Re: Advisory — D-root is changing its IPv4 address on the 3rd of January.
On 12/14/2012 9:50 PM, bmann...@vacation.karoshi.com wrote: On Fri, Dec 14, 2012 at 08:48:07PM -0800, David Conrad wrote: On Dec 14, 2012, at 11:02 AM, Joe Ableyjab...@hopcount.ca wrote: Other root servers have renumbered out of institutional, general-purpose networks into dedicated networks in the past. I think the last one was B-Root in 2004, Actually, it was L in 2007... :) SOME people have very long memories. Actually, I have an excellent memory also. The one thing I do NOT remember is this much Sturm und Drang over any of the past changes. I believe that the first few changes were actually painful (they were for me), but really, everything has gone along just fine and dandy until now. I gently point out the following resource (which I'm sure nearly everyone here already knew about): http://www.zakon.org/robert/internet/timeline/ DNS first reared its head in 1984. For the very longest time I even kept my copy of hints updated by hand, leaving notes as to the old IP, so that I'd notice if anything from my end was trying to reach an old IP (the amount of stupidity hard coded in was just as bad then as now). I downloaded one of the last hosts.txt files, in 1992, out of sentiment. It still makes me nostalgic to look at it. Is it just me? I do not remember L or previous entries garnering this much attention, and it seems there was actually a bit less time between announcement of the change, and my ::face::palm:: when I saw log entries, and realized I was lazy. I have no idea when the IP was turned off, since it wouldn't have *mattered* to me. I do remember quite a bit of discussion here and there when the first ones were changing, but it was local discussion, when my world was a bit more narrow and focused. I did actually look (although not very hard) for an actual history of the original hosts, and the migrations from legacy IPs and legacy names into the less colorful format of *.root-servers.net that we know and love today. For those of you still worried, I promise it will all be okay. I promise. -- Put a smile on it, even if you don't feel like it. Try building something up, instead of tearing it down. Santa believes in you, even if you don't believe in him.
Re: The Department of Work and Pensions, UK has an entire /8
On 9/19/2012 10:52 AM, joel jaeggli wrote: On 9/19/12 10:42 AM, Jo Rhett wrote: And second, have you ever worked on a private intranet that wasn't connected to the internet through a firewall? Skipping oob networks for equipment management, neither have I. Plenty of people on this list have worked on private internet(s) with real AS numbers, public IP space and no direct internet connectivity. *cough* 33/8 *cough* (among others) Can we now let this die a well-deserved death? Pretty please? -- You may want to read RFC 1796, and then retract what you said because it sounds silly. Nick Hilliard (http://tools.ietf.org/rfc/rfc1796.txt)
Re: Big Temporary Networks
On 9/13/2012 7:29 AM, Jay Ashworth wrote: I know without a doubt that this is a problem NANOG PCs deal with 3 times a year; is there any collected wisdom on the web already about how this has been dealt with, that I can pore over? Pointers to good archive threads? I'm surprised (well, perhaps I'm not) that no one's chimed in about the defcon network, and the effort they go to each year. Here's some basic information: http://www.defconnetworking.org/ Defcon is often described as the world's most hostile network, and it does have some interesting problems, including extra efforts to keep the wireless side up, and useful. Considering the foolishness that goes on in the background, it's very stable. I do wish that they had more immediately useful information in that site up above, but it's still got some interesting data points. -- You may want to read RFC 1796, and then retract what you said because it sounds silly. Nick Hilliard (http://tools.ietf.org/rfc/rfc1796.txt)
Calling Geoff Huston (was Re: The REAL Cidr Report)
I changed the subject header on this since I'm quite sure most folks ignored it due to the problem emails. Not only was this one off (and late by a few hours), but I never saw a sign that the BGP report was even sent (and it's not in the archives, either). On 7/13/2012 10:52 PM, Patrick W. Gilmore wrote: Composed on a virtual keyboard, please forgive typos. On Jul 13, 2012, at 22:00, cidr-rep...@potaroo.net wrote: This report has been generated at Fri Jul 13 21:10:00 2012 AEST. The report analyses the BGP Routing Table of AS2.0 router and generates a report on aggregation potential within the table. Check http://www.cidr-report.org for a current version of this report. Recent Table History Date PrefixesCIDR Agg 06-07-12418603 242444 07-07-12418670 242326 08-07-12418651 242260 09-07-12417976 242235 10-07-12418251 242235 11-07-12 0 242235 12-07-12 0 242235 13-07-12 0 242235 Ahhh, oops? Geoff, might want to check your scripts. Yep. BCC to Geoff, also, just in case. -- Politicians are like a Slinky. They're really not good for anything, but they still bring a smile to your face when you push them down a flight of stairs.
Re: The Cidr Report
On 7/13/2012 10:46 AM, Grant Ridder wrote: if the admins are not going to moderate this list... give me the admin password to the list serve and i will set it up right. These emails seem to be originating from comcast (75.144.246.6). Please note I said seem to be since it's very easy to forge such things. I was quite sad when yahoo started dispensing *new* accounts from Rocketmail (a property they acquired in the long ago times), since I have a rocketmail account that long predates yahoo, or the acquisition. Still, there needs to be a filter of some sort set up. Mailman permits this, and I'd be a fan of it. It seems to be generated by someone who has the serious hate on for the list. That actually narrows it down quite a bit. Maybe I'll do a bit of traffic analysis over the weekend. Or not... -- Politicians are like a Slinky. They're really not good for anything, but they still bring a smile to your face when you push them down a flight of stairs.
