Re: Phishing and BGP Blackholing
For those of us who read nanog from a mobile device, it's incredibly annoying to have no content in the first few bytes - a lot of mobile e-mail clients (all MS Windows Mobile 5 devices and every Blackberry I've seen) pull the first 0.5KB of each message, i.e. the header, subject line and the first few lines of text, so the user can decide which ones are worth reading in full. Intention is to save bandwidth on low-speed, noncertain networks (GPRS, 1xRTT) which also tend to be metered per-bit - spending actual money to read something like the following is always a great way to start the day. NANOG User wrote: . . Steve wrote: . . Another User temporarily inconvenienced several million electrons to lucubrate anent following philosophy, and how clever silly synonyms for said are: Someone's PGP Key Someone's Smartass Sig
Re: Router and Infrastructure Hacking (CCC conference last week)
Gadi Evron wrote: 4. I do wish the talk on how CCC set up their multiple-uplink GigE network for the conference was filmed, I call this type of create an ISP in 24 hours, in a very very hostile and busy environment such as at defcon or CCC extreme networking. We do the same for Dreamhack [1] twice each year, very fascinating. Takes a little bit more than 24h, but not THAT much. Usually drags attention from media geeks on how it all works. We had 7800 connected nodes in the network last time we ran (december 2006) and a total of ~10800 participants, filling a 10Gigabit connection onto the Internet. 10Gigabit core, every 22 participants share a Gigabit uplink to the core. We don't believe we're fully ready to let each visitor get a Gig uplink to their computer yet, but in a year or so possibly. We'll see. We've been given a /16 each time so each visitor has had a fully public IP, and the bandwidth has been provided by Telia the last couple of years. On the hardware side we've both built it all with Extreme Networks equipment and Cisco (and a mix of both). Interesting event, indeed. I recommend visiting us, Guinness book of World Records did and signed us up. :P [1]: http://www.dreamhack.se/dhw06/en.100.html -- /ahnberg.
Re: Router and Infrastructure Hacking (CCC conference last week)
Mattias Ahnberg wrote: We've been given a /16 each time so each visitor has had a fully public IP, and the bandwidth has been provided by Telia the last couple of years. On the hardware side we've both built it all with Extreme Networks equipment and Cisco (and a mix of both). You forgot to mention that there was also IPv6 connectivity ;-) -- amar
Re: Router and Infrastructure Hacking (CCC conference last week)
Amar wrote: You forgot to mention that there was also IPv6 connectivity ;-) *grin* How many kilobit IPv6 traffic did we push, you know? :P -- /ahnberg.
Re: NATting a whole country?
all of Qatar appears on the net as a single IP address. I wonder what they use the other 241663 addresses for. Same as you. To address the many machines and networks in Qatar. The existence of a NAT gateway to one portion of the Internet does not remove the need for registered IP addresses. They are still needed to avoid addressing conflicts in the portion of the Internet which is not behind the gateway. --Michael Dillon
Re: Phishing and BGP Blackholing
For those of us who read nanog from a mobile device, it's incredibly annoying to have no content in the first few bytes - a lot of mobile e-mail clients (all MS Windows Mobile 5 devices and every Blackberry I've seen) pull the first 0.5KB of each message, i.e. the header, subject line and the first few lines of text, so the user can decide which ones are worth reading in full. Why should all 1 billion Internet users change their behavior just because your minority mail-reading system is broken? Hint: Procmail is your friend. Set up your own mail server and run procmail against all incoming email with newline-greaterthan in the first 500 bytes. You can preprocess these messages to do something like strip headers that you don't read and copy the first few reply lines to be first in the message. That way your mobile device will get more bang for the buck than most other people's. Paul Vixie's colo registry may be of help if you need to find a place to stick your own mail server http://www.vix.com/personalcolo/ --Michael Dillon
Re: NATting a whole country?
