Re: Problems sending mail to yahoo?

On Mon, 14 Apr 2008, Adrian Chadd wrote: > There already has been a paradigm shift. University students ("college" for > you > 'merkins) use facebook, myspace (less now, thankfully!) and IMs as their > primary online communication method. A number of students at my university > use email purely b

Re: Lessons from the AU model

On Tue, 22 Jan 2008, Mikael Abrahamsson wrote: > I am also hesitant regarding billing when a person is being DDOS:ed. How > is that handled in .AU? I can see billing being done on outgoing traffic > from the customer because they can control that, but what about incoming, > the customer has only p

Re: Lessons from the AU model

On Tue, 22 Jan 2008, Tom Vest wrote: > But even assuming you manage to define a "reasonable" cap, how will > you defend it against competitors, and how will you determine when & > how to adjust it (presumably upwards) as the basket of "typical" user > content and services gets beefier -- or will t

Re: v6 subnet size for DSL & leased line customers

On Sat, 22 Dec 2007, Randy Bush wrote: > logic chains which begin with > > > Now I think there is a chance that > > may not be the best way to do engineering. there is a 'chance that' > just about anything. Sure, the Sun could explode tomorrow and all these IPv6 people will have wasted their liv

Re: v6 subnet size for DSL & leased line customers

On Fri, 21 Dec 2007, Scott Weeks wrote: > If I wasn't worried about routing table size (you said "if you didn't > have any history...imagine IPv4 didn't exist") I wouldn't give household > and SOHO networks billions of addresses. Well since it looks like it takes about 20-30 years to get a new ve

Re: Can P2P applications learn to play fair on networks?

On Sun, 21 Oct 2007, Sean Donelan wrote: > Its not just the greedy commercial ISPs, its also universities, > non-profits, government, co-op, etc networks. It doesn't seem to matter > if the network has 100Mbps user connections or 128Kbps user connection, > they all seem to be having problems with

Re: Sun Project Blackbox / Portable Data Center

acenters are full or in the wrong place. Think of a building full of people processing insurance claims in India or a cluster delivering video on demand in each Asian city with more than 500,000 people. -- Simon Lyall | Very Busy | Web: http://www.darkmere.gen.nz/ "To stay awake all ni

Re: [policy] When Tech Meets Policy...

t know where this whole "Must have MX record to send email" thing came from but I would have thought domains that don't want to send email can easily mark this fact with a simple SPF record: v=spf1 -all Trying to overload the MX record is pointless when there is a simple metho

NZNOG 08 - Call for Participation and Papers

NZNOG 08 - Call for Participation and Papers The next conference of the New Zealand Network Operators' Group is to be held in Dunedin, New Zealand between 23 January and 25 January 2008. Our host is WIC. NZNOG meetings provide opportunities for the exchange of technical information an

Re: UK ISP threatens security researcher

On Thu, 19 Apr 2007, Gadi Evron wrote: > Looking at the lack of security response and seriousness from this ISP, I > personally, in hindsight (although it was impossible to see back > then) would not waste time with reporting issues to them, now. These days there is almost never any reason to rep

Re: On-going Internet Emergency and Domain Names

On Sun, 1 Apr 2007, Douglas Otis wrote: > When functional information is not valid, such as incorrect name servers > or IP addresses, this would not impose an immediate threat. However, > basic functional information will trace to the controlling entity. Only > by being able to preview this info

Re: NOC Personel Question (Possibly OT)

On Wed, 14 Mar 2007, Justin M. Streiner wrote: > Not sure why your HR dept would even care :) So they can look them up on a pay scale list and decide what they should be paid. Had this problem at one place I was at where the pay scale list thought a "System Administrator" or "Network Administrato

Re: botnets: web servers, end-systems and Vint Cerf

On Fri, 16 Feb 2007, J. Oquendo wrote: > After all these years, I'm still surprised a consortium of ISP's haven't > figured out a way to do something a-la Packet Fence for their clients > where - whenever an infected machine is detected after logging in, that > machine is thrown into say a VLAN wi

Re: what the heck do i do now?

On Thu, 1 Feb 2007, Jay Hennigan wrote: > Set up a nameserver there. Configure it to return 127.0.0.2 (or > whatever the old MAPS reply for "spam" was) to all queries. Let it run > for a week. See if anything changes in terms of it getting hammered. Well I've seen some RBLs do this with about

Re: Network end users to pull down 2 gigabytes a day, continuously?