Re: FYI Netflix is down
On 6/30/2012 12:11 AM, Tyler Haske wrote: On 6/29/2012 11:07 PM, Roy wrote: I am not a computer science guy but been around a long time. Data centers and clouds are like software. Once they reach a certain size, its impossible to keep the bugs out. You can test and test your heart out and something will slip by. You can say the same thing about nuclear reactors, Apollo moon missions, the NorthEast power grid, and most other technology disasters. How to run a datacenter 101. Have more then one location, preferably far apart. It being Amazon I would expect more. :/ First off. They HAVE more than one location, and they are indeed far apart. That said, it's all mixed together, like some kind of goulash, and the companies who've gone with this particular model for their sites are paying for that fact. Second, and more important. I *was* a computer science guy in a past life, and this is nonsense. You can have astonishingly large software projects that just continue to run smoothly, day in, day out, and they don't hit the news, because they don't break. There are data centers that don't hit the news, in precisely the same way. If I had a business, right now, I would not have chosen Amazon's cloud (or anyone's for that matter). I would also not be using Google docs/services, for precisely the same reason. I'm a fan of controlling risk, where possible, and I'd say that this is all in the wrong direction for doing that. No worries, though. It seems we are doomed to continue making the same mistakes, over and over. -- Politicians are like a Slinky. They're really not good for anything, but they still bring a smile to your face when you push them down a flight of stairs.
Re: very confusing.
On 6/13/2012 3:05 PM, Randy Bush wrote: NANOG, i strongly desire to restrain this slimeball idiot's trade. please tell me if you have any ideas on how to do so. I have plenty of ideas. Unfortunately, I am not permitted to do those things. I promise it would not be painful, though. I'm not cruel, just methodical. Be advised that Im following your posts and have your threating messages to me. If there is an ddos or restraint of trade due to my ACCIDENTAL email I'll escalate to commerce and FBI. LOL. you are not only a slimeball (who the ietf and nanog admins are scraping out), but an idiot. but do please tell me how i can restrain your trade. would love to discuss your spam with the DoC and FBI. Of the many, many subscribers here on the list, I gently point out to the moh-ron in question that there are any number of current and former members of various federal agencies *also* following the list. Oh, dearest slimeball, be careful what you wish for. Not said in jest. What the heck, at least it isn't yet another interminable discussion of ebay and amazon spam. -- Start wearing purple wearing purple Start wearing purple for me now All your sanity and wits they will all vanish I promise, it's just a matter of time...
Re: CVV numbers
On 6/9/2012 12:06 AM, Hal Murray wrote: In response to my comment about: If I'm not supposed to not tell anyone, why is it even printed where I can read it? (Sorry for the extra not in there.) The CVV number is simply to prove that the card is in your possession. The percentage of the sale that goes to Amex/Visa/Mastercard/Discover (etc) is determined by whether the merchant can supply various items, and the CVV is one of them. Running the card physically (where the merchant touches your card, and presumably verifies that you are you) gets taxed the lowest. The CVV is just meant to replace that verification. Sort of. I disapprove *strongly* of any online merchant that does not request this simple item, but it's not magic. I got an off list suggestion of: http://www.cvvnumber.com/ It looks reasonable. But then, whois for cvvnumber.com says: Registrant: Domains By Proxy, LLC Should I really take them seriously? No. No you should not. Here's the canonical Wikipedia entry, for those still playing along. http://en.wikipedia.org/wiki/Luhn_algorithm There's a few more grown-up words there. The best part is that it's a public algorithm. What's not to like? -- A picture is worth 10K words -- but only those to describe the picture. Hardly any sets of 10K words can be adequately described with pictures.
Re: LinkedIn password database compromised
On 6/7/2012 8:58 AM, Jared Mauch wrote: On Jun 7, 2012, at 2:14 AM, Aaron C. de Bruyn wrote: Imaging signing up for a site by putting in your email and pasting your public key. I'm imagining my mother trying this, or trying to help her change it after the hard drive dies and the media in the safe deposit box doesn't read anymore. There are other issues than not being familiar with technology, and they specifically affect those of us who have grown older, and lost certain dexterity that used to be innate. There are passwords and pass phrases I used to have committed to muscle memory. I never even had to think about them. I've had to spend literally hours trying to type in a PGP pass phrase that used to be something I could type without thinking. There is no one size fits all solution to this. I'm still very annoyed with a company that has only now moved to a password solution that should have been in place in 2005. I still don't want single sign on. Not anywhere. I've been around for a very long time, and I'm fine with technical complexity for me, but do not expect the standard 16 year old text messaging addict to be able to handle some of the solutions I've seen suggested, much less most people my age. Things are so complex now that people on nanog-l forget the average level of expertise among their peer groups is simply not replicated in the outside world. Jokes about needing a teenager to reprogram your VCR are a thing of the past. I used to be in the business of forecasting the future (among other things), and any security solution that is more difficult than knowing not to use the same password for your bank that you do for Facebook is doomed to fail. {P.S. Ditto on thanks for backup DNS.} -- A picture is worth 10K words -- but only those to describe the picture. Hardly any sets of 10K words can be adequately described with pictures.