On 4-jan-2007, at 14:37, [EMAIL PROTECTED] wrote: all of Qatar appears on the net as a single IP address. I wonder what they use the other 241663 addresses for. To address the many machines and networks in Qatar. The existence of a NAT gateway to one portion of the Internet does not remove the need for registered IP addresses. Whatever. The point is that IF it's true that they NAT (or proxy) the whole country, it's not because of lack of addresses. In other words, whatever ill effects befall them as a result, they only have themselves to blame. By the way, I have two different .qa domain names in my WWW logs, one with proxy in it and one with nat in it...
Re: Phishing and BGP Blackholing
(All right then, scroll down for content :-)) On 1/4/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: For those of us who read nanog from a mobile device, it's incredibly annoying to have no content in the first few bytes - a lot of mobile e-mail clients (all MS Windows Mobile 5 devices and every Blackberry I've seen) pull the first 0.5KB of each message, i.e. the header, subject line and the first few lines of text, so the user can decide which ones are worth reading in full. Why should all 1 billion Internet users change their behavior just because your minority mail-reading system is broken? Hint: Procmail is your friend. Set up your own mail server and run procmail against all incoming email with newline-greaterthan in the first 500 bytes. You can preprocess these messages to do something like strip headers that you don't read and copy the first few reply lines to be first in the message. That way your mobile device will get more bang for the buck than most other people's. Paul Vixie's colo registry may be of help if you need to find a place to stick your own mail server http://www.vix.com/personalcolo/ --Michael Dillon Minority? A mail client has been standard-ish for the last three to four years of upgrade iterations. There are a LOT of mobiles out there. Granted not many of them are used for e-mail, but that is a percentage that is only going to go up. Anyway, I wouldn't write a letter with nothing worth reading on the first page. I don't write articles with nothing in the first paragraph. Why should over a billion users of the English language, etc, etc..
AS41961 not seen in many networks
Hi, Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. Our ASN is is in AS block allocated by RIPE on 13 April 2006 then somebody can have it still in as-path ACLs. Could you please check your configuration or help us to isolate the problem? -- Sebastian Rusek, Phone: +48 71 3352352 AXIT Polska Sp. z o.o., ul. Ruska 51b, 50-079 Wrocław, Poland
Re: AS41961 not seen in many networks
Hi Sebastian, [EMAIL PROTECTED] (Sebastian Rusek) wrote: Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. To make it easier for everyone - could you provide hosts in each network that are pingable? Yours, Elmar.
Re: Phishing and BGP Blackholing
Alexander Harrowell wrote: Anyway, I wouldn't write a letter with nothing worth reading on the first page. I don't write articles with nothing in the first paragraph. Why should over a billion users of the English language, etc, etc.. We're not talking about a letter or an article. We're talking about a conversation and/or a debate. Someone speaks, someone else speaks, someone else speaks. Without context, the Nth round of the debate isn't the same. This place is full of people with opinions. Some like it hot, some like it not. We are never going to agree on top/inline/bottom posting. Why can't we all just get along and discuss operational issues? pt
Re: AS41961 not seen in many networks
They are seen here, through Cogent : * 194.60.78.0 38.101.161.1164001 0 174 13237 41961 i * 194.60.204.0 38.101.161.1164001 0 174 13237 41961 i * 194.153.114.038.101.161.1164001 0 174 13237 41961 i Regards Marshall On Jan 4, 2007, at 8:57 AM, Sebastian Rusek wrote: Hi, Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. Our ASN is is in AS block allocated by RIPE on 13 April 2006 then somebody can have it still in as-path ACLs. Could you please check your configuration or help us to isolate the problem? -- Sebastian Rusek, Phone: +48 71 3352352 AXIT Polska Sp. z o.o., ul. Ruska 51b, 50-079 Wrocław, Poland
