Re: National Do Not Call Registry has opened and Yahoo isn'tblocking it

[chuck goolsbee]

Next time there's a project like this that's going to
have a big first day spike it'd make sense to do load shedding and
divert peak traffic to a server that says "sorry, we're overloaded,
please come back tomorrow and don't panic because you have until the
end of July to sign up and be on the first release of the list."  That
and fix the rDNS and price out some alternatives to Redmond Bloatware,
of course.
...and ask the questions asked here (much!) more than a few hours 
prior to the event start/spike.

Coming here to ask what was asked was obviously a smart move by Mr. 
Callahan, but one and a half days prior to launch was way too late to 
successfully implement any of the (very good) advice given.



--chuck



--

Were there mistakes? Yes. Only those who don't act don't make
mistakes. But to organize well --- *that* is a difficult task.
-- Lenin, April 24, 1917

Re: National Do Not Call Registry has opened and Yahoo isn't blocking it

[John R. Levine]

>"The irony of it is that the confirmation e-mail is being blocked by
>Yahoo, and therefore you will not receive the confirmation mail," said
>Eric Greenberg, chief technology officer of NetFrameworks ...

 ... who hasn't a clue what he's talking about.

I checked with a friend who's a tech manager at Yahoo, and when I gave
him the IP range that donotcall is using (I registered at 1 AM when it
was fast and got most of my mail right away), he checked and found
that in fact Yahoo hadn't blocked anything and at worst had filed some
of them in the Bulk folder, since they're certainly bulky.

Other people have reported delays of up to 11 hours getting their
confirmation mail, so it's clear that a few people have misinterpreted
slow mail as blocked mail.

The donotcall.gov project certainly does seem to have been a learning
experience.  Next time there's a project like this that's going to
have a big first day spike it'd make sense to do load shedding and
divert peak traffic to a server that says "sorry, we're overloaded,
please come back tomorrow and don't panic because you have until the
end of July to sign up and be on the first release of the list."  That
and fix the rDNS and price out some alternatives to Redmond Bloatware,
of course.

-- 
John R. Levine, IECC, POB 727, Trumansburg NY 14886 +1 607 330 5711
[EMAIL PROTECTED], Village Trustee and Sewer Commissioner, http://iecc.com/johnl, 
Member, Provisional board, Coalition Against Unsolicited Commercial E-mail

Re: National Do Not Call Registry has opened

[Leo Bicknell]

While it's possible to make many comments about "how things could
have been done better" on this project, I want to take the time to
commend you for taking time to ask the question.  Many "big company"
and/or "big government" projects happen all the time, with no one
even asking the community for input or assistance.  So, while the
roll out was not trouble free, your very public effort to help is
a step above for this type of project.

I do hope the efforts to make this service more RFC and BCP friendly,
as well as doing generally "good things" will continue.  While I'm
sure here many think they could do a better job, which may even be
true for some specific issues, the challenges of launching a service
under a government contract are large, and only compounded by it
being the lead story on nearly every new network.

Now, if only congress, the FTC, and the FCC could do for spam what
they are doing for the telephone.

-- 
   Leo Bicknell - [EMAIL PROTECTED] - CCIE 3440
PGP keys at http://www.ufp.org/~bicknell/
Read TMBG List - [EMAIL PROTECTED], www.tmbg.org


pgp0.pgp
Description: PGP signature

RE: National Do Not Call Registry has opened

[Christopher J. Wolff]

Richard,

Don't take it so hard.  The news outlets are portraying the public's
response as so massive and unprecedented that you should be able to spin
that to your advantage.  Remind the naysayers of the hundreds of
thousands of people that were able to register.  You have worked hard to
remove a public nuisance.  Revel in it.

Regards,
Christopher J. Wolff, VP CIO
Broadband Laboratories, Inc.
http://www.bblabs.com


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Callahan, Richard M, SOLGV
Sent: Friday, June 27, 2003 5:01 PM
To: Stephen Sprunk; LeBlanc, Robert
Cc: North American Noise and Off-topic Gripes; [EMAIL PROTECTED]
Subject: RE: National Do Not Call Registry has opened


Ladies and Gentlemen,

This has been an extremely difficult day for me personally and
professionally due to many issues we had. Without going into the painful
details, let me assure the community my original post was for exactly
for the reason I posted - and we do indeed know how to run a standards
compliant mail system.  A side effect to the problems encountered was an
inability to send a valid IP address among other things to operate the
mail system and instead sending a static LB IP address, which
effectively made all our mail look, as Mr.Sprunk so eloquently phrased,
suspicious looking.

We are over the hump - lost a tremendous amount of credibility and the
opportunity to show "the government at work".  The FTC has put their all
into this project and the associated laws which I would hope all of you
anti-spam police would appreciate.  My apologies to the community for
all the trash email this fiasco has produced, but more so to my customer
for not delivering the quality they deserve.





-Original Message-
From: Stephen Sprunk [mailto:[EMAIL PROTECTED]
Sent: Friday, June 27, 2003 6:10 PM
To: LeBlanc, Robert
Cc: Callahan, Richard M, SOLGV; North American Noise and Off-topic
Gripes
Subject: Re: National Do Not Call Registry has opened


Thus spake "LeBlanc, Robert" <[EMAIL PROTECTED]>
> "It's very difficult to make the technology work... Spam blockers are
> automated and the software rules are arbitrary," he said.

It's a shame the press are putting the blame for this on anti-spam
software,
as it's clear that the DoNotCall.gov people have brought the problem on
themselves by not running a standards-compliant mail system.

What's worse is they knew this was coming and didn't do anything to
prevent
it!  It appears Mr. Callahan's message to nanog wasn't to look for
advice on
how not to trigger spam filters -- it was to beg us to add his systems
to
our whitelists so his suspicious-looking mail would go through.

Looks like a case of "Good enough for government work" in action.

S

Stephen Sprunk "God does not play dice."  --Albert Einstein
CCIE #3723 "God is an inveterate gambler, and He throws the
K5SSSdice at every possible opportunity." --Stephen Hawking

RE: National Do Not Call Registry has opened

[William Devine, II]

Must've been a doubly hard day huh?

william

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
Callahan, Richard M, SOLGV
Sent: Friday, June 27, 2003 6:01 PM
To: Stephen Sprunk; LeBlanc, Robert
Cc: North American Noise and Off-topic Gripes; [EMAIL PROTECTED]
Subject: RE: National Do Not Call Registry has opened



Ladies and Gentlemen,

This has been an extremely difficult day for me personally and
professionally due to many issues we had. Without going into the painful
details, let me assure the community my original post was for exactly for
the reason I posted - and we do indeed know how to run a standards compliant
mail system.  A side effect to the problems encountered was an inability to
send a valid IP address among other things to operate the mail system and
instead sending a static LB IP address, which effectively made all our mail
look, as Mr.Sprunk so eloquently phrased, suspicious looking.