LinkedIn password database compromised
Sorry to be the bearer of such bad tidings. Please note that I'm doing a quick copy/paste from a notification I received. I've edited it a bit. Please note that LinkedIn has weighed in with a carefully worded blog post: http://blog.linkedin.com/2012/06/06/linkedin-member-passwords-compromised/ Further details: 1. The leak took place on June 4 2. LinkedIn was using unsalted SHA-1 for their password store. 3. FYI, there are two lists. The second one appears to be from eHarmony. Unsalted MD5 used there. 4. The posted passwords are believed to be ones the cracker wanted help with, i.e., they have significantly more already cracked. Apparently phishing emails are already active in the wild based on the crack: http://bits.blogs.nytimes.com/2012/06/06/that-was-fast-criminals-exploit-linkedin-breach-for-phishing-attacks/ In other words, if you have a LinkedIn account, expect that the password has been stolen. Go change your password now. If you used that password elsewhere, you know the routine. In addition, as has been pointed out elsewhere, there's no sign LI has fixed the problem. Expect that the password you change it to will also be compromised. :-( -- A picture is worth 10K words -- but only those to describe the picture. Hardly any sets of 10K words can be adequately described with pictures.
Re: Vixie warns: DNS Changer ‘blackouts’ inevitable
On 5/23/2012 6:35 PM, Brett Watson wrote: On May 23, 2012, at 18:27, George Herbertgeorge.herb...@gmail.com wrote: Please don't make me remember hosts.txt before I've had a chance to wrap up work, go home, and get some Scotch in... Come on George, hosts.txt was the good old days :) I still have a copy (from around 1992, so one of the very last), although much edited (and NOT 10,000 hosts, thanks). -- A picture is worth 10K words -- but only those to describe the picture. Hardly any sets of 10K words can be adequately described with pictures.
[Nanog-futures] NANOG Wiki taken over by outsiders (Yes, I already sent an email to Richard)
I received a notification timestamped last night (3/27/2012 11:30PM), that said the main page of the NANOG Wiki had been changed by Snowing and since that didn't sound like anyone on NANOG, I looked. It's now devoted to advertisements. Luckily there are no drive by links, but I suppose that's next. Sorry to be the bearer of bad tidings. I sent an email earlier to ras@e-gerbil, and am now widening the scope of notification. Perhaps someone else here has the ability to fix it, or at least to back out the changes. The specific Subject line in the email was NANOG page Talk:Main Page has been changed by Snowing -- It isn't just me. http://blogs.msdn.com/b/jw_on_tech/archive/2012/03/13/why-i-left-google.aspx ___ Nanog-futures mailing list Nanog-futures@nanog.org https://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: [Nanog-futures] NANOG Wiki taken over by outsiders (Yes, I already sent an email to Richard)
On 3/28/2012 8:24 AM, Joe Provo wrote: It has been this way for ages. Auto account creation was spamifying it into uselessless since at least 2009. After unspamming and reporting a couple times and the contact address I used for contributing getting placed on loads of spammer lists, I just presumed it was another dead project. Given that there was no collective management, common content sandards, or structure it was kinda stumbling anyway. Guess they just finally hit a page I'd edited. Too bad, really. This particular email address already receives so much spam (mostly trapped on the server, thank goodness) that I wouldn't notice any change in the levels. I suppose it would be wise for me to remove my account from there. Thanks very much for the update. It certainly shows that I hadn't paid it much attention, if it's been happening since 2009. Still sad, though. -- It isn't just me. http://blogs.msdn.com/b/jw_on_tech/archive/2012/03/13/why-i-left-google.aspx ___ Nanog-futures mailing list Nanog-futures@nanog.org https://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: Quad-A records in Network Solutions ?
On 3/28/2012 10:59 AM, JORDI PALET MARTINEZ wrote: And they need to do anyway, if they want to keep the contract: http://www.ipv6tf.org/index.php?page=news/newsroomid=8494 This really points out one of the biggest impediments to moving to IPv6. I just briefly looked at the list of registrars that are able to create glue records for any domain I might have that I wanted to exist in IPv6, and it's a very limited list. I'm currently using Pairnic, and I am happy with them, mostly, but moving to IPv6 is painful. To quote: We don't have a customer interface for IPv6 glue records on name servers. However, we can manually set them up if you can send us the information for the records. That's probably okay for me, but it's really not conducive to any large scale operation. It needs to be run-of-the-mill, and not esoteric, to move it forward. -- It isn't just me. http://blogs.msdn.com/b/jw_on_tech/archive/2012/03/13/why-i-left-google.aspx
Re: Quad-A records in Network Solutions ?