Re: Phishing and BGP Blackholing
(All right then, scroll down for content :-)) It is not necessary to quote an entire message when you are only replying to one specific part of it. Minority? A mail client has been standard-ish for the last three to four years of upgrade iterations. There are a LOT of mobiles out there. Granted not many of them are used for e-mail, but that is a One could say that not many is a reasonable definition of a minority. So, yes, a MINORITY of users have need for special message formatting. Why should the other 999 million of us need to change the way we do things? Anyway, I wouldn't write a letter with nothing worth reading on the first page. I don't write articles with nothing in the first paragraph. Nor do I, but there is a well-established tradition in written English of the preamble. One could say that a brief quote to set the the context of a statement is perfectly good practice. Of course some people take it to excess like the ones who wrote this declaration a couple of hundred or so years ago: We, therefore, the Representatives of the United States of America, in General Congress, Assembled, appealing to the Supreme Judge of the world for the rectitude of our intentions, do, in the Name, and by Authority of the good People of these Colonies, solemnly publish and declare, That these United Colonies are, and of Right ought to be Free and Independent States, that they are Absolved from all Allegiance to the British Crown, and that all political connection between them and the State of Great Britain, is and ought to be totally dissolved; and that as Free and Independent States, they have full Power to levy War, conclude Peace contract Alliances, establish Commerce, and to do all other Acts and Things which Independent States may of right do. --Michael Dillon
Re: AS41961 not seen in many networks
Dnia czwartek 04 stycznia 2007 15:06, napisałeś: [EMAIL PROTECTED] (Sebastian Rusek) wrote: Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. To make it easier for everyone - could you provide hosts in each network that are pingable? now pingable addresses are: 194.60.78.254 194.60.204.254 194.153.114.254 They should be accessible via LambdaNET. Routes inside LambdaNET can be diffrent to each address. -- Sebastian Rusek, Phone: +48 71 3352352 AXIT Polska Sp. z o.o., ul. Ruska 51b, 50-079 Wrocław, Poland
Re: AS41961 not seen in many networks
now pingable addresses are: 194.60.78.254 194.60.204.254 194.153.114.254 They should be accessible via LambdaNET. Routes inside LambdaNET can be diffrent to each address. Everything looks fine from here (AS 2116), prefixes reachable and addresses pingable. Example traceroute below. Steinar Haug, Nethelp consulting, [EMAIL PROTECTED] traceroute to 194.60.78.254 (194.60.78.254), 64 hops max, 60 byte packets 1 nethelp-gw (195.1.209.46) 1.190 ms 1.139 ms 1.144 ms 2 gi1-0-634.ar4.o-d.no.catchbone.net (81.0.129.174) 5.982 ms 6.819 ms 6.617 ms 3 ge-0-2-3-15.cr1.osls.no.catchbone.net (193.75.3.165) 6.138 ms 5.709 ms 6.145 ms 4 c10G-ge-3-0-0.cr2.osls.no.catchbone.net (81.0.128.54) 5.824 ms 6.041 ms 5.841 ms 5 c2488-so-1-3-0.cr1.mejv.se.catchbone.net (193.75.3.239) 13.195 ms 13.066 ms 13.011 ms 6 ge-0-1-0.br1.stcy.se.catchbone.net (81.0.128.210) 13.321 ms 13.379 ms 19.719 ms 7 netnod-ge-a.sto-1-eth020-15.se.lambdanet.net (194.68.123.141) 13.021 ms 13.050 ms 13.328 ms 8 HAN-7-pos720-0.de.lambdanet.net (81.209.190.17) 34.421 ms 36.609 ms 34.856 ms 9 DUS-1-pos012.de.lambdanet.net (217.71.105.126) 39.065 ms 38.768 ms 38.776 ms 10 217.71.96.66 (217.71.96.66) 41.873 ms 41.597 ms 41.889 ms 11 FRA-2-pos600.de.lambdanet.net (217.71.96.102) 42.342 ms 42.251 ms 42.032 ms 12 194.60.78.254 (194.60.78.254) 42.655 ms 42.673 ms 42.662 ms
Re: AS41961 not seen in many networks