We are over the hump - lost a tremendous amount of credibility and the
opportunity to show "the government at work".  The FTC has put their all
into this project and the associated laws which I would hope all of you
anti-spam police would appreciate.  My apologies to the community for all
the trash email this fiasco has produced, but more so to my customer for not
delivering the quality they deserve.





-Original Message-
From: Stephen Sprunk [mailto:[EMAIL PROTECTED]
Sent: Friday, June 27, 2003 6:10 PM
To: LeBlanc, Robert
Cc: Callahan, Richard M, SOLGV; North American Noise and Off-topic
Gripes
Subject: Re: National Do Not Call Registry has opened


Thus spake "LeBlanc, Robert" <[EMAIL PROTECTED]>
> "It's very difficult to make the technology work... Spam blockers are
> automated and the software rules are arbitrary," he said.

It's a shame the press are putting the blame for this on anti-spam software,
as it's clear that the DoNotCall.gov people have brought the problem on
themselves by not running a standards-compliant mail system.

What's worse is they knew this was coming and didn't do anything to prevent
it!  It appears Mr. Callahan's message to nanog wasn't to look for advice on
how not to trigger spam filters -- it was to beg us to add his systems to
our whitelists so his suspicious-looking mail would go through.

Looks like a case of "Good enough for government work" in action.

S

Stephen Sprunk "God does not play dice."  --Albert Einstein
CCIE #3723 "God is an inveterate gambler, and He throws the
K5SSSdice at every possible opportunity." --Stephen Hawking

RE: National Do Not Call Registry has opened

[Callahan, Richard M, SOLGV]

Ladies and Gentlemen,

This has been an extremely difficult day for me personally and professionally due to 
many issues we had. Without going into the painful details, let me assure the 
community my original post was for exactly for the reason I posted - and we do indeed 
know how to run a standards compliant mail system.  A side effect to the problems 
encountered was an inability to send a valid IP address among other things to operate 
the mail system and instead sending a static LB IP address, which effectively made all 
our mail look, as Mr.Sprunk so eloquently phrased, suspicious looking.

We are over the hump - lost a tremendous amount of credibility and the opportunity to 
show "the government at work".  The FTC has put their all into this project and the 
associated laws which I would hope all of you anti-spam police would appreciate.  My 
apologies to the community for all the trash email this fiasco has produced, but more 
so to my customer for not delivering the quality they deserve.





-Original Message-
From: Stephen Sprunk [mailto:[EMAIL PROTECTED]
Sent: Friday, June 27, 2003 6:10 PM
To: LeBlanc, Robert
Cc: Callahan, Richard M, SOLGV; North American Noise and Off-topic
Gripes
Subject: Re: National Do Not Call Registry has opened


Thus spake "LeBlanc, Robert" <[EMAIL PROTECTED]>
> "It's very difficult to make the technology work... Spam blockers are
> automated and the software rules are arbitrary," he said.

It's a shame the press are putting the blame for this on anti-spam software,
as it's clear that the DoNotCall.gov people have brought the problem on
themselves by not running a standards-compliant mail system.

What's worse is they knew this was coming and didn't do anything to prevent
it!  It appears Mr. Callahan's message to nanog wasn't to look for advice on
how not to trigger spam filters -- it was to beg us to add his systems to
our whitelists so his suspicious-looking mail would go through.

Looks like a case of "Good enough for government work" in action.

S

Stephen Sprunk "God does not play dice."  --Albert Einstein
CCIE #3723 "God is an inveterate gambler, and He throws the
K5SSSdice at every possible opportunity." --Stephen Hawking

dialup/dsl/cable rbl recommendations

[Charles Sprickman]

Hi,

I'm in the process of moving our userbase to a new mailserver, but in the
meantime limping along on old hardware.  In an effort to get some
rudimentary spam blocking in place, I've added a number of rbls.  So far
this has helped, but I'm still seeing a ton of direct-to-mx junk coming in
from adsl and cable users.  This is with the following rbls that are
supposed to target dial/dsl/cable dynamic IPs:

dun.dnsrbl.net
dynablock.easynet.nl
dialups.visi.com (mirror of PADL list)

Are there any other "dynablocker" type lists?

I still see a large amount of spam coming from US cable and dsl IPs, and
the hit rates on the above lists are relatively small.

I'd appreciate any pointers, especially from those actively using other
lists. (But please restrain yourselves from commenting on the validity of
blocking end-user IPs - I won't be held responsible for any ensuing
week-long flamefest)

Thanks,

Charles

--
Charles Sprickman
[EMAIL PROTECTED]

Re: National Do Not Call Registry has opened

[Stephen Sprunk]

Thus spake "LeBlanc, Robert" <[EMAIL PROTECTED]>
> "It's very difficult to make the technology work... Spam blockers are
> automated and the software rules are arbitrary," he said.

It's a shame the press are putting the blame for this on anti-spam software,
as it's clear that the DoNotCall.gov people have brought the problem on
themselves by not running a standards-compliant mail system.

What's worse is they knew this was coming and didn't do anything to prevent
it!  It appears Mr. Callahan's message to nanog wasn't to look for advice on
how not to trigger spam filters -- it was to beg us to add his systems to
our whitelists so his suspicious-looking mail would go through.

Looks like a case of "Good enough for government work" in action.

S

Stephen Sprunk "God does not play dice."  --Albert Einstein
CCIE #3723 "God is an inveterate gambler, and He throws the
K5SSSdice at every possible opportunity." --Stephen Hawking

announcing ix-chicago - Chicago area Internet exchange list

[John Kristoff]

Let's see how this goes.

  

John

Zebra

[Niaz, Wajahat]

Hi all
Does anyone know how to install and use zebra? I installed it on Mandrake
but its not working. Maybe i am missing some piece of puzzle. Please reply
offline
thanks 

-ali

Re: AS-Tree Utility

[Rick Ernst]

I've been asked twice off-list;  here's the implentation I found:

http://www.research.att.com/sw/tools/graphviz/


On Fri, 27 Jun 2003, steve uurtamo wrote:

:>
:>> I'm curious if anyone could point me to a utility for AS-Tree mapping from a
:>> routing table output?  I searched the archive a bit, and didn't find
:>> anything.
:>
:>you could use dot (directed graphs drawing program -- free) after a
:>little bit of sed on the route table output.  about 10 minutes of
:>work, and the output is really, really pretty.
:>
:>s.
:>

RE: National Do Not Call Registry has opened

[LeBlanc, Robert]

This came in from CBS Market Watch:


YAHOO BLOCKS FTC DO-NOT-CALL MAIL

SAN FRANCISCO (CBS.MW) -- Isn't it ironic. In the war against
unsolicited e-mail, automated Spam blockers are actually getting in the
way as they block legitimate mail from the government. The federal
government on Friday began accepting consumers' requests to be put on
its "Do-Not-Call" registry, a nationwide listing of people who don't
want to be solicited at home via calls or e-mails. The Federal Trade
Commission is responsible for administering the program.

