Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Paul Timmins
Indeed many places have multiple padlocks locked together and then hooked to a chain. Any padlock opened unlocks the chain. This really only works for chained shut gates, but it's works rather well, and you can revoke access with the key from an adjacent lock and a pair of boltcutters. This is how

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Vincent J. Bono
> The quesiton isn't so much how someone cut a fiber strand, but why the > failure of a single fiber strand had such an impact on the telephone > service in the region. I'd be willing to bet it wasn't a single "strand". More likely the press or whoever got it wrong and it was an entire cable or

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Vincent J. Bono
> I'm fairly certain that the telco huts or CO's have to accomodate multiple > groups having access, so I'd bet that a padlock probably is a tough sell > :( Its very interesting that the 'critical infrastructure' has seemingly > loose security on such vital parts. Actually padlocks are quite comm

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Henry Linneweh
Not having seen the entire cut, I would have to imagin the entire bundle was cut and the poor splicers had their hands full.   -Henry"Vincent J. Bono" <[EMAIL PROTECTED]> wrote: > The quesiton isn't so much how someone cut a fiber strand, but why the> failure of a single fiber strand had such an i

Reliance buys FLAG

2003-11-03 Thread Suresh Ramasubramanian
Which means that the undersea cable that feeds most of the connectivity to India (and till recently was, other than satellite, the main connectivity coming in here), now gets to be open to all comers I guess. The (former) incumbent monopoly telco VSNL had exclusive landing rights and reselling

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Brian Bruns
- Original Message - From: Henry Linneweh To: Vincent J. Bono ; [EMAIL PROTECTED] Cc: Sean Donelan Sent: Monday, November 03, 2003 6:02 AM Subject: Re: Sabotage investigation of fiber cuts in Northwest > Not having seen the entire cut, I would have to imagin the entire bundle was > cut

RE: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Douglas S. Peeples
What you describe is a folded ring and is indicative of either a temporary solution or bad network design. As a rule, phone companies and capacity suppliers build very robust systems. Douglas S. Peeples Technology Assurance Labs -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Owen DeLong
Maybe I'm missing something, but, if you have the bolt cutters, I don't see why you need the key to an adjacent lock or any of the locks. Additionally, most of these things are in remote enough locations that you are unlikely to be observed using the bolt cutters to gain access to the site. It's n

Re: Sabotage investigation of fiber cuts... [collapsed RBOC rings]

2003-11-03 Thread fkittred
On Mon, 3 Nov 2003 08:15:11 -0500 "Douglas S. Peeples" wrote: > What you describe is a folded ring and is indicative of either a = > temporary > solution or bad network design. As a rule, phone companies and capacity > suppliers build very robust systems. =20 > > Douglas S. Peeples > Technology

RE: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Owen DeLong
Please tell me what phone companies you've been working with. As a rule, the ones I've experienced build whatever is the path of least resistance and often do stupid telco tricks like folded rings and single entries into buildings unless you stand over them with a bull-whip and insist that they do

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Paul Timmins
On Mon, 2003-11-03 at 10:07, Owen DeLong wrote: > Maybe I'm missing something, but, if you have the bolt cutters, I don't > see why you need the key to an adjacent lock or any of the locks. If you want to reconnect the chain back together without replacing the lock, you'll need a key from an adja

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread David Raistrick
On Mon, 3 Nov 2003, Owen DeLong wrote: > Maybe I'm missing something, but, if you have the bolt cutters, I don't > see why you need the key to an adjacent lock or any of the locks. If you want to put the chain back together, you'll need to open one of the locks, or add another lock in it's place

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Laurence F. Sheldon, Jr.
Owen DeLong wrote: > > Maybe I'm missing something, but, if you have the bolt cutters, I don't > see why you need the key to an adjacent lock or any of the locks. > Additionally, most of these things are in remote enough locations that > you are unlikely to be observed using the bolt cutters to g

RE: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Ray Burkholder
www.telcove.com They are running a DS3 'through' our building, enters one side and exits the other. They refused to run a spur but are adding a loop for us. > > I'd love to know of a telco that does this right without > having to stand > over them. > Ray Burkholder [EMAIL PROTECTED] http://

RE: Harassment (was Re: ELAN.NET ...)

