Re: fire ants
Terro is my go-to for that... it's basically boric acid mixed with a sugar solution. The ants eat it and perish. It's the only thing I've found that works on the infamous Crazy Rasberry Ants that like to eat electrical panels. On Tue, Aug 12, 2014 at 2:52 PM, Eduardo A. Suárez esua...@fcaglp.fcaglp.unlp.edu.ar wrote: Hi, it's not a joke. Here we have a fire ants nest in the fiber patch panel. Are there any DIY ways to manage that? Thanks, Eduardo.- -- Eduardo A. Suarez Facultad de Ciencias Astronómicas y Geofísicas - UNLP FCAG: (0221)-4236593 int. 172/Cel: (0221)-15-4557542/Casa: (0221)-4526589 This message was sent using IMP, the Internet Messaging Program. -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! 786-228-7087 151.820 Megacycles
Re: AM dust filters
One important question: how often is the equipment accessed for maintenance? I've had reasonably good luck with air filter media coated with a tackifier, similar to the Dustlok media here http://www.filtersales.com/pagout.htm?id=Pad%20Media It seems like what happens with it is heavier airborne fibers (lint, hair) get caught up in the first few fibers of the media, not obstructing airflow, and allow the finer dust to travel deeper into the media where it sticks to the tacky layer at the back. It lasts a good long while. It's single use though, so it has to be replenlished every now and then. Foam rubber media tends to have trouble with surface/airflow area vs pore size. The best option, though, will be to enclose the equipment in a cabinet that can be pressurized by one or more fan forced+filtered inlets. Middle Atlantic makes rack cabinets and fan panels that can be used to pressurize them that way. If you get a cabinet that takes a standard furnace filter, I've had good luck with the off the shelf 3M Filtrete Ultra Allergen filters, they have a TON of surface area with great fine dust capture and very low airflow resistance, even when you're drawing the air through them really way too fast. :) On Tue, Aug 12, 2014 at 2:19 PM, Jason Lixfeld ja...@lixfeld.ca wrote: Hi, I'm interested in knowing what sorts of material folks use to make after-market dust filters for their various devices which wouldn't normally have any. This seems to almost be a necessity when these kinds of devices are deployed in environments that are overly dusty and dirty (it should also be implied that these environments are all in-doors and would have less than ideal airflow and climate control). A material that is too dense will hider airflow and cause an immediate increase in inlet temperature, which would exacerbate a potentially threatening temperature situation in environments where the ambient temperature is already in the mid to high twenties and above (that's 77 - 86F+ for my American friends ;)). A material that is not dense enough won't do a very good job at filtering. Do folks just hack up HEPA filters or something? -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! 786-228-7087 151.820 Megacycles
Re: Comcast Outages?
I had lightning strikes ditch my fiber connections twice yesterday, but you can't blame the network on the big angry hammer of Thor. At least the poor guy who was directly below where lightning nailed our site was already on the toilet..!! On Jul 10, 2014 3:16 AM, Kraig Beahn kr...@l2net.com wrote: Anyone in the SE seeing and/or hearing of any massive Comcast outages regionally? (Fiber, Voice DOCSIS modems from Atlanta, GA to Tallahassee, FL and in some select areas Jacksonville, FL...)
Re: [ PRIVACY Forum ] Critical crypto bug leaves Linux, hundreds of apps open to eavesdropping
Been spending most of the day scrubbing away that vuln in my facility here now here's the fun part: imagine just how many embedded devices (most of which get orphaned from a software maintenance perspective the moment they hit the store shelves) are gonna have this flaw. There's been the discussion of crappy home broadband CPE... Only a matter of time before someone fakes the certificate and breaks a trusted software update method, or heck... a dns explot + fake certificate = several million compromised payment card terminals. On Wed, Mar 5, 2014 at 4:58 PM, jim deleskie deles...@gmail.com wrote: Doing some serious adjusting of my tinfoil today over his :) -jim On Wed, Mar 5, 2014 at 5:03 PM, Jay Ashworth j...@baylink.com wrote: - Original Message - From: Leo Bicknell bickn...@ufp.org On Mar 4, 2014, at 9:07 PM, Jay Ashworth j...@baylink.com wrote: Is this the *same* bug that just broke in Apple code last week? No, the Apple bug was the existence of an /extra/ goto fail;. The GnuTLS bug was that it was /missing/ a goto fail;. I'm figuring the same developer worked on both, and just put the line in the wrong repository. :) Those who speculate that these bugs happened at the behest of the NSA would probably agree with you. Cheers, -- jra -- Jay R. Ashworth Baylink j...@baylink.com Designer The Things I Think RFC 2100 Ashworth Associates http://www.bcp38.info 2000 Land Rover DII St Petersburg FL USA BCP38: Ask For It By Name! +1 727 647 1274 -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! 786-228-7087 151.820 Megacycles
