then all of us who do earthly things and would like simpler libraries could

Re: OPM Data Breach - Whitehouse Petition - Help Wanted

On Jun 17, 2015 8:56 PM, Ronald F. Guilmette r...@tristatelogic.com wrote: *) The Director of the Office of Personnel Management, Ms. Katherine Archueta was warned, repeatedly, and over several years, by her own department's Inspector General (IG) that many of OPM's

Re: OPM Data Breach - Whitehouse Petition - Help Wanted

On Thu, Jun 18, 2015 at 1:15 PM, Nick B n...@pelagiris.org wrote: Having worked for several departments like this, I can assure you her flustsration was not about her inability to hire competent people or the lack of her superiors to prioritize the modernization project. Unless you have

Re: eBay is looking for network heavies...

On Jun 11, 2015 7:07 AM, jim deleskie deles...@gmail.com wrote: There is a good reason there aren't LOTS of good neteng in the 30-35 or under 30 range with lots of experience. Its call the hell we went though for a while after 2000 working in this industry. Many of us lost jobs and couldn't

Re: eBay is looking for network heavies...

On Jun 8, 2015 10:11 PM, Shane Ronan sh...@ronan-online.com wrote: Certs have ruined the industry. Certs have made the industry more interesting. After all, without certs, we'd have less stupid to point at and laugh (or scream). And HR screeners would need to know something about the position

RE: eBay is looking for network heavies...

On Jun 7, 2015 4:12 AM, Joshua Riesenweber joshua.riesenwe...@outlook.com wrote: (In my experience it takes more time to study a certification track than to learn just what you need to get a job done.) Stated different, no job is going to teach you how to pass a cert. And no cert is going to

Re: eBay is looking for network heavies...

On Jun 7, 2015 10:59 PM, Jay Ashworth j...@baylink.com wrote: I don't RTFM, I google. It's often faster, so many of TFMs are online now. Until Google supports regex and some of the duckduckgo module features, I'll be faster getting to reference to you will on Google. Notice I said

Re: eBay is looking for network heavies...

On Jun 8, 2015 1:42 AM, shawn wilson ag4ve...@gmail.com wrote: On Jun 7, 2015 10:59 PM, Jay Ashworth j...@baylink.com wrote: I don't RTFM, I google. It's often faster, so many of TFMs are online now. Until Google supports regex and some of the duckduckgo module features, I'll

Re: eBay is looking for network heavies...

On Fri, Jun 5, 2015 at 9:57 PM, James Laszko jam...@mythostech.com wrote: I asked one of my guys to tracert in windows for something and he executed pathping. I have never seen that in 25 years Go figure! Yep, I learned something new (though IDK I'll ever use it - I'm guessing it's

Re: eBay is looking for network heavies...

My first thought on reading that was who the hell cares if a person knows about internet culture. But than I had to reconsider - it's a very apt way of telling if someone read the right books :) I would also add Ritchie, Thompson, and Diffie to that list (since you ask about Larry, it's only

Re: eBay is looking for network heavies...

On Sat, Jun 6, 2015 at 8:33 AM, tvest tv...@eyeconomics.com wrote: You are such an optimist ;-) Sometimes those who can remember the past get to repeat it anyway. I remember seeing a slide deck for devs saying all new web apps are recreating mail, write, wall, and finger (the person posted it

Re: eBay is looking for network heavies...

On Sat, Jun 6, 2015 at 12:27 PM, Dave Taht dave.t...@gmail.com wrote: On Sat, Jun 6, 2015 at 6:53 AM, Brandon Ross br...@pobox.com wrote: I also concur. There is most certainly a negative correlation between certs and clue in my experience, having met 10s of certificate holders. Oh good.

Re: stacking pdu

Well, I was kinda thinking this would turn out to be a dumb question / have an obvious answer. Apparently not. But it seems I can't go buy a solution either. I guess there isn't much of a market (though I am just talking software - maybe someone could make an update :) ).

stacking pdu

Is there a way to stack PDUs? like, with 30A 220, we need more plugs than power but I'd like them to communicate to make sure we don't over power the circuit. Do any APC or Triplite systems support this?