2003-11-03 Thread Michel Py
> Scott Call wrote: > The ethics and/or legality of registering > nanog.us notwithstanding, That's what we are talking about, I think. There is value in a name; for example, Neustar (nic.us) has reserved whitehouse.us (see whois below). I would not have been too worried about some jerk trying to

Re: Harassment (was Re: ELAN.NET ...)

2003-11-03 Thread Eric Brunner-Williams in Portland Maine
This one is my fault. I put in-addr.arpa on the protected list, and didn't think about operational non-dns infrastructure. I can't tell you who to talk to over at NS, but since you all have latest bind, and are cluefull on the VGRS wildcard hack, you all can limit the effect that the "nanog" has

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread David Lesher
Speaking on Deep Background, the Press Secretary whispered: > > > > Maybe I'm missing something, but, if you have the bolt cutters, I don't > > see why you need the key to an adjacent lock or any of the locks. > > If you want to reconnect the chain back together without replacing the > lock, yo

Need contact

2003-11-03 Thread Jeffrey Sharpe
Could someone from Road runner contact me off list please? This is for a routing issue. Jeffrey Sharpe CyberLynk Helpdesk and Support 414.858.9335 or 800.942.8022 [EMAIL PROTECTED]

RE: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Henry Linneweh
I tend to agree, fiber rings when built out correctly have subtending rings to handle redundancy with extremely low delay times 50ms at worse   -Henry"Douglas S. Peeples" <[EMAIL PROTECTED]> wrote: What you describe is a folded ring and is indicative of either a temporarysolution or bad network de

RE: Sabotage investigation of fiber cuts... [collapsed RBOC rings]

2003-11-03 Thread Deepak Jain
> On Mon, 3 Nov 2003 08:15:11 -0500 "Douglas S. Peeples" wrote: > > What you describe is a folded ring and is indicative of either a = > > temporary > > solution or bad network design. As a rule, phone companies and capacity > > suppliers build very robust systems. =20 > > > > Douglas S. Peeples

Re: DDoS detection and mitigation systems

2003-11-03 Thread Alex Yuriev
> Do you use/develop in-house tools to analyze Netflow on your peering routers > and have that interface in near-realtime with the said routers to null route > (BGP and RPF) the offending sources? Source or destination? Null routing source of DOS is not going to do you any good. Null routing dest

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Alex Yuriev
> > > You'd think after three previous disruptions, that Qwest would > > > have enabled some form of redundancy. > > > > Redundancy hell. How about a *PADLOCK*? > > You mean that these places aren't even locked? Who has (had) the key? > That'd be the first place I looked. The most ama

Re: DDoS detection and mitigation systems

2003-11-03 Thread Christopher L. Morrow
On Mon, 3 Nov 2003, Alex Yuriev wrote: > > > Do you use/develop in-house tools to analyze Netflow on your peering routers > > and have that interface in near-realtime with the said routers to null route > > (BGP and RPF) the offending sources? > > Source or destination? Null routing source of DO

Re: Harassment (was Re: ELAN.NET ...)

2003-11-03 Thread Steve Gibbard
On Mon, 3 Nov 2003, Eric Brunner-Williams in Portland Maine wrote: [Regarding somebody's registration of nanog.us] > I can't tell you who to talk to over at NS, but since you all have latest > bind, and are cluefull on the VGRS wildcard hack, you all can limit the > effect that the "nanog" has i

Re: Sabotage inv... [collapsed RBOC rings] [Fascinating Reading]

2003-11-03 Thread fkittred
On Mon, 3 Nov 2003 12:13:45 -0500 "Deepak Jain" wrote: > Are you sure he wasn't talking about customer-buildings? I bet that 10% is > to their COs and most of the 90% don't pay to have redundant paths to their > building. If your business case is not sufficient for VZW or another company > to bui

Re: Harassment (was Re: ELAN.NET ...)

2003-11-03 Thread Eric Brunner-Williams in Portland Maine
Well, I understand that this _appears_ to be a marks issue. However, the operator (NS) is allowed under the regulatory agreement (quasi-ICANN gTLD contract) to create a reserved words list, as is the regulator, independent of any other theory of right. in-addr.arpa sure isn't copyrighted. When

Re: Harassment (was Re: ELAN.NET ...)

