Re: [swinog] LPI Certification - worth anything?
* Roman Hochuli [EMAIL PROTECTED]: The main problem can be found in our schools. They teach old stuff and aren't up to date. Teachers which dont know anything about OOP shouldn't teach application engineering. I cannot agree on that. Better learn to programm in procedural languages properly first and go to OOP afterwards and _slowly_. If something is new it may appear fresh, nice, and the best thing ever seen but if you lack the basic knowledge you will not get far with it anyway... Yes, but i think this wasn't his point. A teacher should know OOP, even if he doesn't teach it. ___ swinog mailing list [EMAIL PROTECTED] http://lists.init7.net/cgi-bin/mailman/listinfo/swinog
Re: [swinog] e-mail blacklists / RBL etc..
* Steven Glogger [EMAIL PROTECTED]: what do you use additionally? good experiences? I do not use any DNS-based IP Blacklists, because i think they do more harm, then they help. Have you ever considered using a Content-Filter like spamassassin (rules based, bayesian optional), or bogofilter (bayesian only)? They need much more resources than a single DNS Lookup, though. However, they tend to cause much less problems, because mail never bounces, and just goes to spam folder. (Iam aware that you can do the same with DNS Blacklists, however thats not an usual configuration). -- Today is the first day of the rest of our lives. http://www.suug.ch -- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
Re: [swinog] Rate-Limiting ICMP
* Fredy Kuenzler [EMAIL PROTECTED]: We seem to experience quite a bit of ICMP DOS attacks. The come along in waves, which makes some devices within our backbone stumble and loosing packets. DoS, or the well known nacchi worm? (Nacchi uses 92byte Packets exclusively, so it should be easy to sort that out) As ICMP should generally not be blocked, I'm thinking about rate limiting it on core routers. Any hints, links, suggestions? There was a discussion about this Topic just one or two Weeks ago on the nanog lists. I do consider rate limiting a very bad idea, because it produces a non-predictable behaviour. Sometimes ICMP works, some time it doesn't. Just think about all those poor people that have ADSL, and those good damn PMTUD Problems (which can be work arounded, but still). Filtering Bogons and proper Abuse Reports should be way to go to fight DoS Attacks. -- Today is the first day of the rest of our lives. http://www.suug.ch -- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/