Retirement of FTP protocol support at ARIN? (was: [ARIN-consult] Consultation for the Retirement of FTP Protocol Use at ARIN)

NANOGers - ARIN has opened a consultation on removing support for FTP as an access method (in preference to HTTP/HTTPS) for our data archive – please see the attached consultation and provide feedback to the arin-consult mailing list if you have strong opinions on such a change. Thanks! /John

Important ARIN Operational Change re Automatic IRR object creation (was: [arin-announce] Reminder - Automatic Creation of Managed IRR Route Objects upon RPKI ROA Generation Coming Soon)

NANOGers - As announced in the recently closed consultation, ARIN Online will support automatic route object creation upon ROA generation starting on 4 November 2024 - more details available in the attached announcement. FYI, /John John Curran President and CEO American Registry for Internet

TIMELY - Are you an ARIN General Member? (was: [arin-announce] Deadline Approaching — Make Sure Your Organization Is Eligible to Vote in ARIN’s Upcoming Elections!)

olved, but make sure to become an ARIN general member and designate a voting contact before 9 September 2024 if you wish to participate in this year’s ARIN elections. Additional details are available in the links below. Thanks! /John John Curran President and CEO American Registry for Intern

Re: N92 Keynote: APNIC's Geoff Huston - "Whatever Happened to IPv6?" + More

John, Please reach out to me off list so we can take care of this issue. Thanks John S. ARIN CXO Sent from my iPhone > On Aug 15, 2024, at 3:22 PM, John Palmer wrote: > > That's not what they tell me every time I try to apply - they ask for all > sorts of "just

RE: N92 Keynote: APNIC's Geoff Huston - "Whatever Happened to IPv6?" + More

That's not what they tell me every time I try to apply - they ask for all sorts of "justification" and network usage maps, etc. I have tried 3 times and just get the run-around. -Original Message- From: William Herrin Sent: Thursday, August 15, 2024 15:31 To: John Pa

RE: N92 Keynote: APNIC's Geoff Huston - "Whatever Happened to IPv6?" + More

What happened? ARIN insists on you signing away your rights to your PI legacy IPV4 space in order to get any allocation of IPV6 space. PI holders should get an automatic assignment of IPV6 space if they request it. People don’t like being extorted. Maybe if they stopped profiteering, peo

Re: Contact mail for Weekly Global Routing Table Report has ended up on Spamhaus HBL

ke. But no need, I did that a few hours ago and it's fixed. I expect it wasn't exactly a false positive, someone with an odd sense of humor probably put your address as a hashbuster in a spam run or something like that, but I pointed to RFC 9324 as an example of why it would be a good idea n

Deprecation of outdated crypto support (was: Fwd: [arin-announce] Changes Coming to Cryptographic Features Across ARIN Services)

! /John John Curran President and CEO American Registry for Internet Numbers Begin forwarded message: From: ARIN Subject: [arin-announce] Changes Coming to Cryptographic Features Across ARIN Services Date: August 1, 2024 at 2:37:57 PM AST To: "arin-annou...@arin.net" As of 3 February

Re: pgp keyservers

to be functional upon first glance: * http://pgp.circl.lu/ * https://pgp.surfnet.nl/, * https://keys.openpgp.org/ * https://keyserver.pgp.com/. Also see: https://www.first.org/pgp/An_Introduction_to_PGP-GnuPG_v1.0.pdf John

Apply Today for the ARIN 54 Fellowship Program

Hello NANOG, Please see the announcement below reference ARIN’s Fellowship Program. Thanks, John S. From: ARIN-announce on behalf of ARIN Sent: Thursday, June 27, 2024 10:43 AM To: arin-annou...@arin.net Subject: [arin-announce] Apply Today for the ARIN 54

Re: Compiling RTG on EL9

Have you tried the rtg2 fork on github? https://github.com/synergycp/RTG2 Its still pretty old, like 2009, but there was an update made just 2 years ago with MariaDB support. I stopped using rtg/rtg2 around 2015, but I was always a huge fan of it. -John > On Jul 12, 2024, at 6:19 PM, N