2003-11-03 Thread Suresh Ramasubramanian
Steve Gibbard writes on 11/3/2003 1:08 PM: Uh... This appears to be a potential trademark law issue, except that I'm not aware of Merit or anybody else ever claiming NANOG as a trademark. Presumably, if this becomes a problem (somebody advertising alternate "NANOG" conferences, for example), Merit

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Stewart, William C (Bill), RTSLS
Subtopics: Redundancy, Hunters. On Sun, Nov 02, 2003 at 09:37:30PM -0500, Robert M. Enger wrote: > You'd think after three previous disruptions, that Qwest would > have enabled some form of redundancy. If a single fiber cut takes them out, it's not _just_ Qwest's fault. A service like 911 shou

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Marshall Eubanks
Based on my knowledge of fiber routes in Western Fairfax and Loudoun County and also from my NASA / US Navy days, there is a whole lot of security through obscurity in the physical infrastructure. On Monday, November 3, 2003, at 08:43 AM, Alex Yuriev wrote: You'd think after three previous di

RE: Harassment (was Re: ELAN.NET ...)

2003-11-03 Thread Michel Py
> Eric Brunner-Williams wrote: > [nanog.us] > This one is my fault. I put in-addr.arpa on the protected list, > and didn't think about operational non-dns infrastructure. You can't possibly think of everything (if you could, that would be scary). Although the .us reserve list is quite extensive,

Rural nework economics [was: Sabotage...]

2003-11-03 Thread John Osmon
On Mon, Nov 03, 2003 at 08:15:11AM -0500, Douglas S. Peeples wrote: > > What you describe is a folded ring and is indicative of either a temporary > solution or bad network design. As a rule, phone companies and capacity > suppliers build very robust systems. LATA and ILEC boundaries, along w

Verizon Postmaster contact?

2003-11-03 Thread Charles Sprickman
Hi, I see VZ was not kind enough to put any contact info in Jared's NOC list. They are currently blocking all mail from an ISP customer of mine (based on the envelope From, not IP), and I need to get someone on the phone to clear this up. Sorry for the OT. Charles -- Charles Sprickman [EMAIL P

RE: Verizon Postmaster contact?

2003-11-03 Thread Bob German
My understanding is that they started breaking the RFC by refusing mail with null <> senders last week. Based on past experience, I wasn't too surprised. -bob -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Charles Sprickman Sent: Monday, November 03,

RE: Verizon Postmaster contact?

2003-11-03 Thread Charles Sprickman
On Mon, 3 Nov 2003, Bob German wrote: > > My understanding is that they started breaking the RFC by refusing mail > with null <> senders last week. > > Based on past experience, I wasn't too surprised. Heh. Doesn't seem to be that: [EMAIL PROTECTED] telnet relay.verizon.net 25 Trying 206.46.170

Re: Verizon Postmaster contact?

2003-11-03 Thread Suresh Ramasubramanian
Bob German writes on 11/3/2003 2:54 PM: My understanding is that they started breaking the RFC by refusing mail with null <> senders last week. Based on past experience, I wasn't too surprised. Doesn't look like they are doing this. [EMAIL PROTECTED] 01:31:15 [~]$ dnsmx verizon.net 0 relay.verizo

Re: ELAN.NET = Spam House in Disguise

2003-11-03 Thread matt
> > > That post was rejected because of the words "porn site". This was quite > > clear from the type of filtering message. I'm sure this post will generate > > exactly the same reply back to me... > I'm not sure about that. I spoke with several large ISP abuse desks that > have you blackholed

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Eric Kuhnke
As a resident of this area, I can say that the place where this regen hut is located is *very* rural. Burlington Northern/Santa Fe railroad tracks pass through a lot of sparsely populated farm land on the route between Mt. Vernon and Bellingham, WA. Even if the hut is locked with a high qualit

Re: Verizon Postmaster contact?

2003-11-03 Thread Anne P. Mitchell, Esq.
> I see VZ was not kind enough to put any contact info in Jared's NOC > list. They are currently blocking all mail from an ISP customer of > mine (based on the envelope From, not IP), and I need to get someone > on the phone to clear this up. Verizon is listed in EDDB; I think that I've made th

Re[2]: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Richard Welty
On Mon, 3 Nov 2003 07:27:49 -0800 (PST) David Raistrick <[EMAIL PROTECTED]> wrote: > On Mon, 3 Nov 2003, Owen DeLong wrote: > > Maybe I'm missing something, but, if you have the bolt cutters, I don't > > see why you need the key to an adjacent lock or any of the locks. > If you want to put the

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Eric Kuhnke
The Qwest CO in downtown Bellingham WA has a large microwave drum aimed at Orcas Island in the San Juans. The Qwest tower on Orcas has line of site, and what appears to be microwave DS3 rigs aimed at both Anacortes and Friday Harbor. Friday Harbor has a spur of the fiber line (SOUTH of the cu

RE: Verizon Postmaster contact?