Sebastian Rusek wrote: Dnia czwartek 04 stycznia 2007 15:06, napisałeś: [EMAIL PROTECTED] (Sebastian Rusek) wrote: Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. To make it easier for everyone - could you provide hosts in each network that are pingable? now pingable addresses are: 194.60.78.254 194.60.204.254 194.153.114.254 They should be accessible via LambdaNET. Routes inside LambdaNET can be diffrent to each address. From one location, things die as soon as they hit ATT, another location things work perfectly. From AS29979 [EMAIL PROTECTED] jcheney $ traceroute 194.60.78.254 traceroute to 194.60.78.254 (194.60.78.254), 30 hops max, 38 byte packets 1 66.231.214.33 (66.231.214.33) 0.689 ms 0.703 ms 0.607 ms 2 208.252.22.1 (208.252.22.1) 7.160 ms 7.948 ms 7.620 ms 3 12.125.39.69 (12.125.39.69) 9.630 ms !H * 10.049 ms !H -- Josh Cheney [EMAIL PROTECTED] http://www.joshcheney.com
Re: AS41961 not seen in many networks
now pingable addresses are: 194.60.78.254 194.60.204.254 194.153.114.254 From one location, things die as soon as they hit ATT, another location things work perfectly. I have a couple of networks off ATT and I am not seeing these routes in my tables. I do see them off other networks, however. -Don
Re: AS41961 not seen in many networks
And aren't seen through gblx. I also think I can't see those prefixes through verizon. Gustavo. Marshall Eubanks wrote: They are seen here, through Cogent : * 194.60.78.0 38.101.161.1164001 0 174 13237 41961 i * 194.60.204.0 38.101.161.1164001 0 174 13237 41961 i * 194.153.114.038.101.161.1164001 0 174 13237 41961 i Regards Marshall On Jan 4, 2007, at 8:57 AM, Sebastian Rusek wrote: Hi, Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. Our ASN is is in AS block allocated by RIPE on 13 April 2006 then somebody can have it still in as-path ACLs. Could you please check your configuration or help us to isolate the problem? --Sebastian Rusek, Phone: +48 71 3352352 AXIT Polska Sp. z o.o., ul. Ruska 51b, 50-079 Wrocław, Poland
Re: AS41961 not seen in many networks
And aren't seen through gblx. I also think I can't see those prefixes through verizon. Also not seen via Telia (1299) or Level3 (3356). Steinar Haug, Nethelp consulting, [EMAIL PROTECTED]
Re: AS41961 not seen in many networks
Yes, I should have made that clear, not received through Level 3 at AS 16517. (But, Cogent has them.) On Jan 4, 2007, at 11:25 AM, [EMAIL PROTECTED] wrote: And aren't seen through gblx. I also think I can't see those prefixes through verizon. Also not seen via Telia (1299) or Level3 (3356). Steinar Haug, Nethelp consulting, [EMAIL PROTECTED] Regards Marshall
Re: AS41961 not seen in many networks
Sebastian Rusek wrote: Hi, Since November 2006 we announce our 3 new prefixes: [..] Could you please check your configuration or help us to isolate the problem? You could also check http://www.ris.ripe.net/ and use that tool to determine exactly which networks are not seeing you and then contact those operators to fix their setups. And for people not peering with RIS yet, PEER! (info at the url) Greets, Jeroen signature.asc Description: OpenPGP digital signature
Re: AS41961 not seen in many networks
Sebastian == Sebastian Rusek [EMAIL PROTECTED] writes: Sebastian Hi, Sebastian Since November 2006 we announce our 3 new prefixes: Sebastian 194.60.78.0/24 Sebastian 194.60.204.0/24 Sebastian 194.153.114.0/24 Sebastian from new AS41961. Sebastian It seems that somewhere our announcements are blocked Sebastian probably due to bogon lists. I don't think this is anything to do with bogons. I see those routes via Cogent and _only_ via Cogent - none of our other transit providers have them at all. I suspect a problem with your announcements themselves. -- Andrew, Supernews http://www.supernews.com
Re: AS41961 not seen in many networks
Not seeing any of the routes, or any routes from AS41961. UUNET, Sprint, and ATT connectivity. On Thu, January 4, 2007 05:57, Sebastian Rusek wrote: Hi, Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. Our ASN is is in AS block allocated by RIPE on 13 April 2006 then somebody can have it still in as-path ACLs. Could you please check your configuration or help us to isolate the problem? -- Sebastian Rusek, Phone: +48 71 3352352 AXIT Polska Sp. z o.o., ul. Ruska 51b, 50-079 WrocÅaw, Poland