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

Particularly if they don’t allow downgrade attacks to CA certs. > >I think there are a few more brands looking to make this move to higher >security in the new ngTLD round. At least everybody’s a lot >more educated this time around. I dunno, if they were better educated they'

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

It appears that Bill Woodcock said: >-=-=-=-=-=- > >> On Jul 6, 2024, at 22:11, John Von Essen wrote: >> I saw something online that said $250,000 but that didn’t make sense if its >> all paperwork. > >Heh. I see you are unfamiliar with ICANN. They’ve said that

Re: Out-of-Bailiwick DNS? (Was: HE.net problem)

TLD and actually use it for yourself (and maybe others)? I saw something online that said $250,000 but that didn’t make sense if its all paperwork. Again, this assumes you already have infra to use. -John > On Jul 5, 2024, at 5:18 AM, Bill Woodcock wrote: > > > >> On Jul 5, 2024,

Re: getting the memo, Out-of-Bailiwick DNS? (Was: HE.net problem)

According to Jay R. Ashworth : >data I heard that that *was* a registry-side hold (and hence it didn't matter >that it was NetSol). Or perhaps that NetSol was still the registry for .net -- >that's out of date now, isn't it? Uh, yeah, Verisign spun off the NetSol registrar over 20 years ago in la

Re: TLD jingle mail, Out-of-Bailiwick DNS? (Was: HE.net problem)

thmetic, the current round has been an utter failure for everyone other than ICANN and the people who sucked money out of the process (which includes me, but not so much I particularly want to do it again.) R's, John * - I have argued with CSC about updates to the IANA domains and found it is

Re: HE.net problem

x27;s worth it. (Not that Netsol is particularly cheap.) R's, John

Re: Azure Looking Glass

I think we found the issue. Looks like a pmtu issue with our upstream provider and their connection to the microsoft fabric. Working with them now. Thank you everyone for helping. Some reached me off list to help. John On Fri, Jun 28, 2024 at 10:31 PM Lincoln Dale wrote: > Presuma

Azure Looking Glass

Azure Looking glass that I can use to originate pings and traceroutes? My googlefu is weak and I haven't found it yet. With that information, I think I can help my upstream provider know where the problem lies. John Acock AS395437

Azure Contact

person lurking around that can contact me off list? John Alcock Network Engineer - Highland Telephone AS395437

Would you make a good ARIN Trustee? (Fwd: [arin-announce] Call for Nominations Extended for ARIN Board of Trustees)

review the requirements at the link below. Thanks! /John John Curran President and CEO American Registry for Internet Numbers Begin forwarded message: From: ARIN Subject: [arin-announce] Call for Nominations Extended for ARIN Board of Trustees Date: June 24, 2024 at 5:15:12 PM AST To: "arin-

OARC 43 - Call for Contribution (location and date changs)

will be provided when registration opens. If you have questions or concerns you can contact the Programme Committee: https://www.dns-oarc.net/oarc/programme via submissi...@dns-oarc.net John Todd, for the DNS-OARC Programme Committee For OARC 43 we are open to patronage and donations to fund t

Re: HE.net outage / status page ?

Could be related or coincidence, but at the same time as this HE issue, we've been seeing inbound connectivity issues to Azure US Central. Azure’s ASN does have a peer to HE…. -John > On Jun 14, 2024, at 7:23 AM, Michael Brown via NANOG wrote: > > On 2024-06-14 06:32,

Re: 600,000 routers bricked

It appears that Robert Jacobs said: >-=-=-=-=-=- > >If you do a bit more digging the ISP is not Lumen ... It is a well known ISP It's Windstream. and I recall reading about this >outage when it happened. I don’t know if indeed this was a botched attempt to >gather a bot network or like >some

Re: Correcting national address databases?

od reasons cannot be a PO Box. You should move to New York. My NY license has always had my PO Box and no other address. I do have a street address, and the PO does deliver there, but it's not on my license. -- Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly

Re: Free(opensource) Ticketing solutions

We're using Zammad John Stitt Senior Network Engineer From: NANOG on behalf of Pascal Masha Sent: Monday, May 27, 2024 12:28 PM To: nanog Subject: Free(opensource) Ticketing solutions Hello, Which free and good ticketing systems do you folks(for

Re: who runs the root, Cogent-TATA peering dispute?

oot zone, e.g., delete Iran or Russia or point their name servers at something else. https://community.icann.org/pages/viewpage.action?pageId=120820189 R's, John

Re: who runs the root, Cogent-TATA peering dispute?