On Mon, 8 Jan 2007, Gian Constantine wrote: > I would also argue storage and distribution costs are not > asymptotically zero with scale. Well designed SANs are not cheap. > Well designed distribution systems are not cheap. While price does > decrease when scaled upwards, the cost of such an opera

Re: comast email issues, who else has them?

On Thu, 7 Sep 2006, Christopher L. Morrow wrote: > Perhaps some of the comcast folks reading might take a better/harder look > at their customer service tickets and do a 'better' job (note I'm not even > half of a comcast customer so I'm not sure that there even IS a > problem...) on this issue?

Re: NNTP feed.

On Wed, 6 Sep 2006, Daniel Roesen wrote: > If folks would end abusing NNTP for file distribution via flooding, the > matter would quickly be resolved. Am i naive? The technical term might be "trolling" . Binaries have made up the vast majority of Usenet bandwidth since at least the early 90s so h

NZNOG 07 - Call for Participation and Papers

NZNOG 07 - Call for Participation and Papers The next conference of the New Zealand Network Operators' Group is to be held in Palmerston North, New Zealand between 31 January and 2 February 2007. Our host is Inspire.net and the venue is to be at Massey University's campus. NZNOG meeti

Re: Open Letter to D-Link about their NTP vandalism

On Tue, 11 Apr 2006, Paul Vixie wrote: > [EMAIL PROTECTED] (Simon Lyall) writes: > > > I've said in other forums the only solution for this sort of software is > > to return the wrong time (by several months). The owner might actually > > notice then and fix the

Re: Open Letter to D-Link about their NTP vandalism

On Mon, 10 Apr 2006 [EMAIL PROTECTED] wrote: > One particular piece of crapware of the tucows archive variety would retry > once per second if it hadn't heard a response - but a ICMP Port Unreachable > would trigger an *immediate* query, so it would basically re-query at whatever > the RTT for the

Re: Wiltel has gone pink.

On Tue, 14 Mar 2006, Jo Rhett wrote: > Complete and utter incompetence (ie spam filtering their abuse mailbox) Considering the amount of spam that abuse mailboxes get then spam filtering them is actually a good idea. You just have to be a little careful to not block the complaints. One way I did

NZNOG 06 - March 22-24 , Registrations online

NZNOG 06 - Registrations now online. http://www.nznog.org The next conference of the New Zealand Network Operators' Group is to be held in Wellington, New Zealand between 22-24 March 2006. The conference is on the week before the ICANN meeting in Wellington so p

Re: AW: Odd policy question.

On Fri, 13 Jan 2006, Randy Bush wrote: > > it is a best practice to separate authoritative and recursive servers. > e.g. a small isp has a hundred auth zones (secondaried far > away and off-net, of course) and runs cache. why should > they separate auth from cache? and it means that you can use

Re: trollage (Re: Akamai server reliability)

On Mon, 28 Nov 2005, Pete Templin wrote: > And hopefully they'll (someday) send servers in my direction - is their > "minimum criteria" creeping upwards at the same rate as overall Internet > traffic did in the late 90s? The impression I got was they originally scattered their machines to everyon

Re: IPv6 news

On Mon, 17 Oct 2005 [EMAIL PROTECTED] wrote: > I agree that the end state is *NOT* 100% multihoming. It is > too complex for most people and there is no business > justification for it. But an awful lot of business customers > will be able to justify multihoming. That is part and parcel > of the "

Re: TIA-942 Datacenter Standardization

On Wed, 31 Aug 2005, Deepak Jain wrote: > Its more of a document I'd expect to spend a ridiculous some of money to > have a consultant produce, not someone who should know better. Great > college guide book to discuss "issues" though. Are there other documents/books that people would instead reco

NZNOG 06 - Call for Participation and Papers

Apologies for duplicate copies. NZNOG 06 - Call for Participation and Papers The next conference of the New Zealand Network Operators' Group is to be held in Wellington, New Zealand between 22-24 March 2006. Our hosts are The School of Mathematics, Statistics and Computer Science at Vic

Re: /8 end user assignment?