Re: AS41961 not seen in many networks
Qwest appears not show it (traceroute dies at the first IP in their network) and Cogent and LambdaNET show a jump from 90ms to 170ms between their networks (in two different places depending on IP tracerouted) - but it does go through. -- Jeff Shultz
Re: Phishing and BGP Blackholing
On Thu, 4 Jan 2007, Pete Templin wrote: This place is full of people with opinions. Some like it hot, some like it not. We are never going to agree on top/inline/bottom posting. Why can't we all just get along and discuss operational issues? Let's throw preference out the window and speak to practicality for a minute. If you're reading nanog-l from a blackberry or mobile, and paying by the byte to do so, you're either an idiot or work for a company wealthy enough not to care (My opinion.) But, even blackberry users land at a laptop or workstation at some point. 9 times out of 10, nanog chatter isn't about life-and-death critical ops outages and the like, it's people having casual discussions. Most blackberry users are on-the-go types, running from meeting to meeting or site to site. The only reason I could see such a user reading nanog is because they're bored, have some downtime, or have a fervent need to look cool at Starbucks. Much like anything else, the world will not warp and bend to your preference. As a living organism, it's up to you to adapt to your environment. Just don't be like Randy and whiz in the pool because someone did something you didn't like and we'll all get along great. - billn
Re: Router and Infrastructure Hacking (CCC conference last week)
* [EMAIL PROTECTED] (Mattias Ahnberg) [Thu 04 Jan 2007, 12:31 CET]: Amar wrote: You forgot to mention that there was also IPv6 connectivity ;-) *grin* How many kilobit IPv6 traffic did we push, you know? :P 23C3 did a few hundred Mbps - check the slides Gadi posted a link to. (Data was based on sFlow samples, so it's based on statistics, but usually pretty accurate) -- Niels.
Re: AS41961 not seen in many networks
Not seen from ASN7046
Re: Router and Infrastructure Hacking (CCC conference last week)
On Wed, 3 Jan 2007, Gadi Evron wrote: Date: Wed, 3 Jan 2007 17:16:04 -0600 (CST) From: Gadi Evron [EMAIL PROTECTED] Subject: Router and Infrastructure Hacking (CCC conference last week) [ ... ] 4. I do wish the talk on how CCC set up their multiple-uplink GigE network for the conference was filmed, I call this type of create an ISP in 24 hours, in a very very hostile and busy environment such as at defcon or CCC extreme networking. For another form of extreme networking, you could check out what's built every year for the SC Conference: https://scinet.supercomp.org/ Given the huge list of sponsors, equipment usually isn't the problem, getting everything/one to play nice is another thing though ... ;) Diagram (1.5MB): http://scinet.supercomp.org/2006/SCinet_2006_Public.pdf Kind regards, JP Velders (disclaimer: bottom left hand corner of the banner ;D)
Re: AS41961 not seen in many networks
Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. you may want to use the views from route-views.org and ripe's ris project, as opposed to getting email from the very same folk who contribute to them :). looks to me as if the problem is very near you, perhaps even at your border. randy
Re: AS41961 not seen in many networks
not seeing any routes through Level3 or INAP On Jan 4, 2007, at 5:57 AM, Sebastian Rusek wrote: Hi, Since November 2006 we announce our 3 new prefixes: 194.60.78.0/24 194.60.204.0/24 194.153.114.0/24 from new AS41961. It seems that somewhere our announcements are blocked probably due to bogon lists. Our ASN is is in AS block allocated by RIPE on 13 April 2006 then somebody can have it still in as-path ACLs. Could you please check your configuration or help us to isolate the problem? -- Sebastian Rusek, Phone: +48 71 3352352 AXIT Polska Sp. z o.o., ul. Ruska 51b, 50-079 Wrocław, Poland