On 3/28/2012 11:51 AM, Chris Adams wrote: Once upon a time, Lyndashr...@deaddrop.org said: This really points out one of the biggest impediments to moving to IPv6. I just briefly looked at the list of registrars that are able to create glue records for any domain I might have that I wanted to exist in IPv6, and it's a very limited list. I'm currently using Pairnic, and I am happy with them, mostly, but moving to IPv6 is painful. The same problem exists for DNSSEC; the number of registrars that support both IPv6 glue and DNSSEC in their standard interfaces is unfortunately small. True story, although Pairnic makes that one easy. I just wish they'd put up an automated interface for IPv6, but I'm happy they support it, at least. My favorite place to look for support for both is here: http://www.sixxs.net/faq/dns/?faq=ipv6glue No surprise to either of us that the column for DNSSEC is filled with yellow. :-( -- It isn't just me. http://blogs.msdn.com/b/jw_on_tech/archive/2012/03/13/why-i-left-google.aspx
Re: DC wiring standards
On 1/26/2012 9:24 AM, valdis.kletni...@vt.edu wrote: On Thu, 26 Jan 2012 12:07:19 EST, Lamar Owen said: What's interesting here is that this is the third book I've seen on Amazon where the used price is higher than the new; Off-topic, but this usually happens when the book has a new price listed, but is in fact unavailable/out-of-print. So it would be $34.95 if there were new copies to be had This is correct. I collect certain old books. For a real shocker, take a look at this slim volume on quantitative analysis and the stock market. http://www.amazon.com/Beat-Market-Scientific-Stock-System/dp/0394424395/ref=sr_1_3?s=booksie=UTF8qid=1327599598sr=1-3 The used copies range from a few hundred to a significant amount, and the collectible ones (including a signed first edition) top out at $2,495.00 (anyone who likes is welcome to purchase that signed first edition and send it to me as a gift). I really wish they would just reissue the book. I'd buy it. It doesn't even need updating (I'd prefer that it wasn't). It could be a celebration of the 35th year since its publication. Sometimes a paper book is better (the wiring book is another excellent example). -- Gambling is tax for people that can't do math. Agent X
Re: Slighty OT: GoDaddy and SPF records...
On 1/17/2012 11:59 AM, Mike Lyon wrote: Was curious to see if anyone on the list has ever been successful with setting up SPF records on their domains that are hosted on GD nameservers... It appears they only let you configure TXT spf records, not actual SPF records. Let me quickly reiterate what Anurag Bhatia has already told you. TXT records are what you need. I went through a LOT of completely unnecessary suffering, and discovered that while you CAN create an SPF record, what you really need is a TXT record that performs this service. Save yourself some suffering, and don't even bother with the SPF record (this is for those of you who are just now considering making such a thing). GoDaddy (for once) has saved you some sadness, here. -- Those proud of keeping an orderly desk never know the thrill of finding something they thought they had irretrievably lost.
Re: [Nanog-futures] Welcome to the Marketing mailing list
Normally, I wouldn't top post, but this one has me stumped. It's *damned* early for me, and I don't yet have the human qualities I might, later in the morning, but I'm pretty sure I didn't sign up for this, and would be absolutely *fascinated* to hear what it was all about (including the possibility that the server is compromised, or the folks *managing* the server have been compromised). I might also point out that, if this is legitimate, it's generally seen as polite to *ASK* before dragging someone out on the dance floor. On 11/17/2011 7:17 AM, marketing-requ...@nanog.org wrote: Welcome to the market...@nanog.org mailing list! To post to this list, send your message to: market...@nanog.org General information about the mailing list is at: https://mailman.nanog.org/mailman/listinfo/marketing If you ever want to unsubscribe or change your options (eg, switch to or from digest mode, change your password, etc.), visit your subscription page at: https://mailman.nanog.org/mailman/options/marketing/shrdlu%40deaddrop.org You can also make such adjustments via email by sending a message to: marketing-requ...@nanog.org with the word `help' in the subject or body (don't include the quotes), and you will get back a message with instructions. You must know your password to change your options (including changing the password, itself) or to unsubscribe without confirmation. It is: [removed] Normally, Mailman will remind you of your nanog.org mailing list passwords once every month, although you can disable this if you prefer. This reminder will also include instructions on how to unsubscribe or change your account options. There is also a button on your options page that will email your current password to you. -- You've confused equality of opportunity for equality of outcomes, and have seriously confused justice with equality. (Woodchuck) ___ Nanog-futures mailing list Nanog-futures@nanog.org https://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: Fwd: Welcome to the Marketing mailing list
On 11/17/2011 9:35 AM, Owen DeLong wrote: Um, Can someone explain this one to me? 1. Why was such a list created? 2. Why was I automatically subscribed to it? 3. Why was this done without notice to the community? Before this erupts in yet another thread, this was already asked (and answered) on Futures. Betty had an oops moment this morning, and has since repaired it. Followups to Futures. -- You've confused equality of opportunity for equality of outcomes, and have seriously confused justice with equality. (Woodchuck)
Re: [routing-wg] BGP Update Report
On 10/15/2011 4:26 AM, Geoff Huston wrote: While I am at it, does anyone read this report, or is this weekly report also just part of the spam load on this list? I read both of them, and also the Weekly Routing Report. I will regret the loss, and consider all three to be far more valuable than 90% of the traffic on the list. -- Last week we lost a giant in the world of computing. Last weekend we lost the giant on whose shoulders he stood. Rest in peace, friend. (Tim Pierce, on the deaths of Dennis Ritchie and Steve Jobs)
