Re: Why does abuse handling take so long ?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/13/2011 05:34 PM, goe...@anime.net wrote: On Sun, 13 Mar 2011, Alexander Maassen wrote: On 13-3-2011 18:31, William Allen Simpson wrote: On 3/13/11 7:45 AM, Alexander Maassen wrote: Why o why are isp's and hosters so ignorant in dealing with such issues and act like they do not care? So, part of the problem is *your* upstream. Why didn't your upstream actively remove the entire abusive netblock? Why didn't your upstream contact other providers with your evidence, and together remove the abusive network from the global routing tables? My hoster did mail, his upstream is EGI, however, EGI does not want to block/filter since it would pollute their routers they say. I asked through my hoster if they would be willing to place a simple UDP filter, blocking all of it. They refuse. again make it a question of economics. vote with your wallet, vote with your feet. if they won't block, leave. leaving is not always as easy as you imply. There are some areas with only one real provider. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCgAGBQJNfUvcAAoJEPXCUD/44PWqje8QALqCB5SmUamIvItQSsJZ+B0t bKSDxmUszgAkFMxc9y7n1TuymOKx2lsCQmO8aQmE95NXOUloH1R89aA51DMaxxsX vt9GspDi2zuzoGngMUhl7Xuho5lxekg0nw8zEqa14MdZK/iMQw1e9D+pfl2GF43X 4KyFBqL85DrpnJhaNpQ3BB/EsM4+hMxxZYm5CAqZYKa2ywuR9LGVjQ5i0zoqc3e9 wFUAk2C/0ATf+eUhBaw6OHtpj7E2JgGfkP8K8npr27U9WVMpjBjd1ERZVy7FZ+7n rEVj+bUrW57VVvdv1UzE4rHa49Y0YXALnq05rGxuE0iCkIcth8pDI5YVYwTwsvDx gZR5H0Kmm9bQvOpvUR8TmW7BXlamVOHC1beCYHhI6Oig1bTx1DfCP+CniMnz5l3o G+sweZA589nJxonawl5qGhySCBg6a9Z4gtoYRaFsTVe8sI59JtzsbyvjdVvUwSkR UOPdPpHUuG72i3dB+/bdTKWDeGjghn6oTheVY/03oYvOLAg+8zZPupb3Ql9FARnw qb2Qc5ebzEG6wuaXlC/iHzTuc4DHp4rWvwm9tE1sQ379ntZJiKpfm0eMcdeo+xJ9 RxDg5fksOaihhM8MVRi4recdHyySzHZw9JPrx1VfhPWv3umPYt/csT0/L/EeyAJu Ybo7ahfzII26suzrAr43 =M/H6 -END PGP SIGNATURE-
Re: Facebook down!! Alert!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 James Smith wrote: At 1:20am here in Canada, NB our networks are showing that facebook is down. Please confirm in the USA. ~SmithwaySecurity Sent from my iPhone We need Alert and ! in the subject? seriously? Sorry, but I don't see a reason to get all excited. FB is down, omg, alert the media. geez -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJMrAOfAAoJEPXCUD/44PWqa2sP/AuUU0WnM4UUtAO3mazyRPIa gJ/xuguEgYWNbl7j/EZgHEu7fSYgkbo+Y/H+T2F5nl0PO3UqJz5sjyfD654OSy0h FAERgpR2syfRFM17EaLai4VgHsiVdm82Fzqs8xXwumu9OVfQAbk/eWsg6d0wOzp8 cuO7OUmb06i66VHbmWrSSJKmJKkhYvxf89o3NbPI6i0eIqr0wADJLIRbDQLLTt1i YnCj1urxClGnw9ChoCe0meNITllKx9nluzKEDy6P1eRWxTMGCn9xOnWlKHW2/6Rs sW/klZeOFxLDFEkufNLPr6w9vWxee648j0fjkCU6PGn6GRxaS6Qq0je1e/15f8cI MlfA1CCO/hNvSA07EBbpz9th2wyx69ninnv7Y3mjly//YB0EY/9H2j21wCDsDoJ4 SY/ttYOKQEZ3XoTAKa0RLzRmkR/GQwVsnGUfa//kA1Msf541VG8i98dYF6tpqFVt RJ0SDEHv53XSP+tuT4HdCyj8BtgwqIQTlughqynPM74kbYc6jYrZ6mxHxfhJkeXD wsYoJmHVcUgg/WKsa0eGk7sPhHEgR1alW5KnBYAjBtsStO9sLmESSTculvEQ7VXS OvuYUTfqgl3mkRtW0ttJvB/b5VvCQ70eUIkcmRUEvrX30WJldjupFxkyCaJtB3s4 Cq0MnisvbZZcpLoAJ0Qp =HLWx -END PGP SIGNATURE-
Re: security questions
