A solution I put in place at UUnet circa 1997 was to take a set of /32
routes representing major destination, e.g. ISP web sites, content
sites, universities, about 20 of them, and temporarily place a /32
static route to each participant at the public exchange and traceroute
to the
On Fri, 17 Apr 2009 15:02:29 -0400
Eric Van Tol e...@atlantech.net wrote:
-Original Message-
From: Eric Van Tol [mailto:e...@atlantech.net]
Sent: Friday, April 17, 2009 2:44 PM
To: nanog@nanog.org
Subject: RE: So I've got this 2.5gig wave, what do I do with it?
Paul,
I noticed that in the PDF file but as the domain doesn't seem to have
resolution I didn't mention it.
Jake
WHOIS information on the domain
Whois Record
domain: TEST1.RU
type: CORPORATE
nserver:ns1.centerhost.ru.
nserver:ns1.cetis.ru.
state: REGISTERED, DELEGATED
On Mon, Apr 20, 2009 at 10:42 AM, Jake Mailinglists
jbabbinli...@gmail.comwrote:
Paul,
I noticed that in the PDF file but as the domain doesn't seem to have
resolution I didn't mention it.
Jake
WHOIS information on the domain
Whois Record
domain: TEST1.RU
type: CORPORATE
On Fri, Apr 17, 2009 at 4:39 PM, Russell Berg b...@wins.net wrote:
We just discovered what we suspect is malicious code appended to all
index.html files on our web server as of the 11:00 central time hour today:
src=http://77.92.158.122/webmail/inc/web/index.php;
style=display: none;
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, Apr 20, 2009 at 9:47 AM, Neil kngsp...@gmail.com wrote:
I've run into this sort of attack before, where they change the page to
load content from elsewhere; but I couldn't figure out how they managed
to write to the sites' pages. They
Paul Ferguson wrote:
Most likely SQL injection. At any given time, there are hundreds of
thousands of legitimate websites out there that are unwittingly harboring
malicious code.
Most of the MS-SQL injection attacks we see write malicious javascript
into the DB itself so all query results
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, Apr 20, 2009 at 10:23 AM, Mike Lewinski m...@rockynet.com wrote:
Paul Ferguson wrote:
Most likely SQL injection. At any given time, there are hundreds of
thousands of legitimate websites out there that are unwittingly
harboring
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, Apr 20, 2009 at 10:40 AM, Nick Chapman nicknetwo...@gmail.com
wrote:
On Mon, Apr 20, 2009 at 12:47 PM, Neil kngsp...@gmail.com wrote:
But if you figure out how they got write access to a static website, I'd
love to hear it.
On Sat, 18 Apr 2009 03:21:06 BST, andrew.wallace said:
The network community and the security community need to collaborate
as much as possible to defeat the threats.
I'm British and i'm hoping to make UK as secure as possible.
Umm. You missed the *very first* principle of proper security
So here is an idea that I hope someone shoots down.
We've been talking about pseudo-wires, and the high level of expertise a
shared-fabric IXP needs
to diagnose weird switch oddities, etc.
As far as I can tell, the principal reason to use a shared fabric is to allow
multiple connections to
On Sat, 18 Apr 2009 03:21:06 BST, andrew.wallace said:
The network community and the security community need to collaborate
as much as possible to defeat the threats.
I'm British and i'm hoping to make UK as secure as possible.
Umm. You missed the *very first* principle of proper
Hello Deepak:
-Original Message-
So here is an idea that I hope someone shoots down.
We've been talking about pseudo-wires, and the high level of expertise a
shared-fabric IXP needs
to diagnose weird switch oddities, etc.
As far as I can tell, the principal reason to use a shared
* dee...@ai.net (Deepak Jain) [Mon 20 Apr 2009, 23:25 CEST]:
So here is an idea that I hope someone shoots down.
We've been talking about pseudo-wires, and the high level of expertise a
shared-fabric IXP needs to diagnose weird switch oddities, etc.
[..]
What if everyone who participated at
Forwarded message:
Subject: Important New Requirement for IPv4 Requests
From: ARIN Registration Services do-not-re...@arin.net
Hello,
With the approaching depletion of the IPv4 address free pool, the
ARIN Board of Trustees has directed ARIN staff to take additional
steps to ensure the
On Mon, Apr 20, 2009 at 6:39 PM, Joe Greco jgr...@ns.sol.net wrote:
So now they're going to require an attestation. Which means that they
are going to require an officer to attest to the validity of the
information.
So the officer, most likely not being a technical person, is going to
Joe Greco wrote:
Forwarded message:
Subject: Important New Requirement for IPv4 Requests
From: ARIN Registration Services do-not-re...@arin.net
Hello,
With the approaching depletion of the IPv4 address free pool, the
ARIN Board of Trustees has directed ARIN staff to take additional
steps
On Apr 20, 2009, at 7:39 PM, Joe Greco wrote:
We're running out of IPv4 space.
Knowing that blatant lying about IP space justifications has been an
ongoing game in the community, ARIN has decided to do something
about
it.
So now they're going to require an attestation. Which means that
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Apr 20, 2009, at 9:04 PM, David Andersen wrote:
Just a thought: A technical person might be very happy to lie to a
toothless organization that holds no real sway over him or her,
won't revoke the address space once granted, and for whom the
I don't believe I saw anywhere that these attestations were being made
under penalty of perjury or any other method of civil punishment. Do
they have to notarized?
What are the real benefits here, other then putting more people to
work at ARIN and increase the workload of those who really
I think this needlessly involves people who probably don't have a clue in an
area we may not really want them involved in. I can hear the conversation
now:
Officer: Why do I have to sign this thing?
Tech: Well your graciousness. We are coming to the end of the available
address space and the
On Apr 20, 2009, at 4:39 PM, Joe Greco wrote:
So the officer, most likely not being a technical person, is going
to
contact ... probably the same people who made the request, ask them
if
they need the space. Right?
And why would the answer be any different, now?
This is exactly
Same reason urgent action networks work for amnesty International.
Because when someone thinks other people are watching, truth is revealed.
Kind Regards,
Carl
On Mon, Apr 20, 2009 at 7:39 PM, Joe Greco jgr...@ns.sol.net wrote:
Forwarded message:
Subject: Important New Requirement for IPv4
23 matches
Mail list logo