Re: Password storage (was Re: gmail security is a joke)

On May 28, 2015 10:11 AM, Christopher Morrow morrowc.li...@gmail.com wrote: On Thu, May 28, 2015 at 5:29 AM, Robert Kisteleki rob...@ripe.net wrote: Bcrypt or PBKDF2 with random salts per password is really what anyone storing passwords should be using today. One thing to remember is

Re: rack cable length

Ok I've got a few comments offlist too and they all seem to draw the same conclusion - crimp your own length. Thanks all for the input. On Apr 17, 2015 4:11 PM, William Herrin b...@herrin.us wrote: On Fri, Apr 17, 2015 at 3:17 PM, Joe McLeod jmcl...@musfiber.net wrote: Or you build the cable

Re: Historical records of POCs

Asked archive.org? On Apr 18, 2015 12:03 PM, Roy r.engehau...@gmail.com wrote: Is there an archive of POCs for some of the early netblocks (1985 or so)? We are trying to figure out some corporate history.

rack cable length

This is probably a stupid question, but We've got a few racks in a colo. The racks don't have any decent cable management (square metal holes to attach velcro to). We either order cable too long and end up with lots of loops which get in the way (no place to loop lots of excess really) or too

Re: rack cable length

On Fri, Apr 17, 2015 at 3:22 PM, Bob Evans b...@fiberinternetcenter.com wrote: You must build them if you want the professional look. No way around that - unless you want to take up rack space with some sort of cable management wrapping system and that becomes a pain to make future changes or

Re: rack cable length

On Fri, Apr 17, 2015 at 3:23 PM, Justin Wilson - MTIN li...@mtin.net wrote: Copper and fiber patch panels are key. This way you can control the length from the patch to the device (router, switch,server). Yeah, I am talking about just the runs in the rack - I don't see a(nother) patch panel

Re: Fixing Google geolocation screwups

On Apr 8, 2015 7:19 AM, Rob Seastrom r...@seastrom.com wrote: Blair Trosper blair.tros...@gmail.com writes: MaxMind (a great product) I've heard anecdotal accounts of MaxMind intentionally marking all address blocks assigned to a VPN vendor as open proxy even when advised repeatedly that

Re: FCC releases Open Internet document

On Mar 12, 2015 11:01 AM, Ca By cb.li...@gmail.com wrote: For the first time to the public http://transition.fcc.gov/Daily_Releases/Daily_Business/2015/db0312/FCC-15-24A1.pdf Enjoy. Uh yeah, I'll wait for the reviews when y'all get done trudging through that...

Re: whois server features

On Jan 8, 2015 4:23 AM, Franck Martin fmar...@linkedin.com wrote: On Jan 7, 2015, at 10:38 AM, shawn wilson ag4ve...@gmail.com wrote: Is there a list of NIC (and other popular whois server) features (what can be searched on) and what data they provide (and what title they give

Re: whois server features

On Wed, Jan 7, 2015 at 10:22 PM, John Levine jo...@iecc.com wrote: ARIN, APNIC, and RIPE have prototypes already that are a lot easier to script than the text WHOIS. Meaning the data structure is in place or they have a RDAP service up? If so, is it publicly accessible?

Re: whois server features

On Wed, Jan 7, 2015 at 11:23 PM, John R. Levine jo...@iecc.com wrote: Google is your friend. Woops, you're right

Re: whois server features

On Wed, Jan 7, 2015 at 3:32 PM, anthony kasza anthony.ka...@gmail.com wrote: Scripting languages have modules that can parse many registrar whois formats. However, most are incomplete due to the plurality of output formats as stated above. I, and i suspect many others, wouls *love* to see a

Re: whois server features

On Wed, Jan 7, 2015 at 3:07 PM, Bill Woodcock wo...@pch.net wrote: So, you’re not running into a poorly-documented mystery, you’ve run afoul of one of the rotten armpits of the shub-Internet. So there's no consensus between NICs for the information they should have in whois and what search

Re: whois server features

On Wed, Jan 7, 2015 at 1:53 PM, Bill Woodcock wo...@pch.net wrote: On Jan 7, 2015, at 10:38 AM, shawn wilson ag4ve...@gmail.com wrote: Is there a list of NIC (and other popular whois server) features (what can be searched on) and what data they provide (and what title they give it)? Heh