Maintainer (hence the name). Good point. In any event, I think we agree that none of IANA, ICANN, and/or Verisign has the authority to remove one of the root operators, no matter how much someone might dislike their peering policies. R's, John PS: Perhaps the GWG will eventually come up with

Re: who runs the root, Cogent-TATA peering dispute?

ot server operators say no, and the root server operators carefully avoid putting ICANN in a position where they might have to do that. I'm not guessing here, I go to ICANN meetings and talk to these people. R's, John

Re: Cogent-TATA peering dispute?

rvers and never has been. We can all have our own opinions about the various operators. R's, John > >For those who haven't been around long enough, this isn't Cogent's >first depeering argument. Nor their sec

Re: Mailing list SPF Failure

surprised nobody noticed for close to 10 days. I was away from work and upon coming back I saw the little discussion there was , in my Spam folder. On Thursday, 16/05/2024 at 18:56 John R. Levine wrote: On Thu, 16 May 2024, William Herrin wrote: The message content (including the message h

Re: Should FCC look at SS7 vulnerabilities or BGP vulnerabilities

#x27;s why you see PROBABLE SPAM rather than just not getting the call. R's, John

Re: Mailing list SPF Failure

eturn-path header. But that wasn't the problem here, the SPF record was just gone. Oops. I see that the SPF record is back and seems have the correct addresses so we can now return to our previously scheduled flamage. Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "T

Re: Mailing list SPF Failure

do not get along with mailing lists, but SPF is OK, at least as OK as SPF ever is. tl;dr nanog needs to put back its SPF record. It'll make some systems such as Gmail considerably more likely to accept the mail. R's, John

On consistency and 192.0.0.0/24

local or global context." I can't remember hearing anyone complaining about bogon-related reachability problems with the aggregate IANA prefixes generally. Is there a strong case to make that ops should not bogon filter any addresses in these prefixes? At least with IPv4? What about for IPv6? John

TIMELY - FINAL REMINDER - ARIN Email Template Retirement Scheduled for 3 June 2024

NANOGers - If you are still emailing SWIP requests to ARIN for reporting reallocations and reassignments, please contact the ARIN Helpdesk ASAP to move a more appropriate/secure technology. Thanks, /John John Curran President and CEO American Registry for Internet Numbers Begin forwarded

NOAA Space Weather Prediction Center issued a Severe (G4) Geomagnetic Storm Watch

UTC day.” (Low but distinct possibility of effects to radio and transmission systems) FYI, /John John Curran President and CEO American Registry for Internet Numbers

Apply Now for an ARIN Community Grant

Hi NANOG’ers, ARIN has announced the opening of applying for an ARIN grant. See below announcement. Do you have a project that needs funding, is noncommercial in nature, and benefits the Internet community within the ARIN service region? Apply now for a 2024 ARIN Community Grant. The ARIN Co

RE: Roku Streaming Issues

related to it either. We’re in southwest Kentucky, for what that’s worth. John Stitt HES Energynet From: NANOG On Behalf Of Corey Smith via NANOG Sent: Tuesday, May 7, 2024 6:31 PM To: nanog@nanog.org Subject: Roku Streaming Issues Is anyone else seeing issues with Streaming services on Roku

OARC 43 - Call for Contribution

n registration opens. If you have questions or concerns you can contact the Programme Committee: https://www.dns-oarc.net/oarc/programme via submissi...@dns-oarc.net John Todd, for the DNS-OARC Programme Committee For OARC 43 we are open to patronage and donations to fund the Workshop and asso