Re: CPE dns hijacking malware
EXTREMELY common. Almost all Comcast Cable CPE has this same login, cusadmin / highspeed At least on ATT U-Verse gear, there's a sticker on the modem with the password which is a hash of the serial number or something equally unique. Almost all home routers also tend to have the default credentials. I'm actually surprised it was this long before XSS exploits and similar garbage started hitting them. Personally I have fond memories of going into my neighbor's router, flashing it with dd-wrt which allowed manual channel setting, and moving it off of the same wifi channel mine was on That was probably not a great idea, but you do what you have to sometimes. On Tue, Nov 12, 2013 at 10:57 AM, Matthew Galgoci mgalg...@redhat.comwrote: Date: Tue, 12 Nov 2013 06:35:51 + From: Dobbins, Roland rdobb...@arbor.net To: NANOG list nanog@nanog.org Subject: Re: CPE dns hijacking malware On Nov 12, 2013, at 1:17 PM, Jeff Kell jeff-k...@utc.edu wrote: (2) DHCP hijacking daemon installed on the client, supplying the hijacker's DNS servers on a DHCP renewal. Have seen both, the latter being more common, and the latter will expand across the entire home subnet in time (based on your lease interval) I'd (perhaps wrongly) assumed that this probably wasn't the case, as the OP referred to the CPE devices themselves as being malconfigured; it would be helpful to know if the OP can supply more information, and whether or not he'd a chance to examine the affected CPE/end-customer setups. I have encountered a family members provider supplied CPE that had the web server exposed on the public interface with default credentials still in place. It's probably more common than one would expect. -- Matthew Galgoci Network Operations Red Hat, Inc 919.754.3700 x44155 -- It's not whether you get knocked down, it's whether you get up. - Vince Lombardi -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! 786-228-7087 151.820 Megacycles
Re: CPE dns hijacking malware
As I recall, the unit in question had a severely flawed auto channel selection algorithm that always, without fail, landed on the first OCCUPIED channel. It was pretty terrible. On Tue, Nov 12, 2013 at 4:18 PM, James Sink james.s...@freedomvoice.comwrote: Personally I have fond memories of going into my neighbor's router, flashing it with dd-wrt which allowed manual channel setting, and moving it off of the same wifi channel mine was on That was probably not a great idea, but you do what you have to sometimes. Props on that, but wouldn't it have been easier to simply change your channel setting? -James -Original Message- From: Tom Morris [mailto:bluen...@gmail.com] Sent: Tuesday, November 12, 2013 9:59 AM Cc: NANOG list Subject: Re: CPE dns hijacking malware EXTREMELY common. Almost all Comcast Cable CPE has this same login, cusadmin / highspeed At least on ATT U-Verse gear, there's a sticker on the modem with the password which is a hash of the serial number or something equally unique. Almost all home routers also tend to have the default credentials. I'm actually surprised it was this long before XSS exploits and similar garbage started hitting them. Personally I have fond memories of going into my neighbor's router, flashing it with dd-wrt which allowed manual channel setting, and moving it off of the same wifi channel mine was on That was probably not a great idea, but you do what you have to sometimes. On Tue, Nov 12, 2013 at 10:57 AM, Matthew Galgoci mgalg...@redhat.com wrote: Date: Tue, 12 Nov 2013 06:35:51 + From: Dobbins, Roland rdobb...@arbor.net To: NANOG list nanog@nanog.org Subject: Re: CPE dns hijacking malware On Nov 12, 2013, at 1:17 PM, Jeff Kell jeff-k...@utc.edu wrote: (2) DHCP hijacking daemon installed on the client, supplying the hijacker's DNS servers on a DHCP renewal. Have seen both, the latter being more common, and the latter will expand across the entire home subnet in time (based on your lease interval) I'd (perhaps wrongly) assumed that this probably wasn't the case, as the OP referred to the CPE devices themselves as being malconfigured; it would be helpful to know if the OP can supply more information, and whether or not he'd a chance to examine the affected CPE/end-customer setups. I have encountered a family members provider supplied CPE that had the web server exposed on the public interface with default credentials still in place. It's probably more common than one would expect. -- Matthew Galgoci Network Operations Red Hat, Inc 919.754.3700 x44155 -- It's not whether you get knocked down, it's whether you get up. - Vince Lombardi -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! 786-228-7087 151.820 Megacycles -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! 786-228-7087 151.820 Megacycles
