Re: Abuse response [Was: RE: Yahoo Mail Update]

desk from a self-abuse desk. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Customer-facing ACLs

to let your users unblock the system, either via phone call or via self-service Web page (though in the latter case you'd better use a captcha or something so the bot doesn't automatically unblock itself). -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Customer-facing ACLs

help keep botnets in check. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Customer-facing ACLs

. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Customer-facing ACLs

the no undue burden test; so would port 22 and 23. Beyond that, I'd probably be hesitant until I either started getting a significant number of abuse reports about a certain flavor of traffic that I had reason to believe was used by only a tiny minority of my own users. *but won't, ever -- Dave Pooser, ACSA

Re: Customer-facing ACLs

, test, oracle, a few personal names, apache, svn, iraf, swsoft, gast, sirsi and nagios. And this is a relatively slow day. Telnet I wouldn't know about, but I'm told bots will try to force it as well. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: YouTube IP Hijacking

, avoiding screwups ceases to be a priority at Layer 8 or Layer 9. And then you have incidents like this, where the operational solutions are widely agreed upon and the political obstacles are widely agreed to be insurmountable. And we wait for the next incident. -- Dave Pooser, ACSA Manager

Re: YouTube IP Hijacking

. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: OT: Vendors Using NANOG for a Sales Channel

remember the last time that happened. My real address gets hit all the time by cold calls, but that goes with the territory. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Hotmail/MSN postmaster contacts?

in a nearby netblock had ignored them and they ended up blacklisting the whole /24 instead of just the spammer's /27-- but it's still probably worth a try. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Internet access in Japan (was Re: BitTorrent swarms have a deadly bite on broadband nets)

an alarm system they'll leave the copper alone, since your alarm system is generally using phone lines with no dial tone to connect to the monitoring station. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Cogent peering issues with Sprint

14.095 ms 20.054 ms 10 hagg-03-ge-0-0-0-460.dlfw.twtelecom.net (64.129.234.4) 45.161 ms 16.826 ms 28.240 ms 11 64-129-174-30.static.twtelecom.net (64.129.174.30) 24.740 ms 16.621 ms 14.966 ms 12 * * * (ad infinitum) From ATT: -- Dave Pooser, ACSA Manager of Information Services Alford

Re: Cogent peering issues with Sprint

is reachable now via both providers. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Abuse procedures... Reality Checks

. Compared to the 5-15k messages blocked per day over that span, close enough to never for me-- and more importantly, for my boss. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: NOC Personel Question (Possibly^H^H^H^H^H^H^H^HTruly OT)

Making you the I.T.C.H., of course. Nah, we decided I'm the Primary Information Management Professional. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: Every incident is an opportunity (was Re: Hackers hit key Internet traffic computers)

simple my parents can use it. It's funny because it's true. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: SBC RBL

.prodigy.net closing connection I'm going with clueless until proven otherwise. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: SBC RBL

mail:~ postmstr$ telnet sbcmx1.prodigy.net 25 Trying 207.115.57.15... Connected to sbcmx1.prodigy.net. Escape character is '^]'. I still think there is a real problem on their end, besides my fat fingers. ;-) -- Dave Pooser, ACSA Manager of Information Services Alford Media http

Trying to reach someone at Brookings.net

Spammers are using one of your servers as a download center for a virus. Check 66_17_96_42 in the ~identity directory (address underscored because it's already being flagged by some spam filters). -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: SORBS Contact

be. Phishing spam leaps immediately to mind as a counterexample; the fact that the user mistakes it for legit mail is exactly the problem. -- Dave Pooser, ACSA Manager of Information Services Alford Media http://www.alfordmedia.com

Re: anybody here from verizon's e-mail department?

Verizon's sender verification (as of a couple months ago; haven't checked recently) times out after 30 seconds, that technique can have the side effect of making Verizon customers unreachable. -- Dave Pooser, ACSA, CCNA Manager of Information Services Alford Media http://www.alfordmedia.com

Compromised machines liable for damage?

here in the USA; maybe we could use it for good instead of evil. -- Dave Pooser Manager of Information Services Alford Media http://www.alfordmedia.com