Site elimination service -:) - I received offer by 's'p'a'm'

I received adv., in russian, saying: Dear sirs. We are glad to you to give qualitative service, on elimination of sites. We can kill any site by our attack, which have name 'DDos attack'. We have already killed hundreds Russian and foreign sites. If you

Re: IT security people sleep well

This is very bad - they have SSH in extended versions, why did not they included it into all versions, where it was possible without running out of flash memory. Through, it is not so unsecured - in most cases people restricts access to a few IP sources, which are located on the internal network,

nanog@merit.edu

This is an interestig example - looks as some protocol, saying _these are my legal SRC addresses_, desired on customer's link. Because there are legitimate reasons for async routing. DirectPC/Isat/etc. (Satelite based services) come to min

Re: IT security people sleep well

I like my Tungsten C, but I don't do security-stupid things with it. :) Another neat trick, for those who haven't seen - Intel has maps.yahoo.com setup so it'll show you where alot of the hotspots are - here's a map of downtown SF as an example: http://tinyurl.com/36s5y John On Thu, Jun 03, 20

Re: IT security people sleep well

I've been reasonably pleased with using the Idokorro client. It's at http://www.idokorro.com It uses SSH2 w/3DES & AES. It's useful for emergencies, but nothing of great detail or scope for the screen size on my 6820. -John Wow. $195 for the Blackberry client? I'll carry around the PowerBook

RE: IT security people sleep well

> I've heard there's an SSH2 client for the Treo. > Ah, here it is: http://sealiesoftware.com/pssh/ > > The Danger Sidekick can do SSH2 with "Terminal Monkey" which was free up > until recently. :) It's fun, but kind of hard to get any real work done > with the tiny screen. I've been reasonabl

Re: IT security people sleep well

The part about Telnet is truly scary... Among people who have "clue", the biggest reason I have heard to continue running ssh1 is for emergency access via hand-held smartphones or other pocket sized devices. The Handspring Treo 180 and similar keyboarded cellphone-pda devices don't have the

Re: Need (temporary) bandwidth in NYC/Lower Manhattan, ASAP.

We have a large client who is moving into a new office space on Broadway in lower Manhattan *this weekend* and they just learned their DS1 (provided by Verizon, IP by UUnet) has been pushed back to July 2nd. The situation to my knowledge is resolved. Thanks for the swift assistance. --chuck

Team Cymru Darknet Project

-BEGIN PGP SIGNED MESSAGE- Hi, team. We are happy to at last release some documentation Darknets and the Team Cymru Darknet Project. You will find the details at the following URL: We hope this helps you to gain greater insight into your networks an

Re: IT security people sleep well

On Thu, 03 Jun 2004 13:16:44 PDT, Eric Kuhnke <[EMAIL PROTECTED]> said: > The part about Telnet is truly scary... Among people who have "clue", > the biggest reason I have heard to continue running ssh1 is for > emergency access via hand-held smartphones or other pocket sized > devices. The Ha

Re: IT security people sleep well

** Reply to message from Eric Kuhnke <[EMAIL PROTECTED]> on Thu, 03 Jun 2004 13:16:44 -0700 > > The part about Telnet is truly scary... Among people who have "clue", > the biggest reason I have heard to continue running ssh1 is for > emergency access via hand-held smartphones or other pocket

Re: IT security people sleep well

On Thu, 03 Jun 2004 13:16:44 PDT, Eric Kuhnke <[EMAIL PROTECTED]> said: > The part about Telnet is truly scary... Among people who have "clue", > the biggest reason I have heard to continue running ssh1 is for > emergency access via hand-held smartphones or other pocket sized > devices. The

Re: IT security people sleep well

I liked this quote, About 43% of respondents said they're using the Secure Shell (SSH) protocol to protect data, secure remote access, and perform network management. But while the current SSH2 is considered to be significantly more secure, nearly 45% said they are continuing to mostly u

Re: IT security people sleep well

Crist Clark wrote: Anyone from the real world knows that there are real and significant costs to convert an existing infrucstructure with telnet, the r-protocols, ftp, and all of their unencrypted, unauthenticated friends to SSH and SSL secured connections. Yeah, maybe the software licencing costs

nanog@merit.edu

On Thu, Jun 03, 2004 at 10:55:14AM +0200, Erik Haagsman wrote: > > > Only very small ISPs relying on 36xx's or multilayer switching instead > > > of larger, more powerful might be still valid cases where ACL's are a > > > problem. > > > > Interesting assertion. Care to support it? > > It's not

Need (temporary) bandwidth in NYC/Lower Manhattan, ASAP.