Re: Please change Mailman back to NOT force the rewrite for Reply-to
On 10/15/2011 3:23 PM, Jay Ashworth wrote: - Original Message - From: Lyndashr...@deaddrop.org I see that someone has instructed Mailman to munge the reply-to. Please don't do that. I was about to make a *private* reply to someone, and realized that the setting had changed, and that I was trapped into replying to the list. It's you, Lynda. Really. :-) Well, *now* I know it's not mailman, but it's not me, either. Not exactly. What I noticed was that *some* of the email to Nanog, today, had this set, but not all. I was very confused (it's not the first time I've been confused, of course). Your message, frex, did not have reply-to munged; I had to do it by hand (since Zimbra 6 is still too stupid; I've had that bug open for over 2 years now; maybe 7 fixes it). One reply to you did, but the rest did not. Yeah, Mr Peach set an evil trap for me. I'd been about to send him a private email (on something of absolutely no importance), and when I realized it went back to Nanog, was puzzled enough to check to see whether it had been changed. Cleverly, I tested replies to a couple of other emails, and as luck would have it, one was my own (and tbird has a stupid habit of knowing that if it's a mailing list, I surely meant to send it to the list), and the other two were both to Mr Peach. Sorry for noise. Back to making sure Geoff H believes us, and keeps right on sending the reports. -- Last week we lost a giant in the world of computing. Last weekend we lost the giant on whose shoulders he stood. Rest in peace, friend. (Tim Pierce, on the deaths of Dennis Ritchie and Steve Jobs)
Re: RIP dmr
I started with UNIX back when it arrived at school, on reel to reel tapes, and it was loaded on to the PDP 11/45. I learned to write C from the original KR (which I still have, of course). Dennis was one of the good ones. A kind and generous person, who changed all our worlds. Rest In Peace
Re: Internet mauled by bears
On 9/22/2011 8:31 AM, Jason Baugher wrote: On 9/22/2011 9:58 AM, JC Dill wrote: [re: horses] Other livestock aren't as likely to cause fatal injuries to car occupants if they are hit, because the animal's body is lower to the road, less likely to come over the hood. That's interesting to know. It's also interesting to note that other animals, with the possible exception of sheep, will not run through an electric fence once they know that it is there. Sheep do it intentionally. Domesticated sheep are born with vague intelligence, but this is gone by the time they are adults. There can be no speaking of intention, because they are incapable. A lamb bounces around, playful and amusing, and if it sees a fence, it *stops* short of the fence. Sheep will run straight into the fence, and snap their necks, if at the front of a herd. Been there. Seen it. Sheep are stupid. Really. -- ...most of us have as our claim to fame the ability to talk to inanimate objects and convince them they want to listen to us. Valdis Kletnieks
Re: How to begin making my own ISP?
On 9/16/2011 2:43 PM, Michael Painter wrote: hass...@hushmail.com wrote: @ Everyone else: thank you for the useful information. I didn't mean to come off as being bratty with my competition notation, it was meant as a bump to the posting and not an insult at anyone. Oldie but goodie: http://www.amazon.com/gp/product/0471314994/ref=olp_product_details?ie=UTF8me=seller= Whoa. How strange. I actually *own* that book...but then, I'm old, and crotchety, and know what ISIS is (yes, I love saying that). That said, one oh-so-brief word of advice to Mr Hushmail, and it's accurate, from YEARS of experience, and will hopefully be taken seriously. First step, before you follow any of the others, is to make a business model. Second is to find a venture capitalist group, and convince them that you have your ducks in a row, and plan to make them (and yourself) rich. Otherwise, don't give up your day job. Not being remotely cruel, here (and I could be, and I'm good at it). If you aren't spending someone else's money, you need to have plenty of your own, and I'd bet you don't. I suspect you would be shocked at the amount of money a startup similar to what you're proposing would take. Here's a clue; the number will have at least 7 digits (US Dollars). It's always about money. So it goes. -- Democratic nations must try to find ways to starve the terrorist and the hijacker of the oxygen of publicity on which they depend. Margaret Thatcher
Re: Cisco Ironport and Senderbase...how to get delisted?
On 8/17/2011 10:57 AM, u...@3.am wrote: However, Senderbase, apparently used in Cisco's Ironport, will let you look up your IP and tell you that your reputation is poor, but offers no way to get delisted. It refers you to Spamcop, which I imagine they rely on for listings, but not delistings. I mean this in the kindest way, and hope I am not suggesting something you've already tried, but I sent email with an explanation to supp...@senderbase.org and had success in removing an IP address for a mailing list that I manage. It got listed when we switched servers, because it went from zero emails to 800-900... It took about 24 hours to get it straightened out. Hope that helps. -- The Consultant's Curse: When the customer has beaten up on you long enough, give him what he asks for, instead of what he needs. This is very strong medicine, and is normally only required once.
Re: Verizon Business - LTE?
On 8/16/2011 10:25 AM, Christopher Morrow wrote: On Tue, Aug 16, 2011 at 1:15 PM, Cameron Byrnecb.li...@gmail.com wrote: Really, any phone you buy free and clear without subsidy and contract should work fine as a phone with a prepaid sim coughexcept for the fact that mobile carriers CAN do these monkey business moves/cough (note that tmo seems to NOT do these things, at least in my experience so far, limited though it may be) You are correct in this belief (about T Mobile). This is yet another reason to protest to your congress critters about the impending acquisition of them by ATT. My daughter still uses her Android to tether when she needs to, and I'm pretty sure they and US Cellular are the only ones left that allow it. -- The Consultant's Curse: When the customer has beaten up on you long enough, give him what he asks for, instead of what he needs. This is very strong medicine, and is normally only required once.