adrian kok wrote: Hi I have questions about security I am using mozila to access gmail as https://mail.google.com/mail Why mozilla prompts me the alert box? You have requested an encrypted page that contains some unencrypted information. Information that you see or enter on this page could easily be read by a third party. 1/ Can network software help to check? if yes. which software and how? 2/ How mozilla knows I have data not encrypted? 3/ ls https secured? If not. why it is PCI? Thank you Send instant messages to your online friends http://uk.messenger.yahoo.com This message is saying that Google is including things using http:// in the site. This is common with Images. The login is still secure, just they just are not using SSL for some things. [ ~ ] lynx --dump mail.google.com/mail|grep http\:\/\/ http://gmail.com/app. [1]Learn more 1. http://www.google.com/mobile/landing/mail.html#utm_source=gmailhpp 2. http://mail.google.com/support/bin/answer.py?answer=46346fpUrl=https%3A%2F%2Fwww.google.com%2Faccounts%2FForgotPasswd%3FfpOnly%3D1%26continue%3Dhttp%253A%252F%252Fmail.google.com%252Fmail%252F%253Fui%253Dhtml%2526zy%253Dl%26service%3Dmail%26ltmpl%3DdefaultfuUrl=https%3A%2F%2Fwww.google.com%2Faccounts%2FForgotPasswd%3FfuOnly%3D1%26continue%3Dhttp%253A%252F%252Fmail.google.com%252Fmail%252F%253Fui%253Dhtml%2526zy%253Dl%26service%3Dmail%26ltmpl%3Ddefaulthl=en 3. http://mail.google.com/mail/signup 4. http://mail.google.com/mail/help/intl/en/about.html 5. http://mail.google.com/mail/help/intl/en/about_whatsnew.html 6. http://www.google.com/apps/intl/en/business/gmail.html#utm_medium=etutm_source=gmail-signin-enutm_campaign=crossnav 7. http://gmailblog.blogspot.com/?utm_source=en-gmftrutm_medium=etutm_content=gmftr 8. http://mail.google.com/mail/help/intl/en/terms.html 9. http://mail.google.com/support/
Re: CNN Cyber Shockwave only available in US
andrew.wallace wrote: It is not being broadcast world wide... Provide links. Andrew This does not appear to be something which belongs on NANOG. Funsec perhaps, but not here
Re: CNN Cyber Shockwave only available in US
andrew.wallace wrote: --- On Sun, 21/2/10, Larry Brower larry-li...@maxqe.com wrote: From: Larry Brower larry-li...@maxqe.com Subject: Re: CNN Cyber Shockwave only available in US To: andrew.wallace andrew.wall...@rocketmail.com Cc: nanog@nanog.org Date: Sunday, 21 February, 2010, 1:29 andrew.wallace wrote: Funsec perhaps, but not here You *don't* expect The British to post on a mailing list setup run by an ex-IDF (Israel Defence Force) agent do you? Who is, according to our records, subscribed to '8200 Fellowship - Israeli IDF' on LinkedIn. http://www.linkedin.com/groups?home=gid=84086 Who is likely still to hold patriotic values in favour of Israel. No thanks, Andrew Theres no need to bash on Gadi. Why don't you go outside or something..
Re: dns interceptors
Randy Bush wrote: end user to network having probs with certs, i.e. what --outform it wants. not finding in docs. tried raw, but now guessing pem. same for client and server server ca.crt server.crt server.key client ca.crt client.crt client.key and i presume i have to dump all client.crt files in the server's ../openvpn dir, but under what names? or does it just wantonly trust anyone under that ca? randy What error is getting logged? They are just normal cert's and should be in the keys directory under openvpn's user directory. OpenVPN includes scripts that can make the certificates for you under the directory easy-rsa
Re: dns interceptors
Randy Bush wrote: just normal certs can be text, pem, der, ... randy Randy, pem format.