Re: FC: Email a RoadRunner address, get scanned by their securitysystem]
I only find it humorous that a majority of the network probes against my network come from RoadRunner cable modems as it is, yet they want to add to it by having their own server run a probe... RR scans their own network far more intrusively than they scan outside mail senders and thwack their own users all the time, only of course nobody hears about that. As I've said elsewhere, most of a network's real mail comes from places that have sent mail before. If you get mail from a host that's never sent you mail before, it is far more likely to be a compromised relay or proxy sending spam than a legit mail server. Of course they test it. Put yourself in their shoes. They have a network with tens, probably hundreds of thousands of users, all with a swell high-speed connection, all under continuous attack by various sorts of malware. Most of the users are running Windows 98 or XP systems which are at least 30 critical security patches (that is to say, more than a month) out of date. Realistically, what would you do? -- John R. Levine, IECC, POB 727, Trumansburg NY 14886 +1 607 387 6869 [EMAIL PROTECTED], Village Trustee and Sewer Commissioner, http://iecc.com/johnl, Member, Provisional board, Coalition Against Unsolicited Commercial E-mail
Re: [Q] Stable Service Provider IOS Version?
Hi Matt, Try 12.0.X-SX Where X is the latest version. In the lasts series there is some bugs with snmp counters, check in cisco bug database. Where are using 12.0.23S (This ios have the snmp counter bug :( ) Is out there any 12.0.XS whithout snmp counter bug? Btw: search in cisco-nsp mailing list archive. Regards, Daniel On Saturday 15 March 2003 01:52, Matt Martini wrote: nanog: I have to upgrade some 7513 routers running Service Provder IOS. I'd like to know what code have people been using that has proved stable as well as versions to stay away from. Thanks Matt
Re: 923Mbits/s across the ocean
[just discovered in my unsent messages queue from offline composition, probably not timely, but...] Iljitsch van Beijnum wrote: We can't replace path MTU discovery (but hopefully people will start to realize ICMP messages were invented for another reason than job security for firewalls). But what we need is a way for 10/100 Mbps 1500 byte hosts to live with 1000 Mbps 9000 byte hosts on the same subnet. I thought IPv6 neighbor discovery supported this because ND can communicate the MTU between hosts on the same subnet, but unfortunately this is a subnet-wide MTU and not a per-host MTU, which is what we really need. A decade ago, when I designed SIPP Neighbor Discovery, it saved per destination maximum unfragmented datagram size in the route cache, and each I-Am-Here message Heard specified Maximum Receive Unit (MRU) per host. Thus, once upon a time, IPv6 had what you need. Unfortunately, the IPv6 group stripped out such innovative features. I stopped paying attention after the new editor stated something like it worked for ethernet, we really don't need any more than that. Well, we used IPv4 from '83, and designed SIPP (cum IPv6) in '93. IPv6 is a failure -- maybe it's time for this decade's design? Or maybe even some of the features some of us thought we needed a decade ago? -- William Allen Simpson Key fingerprint = 17 40 5E 67 15 6F 31 26 DD 0D B9 9B 6A 15 2C 32
Req contact: Kindhosts, PA
Any admins from Kindhosts in PA here? -- Avleen Vig Say no to cheese-eating surrender-monkeys Systems AdminFast, Good, Cheap. Pick any two. www.silverwraith.com Move BSD. For great justice!
Re: OT: Increasing Cell Phone Signal inside a NOC?
On Wed, Mar 12, 2003 at 04:39:03PM +0200, Petri Helenius scribbled: | | Just call your cell operator customer service and ask for someone who is | able | to talk about coverage issues. | | Practically no cell operator provides access to these people. They take | coverage reports and if you?re lucky, tell you when it?s going to be | fixed. | | And the subway coverage is far from 100%. Might be 100% on the stations. Recent equipment in Asia uses a modified coax along the subway lines to leak EM into the tunnels. 100% reception is expected in most Asian metro/subway lines. That has provided some thought, such as providing 802.11b access on the subways. --