Re: Help with removing DNS shinkhole FP from Charter/Spectrum

eone somewhere who is competent because their network mostly works, but damned if I know how to find them. https://www.theverge.com/2022/7/29/23282522/charter-spectrum-customer-murder-forged-terms-of-service R's, John

Re: Help with removing DNS shinkhole FP from Charter/Spectrum

in, there is no case law to support it. R's, John

Re: Help with removing DNS shinkhole FP from Charter/Spectrum

en different? No, it's terrible, and Spectrum is particularly bad. I am now in month three of trying to get them to route a /24 to my host that belongs to one of my users, and their responses can be summarized as very complex exegeses of "duh?" But bogus lawyer letters will just ma

Re: Help with removing DNS shinkhole FP from Charter/Spectrum

pect the least bad alternative if you can't find an out of band contact is to get some of the Spectrum customers who can't reach you to complain. They're customers, you aren't. R's, John

Anyone got a contact at OpenAI. They have a spider problem.

pages all look nearly the same, and they're all on the same IP address with the same wildcard SSL certificate. Amazon's spider got stuck there a month or two ago but fortunately I was able to find someone to pass the word and it stopped. Got any contacts at OpenAI? R's, John PS: If

RE: Netskrt - ISP-colo CDN

upstreams with each ASN, and are on Ohio IX with AS53471, but not really any peers anywhere. Looks like Cogent and Zayo for upstreams and only peer I see is AS1239 (Sprint Wireline (Cogent)) John Stitt From: NANOG On Behalf Of Aaron Gould Sent: Thursday, April 4, 2024 4:36 PM To: Eric Dugas Cc

Re: Microsoft missing public DNS TXT entry for DKIM records (msn.com)

DO THAT. If a DKIM signature isn't valid, you ignore it. If you do anything else, as you have just discovered, you will be sorry. R's, John

Re: SRI's Dan Lynch dies

who knew him. I’m thankful for all he did for computing and the Internet. John Stitt Sent from my pocket CRAY-1 On Mar 31, 2024, at 2:20 PM, Jay R. Ashworth wrote: [You don't often get email from j...@baylink.com. Learn why this is important at https://aka.ms/LearnAboutSenderIdentific

Re: Open source Netflow analysis for monitoring AS-to-AS traffic

/akvorado> github.com<https://github.com/akvorado/akvorado> John Stitt Sent from my pocket CRAY-1 On Mar 26, 2024, at 7:05 PM, Brian Knight via NANOG wrote:  What's presently the most commonly used open source toolset for monitoring AS-to-AS traffic? I want to see with which ASes I

Re: AT&T ARIN Contact

Hi John, If you CC: hostmas...@arin.net<mailto:hostmas...@arin.net> on the email to ipadmin-b...@att.com<mailto:ipadmin-b...@att.com>, ARIN will reach out to them and if the entries are not removed in 7 days ARIN will remove them for you. Thanks, John S. ARIN CCO From: NANOG

AT&T ARIN Contact

ore. does anyone have some contact info at ATT/Bell for getting these records corrected? John Conley - Covenant - Network Engineer - 423.463.3342 __ This communication and the information transmitted is intended solely for the

Who is security-research.org ?

scan everyone to make the Internet better, just filter us, but if you insist, you can send objections to n...@m-d.net. Any idea who they are? I expect it's more likely that they're self-important than evil. but still, sigh. R's, John

Re: registry for onmicrosoft[dot]com

x27;s mail away since they send far more mail that recipients want to throw away than either of their large competitors. I've set up special filters that send everything from MS to the spam trap if it's not on a static whitelist. Regards, John Levine, jo...@taugh.com, Primary Perpetra

Re: registry for onmicrosoft[dot]com

to use Gmail instead. On Tue, 12 Mar 2024, John Levine wrote: It appears that Sean Donelan said: Microsoft's corporate email systems appear to silently drop email from small domains (like mine). It can't be that simple -- I have some tiny domains and correspond with Microsoft empl

Re: DNSSEC & WIldcards

pp.linktechs.net/dnssec/ ? I agree there are better places to ask, but here's a quick diagnosis: your nameserver is returning the wrong answer. What kind of server is it? Any modern nameserver should automatically return the correct DNSSEC stuff for wildcard responses. R's, John