A person who wants to be included on the list will receive an e-mail
from the government, then must send back an e-mail reply as
confirmation. But a problem's arisen, as at least one major processor of
e-mail -- Yahoo -- is blocking the confirmation e-mail, according to
NetFrameworks, a tiny 25-person security company. NetFrameworks monitors
Spam control mechanisms from the largest mail carriers, like Yahoo
(YHOO), America Online and Microsoft (MSFT).

"The irony of it is that the confirmation e-mail is being blocked by
Yahoo, and therefore you will not receive the confirmation mail," said
Eric Greenberg, chief technology officer of NetFrameworks and a former
product manager for security at Netscape, now part of the AOL Time
Warner (AOL) empire.

"It's very difficult to make the technology work... Spam blockers are
automated and the software rules are arbitrary," he said.

A decade in the making, the federal do-not-call rule officially takes
effect on Oct. 1. Companies that call phone users who are in the
registry will be liable for steep fines -- as much as $11,000 per call.
As of 10:30 a.m. Eastern time, 250,000 phone numbers had been
registered, according to the FTC.
___

Re: AS-Tree Utility

[Rick Ernst]

Wow.  First I've heard of this.

Repeat... "Wow" :)

I took our 3 feeds and munged that data, then started playing with "how is
so-n-so connected".  Pretty/interesting, and possibly even useful.



On Fri, 27 Jun 2003, steve uurtamo wrote:

:>
:>> I'm curious if anyone could point me to a utility for AS-Tree mapping from a
:>> routing table output?  I searched the archive a bit, and didn't find
:>> anything.
:>
:>you could use dot (directed graphs drawing program -- free) after a
:>little bit of sed on the route table output.  about 10 minutes of
:>work, and the output is really, really pretty.
:>
:>s.
:>

Re: National Do Not Call Registry has opened

[Roland Perry]

In message <[EMAIL PROTECTED]>, Nick Nelson 
<[EMAIL PROTECTED]> writes

I  was thinking more along the line of a bot submitting every possible 
10 digit phone number. Do the nation a favor.
Which is, of course, what might happen with email addresses, if someone 
made the very bad decision to implement a plausible opt-out scheme for 
junk emails.
--
Roland Perry

Re: Getting NS host reports

[Charles Sprickman]

On Fri, 27 Jun 2003, John R. Levine wrote:

> Sort of.  You can get a password from Verisign to the FTP server where
> you can download copies of the COM and NET zone files, and from
> publicinterestregistry.net for ORG.  Then you download and do a Big
> Grep.

And then look somewhere else for all the .biz, .info, etc. TLDs?  I've
been away from this stuff for too long.  While I like having competition
in the registry biz, it's quite a bit more confusing than the old days.

A very helpful colleague found me the NetSol "VIP" number.  Extremely
helpful people who were able to delete bogus host records and send me a
"host report" which I think is complete.

> If you ask nicely, there are doubtless NANOG members who'd do an
> occasional grep for you.

OK, if anyone wants to grep, I'm looking for anyone using ns01.bway.net
and/or ns02.bway.net.  I'd like to check that against what Netsol sent me
today.

Thanks,

Charles

> --
> John R. Levine, IECC, POB 727, Trumansburg NY 14886 +1 607 330 5711
> [EMAIL PROTECTED], Village Trustee and Sewer Commissioner, http://iecc.com/johnl,
> Member, Provisional board, Coalition Against Unsolicited Commercial E-mail
>

RE: National Do Not Call Registry has opened

[Michael Hallgren]

>
> Businesses that ask for email addresses know that a significant percentage
> of people can't type their own email address correctly. Each of those
> results in a bounce, or an undeliverable message sitting in an mqueue
> somewhere. It would not surprise me if they also reduced their
> Timeout.queuereturn to a few hours as well.
>
> Dealing with the bounces would be a nightmare, they've already got their
> handsful with the webservers and the outbound mail boxes.


;)

mh

>
> Sameer
>
>

RE: National Do Not Call Registry has opened

[Nick Nelson]

On 27 Jun 2003 at 14:52, Charles Sprickman wrote:

> And you can bet that this "project" cost at least six figures, maybe
> seven.  As a taxpayer, I was quite disappointed to see IIS and Microsoft
> SMTPSVC gluing this pile together.  When I went in and registered last
> night, I was surprised to see that it was so simple.  There seemed to be
> no protection against a bot coming in and mailbombing someone to death.
> What a sad state this business is in.
> 
I
 was thinking more along the line of a bot submitting every possible 
10 digit phone number. Do the nation a favor.


cheers,
nick
--
Nick Nelson//   USA: 1-877-Lunarpages
[EMAIL PROTECTED]//UK: 0800 0729150
Lunarpages.com   // INTL: 1-714-521-8150

RE: National Do Not Call Registry has opened

[Charles Sprickman]

On Fri, 27 Jun 2003, Mike Damm wrote:

> To save you all some keystrokes...
> Donotcall.gov has no MX records. No reverse DNS on any of their outbound
> mail boxes. And they obviously are not processing bounces/complaints/etc.
> since nothing on that netblock has port 25 open.

And you can bet that this "project" cost at least six figures, maybe
seven.  As a taxpayer, I was quite disappointed to see IIS and Microsoft
SMTPSVC gluing this pile together.  When I went in and registered last
night, I was surprised to see that it was so simple.  There seemed to be
no protection against a bot coming in and mailbombing someone to death.
What a sad state this business is in.

