metrics.
Not that spam really has much to do with network operations, well, except
perhaps for those pesky Netcool/Openview/Nagios alerts...
Roger Marquis
and scales well.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
is, and will continue to
be, an increasingly popular technology for much more than address
conservation.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
to
academics perhaps we could ask the later (NANAGs?) to use footnotes(1)
to clarify their meaning?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
to both sides and
continue to prefer NAT, in no small part because of the absurd
examples and inconsistent terminology NATophobes seem to feel is
necessary to make their case.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
, for every example of how
complex NAT is there are at least 10 counter-examples of how an
equivalent non-NATed network is more complex, less flexible, less
reliable, and less secure.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
of
peer-to-peer filesharing behind those non-NATed subnets. I don't know
all of the reasons but, having managed thousands of clients behind NAT
and unNATted gateways I'll take NAT any day.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
, but is there
a contact at ICANN for this type of thing? We used to be able to email
Carl Auerbach but that was a while back.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
it is dangerous is indistinguishable from any other verisign
astroturfing.
People are suggesting it become the rule because nobody is
trying anything else.
Can you say what that 'anything else' might consist of?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
, enough that it can be easily identified
for what it is.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
them..
Fastflux does seem to be a tool in some spammer's kits but these
particular domains are probably not being used for that, at least not
effectively, since they have no MX records.
Are there sites that accept mail from domains without a valid MX/A
record?
--
Roger Marquis
Roble Systems
should not be confounded in a forum
like nanog.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
and replies? If not, have any root nameservers
been hacked? Do the queries exploit known named vulnerabilities? What
ICANN policy might address this? Finally, what, if anything, are DNS
admins doing about it?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
and cheap abuse to address,
at the gtlds. Why are these obvious trojans are being propagated by
the root servers anyhow?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
incentive not to. Also I don't believe registrars can update the roots
quickly enough to be effective (correct me if I'm wrong).
Given the obvious differences between legitimate fast flux and the
pattern/domains in question it would seem to be a no-brainer,
technically at least.
--
Roger Marquis
Roble
along who knows open-source and
how to use it for a better ROI.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
costs and sending
a bill with a cease and desist request.
My question is not what can we do about bots, we already filter
these worst case networks, but what can we do to make it worthwhile
for bot-providers like NETNET to police their own networks without
involving lawyers?
--
Roger Marquis
Roble
Laurent Frigault wrote:
gethostbyaddr (and may be other functions) will return NULL under at
least FreeBSD/NetBSD for ANY PTR having the _ character.
As it should. I wish it would also return a null for hostnames
containing sequential non-alphanumerics (--, ---, __, ___, ...).
--
Roger Marquis
On Thu, 19 May 2005 [EMAIL PROTECTED] wrote:
On Thu, 19 May 2005 08:04:31 PDT, Roger Marquis said:
Laurent Frigault wrote:
gethostbyaddr (and may be other functions) will return NULL under at
least FreeBSD/NetBSD for ANY PTR having the _ character.
As it should. I wish it would also return a null
make
install and not have to fix ISC's ill thought-out defaults (like
/usr/local/etc on Solaris...).
Using bind 8 and 9 but still looking for something better,
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
-related, probably
out of date and out of print, a very good read none the less:
A Guide to Fractional T1
James E. Trulove, 1992
Artech House, ISBN 0-89006-524-1
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
disinterest in the actual reasons we
continue to see these viruses and trojans infecting MS and, for all
intents and purposes, only MS operating systems.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
%) and it's vulnerability
share (1%).
As Java applications make clear, it doesn't matter what your market
share is if the software is secure in the first place.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
reiterate it all.
Thanks Doug. Are those discussions available on the net? If so
could you post the URL?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
-UCE filters by doing this? (yes)
* Are they harvesting URLs and referrers?
* Will they next advertise routes for RFC 1918 addresses?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
% false-positive proof (so far).
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
. Is this really the only reason for
assigning NS and A records, violating the RFC, and breaking thousands
of spam filters in the process?
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
On Mon, 5 Jan 2004, Suresh Ramasubramanian wrote:
What spam did you see that forged example.* in the sender envelope / rDNS?
reject: RCPT from 123-58-189-66.wo.cpe.charter-ne.com[66.189.58.123]: 554 [EMAIL
PROTECTED]: Recipient address rejected: Relay access denied; from= to=[EMAIL
PROTECTED]
, their influence
is also a roadblock to national security:
Bruce Schneier http://www.counterpane.com/crypto-gram-0210.html#1
Marcus Ranum http://www.tisc2002.com/newsletters/414.html
Anyone here familiar with the subcontractor list for DNC's Internet
servers?
--
Roger Marquis
Roble Systems Consulting
time and money.
The best mitigation is to set a _slow_ scan rate but even that can
still get you blacklisted by a well designed NIDS.
Given the potential cost to third parties it's difficult to see any
case for netscanning, regardless of the scanner's rational.
--
Roger Marquis
Roble Systems
and long on budget-oriented
management, likely made a decision that saving a lot of money was
worth a bit of exposure. I know that decision has been made at
other banks.
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
, and any history of network or SMTP abuse. All
help will be appreciated and kept confidential.
Thanks in advance,
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
and mailexchangers.
Any idea how a small network admin can get someone at AOL to deal
with a problem like this?
TIA,
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
PS. these logs illustrate only a small fraction of the SMTP activity
from AOL's servers.
Oct 9 10:57:06 PDT
.
Last time I tried this (IOS11.X to IOS11.X GRE) it was unreliable
due to MTU limits. Certain websites (mainly financial) send large
packets and set DF. This probably works around some security issue
but the result was that these SSL servers couldn't reach clients
over the GRE.
--
Roger Marquis
in
coding. Those would be security developers as opposed to security
analysts. Finally, NEVER ask a Unix literate engineer to use an
MS Windows PC...
--
Roger Marquis
Roble Systems Consulting
http://www.roble.com/
35 matches
Mail list logo