Fwd: whois server features

Is there a list of NIC (and other popular whois server) features (what can be searched on) and what data they provide (and what title they give it)? A quick search yields: http://www.ripe.net/ripe/docs/ripe-358 https://www.arin.net/resources/whoisrws/whois_diff.html

Re: Fibre Channel Network

On Jan 4, 2015 8:04 AM, Rob Seastrom r...@seastrom.com wrote: symack sym...@gmail.com writes: Hello Everyone, Have a few FC cards and a switch that I would like to use for backplane related packets (ie, local network). I am totally new to FC and would like to know will I need a

Fwd: malware.watch rdns

I asked on this on another list I'm on and didn't get any reply, so I figured I might have better luck here Anyone know what malware.watch. is doing? Below is basically everything I could find: http://www.robtex.net/en/advisory/dns/watch/malware/ssl-scanning-015/ They've got a web page, but

Trying to identify hosts

We get lots of probes from subdomains of southwestdoor.com and secureserver.net 's SOA and I'm curious who these guys are? The only web page I could find was southwestdoor redirects to http://www.arcadiacustoms.com and then to http://arcadia-custom.com/ (a hardware company is causing unwanted

Re: Trying to identify hosts

. On Mon, Oct 27, 2014 at 11:57 AM, shawn wilson ag4ve...@gmail.com wrote: We get lots of probes from subdomains of southwestdoor.com and secureserver.net 's SOA and I'm curious who these guys are? The only web page I could find was southwestdoor redirects to http://www.arcadiacustoms.com

Re: Trying to identify hosts

=Scottsdale/O=Starfield Technologies, Inc./CN=Starfield Root Certificate Authority - G2 i:/C=US/O=Starfield Technologies, Inc./OU=Starfield Class 2 Certification Authority --- On Mon, Oct 27, 2014 at 1:21 PM, shawn wilson ag4ve...@gmail.com wrote: Ok, got a few off list replies

Re: Why is .gov only for US government agencies?

On Oct 19, 2014 9:53 AM, Mike. the.li...@mgm51.com wrote: I'd rather see .gov (and by implication, .edu) usage phased out and replaced by country-specific domain names (e.g. fed.us). imo, the better way to fix an anachronism is not to bend the rules so the offenders are not so offensive,

Re: Why is .gov only for US government agencies?

On Mon, Oct 20, 2014 at 10:20 AM, valdis.kletni...@vt.edu wrote: On Mon, 20 Oct 2014 05:58:01 -0400, shawn wilson said: Bad idea. I'm betting we'd find half of gov web sites down due to not being able to reboot and issues in old coldfusion and IIS and the like (and needing to fix static

Re: Why is .gov only for US government agencies?

On Mon, Oct 20, 2014 at 10:52 AM, Stephen Satchell l...@satchell.net wrote: On 10/20/2014 07:20 AM, valdis.kletni...@vt.edu wrote: On Mon, 20 Oct 2014 05:58:01 -0400, shawn wilson said: Bad idea. I'm betting we'd find half of gov web sites down due to not being able to reboot and issues

Re: Why is .gov only for US government agencies?

On Mon, Oct 20, 2014 at 11:44 AM, valdis.kletni...@vt.edu wrote: On Mon, 20 Oct 2014 10:45:44 -0400, shawn wilson said: 3. I don't want to see the report on how many Allaire ColdFusion with NT 3.5 .gov sites are out there any other reasons not to do this? Maybe, but here's the real

Re: Why is .gov only for US government agencies?

On Mon, Oct 20, 2014 at 6:26 PM, Doug Barton do...@dougbarton.us wrote: 3. Set a target date for the removal of those TLDs for 10 years in the future Because this worked for IPv6? Obviously there are various implementation details for effecting the move, but application-layer stuff will be

Re: Why is .gov only for US government agencies?

On Oct 20, 2014 9:33 PM, Bill Woodcock wo...@pch.net wrote: On Oct 21, 2014, at 9:23 AM, Jared Mauch ja...@puck.nether.net wrote: Breaking tons of things is an interesting opinion of why not”. Eh. Off the top of my head, I see two categories of breakage: 1) things that hard-code a

Re: Why is .gov only for US government agencies?