Re: Point to Point Ethernet request
Do they offer an SLA on that? I've got a couple of broadcast sites that could use a 21st century studio to transmitter link... Bandwidth wouldn't be that spicy (just FM stereo here) but reliability is a must!! An att t1 is even starting to drive us nuts by having seconds long dropouts in the afternoons. Tom Morris, Operations Manager, WDNA-FM This message sent from a mobile device. Silly typos provided free of charge. On Oct 24, 2013 2:14 AM, Crist Clark cjc+na...@pumpky.net wrote: Got 10 GbE service from a data center in Santa Clara to a campus in San Mateo California from Comcast. Been pretty solid. Only blips have been anounced maintenance. When I have contacted support, I really can't complain. It's L2. I see my BPDUs and LLDPDUs come through. So, yeah, it exists. Related, maybe: Has anyone actually seen Comcast's ethernet service? This is advertised as a symmetrical, high-speed (100mb+?) business service not consumer stuff. I called several times out of curiosity. Using the phone number for this service on their website got me switched around several times by people who seemed to barely know what I was talking about. One wanted to engage me in a debate about why asymmetrical 20/7 (whatever it was) isn't good enough I assume because that's all she was involved with so I muttered something about routing net blocks etc so she gave up and switched me again. Fine. Then I'd finally get someone who seemed reasonable, seemed to know what I was asking about, took down my call back info and promised someone would get back to me within one business day. Never got a callback. Tried this a few times, same result. So, does it exist? I suppose if sales won't call you back you have to wonder what support would be like. P.S. Their website for this service invites you to enter your address to see if it's available and assures me it is, that's where you get the phone number to call sales. -- -Barry Shein The World | b...@theworld.com | http://www.TheWorld.com Purveyors to the Trade | Voice: 800-THE-WRLD| Dial-Up: US, PR, Canada Software Tool Die| Public Access Internet | SINCE 1989 *oo*
Re: Office 365..? how Microsoft handed the NSA access to encrypted messages
We use Office 365 here at work, but I'd definitely be interested in looking into alternate solutions --- at the very least I am going to be sure to inform our staff that there is to be no expectation of privacy when using your Office365 account. Gross. On Fri, Jul 12, 2013 at 1:04 PM, Grant Ridder shortdudey...@gmail.comwrote: Touché Sent from my iPhone On Jul 12, 2013, at 8:56 AM, Eric Wieling ewiel...@nyigc.com wrote: Suspecting your spouse of cheating is much different than coming home and finding them in bed with someone. -Original Message- From: Grant Ridder [mailto:shortdudey...@gmail.com] Sent: Thursday, July 11, 2013 9:40 PM To: Rodrick Brown Cc: nanog@nanog.org Subject: Re: Office 365..? how Microsoft handed the NSA access to encrypted messages I 2nd Rodrick's statement of so please tell me why are most people shocked with all the spying by governments?. All this leak does is confirm what most people already suspected or assumed. -Grant On Thu, Jul 11, 2013 at 6:27 PM, Rodrick Brown rodrick.br...@gmail.com wrote: : off topic rant : Just assume no data you store and or traverses any public cloud service is private or secure this is just silly. I can't believe people are so naive to believe messages sent over the public Internet isn't intercepted stored and analyzed by the same government bodies who gave it to us in the first place. I've always heard rumors as a kid that the NSA had systems long in place that could record all voice calls based on certain key phrases ever since the Nixon era so please tell me why are most people shocked with all the spying by governments? Sent from my iPhone On Jul 11, 2013, at 2:39 PM, Warren Bailey wbai...@satelliteintelligencegroup.com wrote: Anyone else planning on bailing from office365? http://m.guardian.co.uk/world/2013/jul/11/microsoft-nsa-collaboration- user-data Sent from my Mobile Device. -- -- Tom Morris, KG4CYX Mad Scientist and Operations Manager, WDNA-FM 88.9 Miami - Serious Jazz! Engineer, WRGP Radiate FM, Florida International University 786-228-7087 151.820 Megacycles
If you thought you had wire management issues in your facilities...
