You have to manage to lower the reputation
of that host within a very short amount of time to increase the
transaction costs sufficiently for the spammer to make the effort
worthwhile.
Or you have to ensure that the sending ISP can react quickly
and stop the flow of spam so that only a
Here's a simple mechanism which has not yet been tried
seriously. Email server peering. This means that an SMTP
server operator only accepts incoming mail from operators
with whom they have a bilateral email peering agreement.
This has been tried in the X.400 world. I wouldn't exactly say
Does anyone know if
their is a comprised list of ISP contacts available anywhere ( other then
through ARIN/RIPE and iNOC phone)
Also, I ran into a problem with a new /16
block we received from ARIN. The IP-Country info points to Canada which is not
accurate. We are a US based company. I
Sanfilippo, Ted wrote:
Does anyone know if their is a comprised list of ISP contacts available
anywhere ( other then through ARIN/RIPE and iNOC phone)
http://puck.nether.net/netops/nocs.cgi
On 13/06/05, Sanfilippo, Ted [EMAIL PROTECTED] wrote:
Also, I ran into a problem with a new /16 block we received from ARIN.
The IP-Country info points to Canada which is not accurate. We are a US
based company. I had placed a request into Geobyte to make the change to US,
I am still
I'm just curious if anyone has ever published a list of what is
an agreed upon best practice list of ACLs for an internet facing border
router. I'm talking about things like bogons, private Ip addresses, et
cetera. If anyone is aware of anything like this I'd like to see it.
Thanks,
ftp://ftp-eng.cisco.com/cons/isp/security/Ingress-Prefix-Filter-Template
s/
Florian
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Drew Weaver
Sent: Montag, 13. Juni 2005 16:28
To: nanog@merit.edu
Subject: Best practice ACLs for a internet
Suresh,
Sorry I meant GEOBYTES --- http://www.geobytes.com/IpLocator.htm
When I enter my new /16 at this site it translates to Canada and it
shouldn't. ARIN reports the address properly on the ARIN lookup. I have sent
emails to the Geobytes website two weeks ago, they confirmed
block bogons
block your ips from outside
block rfc 1918 (martians)
block common worms ports
On 6/13/05, Drew Weaver [EMAIL PROTECTED] wrote:
I'm just curious if anyone has ever published a list of what isan agreed upon best practice list of ACLs for an internet facing borderrouter. I'm talking
On Mon, 13 Jun 2005, Drew Weaver wrote:
I'm just curious if anyone has ever published a list of what is
an agreed upon best practice list of ACLs for an internet facing border
router. I'm talking about things like bogons, private Ip addresses, et
cetera. If anyone is aware of
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
Sanfilippo, Ted
Sent: Monday, June 13, 2005 10:19 AM
To: Suresh Ramasubramanian
Cc: nanog@merit.edu
Subject: RE: ISP's Contact List
Suresh,
Sorry I meant GEOBYTES ---
* [EMAIL PROTECTED] ([EMAIL PROTECTED]) [Mon 13 Jun 2005, 11:10 CEST]:
Here's a simple mechanism which has not yet been tried
seriously. Email server peering. This means that an SMTP
server operator only accepts incoming mail from operators
with whom they have a bilateral email peering
On Mon, 13 Jun 2005, [EMAIL PROTECTED] wrote:
Here's a simple mechanism which has not yet been tried seriously. Email
server peering.
All this stuff you're describing [almost] exactly matches the former
UUCP-based e-mail distribution mechanism.
A lot of this dubious technical garbage can be
FYI - we've had an outage on a Choice One T1 since about 9am EDT. First-line
support from Choice One reported need to reboot several routers and gave
an ETTR of 1/2 hr at 10:21.
Though things seem to be behaving reasonably well as far as I can tell on
their net, Expedient is also reporting
At 10:16 AM 6/13/2005, Frotzler, Florian wrote:
ftp://ftp-eng.cisco.com/cons/isp/security/Ingress-Prefix-Filter-Template
s/
Florian
The original question didn't specify whether the interest was prefixes or
packet filters.
For packet filtering, the above URL is not going to help, but a
On Mon, 13 Jun 2005, Sanfilippo, Ted wrote:
I ran into a problem with a new /16 block we received from ARIN. The
IP-Country info points to Canada which is not accurate. We are a US
based company. I had placed a request into Geobyte to make the
change to US, I am still
On Mon, 13 Jun 2005 10:58:06 EDT, Todd Vierling said:
(Oh sh*t, did I just feed a troll?)
Well, are you missing a bag of Purina Troll Chow? :)
pgpY9FgUx4iKx.pgp
Description: PGP signature
On Mon, 13 Jun 2005, Daniel Senie wrote:
had wrong info or no info.
If you're the ISP, then your answer to your customers is the web site you
are going to is using an unreliable method to attempt to determine locality
from IP address.
Then point them at the web site's contact form and
I need to collocate a 2u 3750 at 1 Wilshire - if you have resources, please
contact me offline.
--
matthew zeier - Curiosity is a willing, a proud, an eager confession
of ignorance. - Leonard Rubenstein
Drew Weaver wrote:
I'm just curious if anyone has ever published a list of what is
an agreed upon best practice list of ACLs for an internet facing border
router. I'm talking about things like bogons, private Ip addresses, et
cetera. If anyone is aware of anything like this I'd like
I'm sure that this made it here before but:
www.analysespider.com/ip2country/ip_country.html
Later,
J
-Original Message-
From: william(at)elan.net [mailto:[EMAIL PROTECTED]
Sent: Monday, June 13, 2005 1:40 PM
To: nanog@merit.edu
Subject: IP-Country Data (RE: ISP's Contact List)
On
On June 11, 2005 at 20:34 [EMAIL PROTECTED] (John Levine) wrote:
I therefore assert there is no technical solution to spam.