Charles

>   -Mike
>
> ---
> Michael Damm, MIS Department, Irwin Research & Development
> V: 509.457.5080 x298 F: 509.577.0301 E: [EMAIL PROTECTED]
>
>
> -Original Message-
> From: John R Levine [mailto:[EMAIL PROTECTED]
> Sent: Thursday, June 26, 2003 10:53 PM
> To: [EMAIL PROTECTED]
> Subject: National Do Not Call Registry has opened
>
>
> The domain is donotcall.gov, IP range is 206.16.196.192/26.
>
> They all seem to have the same subject line.
>
> Subject: National Do Not Call Registry - Complete Your Registration
>
>
> DCC checksums (already have a count of 25 even though it's only been open
> for an hour or so and it's the middle of the night):
>
>  ok fuz1 ac8763a8 a9e8d829 5e8a506b 1d6ac5e5
>  ok fuz2 bc65f25a 2c08ccfd 5b8b6e2c 3c806c1d
>
> They don't quite have all the bugs out.  I gave them three phone numbers,
> but they only sent two confirmations.
>
> Regards,
> John Levine, [EMAIL PROTECTED], Primary Perpetrator of "The Internet for
> Dummies",
> Information Superhighwayman wanna-be, http://iecc.com/johnl, Sewer
> Commissioner
> "More Wiener schnitzel, please", said Tom, revealingly.
>
> -- Forwarded message --
> Return-Path: <[EMAIL PROTECTED]>
> Delivered-To: [EMAIL PROTECTED]
> Received: (qmail 3643 invoked by uid 100); 27 Jun 2003 05:12:01 -
> Received: (qmail 3518 invoked from network); 27 Jun 2003 05:09:30 -
> Received: from unknown (HELO DoNotCall.GOV) (206.16.196.221)
>   by mail.iecc.com with SMTP; 27 Jun 2003 05:09:30 -
> Received: from donotcall.gov ([206.16.196.208]) by DoNotCall.GOV with
> Microsoft SMTPSVC(5.0.2195.5329);
>Fri, 27 Jun 2003 01:05:04 -0400
> Received: from mail pickup service by donotcall.gov with Microsoft SMTPSVC;
>Fri, 27 Jun 2003 01:09:29 -0400
> From: <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: [EMAIL PROTECTED] National Do Not Call Registry -
> Complete Your Registration
> Date: Fri, 27 Jun 2003 01:09:29 -0400
> Message-ID: <[EMAIL PROTECTED]>
> MIME-Version: 1.0
> Content-Type: text/plain;
>   charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
> X-Mailer: Microsoft CDO for Windows 2000
> Thread-Index: AcM8akl1m6Ypbr9BRGKj8OREFMsymw==
> Content-Class: urn:content-classes:message
> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.
> X-OriginalArrivalTime: 27 Jun 2003 05:09:29.0515 (UTC)
> FILETIME=[49941FB0:01C33C6A]
> X-DCC-IECC-Metrics: tom.iecc.com 1107; Body=1 Fuz1=7 Fuz2=7
> X-Spam-Status: No, hits=-5.6 required=7.0
>   tests=BAYES_01,CLICK_BELOW,NO_REAL_NAME
>   version=2.53
> X-Spam-Level:
> X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp)
>
> Click here [ url snipped ] to complete your request to register your phone
> number ((607) 330-5711) on the National Do Not Call Registry.
>
> Important: You must respond to this email by clicking the link within 72
> hours for your registration to be successful.
>
> Once you have registered, your phone number registration will be effective
> for 5 years. It will be illegal for most telemarketers to call you, and you
> will be able to file a complaint if a telemarketer does call you.  The
> website www.donotcall.gov provides information about filing a complaint.
>
> Important:  After you click on the link, print the web page and keep it for
> your records.
>
> 
> ***
> Please do not reply to this message as it is from an unattended mailbox. Any
> replies to this email will not be responded to or forwarded. This service is
> used for outgoing emails only and cannot respond to inquiries.
>
>
>

RE: National Do Not Call Registry has opened

[Gary E. Miller]

Yo Sameer!

On Fri, 27 Jun 2003, Sameer R. Manek wrote:

> Dealing with the bounces would be a nightmare, they've already got their
> handsful with the webservers and the outbound mail boxes.

If you can not run a mail server/mail list properly, then you should not
do so.  Sounds like donotcall.gov has no knowledge of RFCs or BCPs and
should not be doing this.

RGDS
GARY
---
Gary E. Miller Rellim 20340 Empire Blvd, Suite E-3, Bend, OR 97701
[EMAIL PROTECTED]  Tel:+1(541)382-8588 Fax: +1(541)382-8676

RE: National Do Not Call Registry has opened

[Sameer R. Manek]

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
> Mike Damm
> Sent: Friday, June 27, 2003 10:06 AM
> To save you all some keystrokes...
> Donotcall.gov has no MX records. No reverse DNS on any of their outbound
> mail boxes. And they obviously are not processing bounces/complaints/etc.
> since nothing on that netblock has port 25 open.


Businesses that ask for email addresses know that a significant percentage
of people can't type their own email address correctly. Each of those
results in a bounce, or an undeliverable message sitting in an mqueue
somewhere. It would not surprise me if they also reduced their
Timeout.queuereturn to a few hours as well.

Dealing with the bounces would be a nightmare, they've already got their
handsful with the webservers and the outbound mail boxes.

Sameer

Re: AS-Tree Utility

[Lucy E. Lynch]

there is a nice v6 tool -
http://carmen.ipv6.tilab.com/ipv6/tools/ASpath-tree/
http://net-stats.ipv6.tilab.com/bgp/bgp-page-complete.html

maybe it can be tweaked?

Lucy E. Lynch   Academic User Services
Computing CenterUniversity of Oregon
llynch  @darkwing.uoregon.edu   (541) 346-1774/Cell: 912-7998

La theorie c'est bon, mais ca n'empeche pas d'exister -Jean Martin Charcot

On Fri, 27 Jun 2003, Malayter, Christopher wrote:

>
> Hello All,
>
> I'm curious if anyone could point me to a utility for AS-Tree mapping from a
> routing table output?  I searched the archive a bit, and didn't find
> anything.
>
> Thanks ahead!
>
> -Chris/AS4181
>

Re: AS-Tree Utility

[steve uurtamo]

> I'm curious if anyone could point me to a utility for AS-Tree mapping from a
> routing table output?  I searched the archive a bit, and didn't find
> anything. 

you could use dot (directed graphs drawing program -- free) after a
little bit of sed on the route table output.  about 10 minutes of
work, and the output is really, really pretty.

s.

AS-Tree Utility

[Malayter, Christopher]

Hello All,

I'm curious if anyone could point me to a utility for AS-Tree mapping from a
routing table output?  I searched the archive a bit, and didn't find
anything. 

Thanks ahead!