Re: NANOG Move - Moved back
On 7/12/2011 6:59 AM, Michael K. Smith - Adhost wrote: Hello All: We're back on the old configuration for now. I will send an update later this afternoon once I speak with AMS about the issues we experienced over night. Please explain WHY we can't just stay on Mailman? I know you explained it privately to me already, but none of those reasons are seeming very good right now. Mailman was working, just fine. You are making me very sad, and I haven't had enough coffee to be polite. -- Requiescat in Pacem, Len http://en.wikipedia.org/wiki/Len_Sassaman
Re: Yup; the Internet is screwed up. - Land Assistance...
On 6/11/2011 1:59 AM, Don Gould wrote: Your responses clearly demonstrate by asking a few simple questions, and allowing those with a few clues to be creative, that there are any number of ways to get things done if you really want to perhaps this is a new concept for people in rural America, I don't know Mostly, I've just ignored this, since it wasn't really contributing to a solution for anything I could see, and wasn't finding it as amusing to read as the author did to write. This statement, however, needs a bit of changing, sir. I'd say that people in rural America (many of whom are my neighbors) are adept at making do, and very clever at finding solutions to the problems that the author of this piece did not. Please note that the author seems to be yet another transplanted city boy, and as such, might not have been aware of how to solve this problem quickly, and in the most expedient manner, but that does not mean you should lump rural America in one large bucket... I should also point out that the author of the article isn't even *in* a rural setting. Contrary to popular belief, living in a small town is not rural. I've lived 5 five miles out of town, and we barely considered that rural. We had neighbors less than a quarter mile walk away. In addition (since my annoyance factor seems to be set on high), I'm a bit curious as to how someone living in New Zealand is so concerned with broadband access in the US.
[Nanog-futures] GoogleGroups and Nanog (was Re: IPv6 Availability on XO)
On 5/23/2011 8:16 PM, Ryan Malayter wrote: (stuff about XO and IPv6) This was sent to nan...@googlegroups.com instead of to Nanog, and my mail client conveniently marked it as spam. In the old days, when a mailing list was gatewayed to Usenet, I think it may have been simpler for people to recognize that they were replying to a Usenet group, and a mailing list, and set the headers accordingly. I'm guessing that (since I just moved to a new machine, and spam filtering needs to be trained all over again) NANOG has been accepting email from googlegroups for quite a while, and I just never noticed. I'm busy being a Luddite today (Google managed to step on my last nerves last night), but the headers still seemed extra strange to me. Is it just me? ___ Nanog-futures mailing list Nanog-futures@nanog.org https://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: gmail dropping mesages
On 4/22/2011 4:01 PM, Franck Martin wrote: On 4/23/11 10:41 , Alex Brooksaskoorb+na...@gmail.com wrote: On Fri, Apr 22, 2011 at 9:44 PM, Franck Martinfmar...@linkedin.com wrote: What is the DKIM check result for those messages? Non existent, it's SPF only. My point. Nearly all of the spam I see is DKIM signed. It just makes messages bigger. I'd just as soon our volunteers spend their times on other things, myself. -- The person becomes vulnerable to all manner of fads, such as astrology, superstitions, economics, and tarot-card reading. The Black Swan, by Nassim Nicholas Taleb
Re: Syngenta space
On 4/13/2011 12:44 PM, Randy Bush wrote: sorry for the noise, but my contact at Syngenta says they have 147.0.0.0/8 168.0.0.0/8 and 172.0.0.0/8, and pigs fly Well, sometimes they do. http://wardsci.com/product.asp_Q_pn_E_IG0035229 [Flying Pig: Unforgettable Fun with Physics] -- The person becomes vulnerable to all manner of fads, such as astrology, superstitions, economics, and tarot-card reading. The Black Swan, by Nassim Nicholas Taleb
Re: [BEWARE] David J. Moore
On 3/3/2011 8:07 AM, isabel dias wrote: The only reason why you feel that way is cause you haven't been made aware and your network of friends is not helping you at all so do speak up and make yourself heard! No, don't speak up. Please don't pollute NANOG any further than it already is, and please don't encourage others to do so. -- Amor fati. Vale. (Seneca)
Re: Post-Exhaustion-phase punishment for early adopters
On 2/8/2011 2:46 PM, Brandon Butterworth wrote: Before arin etc it was possible to request ip space and on the form specify you would not be connecting to the Internet. So those off net users can't complain if ARIN allocated the same ranges on net. Not that it's worth doing so now. I hoped I was going to be able to resist answering this. I can't. There are networks out there that are large, and interconnected, and using valid, assigned IP addresses, that have never been seen on a public router. Never will, either. It's more convenient to use real addresses than 1918 blocks. It works better in the DNS, and it's easier to wrap your mind around when you're working math problems about how much to delegate, and where. Those blocks remain allocated to the original recipients. I just looked (via whois). They are all still there. I remain amazed that I have them all still memorized. I guess Alzheimer's hasn't struck yet. -- Amor fati. Vale. (Seneca)
Re: Cisco Sanitization
On 1/12/2011 8:04 AM, Greg Whynott wrote: list, sorry for this but this is getting a little annoying. I've tried sending Randy email without luck.. think i'm black listed by his kit, so if someone would kindly forward this to him… Well, here it is. Perhaps you might consider getting a gmail or other account, and posting on NANOG from there. Either that, or filter Randy out. Personally, I find those silly disclaimers annoying, but am far too lazy to set up a script such as Randy has. You don't want to be annoyed? Lose the disclaimer, use a different email address, or filter Randy out. This is NOT the first time you've complained about this (although we know, for sure, that Randy is going to send this off, automagically, to anyone that has the silly disclaimer thing going for them). Get over it. Please don't post on this again. Thanks in advance. -- Amor fati. Vale. (Seneca)