Re: AS41961 not seen in many networks
On Thu, 4 Jan 2007 [EMAIL PROTECTED] wrote: And aren't seen through gblx. I also think I can't see those prefixes through verizon. probably gustavo means verizonbusiness here, and probably vzb-US (as701), it's in 702 though. Also not seen via Telia (1299) or Level3 (3356). Steinar Haug, Nethelp consulting, [EMAIL PROTECTED]
Routing Loop Strangeness
Anyone else see this from their paths? vader# whois -h whois.cymru.com -v 11.11.11.2 AS | IP | BGP Prefix | CC | Registry | Allocated | AS Name NA | 11.11.11.2 | NA | US | arin | 1984-01-19 | NA #trace Protocol [ip]: Target IP address: 66.80.187.122 Source address: Numeric display [n]: y 1 68.250.30.166 0 msec 2 68.250.30.131 0 msec 3 66.73.28.129 4 msec 4 65.43.25.116 4 msec 5 151.164.93.93 12 msec 6 151.164.43.195 16 msec 7 151.164.42.168 52 msec 8 151.164.191.174 16 msec 9 151.164.42.141 16 msec 10 4.68.110.197 20 msec 11 4.68.101.1 20 msec 12 209.247.8.65 28 msec 13 209.247.9.254 44 msec 14 4.78.164.11 28 msec 15 169.130.98.227 188 msec 16 199.72.43.250 52 msec 17 11.11.11.2 40 msec 18 11.11.11.1 40 msec 19 11.11.11.2 44 msec 20 11.11.11.1 40 msec 21 11.11.11.2 44 msec 22 11.11.11.1 40 msec 23 11.11.11.2 48 msec 24 11.11.11.1 44 msec 25 11.11.11.2 44 msec 26 11.11.11.1 48 msec 27 11.11.11.2 48 msec 28 11.11.11.1 48 msec
Re: Routing Loop Strangeness
Elijah Savage wrote (on Thu, Jan 04, 2007 at 03:28:13PM -0500): Anyone else see this from their paths? vader# whois -h whois.cymru.com -v 11.11.11.2 AS | IP | BGP Prefix | CC | Registry | Allocated | AS Name NA | 11.11.11.2 | NA | US | arin | 1984-01-19 | NA #trace Protocol [ip]: Target IP address: 66.80.187.122 Source address: Numeric display [n]: y 17 11.11.11.2 40 msec 18 11.11.11.1 40 msec 19 11.11.11.2 44 msec 20 11.11.11.1 40 msec 21 11.11.11.2 44 msec 22 11.11.11.1 40 msec 23 11.11.11.2 48 msec 24 11.11.11.1 44 msec 25 11.11.11.2 44 msec 26 11.11.11.1 48 msec 27 11.11.11.2 48 msec 28 11.11.11.1 48 msec Yep. Way cool. -- _ Nachman Yaakov Ziskind, FSPA, LLM [EMAIL PROTECTED] Attorney and Counselor-at-Law http://ziskind.us Economic Group Pension Services http://egps.com Actuaries and Employee Benefit Consultants
Re: Routing Loop Strangeness
On Thu, 4 Jan 2007, Nachman Yaakov Ziskind wrote: 25 11.11.11.2 44 msec 26 11.11.11.1 48 msec 27 11.11.11.2 48 msec 28 11.11.11.1 48 msec Yep. Way cool. Unfortunately it's not the first time that: 1) someone with enable screwed up a routing design or did something dumb like dueling static routes, or some similar kind of rubbish. 2) someone with enable (or someone who manages peple with enable) co-opted arbitrary non-1918 IP space for use on their internal network. Calling it RFC1919 space would almost be funny if it weren't such a pain the butt to deal with people who do things like this. jms
Re: Phishing and BGP Blackholing
Somewhere in the following confused ramble may actually be the only cogent argument for top-posting I've seen. On Thu, Jan 04, 2007 at 09:52:29AM +, Alexander Harrowell wrote: For those of us who read nanog from a mobile device, it's incredibly annoying to have no content in the first few bytes - a lot of mobile e-mail clients (all MS Windows Mobile 5 devices and every Blackberry I've seen) pull the first 0.5KB of each message, i.e. the header, subject line and the first few lines of text, so the user can decide which ones are worth reading in full. Intention is to save bandwidth on low-speed, noncertain networks (GPRS, 1xRTT) which also tend to be metered per-bit - spending actual money to read something like the following is always a great way to start the day. NANOG User wrote: . . Steve wrote: . . Another User temporarily inconvenienced several million electrons to lucubrate anent following philosophy, and how clever silly synonyms for said are: Someone's PGP Key Someone's Smartass Sig -- Joe Yao --- This message is not an official statement of OSIS Center policies.