On Thu, 4 Aug 2005, Christopher L. Morrow wrote: > On Thu, 4 Aug 2005, Steve Feldman wrote: > > - Most of our content is delivered via load balancer hardware > > that would also need to support IPv6. Last time I checked, > > it didn't. > will the v6 access really be enough to require LB's? or

Re: Boing Boing: Michael Lynn's controversial Cisco security presentation

On Sat, 30 Jul 2005, Brad Knowles wrote: > BTW, the original slides are supposed to be at > . However, > what's there now is currently a place-holder, although it does tell > you that if you're looking for the original PDF file that yo

Re: OT? /dev/null 5.1.1 email

On Tue, 5 Jul 2005, Patrick Muldoon wrote: > Even better if you can implement something that auto blacklists > people that connect to your "secondary" MX's when you know that your > primaries are up and accepting e-mail. You might be able to connect to them but who knows what transient network ev

Re: FCC To Require 911 for VoIP

This speculation is fun but my question is how do people do this now? I would assume that many people on this list work for large companies with multiple sites and a single phone network spanning them all. When somebody in the office picks up a phone and dials EXTERNAL-911 how do the emergancy s

Re: Utah governor signs Net-porn bill

On Tue, 22 Mar 2005, Daniel Senie wrote: > Anyone want to publish a definitive list of IP addresses for Utah? A week > of null-routing all such traffic by many web sites would, I think, would be > a measured response to idiot legislators. It could be "give Utah the Finger > Day" or some such. The

Re: Obsolete bogon filtering

On Thu, 10 Mar 2005, Rob Thomas wrote: > Folks can keep up with the bogon filters through a wide variety of > means. We have HTTP, DNS, RADb objects, RIPE NCC objects, and > text files. I think this has been posted here more than a few dozen times. Perhaps a list of sites/Nocs that do not automa

Re: NANOG Changes

On Sat, 19 Feb 2005, Stephen J. Wilcox wrote: > Merit has setup the nanog-futures list and made it public and open from the > outset.. that is the forum to take this discussion to but focus on what > you want not whats past or interim. > Okay I just double checked the archive before saying this b

Re: Multicast and unicast delivery at NANOG 33

On Fri, 28 Jan 2005, Joel Jaeggli wrote: > http://videolab.uoregon.edu/events/nanog/nanog_33.html There was some talk about having an IRC channel (or two) for remote people to send feedback etc? Does anyone have details for this? -- Simon J. Lyall. | Very Busy | Mail: [EMAIL PROTECTED]

Re: Important IPv6 Policy Issue -- Your Input Requested

On Wed, 10 Nov 2004, Jerry Eyers wrote: > I have devices that have no need, never will have a need, to ever > talk outside of the internal networks, nor do I want some > brain dead user to drop some stupid little device on the network > and tada, route access to some of my inside network simply be

Call for Presentations - NZNOG '05

[ Apologies if you receive multiple copies ] Call for Presentations NZNOG '05 The next conference of the New Zealand Network Operators' Group is to be held in Hamilton, New Zealand between February 2nd and 4th 2005. Our hosts are the Uni

Re: Change to .com/.net behavior

On Tue, 16 Sep 2003, Michael Tokarev wrote: > Haesu wrote: > > Before I figure out this BIND thing, for now.. > > > > box02jp5-cr01.twdx.net# set routing-options static route 64.94.110.11/32 di$ > > Please do no do that. You, or your users, will end up having > TONS of undeliverable bounces for f

Re: Port blocking last resort in fight against virus

ort amount of time. I've been looking at out traffic graphs and trying to decide if traffic really is down 10-15% over the last 24 hours or it's just my imagination. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home

Re: North America not interested in IP V6

f people at once onto ICQ, especially when they would prefer to charge the same people 10 cents per SMS message. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PROTECTED] Ihug Ltd, Auckland, NZ | Asst Doorman

RE: Cisco vulnerability and dangerous filtering techniques

nd Internet Exployer on Microsoft Windows to be running on his computer and *still* wern't stable.. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PROTECTED] Ihug Ltd, Auckland, NZ | Asst Doo

Re: ISP Whitelist (was Re: NOC contact for he.net)

a high uptime and preferable not change without warning (never change is even better). -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PROTECTED] Ihug Ltd, Auckland, NZ | Asst Doorman | Web: http://www.darkmere.gen.nz

Re: Major E-mail Delivery for FTC DNCR Launch

You might want to look at one of the professional whitelisting outfits. http://www.bondedsender.org http://www.habeas.com/ are two I know of that seem to be supported. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home