2003-11-03 Thread Dennis Dayman
I am working on the issue(s) now. -- Dennis Dayman Verizon Internet Services Operations Security and Legal Compliance -- > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On > Behalf Of Anne P. Mitchell, Esq. > Se

OT: Need FSO link in Santa Clara & Sunnyvale

2003-11-03 Thread Brennan_Murphy
What are the top vendors these days for wireless FSO links? I need at least 100Mb link over a distance of about 1-2 miles. Seems like last time I looked at this though, the speeds were up to a Gig at pretty low cost. Any insights? Would also accept emails from sales persons if they can briefly (1

Hijacked IP space.

2003-11-03 Thread chuck goolsbee
All, Sorry, to interrupt any off-topic rambles, but I had a client call last week who had just had some telephone abuse heaped on them, by somebody accusing them of spamming. It turns out our client had a netblock assigned to them back in the mid-90's. They used to put on networking trade show

Re: Hijacked IP space.

2003-11-03 Thread Andrew - Supernews
> "chuck" == chuck goolsbee <[EMAIL PROTECTED]> writes: chuck> Of course I have no hard data, other than my client's phone chuck> call about another phone call, so I can't query based on a chuck> timestamp to see where this was being announced from. It chuck> appears to vanished, and has

Re: Hijacked IP space.

2003-11-03 Thread James Cowie
On Mon, Nov 03, 2003 at 09:17:38PM +, Andrew - Supernews wrote: > > > "chuck" == chuck goolsbee <[EMAIL PROTECTED]> writes: > > chuck> Of course I have no hard data, other than my client's phone > chuck> call about another phone call, so I can't query based on a > chuck> timestamp to

Re: Hijacked IP space.

2003-11-03 Thread Chris Lewis
James Cowie wrote: On Mon, Nov 03, 2003 at 09:17:38PM +, Andrew - Supernews wrote: No announcement for that block has been visible here at any time in the past couple of weeks (specifically, since Oct 13). We might have missed it if it was never announced for more than a few minutes at a t

Re: Hijacked IP space.

2003-11-03 Thread Ray Wong
On Mon, Nov 03, 2003 at 04:47:44PM -0500, Chris Lewis wrote: > [ re: 204.89.0/21...] > >>No announcement for that block has been visible here at any time in > >>the past couple of weeks (specifically, since Oct 13). We might have > >>missed it if it was never announced for more than a few minutes

Re: Hijacked IP space.

2003-11-03 Thread Brian Bruns
- Original Message - From: "Chris Lewis" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Monday, November 03, 2003 4:47 PM Subject: Re: Hijacked IP space. > We haven't seen anything from that block in our spamtrap either for at > least a week. > > The .224/24, on the other hand, it a

Re: ISPs' willingness to take action

2003-11-03 Thread Scott Francis
On Sun, Oct 26, 2003 at 06:01:09PM -0700, [EMAIL PROTECTED] said: > > I'm a little puzzled, and I hope people won't object to my asking about > this. > > As I see it, we're experiencing an ever-increasing flood of garbage network > traffic. While not all of it is easy or appropriate to target, i

Re: ISPs' willingness to take action

2003-11-03 Thread Scott Francis
Top posting self-reply: looks like a lot of what I've suggested may have finally been acknowledged by MS, according to a recent Register.co.uk article. http://www.theregister.co.uk/content/56/33599.html We can only hope ... -- Scott Francis || darkuncle (at) darkuncle (dot) net illum oporte

Re[2]: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread JC Dill
At 12:30 PM 11/3/2003, Richard Welty wrote: how long do you think it'll take anyone to notice the extra locks? The link I posted showed a *latch* for a door (which could also be used on a gate if desired), not a series of locks on a chain to chain shut a gate. With a latch such as this one, you

RE: Verizon Postmaster contact?

2003-11-03 Thread Charles Sprickman
On Mon, 3 Nov 2003, Dennis Dayman wrote: > I am working on the issue(s) now. The only problem is, you're not getting my replies because you are also now deferring mail from this ISP as well... It sounds like something is either a bit overzealous, or more likely, broken. Anyone else want to dig

Re: Verizon Postmaster contact?