Re: Phishing and BGP Blackholing
On Thu, Jan 04, 2007 at 02:14:43PM +, [EMAIL PROTECTED] wrote: ... Anyway, I wouldn't write a letter with nothing worth reading on the first page. I don't write articles with nothing in the first paragraph. Nor do I, but there is a well-established tradition in written English of the preamble. One could say that a brief quote to set the the context of a statement is perfectly good practice. Of course some people take it to excess like the ones who wrote this declaration a couple of hundred or so years ago: ... I'm not sure it's fair to say they took it to excess. All those words mean something, bunkie. Probably each one had a proponent who would not have signed had not that word been in there, to give just that shade of meaning to the document. It was not written at random, unlike some messages seen on the great public Internet. ;-) [Present company excepted, of course.] Much as we may snicker at the legal verbiage in some documents, many of those words are there to close some loophole or another. [The rest are just there for us to snicker at.] -- Joe Yao --- This message is not an official statement of OSIS Center policies.
RIS [Re: AS41961 not seen in many networks]
On Thu, 4 Jan 2007, Jeroen Massar wrote: You could also check http://www.ris.ripe.net/ and use that tool to determine exactly which networks are not seeing you and then contact those operators to fix their setups. And for people not peering with RIS yet, PEER! (info at the url) Well, the undocumented fact is that RIS does not accept multi-hop BGP peerings, which may somewhat limit its coverage. -- Pekka Savola You each name yourselves king, yet the Netcore Oykingdom bleeds. Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
Re: Router and Infrastructure Hacking (CCC conference last week)
On Thu, 4 Jan 2007, Amar wrote: Mattias Ahnberg wrote: We've been given a /16 each time so each visitor has had a fully public IP, and the bandwidth has been provided by Telia the last couple of years. On the hardware side we've both built it all with Extreme Networks equipment and Cisco (and a mix of both). You forgot to mention that there was also IPv6 connectivity ;-) hehehe. :) I am definitely coming to the next dreamhack, than, if anybody there speaks English. Speaking of IPv4, an interesting thing from the CCC presentation was that the IPV6 space used equaled (if I got this right) the entire EU IPv6 normal use. -- amar
Re: Router and Infrastructure Hacking (CCC conference last week)
On Fri, 5 Jan 2007, Gadi Evron wrote: Speaking of IPv4, an interesting thing from the CCC presentation was that the IPV6 space used equaled (if I got this right) the entire EU IPv6 normal use. Would this be that the 100-150 megabit/s of IPv6 used at 23C3 equaled the 100-150 megabit/s of IPv6 used at AMS-IX? I think it was also mentioned that this was because some major news providers used IPv6 for their NNTP sessions. But yes, I was surprised at the amount of IPv6 used at 23C3, wonder if it was because local services was IPv6 enabled. There was no distinction between internal IPv6 traffic and external IPv6 traffic so I don't know. -- Mikael Abrahamssonemail: [EMAIL PROTECTED]
Re: Router and Infrastructure Hacking (CCC conference last week)
On Thu, 4 Jan 2007, JP Velders wrote: defcon or CCC extreme networking. For another form of extreme networking, you could check out what's I stole the name from the programming world with extreme coding. I somehow feel it fits. built every year for the SC Conference: https://scinet.supercomp.org/ Given the huge list of sponsors, equipment usually isn't the problem, getting everything/one to play nice is another thing though ... ;) Diagram (1.5MB): http://scinet.supercomp.org/2006/SCinet_2006_Public.pdf Very cool, but somehow doesn't feel as hostile. heh :P :) Kind regards, JP Velders (disclaimer: bottom left hand corner of the banner ;D)