Re: The tale of a single MAC
On 1/2/2011 6:00 PM, Marshall Eubanks wrote: On Jan 2, 2011, at 8:39 PM, Corey Quinn wrote: On Jan 2, 2011, at 1:24 PM, Franck Martin wrote: In the early 90's a friend of mine got a box of 10 HP cards with all the same MAC address. In my early days of network admining, a coworker told me a (apocryphal) story of 3com shipping a batch of 80K cards with identical MAC addresses, which they then had to recall. Unfortunately a cursory Google turns up nothing, so I suppose he was either misinformed or pulling my leg. I have also heard such stories, again from the '90s. Can cause odd failure modes. Google does NOT know all. I was there. I have had to deal with a building full of such wickedness. I administered DNS (in my copious spare time) for two subdomains, and managed the network in the building (a not inconsiderable /22, and also in my spare time), and started getting frantic calls from people who were getting knocked off the network because their machine had the same MAC address as another. I had trouble believing it at first, but after dealing with five of them (all Gateways, and yes, all with the same MAC address), I directed the local sysadmins to disable the nic that came with them, and to replace it with a spare. I understand that there were 30,000 of them, all with the same address. My guess is that you'll never find it on Google, since it happened around 1993-4 or so. -- A picture is worth 10K words -- but only those to describe the picture. Hardly any sets of 10K words can be adequately described with pictures.
[Nanog-futures] Status updates on non-profit status?
I see that as of October, the statement on the donor's page is: Important note: Although NewNOG, Inc. has applied for 501(c)(3) nonprofit status in the US, there is no guarantee that this will be granted. Therefore, there can be no guarantee that individual donations will be tax deductible. I note that there was a certificate of filing (for nonprofit status) on April of this year (according to this): http://www.newnog.org/docs/filing.pdf Does anyone have information on when this might be granted, or if there is any reason to believe that it won't be granted? -- A picture is worth 10K words -- but only those to describe the picture. Hardly any sets of 10K words can be adequately described with pictures. ___ Nanog-futures mailing list Nanog-futures@nanog.org https://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: U.S. officials deny technical takedown of WikiLeaks
On 12/5/2010 11:32 AM, Michael Sokolov wrote: Pretty much, I no longer care what you wrote. Go away. Seriously. Just GO AWAY. Alt.politics is -- thataway. *plonk* -- Die gedanken sind frei.
Re: Token ring? topic hijack: was Re: Mystery open source switching
On 11/2/2010 12:43 PM, Chris Boyd wrote: On Nov 1, 2010, at 11:48 AM, Nick Hilliard wrote: And FDDI and X.25 and every single legacy protocol Are there still any commercial X.25 nets in operation? I had some peripheral involvement with Tymnet in the MCI/Concert conversion, and hear it shut down sometime in 2003-4. I can say that there are, yes. They are in some gov't and quasi-gov't installations, but they were there, last I looked (and that was very recent). There are probably others, too, but I don't normally look for such things. -- Finding a needle in a haystack is a lot easier if you burn down the haystack and scan the ashes with a metal detector. (Silicon Valley Tarot: Steve Jackson Games)
Re: Hardware capture platforms
Warren Kumari wrote: On Jul 29, 2008, at 10:43 PM, Darryl Dunkin wrote: Hubs sure are fun... This might be a stupid question, but where can one get small hubs these days? All of the common commodity (eg: 4 port Netgear) hubs these days are actually switches. True enough. For those of us who need and want something non-switched, eBay and other used hardware places are the only real option. What I am looking for is: Small enough to live in my notebook bag (e.g.: 4 port with a wall wart.) Cheap Simple 10/100/1000Mbps I don't believe that such a thing ever existed. Hubs that did 10/100, certainly, but I've never ever seen a hub that did gig speeds. When I realized hubs were about to be an endangered species, I started purchasing new and used. I have at least two that (other than testing) have never been used. While a tap would work, I'd prefer a hub because I can then use it to connect machines together in a pinch. The original poster needed to deploy a tap, and a hub (for him) would defeat the purpose entirely. If you really really need a hub (or two), your best bet is to start looking at various resellers. Pity you're not closer; I'm retired, and no longer really need the six or eight that I still have. -- In April 1951, Galaxy published C.M. Kornbluth's The Marching Morons. The intervening years have proven Kornbluth right. --Valdis Kletnieks
Re: Multiple DNS implementations vulnerable to cache poisoning
This is also being covered over on the Defcon Forums. Jeff Moss has said that he'll post the link to the interview that Kaminsky is doing right now, after it's over. Here's the link to the Forum discussion: https://forum.defcon.org/showthread.php?t=9547 The forum link also has a link to Dan's tool, where you can see if your DNS server is vulnerable. -- In April 1951, Galaxy published C.M. Kornbluth's The Marching Morons. The intervening years have proven Kornbluth right. --Valdis Kletnieks
Re: Multiple DNS implementations vulnerable to cache poisoning