-Chris/AS4181

RE: National Do Not Call Registry has opened

[Michael Hallgren]

>
> *sigh* So why did Richard Callahan even bother soliciting advice the first
> place? They are demonstrating they have no concern in operating a decent
> mail system, even after many kind folks here provided them all
> the info they
> needed.
>
> I've had two confirmations dropped so far today. Bad in-addr and 'click
> here' seem to have tipped the scales.
>
> To save you all some keystrokes...
> Donotcall.gov has no MX records. No reverse DNS on any of their outbound
> mail boxes. And they obviously are not processing bounces/complaints/etc.
> since nothing on that netblock has port 25 open.
>


Appears to be the case flying by... Not a very promising init of the
initiative,
also imho, let's hope our friends (techno-politically) mature their
baby/proposal
over time then.. or let's attempt alternative efforts.. ;)

mh


>   -Mike
>
> ---
> Michael Damm, MIS Department, Irwin Research & Development
> V: 509.457.5080 x298 F: 509.577.0301 E: [EMAIL PROTECTED]
>
>
> -Original Message-
> From: John R Levine [mailto:[EMAIL PROTECTED]
> Sent: Thursday, June 26, 2003 10:53 PM
> To: [EMAIL PROTECTED]
> Subject: National Do Not Call Registry has opened
>
>
> The domain is donotcall.gov, IP range is 206.16.196.192/26.
>
> They all seem to have the same subject line.
>
> Subject: National Do Not Call Registry - Complete Your Registration
>
>
> DCC checksums (already have a count of 25 even though it's only been open
> for an hour or so and it's the middle of the night):
>
>  ok fuz1 ac8763a8 a9e8d829 5e8a506b 1d6ac5e5
>  ok fuz2 bc65f25a 2c08ccfd 5b8b6e2c 3c806c1d
>
> They don't quite have all the bugs out.  I gave them three phone numbers,
> but they only sent two confirmations.
>
> Regards,
> John Levine, [EMAIL PROTECTED], Primary Perpetrator of "The Internet for
> Dummies",
> Information Superhighwayman wanna-be, http://iecc.com/johnl, Sewer
> Commissioner
> "More Wiener schnitzel, please", said Tom, revealingly.
>
> -- Forwarded message --
> Return-Path: <[EMAIL PROTECTED]>
> Delivered-To: [EMAIL PROTECTED]
> Received: (qmail 3643 invoked by uid 100); 27 Jun 2003 05:12:01 -
> Received: (qmail 3518 invoked from network); 27 Jun 2003 05:09:30 -
> Received: from unknown (HELO DoNotCall.GOV) (206.16.196.221)
>   by mail.iecc.com with SMTP; 27 Jun 2003 05:09:30 -
> Received: from donotcall.gov ([206.16.196.208]) by DoNotCall.GOV with
> Microsoft SMTPSVC(5.0.2195.5329);
>Fri, 27 Jun 2003 01:05:04 -0400
> Received: from mail pickup service by donotcall.gov with
> Microsoft SMTPSVC;
>Fri, 27 Jun 2003 01:09:29 -0400
> From: <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: [EMAIL PROTECTED] National Do Not Call Registry -
> Complete Your Registration
> Date: Fri, 27 Jun 2003 01:09:29 -0400
> Message-ID: <[EMAIL PROTECTED]>
> MIME-Version: 1.0
> Content-Type: text/plain;
>   charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
> X-Mailer: Microsoft CDO for Windows 2000
> Thread-Index: AcM8akl1m6Ypbr9BRGKj8OREFMsymw==
> Content-Class: urn:content-classes:message
> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.
> X-OriginalArrivalTime: 27 Jun 2003 05:09:29.0515 (UTC)
> FILETIME=[49941FB0:01C33C6A]
> X-DCC-IECC-Metrics: tom.iecc.com 1107; Body=1 Fuz1=7 Fuz2=7
> X-Spam-Status: No, hits=-5.6 required=7.0
>   tests=BAYES_01,CLICK_BELOW,NO_REAL_NAME
>   version=2.53
> X-Spam-Level:
> X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp)
>
> Click here [ url snipped ] to complete your request to register your phone
> number ((607) 330-5711) on the National Do Not Call Registry.
>
> Important: You must respond to this email by clicking the link within 72
> hours for your registration to be successful.
>
> Once you have registered, your phone number registration will be effective
> for 5 years. It will be illegal for most telemarketers to call
> you, and you
> will be able to file a complaint if a telemarketer does call you.  The
> website www.donotcall.gov provides information about filing a complaint.
>
> Important:  After you click on the link, print the web page and
> keep it for
> your records.
>
> **
> **
> ***
> Please do not reply to this message as it is from an unattended
> mailbox. Any
> replies to this email will not be responded to or forwarded. This
> service is
> used for outgoing emails only and cannot respond to inquiries.
>
>
>
>

route-views now present at NSPIXPII

[David Meyer]

Greetings,

route-views (AS6447) is pleased to announce our presence
at NSPIXPII (202.249.2.166), courtesy of Akira Kato and
WIDE. 

The route-views project operates BGP route collectors
that provide global routing data to both operator and
research communities. Our web pages (http://www.routeviews.org/)
can provide further background on the route-views
project, the services we provide, and some of the
research that has been based on the data collected. 

route-views is interested in local BGP peering
(non-multi-hop, or so-called) with all of the ASes
present at NSPIXPII. Those who would like more
information or are willing to provide their view of the 
global routing table, please contact us at
[EMAIL PROTECTED] 

Note that we do not announce any prefixes or use any
received prefixes to route traffic; this is purely a data
collection effort and looking glass-like operational tool
(via telnet to a cisco-like user interface). 

Thanks,

The route-views staff

Re: Don't call registry off the map?

[Steven M. Bellovin]

In message <[EMAIL PROTECTED]>, Chris Woodfield writes:
>

>
>Making a telemarketing call to a cellphone is already illegal. I think it's=
> under the=20
>same law that forbids junk faxes.

It's a different law, but yes, both are illegal.

Of course, my home fax machine got a junk fax just two days ago.  Last 
time that happened, I filed a formal complaint with the FCC.  See
http://www.junkfax.org for more information.

--Steve Bellovin, http://www.research.att.com/~smb (me)
http://www.wilyhacker.com (2nd edition of "Firewalls" book)

Re: Don't call registry off the map?

[Chris Woodfield]

Making a telemarketing call to a cellphone is already illegal. I think it's under the 
same law that forbids junk faxes.