On Oct 20, 2014 11:54 PM, Doug Barton do...@dougbarton.us wrote: On 10/20/14 4:07 PM, shawn wilson wrote: Do we really have any prior examples that are even .1 the size of the usgov public system? Again, I'm not just referring to BIND and Windows DNS (and probably some Netware 4 etc stuff

Re: ipmi access

On Mon, Jun 2, 2014 at 8:26 AM, Randy Bush ra...@psg.com wrote: I use OpenVPN to access an Admin/sandboxed network with insecure portals, wiki, and ipmi. h. 'cept when it is the openvpn server's ipmi. but good hack. i may use it, as i already do openvpn. thanks. So, kinda the same

Re: ipmi access

On Mon, Jun 2, 2014 at 10:14 AM, Jared Mauch ja...@puck.nether.net wrote: My IPMI (super micro) you can put v6 and v4 filters into for protecting the ip space from trusted sources. Has my home static ip ranges and a few intermediary ranges that I also have access to. Mmmm, and an ip has

Re: ipmi access

iLo is a value add to HP. DRAC sucks (so I'd replace it and then Dell would have hardware under support with some unknown IPMI). Supermicro, Tyan, etc - idk. Really, it would be nice to have an open card that does this. Even if the card were limited to what you could do with DMA and some serial

Re: ipmi access

On Mon, Jun 2, 2014 at 3:19 PM, Nikolay Shopik sho...@inblock.ru wrote: Java only used for mouting images. KVM is transfered via VNC protocol iirc. They're not re-inventing the wheel, but I think KVM is generally some VNC stream embedded in http(s) which VNC clients can't seem to understand

Re: ipmi access

On Mon, Jun 2, 2014 at 7:42 PM, Jimmy Hess mysi...@gmail.com wrote: On Mon, Jun 2, 2014 at 8:21 AM, shawn wilson ag4ve...@gmail.com wrote: [snip] So, kinda the same idea - just put IPMI on another network and use ssh forwards to it. You can have multiple boxes connected in this fashion

Re: DNSSEC?

But it doesn't really matter if you zero out freed memory. Maybe it'll prevent you from gaining some stale session info and the like. But even if that were the case, this would still be a serious bug - you're not going to reread your private key before encrypting each bit of data after all -

Re: CVE-2014-0160 mitigation using iptables

On Thu, Apr 10, 2014 at 9:52 AM, valdis.kletni...@vt.edu wrote: On Wed, 09 Apr 2014 11:07:36 +0100, Fabien Bourdaire said: # Log rules iptables -t filter -A INPUT -p tcp --dport 443 -m u32 --u32 \ 52=0x1803:0x1803 -j LOG --log-prefix BLOCKED: HEARTBEAT That 52= isn't going to

Re: How to catch a cracker in the US?

On Mon, Mar 17, 2014 at 10:21 AM, Sholes, Joshua joshua_sho...@cable.comcast.com wrote: On 3/13/14, 7:35 PM, Larry Sheldon larryshel...@cox.net wrote: Not sure I can agree with that. I have been in this game for a very long time, but for most of it in places where the world's population cleaved

Re: How to catch a cracker in the US?

On Mar 13, 2014 7:37 PM, Larry Sheldon larryshel...@cox.net wrote: On 3/13/2014 8:22 AM, Sholes, Joshua wrote: On 3/13/14, 12:35 AM, shawn wilson ag4ve...@gmail.com wrote: A note on terminology - whether you know what you're doing, actually break into a system, or obtain a thumb drive

Re: How to catch a cracker in the US?