I think you're preaching to the choir here.
What will stop it is some sort of new economic model, billing for
e-mail (yeah yeah some reasonable amt included),
On Mon, 13 Jun 2005, william(at)elan.net wrote:
I suspect your completewhois does not take into account ERX data:
http://www.ripe.net/projects/erx/
Huge swaths of IP space were moved around between RIRs from Jan 2003-Apr
2005:
http://www.ripe.net/projects/erx/erx-ip/completed.html
If you want
(The IETF is often criticised for having inadequate efforts concerning
operations. Here is your opportunity to take a small step to counteract that.)
Folks,
This is a request for you action:
A draft specification has been submitted to the IETF for standardization
as a Best Current Practices.
On Mon, 13 Jun 2005, Jim McBurnett wrote:
I'm sure that this made it here before but:
www.analysespider.com/ip2country/ip_country.html
Commercial service when there are several free ones available
BTW - based on what I can see they are not updating data once per day but
only
On Mon, 13 Jun 2005, Hank Nussbacher wrote:
On Mon, 13 Jun 2005, william(at)elan.net wrote:
I suspect your completewhois does not take into account ERX data:
http://www.ripe.net/projects/erx/
Huge swaths of IP space were moved around between RIRs from Jan 2003-Apr
2005:
At 10:18 AM 13-06-05 -0400, Sanfilippo, Ted wrote:
Suresh,
Broken. My IP, which has been allocated to Israel for about 15 years shows
up as in China and no whois site is *that* broken.
-Hank
Sorry I meant GEOBYTES --- http://www.geobytes.com/IpLocator.htm
When I enter
A draft specification has been submitted to the IETF for standardization
as a Best Current Practices.
Information about the document is at:
http://mipassoc.org/spamops/
The name is inaccurate, its not about anti-spam operations, the document
is about use and configuration of email
We've been here before, but to recap.
1. If a particular billing/business model presents difficulties then
we might have to consider a different model, others are possible
(hence, straw man of e-postage etc.)
I look forward to hearing about a design for an email billing system
that does
On Tue, 7 Jun 2005, Fergie (Paul Ferguson) wrote:
-- william(at)elan.net [EMAIL PROTECTED] wrote:
Since it appears NANOG continues to be used for mail-related discussions
and a some of what goes here is based on not understanding technologies
and issues involved, I'll make a link to a
On 06/13/05, william(at)elan.net [EMAIL PROTECTED] wrote:
In part 5, I also go through why none of the proposals are really
anti-spam and promotion of the methods as such is misleading.
No matter how the authors may promote their methods, most
people don't perceive that
I do not think there is a best practice. In fact, Operational
Entropy(1) has a big factor with packet filtering ACLs on the
interconnect side of an SP. So you are not going to find a lot of packet
filtering on SP-SP links.
There are links and presentations you can refer to help build a iACL
http://www.geobytes.com/FAQ.htm#Technology
http://www.geobytes.com/FAQ.htm#DifferentFromWhoIs
- Original Message -
From: Sanfilippo, Ted [EMAIL PROTECTED]
To: Suresh Ramasubramanian [EMAIL PROTECTED]
Cc: nanog@merit.edu
Sent: Monday, June 13, 2005 4:18 AM
Subject: RE: ISP's Contact
On Jun 13, 2005, at 2:55 PM, william(at)elan.net wrote:
Commercial service when there are several free ones available
BTW - based on what I can see they are not updating data once per
day but only once/month. Also having some experience in this matter
I highly doubt that its much more
At 6:35 PM -0400 2005-06-13, Patrick W. Gilmore wrote:
Too bad no one has servers in 100s or even a 1000 or more ISPs in dozens
of countries with TCP connections to a statistically significant portion
of the Internet on a daily basis who could possibly measure, say, RTT
(not sure why TTL
Too bad no one has servers in 100s or even a 1000 or more ISPs in
dozens of countries with TCP connections to a statistically significant
portion of the Internet on a daily basis who could possibly measure,
say, RTT (not sure why TTL is relevant) and other things, and perhaps
use that along
On Mon, 13 Jun 2005, william(at)elan.net wrote:
The point is it probably would not be as accurate as one could
hope because internet network infrastructure is network-centric
and not necessarily region-based. Of course you could try to fully
map INET like CAIDA does and keep the
On Jun 13, 2005, at 6:53 PM, Matt Ghali wrote:
On Mon, 13 Jun 2005, william(at)elan.net wrote:
The point is it probably would not be as accurate as one could
hope because internet network infrastructure is network-centric
and not necessarily region-based. Of course you could try to
On Mon, 13 Jun 2005, Matt Ghali wrote:
The point is it probably would not be as accurate as one could
hope because internet network infrastructure is network-centric
and not necessarily region-based. Of course you could try to fully
map INET like CAIDA does and keep the info updated on
As for the 'pretty hard work' part; they seem to be making money off
it; how's your gig going?
I primarily make money from consulting and other work not from ISP
services which I have not promoted from 2002.
Not sure that's a fair comparison, since I didn't think William is
doing this
On Mon, 13 Jun 2005, J.D. Falk wrote:
On 06/13/05, william(at)elan.net [EMAIL PROTECTED] wrote:
In part 5, I also go through why none of the proposals are really
anti-spam and promotion of the methods as such is misleading.
No matter how the authors may promote their methods, most
On 06/13/05, william(at)elan.net [EMAIL PROTECTED] wrote:
No matter how the authors may promote their methods, most
people don't perceive that there's any great separation between
anti-spam and anti-forgery techniques. As far as they're
concerned, all e-mail threats are
42 matches
Mail list logo