Re: Do ISP's collect and analyze traffic of users?
On Mon, May 15, 2023 at 6:42 PM Dave Phelps wrote: > I think it's safe to assume they are selling such data. > > > https://www.techdirt.com/2021/08/25/isps-give-netflow-data-to-third-parties-who-sell-it-without-user-awareness-consent/ > > > https://www.vice.com/en/article/dy3z9a/fbi-bought-netflow-data-team-cymru-contract > >From the second article: "Team Cymru’s products can also include data such as URLs visited, cookies, and PCAP data" Really? From Netflow? I admit, I'm perhaps a little behind on the latest netflow whiz-bangs, but I've never seen a netflow record type that included HTTP cookies or PCAP data before. Certainly, the products listed on the Team Cymru website don't make any mention of including cookies or PCAP data, at least not from what I've been able to ascertain from digging through their product listing. Is there some secret "off the menu" product that allows one to purchase a data feed that includes cookies and PCAP data? Matt
Re: G root servers unreachable via ICMP(v6)
On Mon, May 15, 2023 at 8:38 PM Willy Manga wrote: > Side question: even if it was by design, is it a good practice to > completely restrict ICMP(v6)? Answering only your side question: there's a difference between completely restricting ICMPv6 and restricting echo-request. Restricting echo-request is more or less harmless. You deny troubleshooters insight into your system, but that's a wash because you deny hackers the same thing. And if you're popular enough to be a target for "am I connected to the Internet right now" probes and don't want to be, restricting it is not the worst idea. Restricting all ICMPv6 is disastrous. Similar to IPv4, machines running IPv6 require ICMPv6 packet-too-big messages to successfully implement path MTU discovery. Without them, many protocols do not work reliably. This includes TCP. Regards, Bill Herrin -- William Herrin b...@herrin.us https://bill.herrin.us/
G root servers unreachable via ICMP(v6)
Hi, DNS speaking, I can query G root servers; at least, that's the most important. However, from several sites, either on IPv4 or IPv6, I cannot ping(6) them. Is it by design, or it's an issue? Side question: even if it was by design, is it a good practice to completely restrict ICMP(v6)? Thanks. P.S: I sent the same email to dns-operati...@lists.dns-oarc.net since 12 May 2023 but it's still in moderation.. If one admin is around .. :) -- Willy Manga @ongolaboy https://ongola.blogspot.com/ OpenPGP_signature Description: OpenPGP digital signature
Re: Do ISP's collect and analyze traffic of users?
I think it's safe to assume they are selling such data. https://www.techdirt.com/2021/08/25/isps-give-netflow-data-to-third-parties-who-sell-it-without-user-awareness-consent/ https://www.vice.com/en/article/dy3z9a/fbi-bought-netflow-data-team-cymru-contract On Mon, May 15, 2023 at 6:01 PM Michael Thomas wrote: > > And maybe try to monetize it? I'm pretty sure that they can be compelled > to do that, but do they do it for their own reasons too? Or is this way > too much overhead to be doing en mass? (I vaguely recall that netflow, > for example, can make routers unhappy if there is too much "flow"). > > Obviously this is likely to depend on local laws but since this is NANOG > we can limit it to here. > > Mike > >
Do ISP's collect and analyze traffic of users?
And maybe try to monetize it? I'm pretty sure that they can be compelled to do that, but do they do it for their own reasons too? Or is this way too much overhead to be doing en mass? (I vaguely recall that netflow, for example, can make routers unhappy if there is too much "flow"). Obviously this is likely to depend on local laws but since this is NANOG we can limit it to here. Mike
Re: Routed optical networks
> On May 13, 2023, at 4:03 AM, Mark Tinka wrote: > > > > On 5/12/23 22:14, Mike Hammett wrote: > >> "I remember 10y ago every presentation started from the claim that 100B of >> IoT would drive XXX traffic. It did not happen" >> >> Often the type of people making these kinds of predictions that a tire >> pressure sensor generates 20 gigabytes of traffic a day. > > I like growing old... your BS detector becomes so slick, you know to ignore > certain links, conferences, speakers, topics, meetings, slideware, e-mails, > colleagues and announcements without fear of actually missing out on trends, > because you know that in the end it will lead to nowhere real :-). As a security guy. The end of year “prediction for next year” papers are wearing me out. As an author of several of the big ones, I’m over it too
Spectrum/Charter business (cable) contact
I’m having zero luck getting an issue with Charter/Spectrum escalated and I’m hoping to find a sympathetic ear that can contact me off-list. Thanks, Daniel signature.asc Description: Message signed with OpenPGP