On Mar 11, 2014 3:09 AM, Dobbins, Roland rdobb...@arbor.net wrote: On Mar 11, 2014, at 2:00 PM, Markus unive...@truemetal.org wrote: Any advice? Start with CERT-BUND, maybe? That is the correct answer, if you want something less settle (and possibly illegal), there were discussions on

comcast business service

A while ago I got Comcast's business service. Semi-idle connections are get dropped (I haven't really diagnosed this - I just no that it isn't the client or server but some network in between). However the second and most obvious issue is that intermittently, the service will grind to a halt: ---

Re: comcast business service

from their warehouse. No more issues. -A On Thu, Feb 20, 2014 at 1:08 AM, shawn wilson ag4ve...@gmail.com wrote: A while ago I got Comcast's business service. Semi-idle connections are get dropped (I haven't really diagnosed this - I just no that it isn't the client or server but some

Windows Update subnets

Does anyone have a list of all of the ranges Microsoft uses for Windows Update? I've found domains but not a full list of subnets.

Re: verify currently running software on ram

dd kmem and see if it's what you'd expect (size of ram+swap). If so you should be able to look at it Also see Volatility On Jan 13, 2014 7:21 AM, Tassos Chatzithomaoglou ach...@forthnet.gr wrote: Saku Ytti wrote on 13/1/2014 12:51: On (2014-01-13 12:46 +0200), Saku Ytti wrote: On

Re: verify currently running software on ram

Doh, tired and not reading - the util should help after you get a dump though. On Jan 13, 2014 7:29 AM, shawn wilson ag4ve...@gmail.com wrote: dd kmem and see if it's what you'd expect (size of ram+swap). If so you should be able to look at it Also see Volatility On Jan 13, 2014 7:21 AM

Re: NSA able to compromise Cisco, Juniper, Huawei switches

On Tue, Dec 31, 2013 at 8:05 AM, Ray Soucy r...@maine.edu wrote: This whole backdoor business is a very, very, dangerous game. While I agree with this (and the issues brought up with NSA's NIST approved PRNG that RSA used). If I were in their shoes, I would have been collecting every bit of

Re: NSA able to compromise Cisco, Juniper, Huawei switches

Saku Ytti s...@ytti.fi wrote: On (2013-12-30 20:30 +1100), sten rulz wrote: I really think we're doing disservice to an issue which might be at scale of human-rights issue, by spamming media with 0 data news. Where is this backdoor? How does it work? How can I recreate on my devices? I don't

Re: NSA able to compromise Cisco, Juniper, Huawei switches

On Mon, Dec 30, 2013 at 8:07 AM, Ray Soucy r...@maine.edu wrote: I hope Cisco, Juniper, and others respond quickly with updated images for all platforms affected before the details leak. So, if this plays out nice (if true, it won't), the fix will come months before the disclosure. Think, if

Re: NSA able to compromise Cisco, Juniper, Huawei switches

On Mon, Dec 30, 2013 at 1:17 PM, Lorell Hathcock lor...@hathcock.org wrote: NANOG: Here's the really scary question for me. Would it be possible for NSA-payload traffic that originates on our private networks that is destined for the NSA to go undetected by our IDS systems? Yup.

Re: The Making of a Router

Chris Adams c...@cmadams.net wrote: Once upon a time, Shawn Wilson ag4ve...@gmail.com said: I was hoping someone could give technical insight into why this is good or not and not just buy a box branded as a router because I said so or your business will fail. I'm all for hearing about

Re: The Making of a Router

On Fri, Dec 27, 2013 at 1:33 AM, valdis.kletni...@vt.edu wrote: On Thu, 26 Dec 2013 11:16:53 -0800, Seth Mattinen said: On 12/26/13, 9:24, Andrew D Kirch wrote: If he can afford a 10G link... he should be buying real gear... I mean, look, I've got plenty of infrastructure horror stories,

Re: The Making of a Router

This has gotten a bit ridiculous. I was hoping someone could give technical insight into why this is good or not and not just buy a box branded as a router because I said so or your business will fail. I'm all for hearing about the business theory of running an ISP (not my background or day

Re: The Making of a Router

Totally agree that a routing box should be standalone for tons of reasons. Even separating network routing and call routing. It used to be that BSD's network stack was much better than Linux's under load. I'm not sure if this is still the case - I've never been put in the situation where the

Re: Bandwidth for a weekend @ Gaylord National Harbor, DC metro area

I'm not sure of te topology around there, but you can get these 2.4Ghz dishes for *cheap* (I got one at a hamfest for $20 - spent as much on the rp-sma converter cost almost as much). If someone (or a colo) is near there, you might convince them to put up the same thing and work with that. I think