We have a large client who is moving into a new office space on Broadway in lower Manhattan *this weekend* and they just learned their DS1 (provided by Verizon, IP by UUnet) has been pushed back to July 2nd. The space is at 39 Broadway, NYC, 10006, 18th floor. NPA-NXX is 212-785 Can anybody her

Re: IT security people sleep well

Sean Donelan wrote: Survey: Despite dangers, IT personnel sleep well By Bill Brenner, News Writer 27 May 2004 | SearchSecurity.com I liked this quote, About 43% of respondents said they're using the Secure Shell (SSH) protocol to protect data, secure remote access, and perform network managem

nanog@merit.edu

On Thu, 3 Jun 2004, Erik Haagsman wrote: > > On Wed, 2004-06-02 at 19:32, Jeff Aitken wrote: > > On Wed, Jun 02, 2004 at 06:00:38PM +0200, Erik Haagsman wrote: > > > Only very small ISPs relying on 36xx's or multilayer switching instead > > > of larger, more powerful might be still valid cases w

nanog@merit.edu

no need to email your resume ... -chris On Thu, 3 Jun 2004, Krichbaum, Eric wrote: > > They went to a loose configuration to get the Isat (most of our sat > users) back to an operational state. The Isat vendor is now testing a > tunneled version. > > > Eric Krichbaum, Chief Engineer > MCSE:

Lit Building Query

Anyone out there know which, if any, providers other than Worldcom have 8913 Complex Drive, San Diego California, 92123 lit? Please reply offlist. Thanks! -Vin

nanog@merit.edu

On Thu, 3 Jun 2004, Petri Helenius wrote: : Scott Weeks wrote: : > : >Let's see... 1.3*10^15 Bytes/Day / 86400 Sec/Day = 15.04B/s : >120.4Mbps. Hmm, think they might upgrade to an OC-12 someday? >:-) : > : : You probably noticed already but your calculation is off by three orders : of magnitu

nanog@merit.edu

Scott Weeks wrote: Let's see... 1.3*10^15 Bytes/Day / 86400 Sec/Day = 15.04B/s 120.4Mbps. Hmm, think they might upgrade to an OC-12 someday? >:-) You probably noticed already but your calculation is off by three orders of magnitude. Pete

nanog@merit.edu

They went to a loose configuration to get the Isat (most of our sat users) back to an operational state. The Isat vendor is now testing a tunneled version. Eric Krichbaum, Chief Engineer MCSE: NT4, 2000, 2003, MCSE: Messaging, MCSE: Security, MCP+I, MCDBA, MCSD.Net, ASE, CCNP, CCDP, CCSP, CCIP,

nanog@merit.edu

On Thu, 3 Jun 2004, Stephen J. Wilcox wrote: : "[att] which handles 1.3 petabytes of data per day" : w : : > http://biz.yahoo.com/prnews/040601/nytu051a_1.html Let's see... 1.3*10^15 Bytes/Day / 86400 Sec/Day = 15.04B/s 120.4Mbps. Hmm, think they might upgrade to an OC-12 someday? >:

nanog@merit.edu

At 08:04 AM 6/3/2004, Krichbaum, Eric wrote: Because there are legitimate reasons for async routing. DirectPC/Isat/etc. (Satelite based services) come to mind immediately. DirecPC has had satellite return path for a long time. Their older systems with dialup/cable for upstream involved loading of

nanog@merit.edu

Because there are legitimate reasons for async routing. DirectPC/Isat/etc. (Satelite based services) come to mind immediately. Customers dial-up to an ISP and downstream traffic returns via the sat connection. Reverse-path immediately disables every one of these customers. Qwest deployed this on

Re: Cable networks RE: best effort has economic problems, maybe OT

An excellent article in this month's LIGHTWAVE Magazine on Cable's entry into traditionally-LEC and ISP deployments. In fact, Cablevision's Lightpath division is a registered LEC in its own right: http://lw.pennnet.com/Articles/Article_Display.cfm? Section=ARTCL&ARTICLE_ID=204382&VERSION_NUM=1&

nanog@merit.edu

Simon, > However, the AT&T thing looks like a combination of Arbor > PeakFlow:DoS for automated DoS detection on the network, and > what used to be Riverhead (and now acquired by Cisco) for > "traffic scrubbing" to allow normal traffic to continue to be > passed to nodes under attack. > > C

nanog@merit.edu

On Wed, 2004-06-02 at 19:32, Jeff Aitken wrote: > On Wed, Jun 02, 2004 at 06:00:38PM +0200, Erik Haagsman wrote: > > Only very small ISPs relying on 36xx's or multilayer switching instead > > of larger, more powerful might be still valid cases where ACL's are a > > problem. > > Interesting asser