-C

On Fri, Jun 27, 2003 at 12:53:32PM -0400, Andy Dills wrote:
> 
> On Fri, 27 Jun 2003, Andy Dills wrote:
> 
> >
> > On Fri, 27 Jun 2003, Patrick wrote:
> >
> > >
> > >
> > > Can anyone reach www.donotcall.gov? Seems to be off the map...
> >
> > Everything's fun and games until somebody posts to Slashdot...
> 
> But then, the site loads very quickly for me now.
> 
> I have an important question, and I know NANOG isn't quite the perfect
> place for it, but this is an issue that possibly affects many of you, and
> isn't addressed on their site.
> 
> 
> I don't currently get soliciting calls on my cell phone. My cell phone is
> my only phone. If I sign up for the donotcall list, will that just enable
> the exempt organizations to harvest my number to call me?
> 
> I'm not so sure I should sign up.
> 
> Andy
> 
> ---
> Andy Dills
> Xecunet, Inc.
> www.xecu.net
> 301-682-9972
> ---
> 


pgp0.pgp
Description: PGP signature

Re: Don't call registry off the map?

[Nick Nelson]

On 27 Jun 2003 at 13:02, [EMAIL PROTECTED] wrote:

> 
> On Fri, 27 Jun 2003, Patrick wrote:
> 
> > Can anyone reach www.donotcall.gov? Seems to be off the map...
> > 

According to fox News the site is getting over 125 sign ups a second, 
these are sign ups not hits, I'd imagine the site is a bit busy.


cheers,
nick
--
Nick Nelson//   USA: 1-877-Lunarpages
[EMAIL PROTECTED]//UK: 0800 0729150
Lunarpages.com   // INTL: 1-714-521-8150

Re: Don't call registry off the map?

[Dominic J. Eidson]

On Fri, 27 Jun 2003, Andy Dills wrote:

> I don't currently get soliciting calls on my cell phone. My cell phone is
> my only phone. If I sign up for the donotcall list, will that just enable
> the exempt organizations to harvest my number to call me?

My understanding is that it is completely illegal to place unsolicited
telephone marketing calls to cell phones, period.

The reason being, that by calling your cell phone, they incur a monetary
const to you, the receiver of the call - which doesn't happen when they
call your home phone number.


 - d.

-- 
Dominic J. Eidson
"Baruk Khazad! Khazad ai-menu!" - Gimli
---
http://www.the-infinite.org/  http://www.the-infinite.org/~dominic/

RE: National Do Not Call Registry has opened

[Mike Damm]

*sigh* So why did Richard Callahan even bother soliciting advice the first
place? They are demonstrating they have no concern in operating a decent
mail system, even after many kind folks here provided them all the info they
needed.

I've had two confirmations dropped so far today. Bad in-addr and 'click
here' seem to have tipped the scales.

To save you all some keystrokes...
Donotcall.gov has no MX records. No reverse DNS on any of their outbound
mail boxes. And they obviously are not processing bounces/complaints/etc.
since nothing on that netblock has port 25 open.

-Mike

---
Michael Damm, MIS Department, Irwin Research & Development
V: 509.457.5080 x298 F: 509.577.0301 E: [EMAIL PROTECTED]


-Original Message-
From: John R Levine [mailto:[EMAIL PROTECTED] 
Sent: Thursday, June 26, 2003 10:53 PM
To: [EMAIL PROTECTED]
Subject: National Do Not Call Registry has opened


The domain is donotcall.gov, IP range is 206.16.196.192/26.

They all seem to have the same subject line.

Subject: National Do Not Call Registry - Complete Your Registration


DCC checksums (already have a count of 25 even though it's only been open
for an hour or so and it's the middle of the night):

 ok fuz1 ac8763a8 a9e8d829 5e8a506b 1d6ac5e5
 ok fuz2 bc65f25a 2c08ccfd 5b8b6e2c 3c806c1d

They don't quite have all the bugs out.  I gave them three phone numbers,
but they only sent two confirmations.

Regards,
John Levine, [EMAIL PROTECTED], Primary Perpetrator of "The Internet for
Dummies",
Information Superhighwayman wanna-be, http://iecc.com/johnl, Sewer
Commissioner
"More Wiener schnitzel, please", said Tom, revealingly.

-- Forwarded message --
Return-Path: <[EMAIL PROTECTED]>
Delivered-To: [EMAIL PROTECTED]
Received: (qmail 3643 invoked by uid 100); 27 Jun 2003 05:12:01 -
Received: (qmail 3518 invoked from network); 27 Jun 2003 05:09:30 -
Received: from unknown (HELO DoNotCall.GOV) (206.16.196.221)
  by mail.iecc.com with SMTP; 27 Jun 2003 05:09:30 -
Received: from donotcall.gov ([206.16.196.208]) by DoNotCall.GOV with
Microsoft SMTPSVC(5.0.2195.5329);
 Fri, 27 Jun 2003 01:05:04 -0400
Received: from mail pickup service by donotcall.gov with Microsoft SMTPSVC;
 Fri, 27 Jun 2003 01:09:29 -0400
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Subject: [EMAIL PROTECTED] National Do Not Call Registry -
Complete Your Registration
Date: Fri, 27 Jun 2003 01:09:29 -0400
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft CDO for Windows 2000
Thread-Index: AcM8akl1m6Ypbr9BRGKj8OREFMsymw==
Content-Class: urn:content-classes:message
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.
X-OriginalArrivalTime: 27 Jun 2003 05:09:29.0515 (UTC)
FILETIME=[49941FB0:01C33C6A]
X-DCC-IECC-Metrics: tom.iecc.com 1107; Body=1 Fuz1=7 Fuz2=7
X-Spam-Status: No, hits=-5.6 required=7.0
tests=BAYES_01,CLICK_BELOW,NO_REAL_NAME
version=2.53
X-Spam-Level:
X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp)

Click here [ url snipped ] to complete your request to register your phone
number ((607) 330-5711) on the National Do Not Call Registry.

Important: You must respond to this email by clicking the link within 72
hours for your registration to be successful.

Once you have registered, your phone number registration will be effective
for 5 years. It will be illegal for most telemarketers to call you, and you
will be able to file a complaint if a telemarketer does call you.  The
website www.donotcall.gov provides information about filing a complaint.

Important:  After you click on the link, print the web page and keep it for
your records.


***
Please do not reply to this message as it is from an unattended mailbox. Any
replies to this email will not be responded to or forwarded. This service is
used for outgoing emails only and cannot respond to inquiries.

Re: Don't call registry off the map?

[jlewis]

On Fri, 27 Jun 2003, Patrick wrote:

> Can anyone reach www.donotcall.gov? Seems to be off the map...
> 
> I guess this is just the publics way of inviting the DMA(Direct Marketing
> Association) to re-evaulate their assertions that the majority of the
> populace enjoys receiving telemarketing calls...