Re: registry for onmicrosoft[dot]com

It appears that Sean Donelan said: > >Microsoft's corporate email systems appear to silently drop email from >small domains (like mine). It can't be that simple -- I have some tiny domains and correspond with Microsoft employees all the time. R's, John

Re: Best TAC Services from Equipment Vendors

d. When you troubleshoot, you log in as CiscoTAC. The CiscoTAC tacacs profile description in Clearpass makes it clear why it's there. I left the curse words out. -J John C. Lyden Associate Director, Network Operations Division of Information Resources & Technology Rowan University

RE: Best TAC Services from Equipment Vendors

That honestly is what my experience used to be but this has not been my observation recently, even when we as a large NSP provide all detail and literally ask about possible bugs. From: NANOG On Behalf Of Joel Esler Sent: Thursday, March 7, 2024 11:46 AM To: Pascal Masha Cc: nanog Subject: Re

Re: Why are paper LOAs still used?

alking about old companies, I have a situation > right now where a VPS provider I'm using will no longer use IRR and > only accepts new paper LOAs. In the year 2024. I don't understand how > anyone can go backwards like that. Did you ask them why or can you name the provider? John

Re: Any info on AT&T Wireless Outage?

>From what I've read, they lost their database of SIM cards. I could be wrong of course. On Thu, Feb 22, 2024 at 2:02 PM Dorn Hetzel wrote: > As widespread as it seemed to be, it feels like it would be quite a trick > if it were a single piece of hardware. Firmware load that ended badly, I > w

RE: Akamai AANP minimum traffic?

reach out and make a request and see what they tell you directly. I got a response pretty quickly and they were nice about it. John Stitt -Original Message- From: NANOG On Behalf Of Tom Samplonius Sent: Thursday, February 22, 2024 12:29 PM To: NANOG Subject: Akamai AANP minimum traffi

Re: IPv6 uptake

It appears that Nick Hilliard said: >full control of all modems and they're all relatively recent, properly >supported units, fully managed by the cable operator. If you start >adding poor quality cheap units into the mix, it can cause service problems. The cablecos I've dealt with have a list

Re: IPv6 mail The Reg does 240/4

ine what is actually happening in live deployments. Unfortunately, spammers can read just as well as we can so it's not going to happen. R's, John

Re: IPv6 uptake (was: The Reg does 240/4)

onfigure a NAT. Once you start making exceptions, it depends on the nature of the exceptions, the way you tell the router about them (CLI, web crudware, whatever) and doubtless other stuff too. Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies",

Re: IPv6 uptake (was: The Reg does 240/4)

It appears that William Herrin said: >Now suppose I have a firewall at 199.33.225.1 with an internal network >of 192.168.55.0/24. Inside the network on 192.168.55.4 I have a switch >that accepts telnet connections with a user/password of admin/admin. >On the firewall, I program it to do NAT transl

Re: The Reg does 240/4

are now pretty similar. They won't accept v6 mail that isn't authenticated with SPF or DKIM but honestly, if you can't figure out how to publish an SPF record you shouldn't try to run a mail server. R's, John

Re: IPv6 uptake (was: The Reg does 240/4)

they will delegate the rDNS anywhere you want. My local ISP doesn't do IPv6 at all (they're a rural phone company who of course say you are the only person who's ever asked) so until they do, HE is a quite adequate option. R's, John

Re: mail and IPv6, not The Reg does 240/4

nce they don't publish records for their inbound mail. R's, John

Re: The Reg does 240/4

zero-sum thinking; Well, OK, think how many more sites could hav IPv6 if people weren't wasting time arguing about this nonsense. R's, John

Re: Ongoing ARIN consultation on Resource Public Key Infrastructure/BGP intelligence

On Feb 14, 2024, at 2:09 PM, Randy Bush wrote: john, Read the full text of the consultation at: https://www.arin.net/participate/community/acsp/consultations/2024/2024-1/ please explain the need for bureaucrazy to do what RPKI CAs have been doing since dirt was invented. Randy - I’d tend to