Radio Free Asia, Washington DC. https://www.facebook.com/photo.php?fbid=485799631503312set=gm.536342003094118type=1 Just remember, you're probably in better shape than them. If you look carefully on the right side you can see where some cables were left abandoned in place because they'd become unremovable from that giant set of dreadlocks. -- -- Tom Morris, KG4CYX Mad Scientist For Hire Chairman, South Florida Tropical Hamboree / Miami Hamfest Engineer, WRGP Radiate FM, Florida International University 786-228-7087 151.820 Megacycles
Re: huawei (oscilloscopes and frequency analysis)
There's already code out there for the GNURadio project's software defined radio infrastructure that supports some very basic LTE analysis using a $20 or less USB DTV tuner stick!! Only a matter of time before some radio devices with a lot more bandwidth become affordable and easily accessible. https://github.com/Evrytania/LTE-Cell-Scanner On Tue, Jun 18, 2013 at 4:31 PM, Phil Fagan philfa...@gmail.com wrote: now THAT would be a cool project! On Tue, Jun 18, 2013 at 2:25 PM, Jazz Kenny trapperjohn...@gmail.com wrote: On Mon, Jun 17, 2013 at 7:38 AM, Tony Patti t...@swalter.com wrote: Thanks, I liked your pointer to the SDR. But can I ask you for a bit more info about your statement where oscilloscopes and frequency analysis is available to anyone with some Google-fu We don't need as much test equipment before? (as a guy with an oscilloscope in his basement, I don't see how Google can do what that device can). Thanks, Tony All I meant was that the tools are relatively accessible to anyone with the desire to look - An oscilloscope with the necessary freq. range to study 4G communications can be bought or fabricated (all that's really needed is a microcontroller with an ADC, some gain amps and time), an appropriate SDR to intercept the signals shouldn't be too hard to source, and that community has been blowing up for a few years now. Hell, there are even a couple examples of LGA 4G receivers floating around in the wild (gtm801, for example). Ignoring all of that, there are commercial options like the YellowFin 4G analyzer. No idea how much one of those costs, though. Now, like Jay said, there are the issues of encryption and such, but that's just another barrier to entry. A little Google-fu could probably source a paper dealing with its implementation, at least. I doubt it would be easy, but if the motivation exists, the required test bed is easily assembled, and the information is available. Not like we're talking about intercepted military GPS bands or something. It's a consumer device that can sit on a workbench and be tested at the leisure of the security researcher. - J. -- Phil Fagan Denver, CO 970-480-7618 -- -- Tom Morris, KG4CYX Mad Scientist For Hire Chairman, South Florida Tropical Hamboree / Miami Hamfest Engineer, WRGP Radiate FM, Florida International University 786-228-7087 151.820 Megacycles
Re: GPS attack vector
This could also be a big show stopper for cellular and radio networks. Many use a 10.000 MHz timebase distributed from a GPS disciplined local oscillator for precise time and frequency synchronization. Without this tight frequency stabilization from a GPS receiver, major drama will occur on the borders between simulcasting repeater coverage areas, cell sites, etc. Can anyone say Spaghetti mess? Ow my brain hurts. Tom Morris, KG4CYX Chairman, South Florida Tropical Hamboree Mad Scientist, Miami Children's Museum This message sent from a mobile device. Silly typos provided free of charge. On Jan 16, 2013 8:08 PM, Jay Ashworth j...@baylink.com wrote: Do you use GPS to provide any mission critical services (like time of day) in your network? Have you already see this? (I hadn't) http://arstechnica.com/security/2012/12/how-to-bring-down-mission-critical-gps-networks-with-2500/ Cheers, -- jra -- Jay R. Ashworth Baylink j...@baylink.com Designer The Things I Think RFC 2100 Ashworth Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA #natog +1 727 647 1274
Re: why haven't ethernet connectors changed?
I'm going to go by the Necessity is the mother of invention theory here and say that it's basically because the need for a subcompact ethernet connector hasn't shown up in masse yet. It was probably just adopted because it's inexpensive, easy to install using tools already out there in the telecom world, and it works well enough at the required feedline impedance of 100 ohms. That being said, any connector that works for balanced line signalling with a feedline impedance of 100 ohms and a favorable frequency response up to 100mc (100base-T / cat5) or 250mc (1000baseT / cat6) should work just fine. For obvious reasons, standardization of the submini ethernet connector should be present industrywide, so you don't have to start carrying around adapters. Boy would I ever love an ethernet connector that works like Apple's MagSafe... or at least just kinda friction fits like USB... THOSE TABS... On Thu, Dec 20, 2012 at 1:20 PM, Michael Thomas m...@mtcc.com wrote: I was looking at a Raspberry Pi board and was struck with how large the ethernet connector is in comparison to the board as a whole. It strikes me: ethernet connectors haven't changed that I'm aware in pretty much 25 years. Every other cable has changed several times in that time frame. I imaging that if anybody cared, ethernet cables could be many times smaller. Looking at wiring closets, etc, it seems like it might be a big win for density too. So why, oh why, nanog the omniscient do we still use rj45's? Mike -- -- Tom Morris, KG4CYX Mad Scientist For Hire Chairman, South Florida Tropical Hamboree / Miami Hamfest Engineer, WRGP Radiate FM, Florida International University 786-228-7087 151.820 Megacycles