Owen DeLong wrote: The tool, unfortunately, only goes after the server it thinks you are using to recurse from the client where you're running your browser. This makes it hard to test servers being used in production environments without GUIs. The tool is not Lynx compatible. Figures. It's becoming a pointy-clicky world. I don't like it much, either. On Jul 8, 2008, at 5:12 PM, Lynda wrote: This is also being covered over on the Defcon Forums. Jeff Moss has said that he'll post the link to the interview that Kaminsky is doing right now, after it's over. Here's the direct link, for the curious: Audio of Dan's press interview: https://media.blackhat.com/webinars/...conference.mp3 I'll see whether someone can pry the code loose from Dan, rather than having it hidden under a button. As Christian Koch said, the tool isn't really directed at NANOG folk. I'm sure that it could be modified so that it was. I note that BIND has been updated on all your favorite operating systems, which should help some. Still, the updates just barely happened, and then the announcement hit. -- In April 1951, Galaxy published C.M. Kornbluth's The Marching Morons. The intervening years have proven Kornbluth right. --Valdis Kletnieks
Re: Large number of DNS probes in last 24 hours
Jim Wise wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I've seen a surprising number of attempted recursive DNS requests against unpublished non-recursive DNS servers in the last 24 hours or so, many of them obviously probes of some sort (query for . IN NS, eg). Is anyone else seeing this? Is it new? Or did some botnet just reach this corner of the IP space? Yes, no, and yes. I've seen this sort of thing severe enough that I simply took the servers down for a day (yes, really), even considering the severe inconvenience that caused. -- Die Gedanken sind frei
[Nanog-futures] It's Mailman, and they aren't going to make these changes
Joe Abley wrote: On 8 May 2008, at 09:57, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: If the NANOG list sprouted a reply-to header, I'd be very unhappy. To echo an earlier comment, how much development work would be involved in allowing list members to individually specify whether they want: Then we just have to argue about what the defaults should be! :-) At the risk of invoking a long and interminable thread on Mailman itself, I'll point out that the developers have a list of changes that they're working on, none of which include such interesting features. Mailman is good because it has some features that are handy (such as the ability to strip mime and attachments), and because it's relatively easy to configure. Some of the defaults are meant for a less, shall we say, sophisticated audience. On the other hand, what seems to our friend Michael to be a reasonable request is going to be met with stony silence on the part of the Mailman team. The FSF would like you to call it GNU Mailman (but nobody does). It does what it does. It's in Python, not really that hard to modify, but then, branching off and supporting a home-grown version seems counterproductive to using a well-known and reasonably well supported list manager. http://en.wikipedia.org/wiki/GNU_Mailman Oh, and +1 on no Reply-to rewriting as well. -- Die Gedanken sind frei ___ Nanog-futures mailing list Nanog-futures@nanog.org http://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: [Nanog-futures] [NANOG] [in the subject line]
Patrick W. Gilmore wrote: On May 5, 2008, at 10:39 AM, Rich Kulawiec wrote: On Mon, May 05, 2008 at 07:20:17AM -0700, Lynda wrote: It is something that mailman offers, but there was certainly no need to use it. I manage mailing lists that do, and ones that don't. Personally, I'm in favor of *not* doing it. I strongly concur. Subject-line tagging is a poor practice and frequently results in confusion... Is this a vote thing? Perhaps should we just buttonhole the MailMan admin @ NANOG and either ply him/her with alcohol until they see the error of their ways, or beat them into submission? I don't really mind that Futures or Admin have the subject things, since they're more specialized. I detest footers in all cases, however. The information anyone needs is in the headers, already, and it's just a superfluous bunch of bits. No need for alcohol or threats; we'll just talk it to death, and they'll give in from desperation, right??? -- Die Gedanken sind frei ___ Nanog-futures mailing list Nanog-futures@nanog.org http://mailman.nanog.org/mailman/listinfo/nanog-futures
Re: [Nanog-futures] List Transistion
John Payne wrote: Heh, just reread the message. It's actually not clear that you aren't doing the import. Sorry about the noise clarification requested. I think that Betty et al might want to consider a follow up message. I misread this as well, John. Until you commented, I thought that it meant I'd have to sign up again, which didn't make much sense to me. We will not be the only two to misunderstand, I suspect. -- Il faut cultiver notre jardin Voltaire: Candide ___ Nanog-futures mailing list Nanog-futures@nanog.org http://mailman.nanog.org/mailman/listinfo/nanog-futures
[Nanog-futures] blacklists getting out of hand?
I'm hoping that this just gets through. For two or three years, I've been relaying all deaddrop.org email through pair.com, which has apparently made it onto mail-abuse's blacklists. Unfortunately, it joins gmail, which is my usual backup. I'm afraid to even try my old rocketmail account. Could I just send the email from a local server? Sure, but the ability to filter spam for this particular domain is high on my list, and I use pair's servers to do so, before I ever see anything. It isn't an easy question, and I know it isn't. I was prompted to note this only because I see that the escalation vis-a-vis current AUP enforcements is only going to be aggravated by the fact that Martin is using a gmail address (which means a whole lot of bounces, unfortunately). No easy answers, are there? -- ...Deep Hack Mode -- that mysterious and frightening state of consciousness where Mortal Users fear to tread. Matt Welsh (also see: http://catb.org/jargon/html/H/hack-mode.html) ___ Nanog-futures mailing list Nanog-futures@nanog.org http://mailman.nanog.org/mailman/listinfo/nanog-futures