I was able to get the main page around 8am EDT...but even then it was very 
slow.  I entered 3 phone numbers and tried to submit, but it would not 
accept the connection for my form post.  I retried many times around 8am, 
and again just now, and finally got to steps two and three a few minutes 
before 1pm.  I heard from a few people who got all the way to step three 
before 8am EDT, but noone had received the email yet.
  
--
 Jon Lewis [EMAIL PROTECTED]|  I route
 System Administrator|  therefore you are
 Atlantic Net|  
_ http://www.lewis.org/~jlewis/pgp for PGP public key_

Re: Don't call registry off the map?

[Sean Donelan]

On Fri, 27 Jun 2003, Steven M. Bellovin wrote:
> I got through to the Web site earlier, but I haven't received the
> confirmation emails.  I'm pretty certain there's no spam filter in the
> way, either -- I guess the mail server is even more overloaded than the
> Web server...

For those west of the Mississippi River (and a few states
East of it) you can call 1-888-382-1222

Re: [Don't call registry off the map?]

[Christopher L. Morrow]

On Fri, 27 Jun 2003, Joshua Sahala wrote:

>
> i can get to it, but it is quite slow. (on it's way to being
> slashdotted perhaps?!?!)  wonder if it has anything to to with the
> fact that it is running iis5.0

people never learn, no matter how many times they shoot themselves in the
foot.

Re: Don't call registry off the map?

[Andy Dills]

On Fri, 27 Jun 2003, Andy Dills wrote:

>
> On Fri, 27 Jun 2003, Patrick wrote:
>
> >
> >
> > Can anyone reach www.donotcall.gov? Seems to be off the map...
>
> Everything's fun and games until somebody posts to Slashdot...

But then, the site loads very quickly for me now.

I have an important question, and I know NANOG isn't quite the perfect
place for it, but this is an issue that possibly affects many of you, and
isn't addressed on their site.


I don't currently get soliciting calls on my cell phone. My cell phone is
my only phone. If I sign up for the donotcall list, will that just enable
the exempt organizations to harvest my number to call me?

I'm not so sure I should sign up.

Andy

---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---

Re: [Don't call registry off the map?]

[Joshua Sahala]

i can get to it, but it is quite slow. (on it's way to being 
slashdotted perhaps?!?!)  wonder if it has anything to to with the
fact that it is running iis5.0

must be a large rush of people all hurrying to get their 
names/numbers on another government list...

/joshua

Patrick <[EMAIL PROTECTED]> wrote:
> 
> 
> Can anyone reach www.donotcall.gov? Seems to be off the map...
> 
> I guess this is just the publics way of inviting the DMA(Direct Marketing
> Association) to re-evaulate their assertions that the majority of the
> populace enjoys receiving telemarketing calls...
> 
>
/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\
>Patrick Greenwell
>  Asking the wrong questions is the leading cause of wrong answers
>
\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
> 



"Walk with me through the Universe,
 And along the way see how all of us are Connected.
 Feast the eyes of your Soul,
 On the Love that abounds.
 In all places at once, seemingly endless,
 Like your own existence."
 - Stephen Hawking -

Re: Don't call registry off the map?

[Larry Rosenman]

--On Friday, June 27, 2003 12:43:24 -0400 "Steven M. Bellovin" 
<[EMAIL PROTECTED]> wrote:

In message <[EMAIL PROTECTED]>, "Tim Rand" writes:


I was able to earlier today, but the response was VERY slow.   Their =
server is probably pretty busy
I got through to the Web site earlier, but I haven't received the
confirmation emails.  I'm pretty certain there's no spam filter in the
way, either -- I guess the mail server is even more overloaded than the
Web server...
I hit the Web server between 06:00 and 07:00 CDT today, and am STILL 
waiting for the
emails.

FWIW.

--
Larry Rosenman http://www.lerctr.org/~ler
Phone: +1 972-414-9812 E-Mail: [EMAIL PROTECTED]
US Mail: 1905 Steamboat Springs Drive, Garland, TX 75044-6749

Re: Don't call registry off the map?

[Andy Dills]

On Fri, 27 Jun 2003, Patrick wrote:

>
>
> Can anyone reach www.donotcall.gov? Seems to be off the map...

Everything's fun and games until somebody posts to Slashdot...

Andy

---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---

Re: Don't call registry off the map?

[Steven M. Bellovin]

In message <[EMAIL PROTECTED]>, "Tim Rand" writes:
>

>
>I was able to earlier today, but the response was VERY slow.   Their =
>server is probably pretty busy
>

I got through to the Web site earlier, but I haven't received the 
confirmation emails.  I'm pretty certain there's no spam filter in the 
way, either -- I guess the mail server is even more overloaded than the 
Web server...

--Steve Bellovin, http://www.research.att.com/~smb (me)
http://www.wilyhacker.com (2nd edition of "Firewalls" book)

Re: Don't call registry off the map?

[Tim Rand]

I was able to earlier today, but the response was VERY slow.   
Their server is probably pretty busy
 
 
Tim 
Rand    
 
Network 
Engineer 
 
OHSU Information Technology 
Group  
 ph: 
503.418.1045 
fx: 503.494.7143>>> Patrick 
<[EMAIL PROTECTED]> 06/27/03 09:26AM >>>Can 
anyone reach www.donotcall.gov? Seems to 
be off the map...I guess this is just the publics way of inviting the 
DMA(Direct MarketingAssociation) to re-evaulate their assertions that the 
majority of thepopulace enjoys receiving telemarketing 
calls.../\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\   
Patrick Greenwell Asking the 
wrong questions is the leading cause of wrong 
answers\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/

Don't call registry off the map?

[Patrick]

Can anyone reach www.donotcall.gov? Seems to be off the map...

I guess this is just the publics way of inviting the DMA(Direct Marketing
Association) to re-evaulate their assertions that the majority of the
populace enjoys receiving telemarketing calls...

/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\
   Patrick Greenwell
 Asking the wrong questions is the leading cause of wrong answers
\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/

Re: ISP Best Practices

[Patrick]

On Fri, 27 Jun 2003, A. Arsalan wrote:

> Hello,
>
> Could someone please help me finding out ISP Best practices in terms of design, 
> routing and security? I would appreciate if you share the pointers (URL) or the 
> documents.

I maintain some links to resources at:

http://inet-ops.stealthgeeks.net/information.html

(additions always welcome...)

/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\
   Patrick Greenwell
 Asking the wrong questions is the leading cause of wrong answers
\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/

ISP Best Practices

[A. Arsalan]

Hello,
 
Could someone please help me finding out ISP Best practices in terms of design, routing and security? I would appreciate if you share the pointers (URL) or the documents.
 
Thanks,
Arsalan
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!