RE: pool.ntp.org NTP servers

"closest" servers. I did a little writeup of something along these lines a few months back when pool.ntp.org first came up. I've not had a chance to develop it yet however. http://www.darkmere.gen.nz/2003/0203.html -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTEC

Re: Abuse.cc ???

rld running a program they don't understand. At least with spam reports you'll get several independant reports with full headers and if they use our servers we'll even have our own logs. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/Syst

Re: State Super-DMCA Too True

andwidth then it doesn't take many customers using 50% or 100% of it to really spoil your economics. Banning NAT and servers is a simple way to filter out most of the "power users" without scaring the "mom and pop" customers with bandwidth and download quotas. -- Simon L

Re: how to get people to upgrade? (Re: The weak link? DNS)

"force" people to upgrade, even with bind I use some features (namely an external named-xfer program) of bind v8 that arn't available in bind v9 . For the servers which I need this on I run bind 8.3.3 (Vendor backported with the 8.3.4 fixes) of copy the named-xfer program over to

RE: 69/8...this sucks -- Centralizing filtering..

I nominate the arin.net nameservers. Could someone publish a name of a valid resource (or even pingable ip) in 69/8 space? This would allow people to test their (and their upsteams) filters quickly while we wait for the list to come out. -- Simon Lyall.| Newsmaster | Work: [EMAIL

Re: 223.255.255.0/24

On Sun, 23 Feb 2003 [EMAIL PROTECTED] wrote: > So far, I've received no response from IANA or APNIC on the subject. http://www.apnic.net/mailing-lists/apops/archive/2003/02/msg9.html -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/Syst

Re: scripts to map IP to AS?

On Thu, 20 Feb 2003, William Allen Simpson wrote: > Anybody have a pointer to scripts to map IP to AS? This little script works fairly well. Just feed it a file with the each network on a seperate line. Obviously don't overload the route servers by running it too often. -- Sim

Re: mfnx

alue added for others of us who might be considering using the provider in the future. Sentences like "I sat on hold for 30 minutes and the line went dead" , "leaking RFC 1918 space" , "Changed ip without notice" are useful... -- Simon Lyall.| Newsmast

Re: Violation of Acceptable Use Policies

Afganistan and had peace keepers in East Timor so that chances of us being directly targetted (NZers were killed in a Bali bombing) are good. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PROTECTED] ihug, Aucklan

Re: Spanning tree melt down ?

volvement. Redundancy was returned between the core campus devices. Spanning Tree was stabilized and localized issues were pursued. Thanks for your support. CIO Magazine will devote the February issue to this event and Harvard Business School is doing a case study." -- Simon Lyall.

Re: IP address fee??

classful routing since that is what is tested. however you learn about Classless Routing in the CCNP.. "Key routing information including classful and classless routing protocols ... " -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin |

Re: Praise to XO's Security/Abuse

you usually have to jump though about half a dozen people till you find someone to actually look at the filters and realize they were put in by some nightship admin the week before because he got a spam via some open relay in Korea. -- Simon Lyall.| Newsmaster | Work: [EMA

RE: Security of DNSBL spam block systems

ervers are using spamassassin which has decent timeouts so they were not affected. We try and slave as many RBLs as possible locally to avoid these sort of problems. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PRO

Re: SPEWS?

m filter or serivce. Thats where a rule based system like Spamassassin is good, you can put in even a flawed test, give it a point or two and it's still useful. The sum is a lot better than the parts. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System A

Re: Updates to the root zone Re: KPNQwest ns.eu.net server.

for that matter. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PROTECTED] ihug, Auckland, NZ | Asst Doorman | Web: http://www.darkmere.gen.nz

Re: genuity - any good?

ding them every legit network/prefix combo for our main networks (2 * /17) . They end up with over 500 entries in their database and any one time we are only advertising about 20 of them. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaste

Re: Help with bad announcement from UUnet

tomer). Are you really going to tell your boss that you are not going to ring me directly but are instead going to go through 5 disinterested 3rd parties to get to me? Is you boss going to accept this may take a few hours/days or is he instead going to just call us directly himself and then fire

Re: Reliable, mass distribution (was Re: CEOlink)

ites and throw away accounts. I doubt most people here check most web pages and email messages they view for DNS poisoning or forged headers. -- Simon Lyall.| Newsmaster | Work: [EMAIL PROTECTED] Senior Network/System Admin | Postmaster | Home: [EMAIL PROTECTED] ihug, Auckland,