Re:
// wire pin 10 to +5v void setup() { pinMode(10, OUTPUT); digitalWrite(10, LOW); } void loop() { // ha ha you'll never get here, enjoy the blue smoke } // I like to classify my occupation as gaff taping Arduino boards to things till they 'work' Tom Morris, KG4CYX Chairman, South Florida Tropical Hamboree Mad Scientist, Miami Children's Museum This message sent from a mobile device. Silly typos provided free of charge. On Dec 11, 2012 7:22 PM, flower tailor samba...@hotmail.com wrote: Delete me
RE: Eaton 9130 UPS feedback
Yeah, that's about right. When I had one fail that was not set in power saver mode, it just shut off intermittently before letting out the genie. When I had one go out while it was in energy saver mode, it continued to operate but put out a weak ~80Vrms with heavy distortion that caused equipment damage. Foul. Also in regards to OutBack - the Radian GS8048 is beautiful. I'd highly recommend it. It is basically two inverter/charger modules paralleled in one chassis, each being 4Kw. I was playing with one and yoinked the control cable to one module -- the power stayed on without incident and the MATE3 control unit (which is fun and Ethernet equipped) reported the error. If you use the 8048 in half capacity it's redundant. It gives 120/240 (l1, neutral, l2) out of the box and is pure sine. I recommend getting the matching GS load center with it because it makes the install super easy and includes the requisite breakers. Tom Morris, KG4CYX Chairman, South Florida Tropical Hamboree Mad Scientist, Miami Children's Museum This message sent from a mobile device. Silly typos provided free of charge. On Nov 15, 2012 9:29 AM, Brandt, Ralph ralph.bra...@pateam.com wrote: Note the EATON Press release. Maybe the burn on the bench is the way they get to the California energy reduction Standards? If it isn't working it isn't using power. Date: 23 October 2012 Latest Eaton Thought Leadership White Paper Provides Technical Analysis of Eaton's Energy Saver System Eaton today announced the release of its latest white paper, Understanding Eaton Energy Saver System. In the paper, George Navarro, an Eaton technical solutions engineering specialist, explains how Eaton's Energy Saver System (ESS) enables large uninterruptible power systems (UPSs) to operate at up to 99 percent efficiency without sacrificing reliability. Though ESS is rapidly gaining support in the UPS industry for its ability to build on the strengths of traditional double-conversion architectures, many consultants and end users have questions about how ESS works and what enables it to lower power consumption while maintaining high levels of availability. In the paper, Navarro answers these questions by providing in-depth technical information about ESS's architecture, reliability characteristics, computational infrastructure and surge suppression attributes. Ralph Brandt -Original Message- From: Seth Mattinen [mailto:se...@rollernet.us] Sent: Tuesday, November 13, 2012 2:59 PM To: nanog@nanog.org Subject: Eaton 9130 UPS feedback Does anyone use Eaton 9130 series UPS for anything? I'm curious how they've worked out for you. I bought a 700VA model to give it a whirl versus the traditional APC since the Eaton is an online type with static bypass and also does some high efficiency thing where it normally stays on bypass, but the first thing it did on the bench was have the inverter/rectifier or bypass section catch on fire and destroy itself. ~Seth
Re: Eaton 9130 UPS feedback
Sorry to say, I've used them and had them eat themselves. They just die mysteriously and let out lots of smoke when they do. When they do, however, they leave behind a perfectly good set of batteries. I'd recommend looking elsewhere... Does Eaton/PowerWare still make the FerrUPS series? Those were *solid*. On Tue, Nov 13, 2012 at 5:16 PM, Adrian chopr...@dakotacom.net wrote: On Tuesday 13 November 2012 12:59, Seth Mattinen wrote: Does anyone use Eaton 9130 series UPS for anything? I'm curious how they've worked out for you. I bought a 700VA model to give it a whirl versus the traditional APC since the Eaton is an online type with static bypass and also does some high efficiency thing where it normally stays on bypass, but the first thing it did on the bench was have the inverter/rectifier or bypass section catch on fire and destroy itself. ~Seth We have several 5130 and 9125 models (2kVA rackmount), never given us a problem in years of service... Well, one network management card that lost its mind, reset the configuration and went on with life, but the UPS just chugged along. Biggest plus has been that they don't cook their batteries like APCs do. Adrian -- -- Tom Morris, KG4CYX Mad Scientist For Hire Chairman, South Florida Tropical Hamboree / Miami Hamfest Engineer, WRGP Radiate FM, Florida International University 786-228-7087 151.820 Megacycles