Let me begin with appropriate disclaimers and identifiers. While in
college in 1966-1967, I was a part-time science writer for The
Washington Post, so have some familiarity with the news process. At
the present time, I am an independent consultant in networking and
medical computing, with
On Friday, we noted with some interest the appearance of more
than six hundred deaggregated /24s into the global routing
tables. More unusually, they're still in there this morning.
AS6198 (BellSouth Miami) seems to have been patiently injecting
them over the course of several hours,
James Cowie wrote:
On Friday, we noted with some interest the appearance of more
than six hundred deaggregated /24s into the global routing
tables. More unusually, they're still in there this morning.
AS6198 (BellSouth Miami) seems to have been patiently injecting
them over the
On Sun, 5 Oct 2003, Suresh Ramasubramanian wrote:
Kee Hinckley [05/10/03 00:57 -0400]:
Bringing this back to the more relevant topic. Is there something
that ISPs could do to notify users and get in their face more without
shutting off their connection? Perhaps a custom piece of
I have
Sean Donelan [05/10/03 16:49 -0400]:
There are some differences between private networks and public networks.
In a company, the company is the owner of the PCs and employees (in the
Very true - and that was the context I mentioned this in.
So from an ISPs point of view, is there a way for
On Sun, 5 Oct 2003, Suresh Ramasubramanian wrote:
So from an ISPs point of view, is there a way for the ISP to quickly
tell the customer if the particular computer is fixed without unduly
Isolate his IP and have all outbound http redirected to a page that
says please call [escalated tech
While we were fighting blaster/nachi and others, we relied heavily on IDS's to generate
alerts for the worms, then we disabled their network access and called them. Generic
viruses are not an ISP's problem, but a worm is something that affects the prviders
infrastructure, and is therefore a
Sean Donelan [05/10/03 17:44 -0400]:
What happens a few hours later when you start getting complaints again
about the same customer? Do you turn the connection off again. And
Sure, turn it off again. And again.
Sooner or later, it will dawn on the customer that no, his system is not
fixed.
On Sun, 5 Oct 2003, Jamie Reid wrote:
While we were fighting blaster/nachi and others, we relied heavily on
IDS's to generate alerts for the worms, then we disabled their network
access and called them. Generic viruses are not an ISP's problem, but
a worm is something that affects the
* [EMAIL PROTECTED] (Piotr KUCHARSKI) [Sat 04 Oct 2003, 20:51 CEST]:
[..]
do arbitrary changes to them. Marking com and net as delegation-only
is not harming anything. (At least until ICANN changes its mind.)
According to this mail:
Heres an interesting question Matt, maybe you can provide me with a
worthwhile answer.
Last night, I finally got around to registering a .org domain for my use.
It took only 20 minutes from the time which I registered it, gave it my DNS
servers, and paid for it, to when it was resolveable
Is anyone aware of a South America NOG? or do they mainly use nanog?
Pascal
Is anyone aware of a South America NOG? or do they mainly use nanog?
There was an operator's meeting in Argentina recently, unfortunately
scheduled at exactly the same time as the APNIC meeting. Primarily talk
about IXes, was my impression. I don't know how many attendees.
Bill,
Is anyone aware of a South America NOG? or do they mainly use nanog?
There was an operator's meeting in Argentina recently, unfortunately
scheduled at exactly the same time as the APNIC meeting. Primarily talk
about IXes, was my impression. I don't know how many attendees.
Suresh Ramasubramanian wrote:
Sean Donelan [05/10/03 17:44 -0400]:
What happens a few hours later when you start getting complaints again
about the same customer? Do you turn the connection off again. And
Sure, turn it off again. And again.
Sooner or later, it will dawn on the
Matthew Sullivan [06/10/03 11:38 +1000]:
Third time their account is deleted.
I am yet to have one that has reached the third time - 85k users here.
Let me guess - that'd mostly be dialup users, right? Or maybe simply email
users? Not (say) T1 and larger users?
--
srs
On Mon, 06 Oct 2003 02:43:48 -, Suresh Ramasubramanian said:
Matthew Sullivan [06/10/03 11:38 +1000]:
Third time their account is deleted.
I am yet to have one that has reached the third time - 85k users here.
Let me guess - that'd mostly be dialup users, right? Or maybe simply
Suresh Ramasubramanian wrote:
Matthew Sullivan [06/10/03 11:38 +1000]:
Third time their account is deleted.
I am yet to have one that has reached the third time - 85k users here.
Let me guess - that'd mostly be dialup users, right? Or maybe simply email
users? Not (say) T1 and larger
On Sun, 5 Oct 2003, David A. Ulevitch wrote:
How many times did you disable the same user's network access because
they didn't actually fix their computer but told you it was fixed?
Just once, if they weren't patched they were automatically turned down
again. (automated, not human
At 12:57 AM 10/5/2003, you wrote:
At 2:11 AM + 10/5/03, Suresh Ramasubramanian wrote:
For more fun, consider that you are [EMAIL PROTECTED], and get those
It's the anti-virus ones that drive me nuts. Someone in your domain sent
us a virus which always forges the from line, but we're going
On Mon, 06 Oct 2003 00:12:07 EDT, Robert Boyle [EMAIL PROTECTED] said:
What gets me is the moron admins who track down every attack they see.
Attacks such as ICMP echo requests, Port 80 connections, etc. If they get
huge logs that's one thing, but for four pings from a windows box or a
Robert Boyle [10/6/2003 9:42 AM] :
What gets me is the moron admins who track down every attack they see.
Attacks such as ICMP echo requests, Port 80 connections, etc. If they
get huge logs that's one thing, but for four pings from a windows box or
a mistyped IP address in a URL and they are
The difference being campus machines are null routed rather than
disconnected, and they are not reconnected until checked and clean.
And once again, the question: how do you know the machines have been
checked and cleaned before they are reconnected? Do you take the
customers word, or do you
23 matches
Mail list logo