Re: Parsing Syslog and Acting on it, using other input too

Christopher Morrow morrowc.li...@gmail.com wrote: On Thu, Aug 29, 2013 at 10:50 AM, Don Wilder don.wil...@gmail.com wrote: I wrote a script in Linux that watches for unauthorized login attempts and adds the ip address to the blocked list in my firewall. You might want to search sourceforge

Re: Parsing Syslog and Acting on it, using other input too

Morrow morrowc.li...@gmail.com wrote: On Fri, Aug 30, 2013 at 8:55 AM, Shawn Wilson ag4ve...@gmail.com wrote: Christopher Morrow morrowc.li...@gmail.com wrote: On Thu, Aug 29, 2013 at 10:50 AM, Don Wilder don.wil...@gmail.com wrote: I wrote a script in Linux that watches for unauthorized

Re: CableWiFi SSID in Washington DC?

There are indeed FreePublicWiFi nodes in some areas like Dupont Circle but it's not very convenient most of the time (signal strength or speed issues). IIRC there's a Commotion mesh around Columbia Heights which should be much faster. Personally, I just use a Mifi and never have any issues.

Re: One of our own in the Guardian.

Well, I think Google has the right idea with providing Internet by floating balloons. And the way that cell phone tech has been improving, we might all have 10G in... 10 years or so? If Google is providing it, it'll be monitored by our government but hey, we'll have enough bandwidth to hang

Re: One of our own in the Guardian.

You're on a continent with the second least amount of light pollution of all of the continents on earth (iirc) and are somehow surprised about bad net access? I would question the wisdom of planning a tech conference there, but not the facility itself. On Sun, Jul 14, 2013 at 4:16 AM, David

Re: One of our own in the Guardian.

On Jul 14, 2013 5:36 AM, Bill Woodcock wo...@pch.net wrote: On Jul 14, 2013, at 2:12 AM, shawn wilson ag4ve...@gmail.com wrote: You're on a continent with the second least amount of light pollution of all of the continents on earth (iirc) and are somehow surprised about bad net access? I

Re: Google's QUIC

On Jun 29, 2013 12:23 AM, Christopher Morrow morrowc.li...@gmail.com wrote: On Fri, Jun 28, 2013 at 10:12 PM, Octavio Alvarez alvar...@alvarezp.ods.org wrote: On Fri, 28 Jun 2013 17:20:21 -0700, Christopher Morrow morrowc.li...@gmail.com wrote: Runs in top of UDP... Is not UDP...

Re: PDU recommendations

, Måns Nilsson mansa...@besserwisser.org wrote: Subject: Re: PDU recommendations Date: Sun, Jun 23, 2013 at 09:32:00PM -0400 Quoting shawn wilson (ag4ve...@gmail.com): So, that's not a very good endorsement :) Idk why you'd use a fuse in a PDU. MCB units age. Especially with vibration

PDU recommendations

We currently use Triplite stuff but they've got an issue where after a few minutes, they stop accepting new tcp connections. We're adding a new 30A circuit and I'm thinking of going with APC (ran them in the past and never had any issues). However, I figured I'd see if there was a better brand /

RE: PDU recommendations

or TrippLite. -Petter From: trit...@cox.net [trit...@cox.net] Sent: Sunday, June 23, 2013 12:05 PM To: shawn wilson; North American Network Operators Group Subject: Re: PDU recommendations APC is solid. Their newer line can provide outlet metering

Re: PDU recommendations

So, that's not a very good endorsement :) Idk why you'd use a fuse in a PDU. The management interface can be rebooted without taking anything down on the TrippLite but it's at a colo and it *shouldn't* time out like it does. I think of this like a vehicle computer - if it goes down, you might

Re: /25's prefixes announced into global routing table?

RFC 3587 - IPv6 Global Unicast Address Format On Jun 22, 2013 6:50 AM, John Curran jcur...@istaff.org wrote: On Jun 22, 2013, at 1:45 AM, Owen DeLong o...@delong.com wrote: Yes… It will probably settle out somewhere around 100-125K routes. Owen - Can you elaborate some on this estimate?

