Re: DNS Hijacking by Cox
Brandon Galbraith wrote (on Sun, Jul 22, 2007 at 06:28:55PM -0500): > Agreed. If you're savvy enough to have a problem because of this, you're > savvy enough to a) Use another set of DNS servers or b) Use your own local > resolver. > > -brandon Oh. And when they implement Plan B (inspecting each DNS packet for IRC.* and substituting their own answer as a reply), then what? -- _____________ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
Re: Possibly OT, definately humor. rDNS is to policy set by federal law.
Steve Sobol wrote (on Thu, Mar 15, 2007 at 10:31:44PM -0400): > > On Thu, 15 Mar 2007, S. Ryan wrote: > > > Personally, we gave up using SORBS because of it's very high > > false-positive ratio > > YMMV; at $DAYJOB we don't seem to have the same problem. I gave up using SORBS (and I'm not Mat's enemy, mind you - I used to work for SORBS and still like the idea) because it was so random. Mat would block 2, say, out of AOL's 26 or whatever mailservers. Why? b/c those two were used to send spam. Right. So, not only do I have to explain to users why their AOL friends cannot write them, I *also* have to explain that the blocking is at random, and if their friend just retrys sending, they'll have a 92% chance of getting through. Completely unworkable. If you want to block AOL (and I totally sympathize with Mat here) just ... block ... them and be done with it. Don't make me play email roulette. -- _____ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
Re: Routing Loop Strangeness
Elijah Savage wrote (on Thu, Jan 04, 2007 at 03:28:13PM -0500): > > Anyone else see this from their paths? > > vader# whois -h whois.cymru.com " -v 11.11.11.2" > AS | IP | BGP Prefix | CC | Registry | Allocated | AS Name > NA | 11.11.11.2 | NA | US | arin | 1984-01-19 | NA > > #trace > Protocol [ip]: > Target IP address: 66.80.187.122 > Source address: > Numeric display [n]: y > 17 11.11.11.2 40 msec > 18 11.11.11.1 40 msec > 19 11.11.11.2 44 msec > 20 11.11.11.1 40 msec > 21 11.11.11.2 44 msec > 22 11.11.11.1 40 msec > 23 11.11.11.2 48 msec > 24 11.11.11.1 44 msec > 25 11.11.11.2 44 msec > 26 11.11.11.1 48 msec > 27 11.11.11.2 48 msec > 28 11.11.11.1 48 msec Yep. Way cool. -- _ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
Re: How to stop UltraDNS sales people calling
> >Hi, > > > >I am really fed up of calls from UltraDNS - we seem to get them every > >few days. We don't need their product. > > > >We've tried saying no, and additionally we've tried putting people on > >hold indefinitely, trying to be enough of a nuisance to drop off their > >sales call list (works with UK telcos - try it). > > > >I just had a guy on hold for 18 minutes before taking him off hold to > >say that we didn't want their product, and could he please stop calling. > > > >He told me he would still calling until he got through to the right > >person. I am the right person. > > > >In the interest of Anglo-American relationships - any Neustar people on > >list willing to help ? I have a very special voice mailbox assigned to a fictional person. Any sales calls get transferred to it. No, I don't monitor it. :-) -- _ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
Re: SORBS Contact
Ken Simpson wrote (on Fri, Aug 11, 2006 at 09:09:33AM -0700):
>
> > Weighing in with an opinion, as bad as blacklists *may be*, at least
> > they let the sender know something's up. Not in an artful way, to be
> > sure, but they give some notice. The sender can do _something_,
> > including dropping his association with the recipient b/c it's not worth
> > his time and trouble. Blackholing email because you think it's spam, OTOH,
> > is pure evil.
>
> Host type can only be used as a relatively small weighting factor
> toward blocking connections. However in the absence of any other
> reputation data on a particular IP, it's a safe way to trigger
> throttling or rate limiting.
>
> IMHO receivers have a right to filter traffic in any way that reduces
> abuse while serving the needs of their end users. There is a lot of
> pressure from end users and legitimate email senders to ensure that
> whatever blocking strategy is in use ensures that the good stuff is
> not blocked.
I agree that IP by itself is of limited usefullness. My main point was
that, however you came to your decision ("today I'm not accepting SMTP
from hosts with the number nine in their IP"), you should reject mail
you don't want, not accept it and toss it.
--
_
Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED]
Attorney and Counselor-at-Law http://ziskind.us
Economic Group Pension Services http://egps.com
Actuaries and Employee Benefit Consultants
Re: SORBS Contact
> >You're certainly welcome to encourage others not to use blacklists. Just > >understand that you have no right to complain when they decide to continue > >using those blacklists. > > > >Having said that, do understand that I don't think DNSBL's are a panacea, > >nor are their operators perfect. But in many cases, they can be a useful tool > >in the anti-spam arsenal. Weighing in with an opinion, as bad as blacklists *may be*, at least they let the sender know something's up. Not in an artful way, to be sure, but they give some notice. The sender can do _something_, including dropping his association with the recipient b/c it's not worth his time and trouble. Blackholing email because you think it's spam, OTOH, is pure evil. -- _ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
Re: SORBS Contact
> > I don't know what your problem is, but you're not making things any better > > by refusing to fix listings that aren't incorrect or, in some cases, never > > were. IMHO, it's not about making things 'better' - we don't expect NANOG'ers to be any more altruistic than other folk. It's about consumer protection, as the anti-spammers always say; if $BLACKLIST does a good job, we keep it. If it screws up too much, we go elsewhere. So Matt has an incentive to be correct, I should think. -- _ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