Ongoing ARIN consultation on Resource Public Key Infrastructure/BGP intelligence

to this mailing list at https://lists.arin.net/mailman/listinfo/arin-consult. ARIN will use the feedback provided to determine how we move forward with improvements to our routing security services. Thank you in advance for your participation in this community consultation. Thanks! /John John

Re: Anyone have contacts at the Amazon or OpenAI web spiders?

o late. Most spiders can take the hint that they're all on the same IP. But not these two. R's, John > >On Feb 13, 2024, at 8:35 PM, John Levine wrote: >> >> One day I set up the world's lamest content farm. You can see it here: >> >> https://w

Re: Utilizing USG networks for internal purposes (Re: route: 0.0.0.0/32 in LEVEL3 IRR)

impact has almost certainly increased. Thanks, /John John Curran President and CEO American Registry for Internet Numbers > On Feb 14, 2024, at 1:25 AM, Dave Taht wrote: > > Excellent summary of the USG position as of 2019. It is, um, nearly 5 > years later, has any of these s

Re: Anyone have contacts at the Amazon or OpenAI web spiders?

t" on your favourite search engine. Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly

Utilizing USG networks for internal purposes (Re: route: 0.0.0.0/32 in LEVEL3 IRR)

tanding of the risks involved. Thanks! /John John Curran President and CEO American Registry for Internet Numbers [1] https://pc.nanog.org/static/published/meetings/NANOG77/2108/20191028_Elverson_Your_As_Is_v1.pdf pg 4.

Anyone have contacts at the Amazon or OpenAI web spiders?

t trapped but fortunately I knew someone at Microsoft who could pass the word. He reported back that while he could not go into detail, there was a great deal of animated conversation at the other end of the hall, and shortly after that it stopped. R's, John

Re: Enough of The Reg does 240/4

hoping that >people come around to your position, it's never going to happen. I think we have once again established that repeating a bad idea over and over and over does not make it any less bad. Let's argue about something else, OK? R's, John

Re: The Reg does 240/4

It appears that Lyndon Nerenberg (VE7TFX/VE6BBM) said: >And what are they going to do when 240/4 runs out? That will be a hundred years from now, so who cares? R's, John PS: I know this because it will take 98 years of process before the RIRs can start allocating it.

Re: IPv6 Test Pages for Fortune 500 and Top 100 web sites are back

Well that data is disappointing. From: NANOG on behalf of Owen DeLong via NANOG Date: Monday, February 12, 2024 at 5:03 PM To: NANOG list Subject: IPv6 Test Pages for Fortune 500 and Top 100 web sites are back Don’t know how much anyone will still care about these pages as there are lots of o

Know of any organization that uses SWIP email templates? (was: Fwd: [arin-announce] Email Template Retirement Scheduled for 3 June 2024)

information on the consultation that was held, the open source template processor we’ve made available and the REST-based alternative. Thanks! /John John Curran President and CEO American Registry for Internet Numbers Begin forwarded message: From: ARIN Subject: [arin-announce] Email Template

Re: Diversity in threading, Diversity of MUAs (was Re: How threading works

nk the rest of us are obliged to arrange our lives around one mail provider's imperfect heuristics. If I were you, I would call up Google and demand that they fix this bug. What do they think you're paying for? Oh, wait ... R's, John

Re: classic mail, was Vint Cerf Re: Backward Compatibility Re: IPv4 address block

It appears that Randy Bush said: >> Some of us still use pine$B!D(B > >i thought most pine users had moved to mutt Some, but pine (now called alpine) is still actively maintained and does some things better than mutt, particularly if you want to keep track of multiple inboxes on different serve

Re: IPv4 address block

er" tells you. Absolutely - always a good idea. Thanks for feedback! /John John Curran President and CEO American Registry for Internet Numbers

Re: IPv4 address block

and can be found here – https://www.arin.net/resources/registry/transfers/facilitators/qualifiedfacilitators/ – any of them should be able to do a credible job in helping you obtain an IPv4 address block from the marketplace. Best wishes, /John John Curran President and CEO American Registry

Fellowships for ARIN 53

, John S.