Re: Country of Origin for Malicious Attacks

[sgorman1]

damn the Los Alamos people are efficient

the paper for anyone intersted - 

http://arxiv.org/abs/cond-mat/0306002

- Original Message -
From: Peter Galbavy <[EMAIL PROTECTED]>
Date: Friday, June 27, 2003 7:22 am
Subject: Re: Country of Origin for Malicious Attacks

> 
> Jamie Reid wrote:
> > I'd be interested in knowing how linking aggregated attack
> > information to country of
> > origin is actually valuable relative to our ability to respond 
> to it.
> 
> It mostly salves the prejudices of those who want to see certain other
> countries as the enemy. My view, as most of this stuff advertises 
> US based
> 'products and services' (generous description), it should really 
> be a case
> of 'follow the money' as per previous thread.
> 
> Peter
> 
> 
> 

Re: Country of Origin for Malicious Attacks

[sgorman1]

"I'd be interested in knowing how linking aggregated attack information to country of 
origin is actually valuable relative to our ability to respond to it." 


The simulations we have been running are at the AS level, but country level 
information is useful for running some of the scenarios we are interested in.  
Currently we have been starting attacks on the AS graph from randomly selected 
networks, but thought it would be interesting to start attacks from frequent bad 
actors.  The country level part comes in since we are doing this from an 
economic/policy perspective.  If you are going to invest money in cybersecurity what 
are the most important networks to protect.  If there needs to be cross country 
cooperation, which countries are the most important to get to sign on.  Still not sure 
how effective of a way this is to look at the problem, but it is one of the scenarios 
we are running through along with market forces, best practices, insurance, liability 
etc etc.

If anyone is intersted we'll be posting the general approach and models on the 
xxx.lanl.gov site in the next day or so.  I can post the link if folks are intersted, 
any feedback would be greatly appreciated.

thanks,

sean

The Cidr Report

[cidr-report]

This report has been generated at Fri Jun 27 21:07:01 2003 AEST.
The report analyses the BGP Routing Table of the Route-Views router
and generates a report on aggregation potential within the table.

Check http://www.cidr-report.org/as6447 for a current version of this report.

Recent Table History
Date  PrefixesCIDR Agg
20-06-03139461   99183
21-06-03 16181   33004
22-06-03139382   99687
23-06-03139587   99904
24-06-03139325   99906
25-06-03140938  100648
26-06-03139466   99744
27-06-03139252   99443


AS Summary
 15572  Number of ASes in routing system
  6036  Number of ASes announcing only one prefix
  2367  Largest number of prefixes announced by an AS
AS705  : ALTERNET-AS UUNET Technologies, Inc.
  73223936  Largest address span announced by an AS (/32s)
AS568  : SUMNET-AS DISO-UNRRA


Aggregation Summary
The algorithm used in this report proposes aggregation only
when there is a precise match using the AS path, so as 
to preserve traffic transit policies. Aggregation is also
proposed across non-advertised address space ('holes').

 --- 27Jun03 ---
ASnumNetsNow NetsAggr  NetGain   % Gain   Description

Table 139250999433930728.2%   All ASes

AS15290 1873  206 166789.0%   ATTCA-15290 AT&T Canada
   Telecom Services Company
AS705   2367 1308 105944.7%   ALTERNET-AS UUNET
   Technologies, Inc.
AS7132   835  237  59871.6%   SBIS-AS SBC Internet Services
   - Southwest
AS18566  6048  59698.7%   COVAD Covad Communications
AS4716  1281  727  55443.2%   POWEREDCOM POWEREDCOM, Inc.
AS3908  1807 1260  54730.3%   SUPERNETASBLK SuperNet, Inc.
AS11305  549   81  46885.2%   INTERLAND-NET1 Interland
   Incorporated
AS690   1614 1170  44427.5%   MERIT-AS-27 Merit Network Inc.
AS701   1526 1090  43628.6%   ALTERNET-AS UUNET
   Technologies, Inc.
AS7018  1364  947  41730.6%   ATT-INTERNET4 AT&T WorldNet
   Services
AS189685  316  36953.9%   GENUITY-AS189 Genuity
AS4323   602  236  36660.8%   TW-COMM Time Warner
   Communications, Inc.
AS3215   569  228  34159.9%   AS3215  France Telecom
   Transpac
AS1221  1120  782  33830.2%   ASN-TELSTRA Telstra Pty Ltd
AS1239   973  687  28629.4%   SPRINTLINK Sprint
AS6198   476  207  26956.5%   BATI-MIA BellSouth Network
   Solutions, Inc
AS7046  1345 1101  24418.1%   UUNET-CUSTOMER UUNET
   Technologies, Inc.
AS3356   604  362  24240.1%   LEVEL3 Level 3 Communications,
   LLC
AS27364  320   89  23172.2%   ACS-INTERNET Armstrong Cable
   Services
AS6197   521  303  21841.8%   BATI-ATL BellSouth Network
   Solutions, Inc
AS7843   630  421  20933.2%   ADELPHIA-AS Adelphia Corp.
AS4755   433  227  20647.6%   VSNL-AS Videsh Sanchar Nigam
   Ltd. Autonomous System
AS17676  250   49  20180.4%   GIGAINFRA XTAGE CORPORATION
AS2386   410  225  18545.1%   INS-AS AT&T Data
   Communications Services
AS4355   405  222  18345.2%   ERMS-EARTHLNK EARTHLINK, INC
AS376381  211  17044.6%   RISQ-AS Reseau
   Interordinateurs Scientique
   Quebecois (RISQ)
AS209629  462  16726.6%   ASN-QWEST Qwest
AS2548   906  739  16718.4%   ALGX-ATCW-AS Allegiance
   Telecom Companies Worldwide
AS6140   285  122  16357.2%   IMPSAT-USA ImpSat
AS20115  460  298  16235.2%   CHARTER-NET-HKY-NC Charter
   Communications

Total  25824143211150344.5%   Top 30 total


Possible Bogus Routes

5.5.5.0/24   AS1239  SPRINTLINK Sprint
24.119.0.0/16AS11492 CABLEONE CABLE ONE
24.183.185.0/24  AS6478  ATT-INTERNET3 AT&T WorldNet Services

Re: Country of Origin for Malicious Attacks

[Peter Galbavy]

Jamie Reid wrote:
> I'd be interested in knowing how linking aggregated attack
> information to country of
> origin is actually valuable relative to our ability to respond to it.

It mostly salves the prejudices of those who want to see certain other
countries as the enemy. My view, as most of this stuff advertises US based
'products and services' (generous description), it should really be a case
of 'follow the money' as per previous thread.

Peter