Re: This is a coordinated hacking. (Was Re: Need help in flushing DNS)

I think ICANN would have to add a delay in where a request was sent out to make sure everyone was on the same page and then what happens the couple thousand (more) times a day that someone isn't updated or is misconfigured? I think Netsol should be fined. Maybe even a class action suite filed

Re: Blocking TCP flows?

Johnathan is correct about not using perl for this. There are some iptables modules, but they're all out of date or incomplete (I mention this because if you get around to making them work decent, I'll love you for it). Otherwise, perl - IPC::Run - ipt isn't going to gain you anything. And I'd be

Re: chargen is the new DDoS tool?

This is basically untrue. I can deal with a good rant as long as there's some value in it. As it is (I'm sorta sorry) I picked this apart. On Jun 12, 2013 12:04 AM, Ricky Beam jfb...@gmail.com wrote: On Tue, 11 Jun 2013 22:55:12 -0400, valdis.kletni...@vt.edu wrote: But seriously, how do

Re: chargen is the new DDoS tool?

On Wed, Jun 12, 2013 at 4:51 AM, Jimmy Hess mysi...@gmail.com wrote: On 6/12/13, shawn wilson ag4ve...@gmail.com wrote: The scope is constantly changing. Not really. The old tricks are the best tricks. And when a default install By best, you must mean effective against the greatest number

Re: chargen is the new DDoS tool?

On Wed, Jun 12, 2013 at 7:14 AM, Aaron Glenn aaron.gl...@gmail.com wrote: On Wed, Jun 12, 2013 at 11:17 AM, shawn wilson ag4ve...@gmail.com wrote: Banks and insurance companies supposedly have some interesting actuarial data on this. Do you know of any publicly available sources? I don't

Re: chargen is the new DDoS tool?

Getting back to the topic. I just saw quite a few of our hosts scanned for this by 192.111.155.106 which doesn't say much on its own as http://dacentec.com/ is a hosting company. On Tue, Jun 11, 2013 at 11:27 PM, Ricky Beam jfb...@gmail.com wrote: On Tue, 11 Jun 2013 22:52:52 -0400, Jimmy Hess

Re: PRISM: NSA/FBI Internet data mining project

On Jun 6, 2013 9:30 PM, Jeff Kell jeff-k...@utc.edu wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 6/6/2013 9:22 PM, valdis.kletni...@vt.edu wrote: On Thu, 06 Jun 2013 21:12:35 -0400, Robert Mathews (OSIA) said: On 6/6/2013 7:35 PM, Jay Ashworth wrote: [ . ] Happily,

Re: Geoip lookup

If anyone is interrested, here's a little Perl CLI util to lookup what countries registered networks within a block. There's no documentation yet, it's a .pl where it should probably be a command with a makefile installer, and Net::CIDR overlaps Net::IP. At any rate, hopefully it is useful to

Re: Geoip lookup

I knew this would come up. Actually I'm surprised and glad it waited until I got a solution first. I'll address a few points: - this is mainly to stop stupid things from sending packets from countries we will probably never want to do business with (I'm looking mainly at that big country under

Geoip lookup

What's the best way to find the networks in a country? I was thinking of writing some perl with Net::Whois::ARIN or some such module and loop through the block. But I think I'll have to be smarter than just a simple loop not to get blocked and I figure I'm not the first to want to do this. I've

Re: Geoip lookup

On Thu, May 23, 2013 at 4:32 PM, Joe Abley jab...@hopcount.ca wrote: On 2013-05-23, at 15:47, shawn wilson ag4ve...@gmail.com wrote: What's the best way to find the networks in a country? I was thinking of writing some perl with Net::Whois::ARIN or some such module and loop through the block

Re: Geoip lookup

On Thu, May 23, 2013 at 4:40 PM, shawn wilson ag4ve...@gmail.com wrote: On Thu, May 23, 2013 at 4:32 PM, Joe Abley jab...@hopcount.ca wrote: On 2013-05-23, at 15:47, shawn wilson ag4ve...@gmail.com wrote: ftp://ftp.apnic.net/public/apnic/stats/apnic/ ftp://ftp.ripe.net/ripe/dbase

  1   2   >