Re: What are these Google IPs hammering on my DNS server?

vers) and say the NS for contacts.abuse.net is at 127.0.0.1, but as we've seen it's a challenge keeping track of all the places your queries can come from. Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly

Re: What are these Google IPs hammering on my DNS server?

. It’s not hard. I could do that but with the other clues I think it's unlikely they're spoofed and far more likely they're real traffic from clueless users. Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consid

RE: What are these Google IPs hammering on my DNS server?

xt to the results saying it's not a blacklist, I got a stream of outraged people insisting I was personally blocking their mail. So I was finally able to get him to take it out by returning this custom result: 'Blacklisted. To remove send $100 to x...@valli.org' R's, Joh

Re: What are these Google IPs hammering on my DNS server?

ne is wondering, I have a passive aggressive countermeasure against some overqueriers that returns ten NS referral names, and then 25 random IP addresses for each of those names, but I don't do that to Google. R's, John -

Re: What are these Google IPs hammering on my DNS server?

They are probably spoofed IPs. So those are the target IP IPs of a DDoS What king of amplification factor does your DNS server have? I bet with the changes you’ve made, it’s super high. People are looking for DNS servers like that. On the contrary, the reponse packets are tiny. $ host -t

What are these Google IPs hammering on my DNS server?

172.253.255.33 172.253.206.35 172.253.255.34 172.253.206.33 172.253.206.34 172.253.13.194 172.253.13.195 172.71.125.63 172.71.117.60 172.71.133.51 R's, John

Re: Advantages and disadvantages of legacy assets

(& Happy Holidays!), /John John Curran President and CEO American Registry for Internet Numbers On Nov 22, 2023, at 10:02 PM, Gary Buhrmaster wrote: On Wed, Nov 22, 2023 at 8:14 PM William Herrin wrote: It still seems unwise, but not entirely insane. I would expect that at some point in the fu

Re: Your Input Needed: Can ROA Replace LOA? – Short Survey (7 mins)

et me know and I'll put you in touch with Carlos and a draft. John

DDOS scrubbing

Hi! I could not find any recent thread on the list about ddos scrubbing devices. We are looking into some kind of hybrid service with onprem hardware and scrubbing centers. At the moment we are evaluating NSFocus and Riorey, do the list have any experience from them? Johan

Re: .US Harbors Prolific Malicious Link Shortening Service

run .US and since then it's been a lot like generic TLDs, with second level domains rented for a yearly fee. The old geographic names are still grandfathered but the registry, now run by Godaddy, isn't delegating any new ones. R's, John

Re: .US Harbors Prolific Malicious Link Shortening Service

activity." What hope is there when registrars are actively aiding and abeting criminal enterprises? Are there any legitimate services running solely on .us domain names? -Dan -- ** John McCormac * e-mail: j...@hosterstats.com MC2

Re: swedish dns zone enumerator

are small. It might be an idea to contact Domaincrawler(.)com and ask what it is doing. Regards...jmcc -- ** John McCormac * e-mail: j...@hosterstats.com MC2* web: http://www.hosterstats.com/ 22 Viewmount * Domain

Re: [EXTERNAL] Charter DNS servers returning malware filtered IP addresses

hether Charter uses one of these, some other third party, or their own. We must know someone there who could tell us. Regards, John Levine, jo...@taugh.com, Primary Perpetrator of "The Internet for Dummies", Please consider the environment before reading this e-mail. https://jl.ly

Re: Charter DNS servers returning malware filtered IP addresses

y (we, actually) found five millions domains used in crime of at least a million were registered only to do crime. https://interisle.net/CybercrimeSupplyChain2023.html R's, John

Re: [EXTERNAL] DNS filtering in practice, Re: Charter DNS servers returning malware filtered IP addresses

d everything to their favorite DoH resolver but they got a great deal of pushback from people who pointed out that they had policies on their networks and they'd have to ban Firefox. Firefox responded with a lame hack where you can tell your cache to respond to some name and if so Firefox will use your resolver. R's, John

  1   2   3   4   5   6   7   8   9   10   >