2003-11-03 Thread Suresh Ramasubramanian
Charles Sprickman writes on 11/3/2003 8:29 PM: Anyone else want to dig around for VZ deferrals? You mean their 4xx'ing all mail that you send them? thenose.net is Dennis' personal domain btw - that's not hosted by Verizon. -- srs (postmaster|suresh)@outblaze.com // gpg : EDEDEFB9 manager, outbla

RE: Verizon Postmaster contact?

2003-11-03 Thread Dennis Dayman
No, I'm seeing your e-mail's at verizon.net. In fact, you just replied to one of my inquires. I am researching the issue and will make a reply to you as soon as I understand what is going on. -Dennis > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On > Behalf

RE: Verizon Postmaster contact?

2003-11-03 Thread Michael Loftis
Getting 550's all day on MAIL FROM: <[EMAIL PROTECTED]> -- noticed it because we're running billing. --On Monday, November 03, 2003 20:29 -0500 Charles Sprickman <[EMAIL PROTECTED]> wrote: On Mon, 3 Nov 2003, Dennis Dayman wrote: I am working on the issue(s) now. The only problem is, you're no

Re: ISPs' willingness to take action

2003-11-03 Thread Matthew Sullivan
Scott Francis wrote: Top posting self-reply: looks like a lot of what I've suggested may have finally been acknowledged by MS, according to a recent Register.co.uk article. http://www.theregister.co.uk/content/56/33599.html We can only hope ... I read that article when it was new, a long articl

Re: Rural nework economics [was: Sabotage...]

2003-11-03 Thread John Brown (CV)
OC-48 doesn't have to do with the redundant build. physical fiber path does. thus, who will pay for the redundant fiber build. maybe that should come from the $700 Million the ILEC promised the state in new investment money, in exchange for relaxed regulation. rural or not, capitalism will h

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread JC Dill
At 07:32 PM 11/3/2003, John Fraizer wrote: On Mon, 3 Nov 2003, Owen DeLong wrote: > Maybe I'm missing something, but, if you have the bolt cutters, I don't > see why you need the key to an adjacent lock or any of the locks. Um, cutting a lock out gets it out of the mix but, you still have to have

Re: Sabotage investigation of fiber cuts in Northwest

2003-11-03 Thread Laurence F. Sheldon, Jr.
JC Dill wrote: > > At 07:32 PM 11/3/2003, John Fraizer wrote: > >On Mon, 3 Nov 2003, Owen DeLong wrote: > > > > > Maybe I'm missing something, but, if you have the bolt cutters, I don't > > > see why you need the key to an adjacent lock or any of the locks. > > > >Um, cutting a lock out gets it o

Re: Hijacked IP space.

2003-11-03 Thread Hank Nussbacher
On Mon, 3 Nov 2003, Ray Wong wrote: > I'm starting to figure that, given the delays, there's been enough damage > done that 204.89.224/24 will never be able to get off the blocking lists > anyway, so perhaps I'll turn it back in afterall. *sigh*That's what > I get for trying to find low-cost ISPs

Re: Hijacked IP space.

2003-11-03 Thread Ron da Silva
On Tue, Nov 04, 2003 at 07:10:27AM +0200, Hank Nussbacher wrote: > > On Mon, 3 Nov 2003, Ray Wong wrote: > > > I'm starting to figure that, given the delays, there's been enough damage > > done that 204.89.224/24 will never be able to get off the blocking lists > > anyway, so perhaps I'll turn i

Re: Hijacked IP space.

2003-11-03 Thread Hank Nussbacher
On Tue, 4 Nov 2003, Ron da Silva wrote: > > On Tue, Nov 04, 2003 at 07:10:27AM +0200, Hank Nussbacher wrote: > > > > On Mon, 3 Nov 2003, Ray Wong wrote: > > > > > I'm starting to figure that, given the delays, there's been enough damage > > > done that 204.89.224/24 will never be able to get off

Re: Hijacked IP space.

2003-11-03 Thread E.B. Dreger
HN> Date: Tue, 4 Nov 2003 07:25:12 +0200 (IST) HN> From: Hank Nussbacher HN> They view themselves as "leasing" out IP address space. HN> Although they never reclaim IP address space that has long HN> since never been announced. Perhaps if netblocks _were_ reclaimed, 1. Fewer hijackings would h