these days?
Some people like to do forward planning instead of waiting
until an issue hits them in the face. By definition, forward
planning will never be dealing with pressing issues.
--Michael Dillon
ring that was either
unprotected or both legs cut. After 10 minutes someone
manually rerouted the circuits.
--Michael Dillon
P.S. Larry, what do you think? Leading by example?
reroute.
The jury is still out on that.
--Michael Dillon
no control over
what happens in that AS and, more importantly, you have no control
over the peering points bewteen ASes. Your measurements are as
meaningless as measurements of an IP over ATM network.
--Michael Dillon
with MPLS. But are any of
the researchers seriously looking at how to provide a network
in which all packets flow through two diverse paths to provide
better reliability?
--Michael Dillon
that multiple
techniques working in synergy is best.
--Michael Dillon
against you then you can pay more attention to the
much tougher security issues which sometimes can only be
resolved through constant vigilance.
--Michael Dillon
of daily activities.
--Michael Dillon
is the subject of the Verisign
lawsuit.
--Michael Dillon
/1997-01/msg00017.html
Pass it on to anyone else who may be interested.
--Michael Dillon
that differentiates you from other network operators.
In a world where everybody runs C and J networks, there is only one
flavor available, vanilla.
--Michael Dillon
by a few large brand-name high-margin
suppliers there are also several low-margin suppliers offering
generic products with minimal handholding. Why don't we
see this in the router business?
--Michael Dillon
.
http://www.imagestream.com/Cisco_Comparison.html
How many of you would buy an Imagestream box to evaluate for
your next network buildout?
--Michael Dillon
.
--Michael Dillon
this would
even lead to possible future benefits for many of us mice?
If you are going to attack Verisign, at least pick a weak
point to target with your attack.
--Michael Dillon
confusing it's because, like the Tao, what can be spoken
is only a one-sided view of what really is.
--Michael Dillon
,
there was a lot of bottom-up pressure that finally coalesced and
ARIN was obviously the right thing to do.
--Michael Dillon (one of the original members of the ARIN Advisory
Council)
organization
like CIS? http://www.cisecurity.org/
Suggestions?
--Michael Dillon
http://www.ipv6-es.com/02/in/i-agenda.htm
--Michael Dillon
.
--Michael Dillon
rules). Why can't the same principles be applied
to email or IM services?
--Michael Dillon
working for some of the larger users of email.
--Michael Dillon
-spammer brigade.
--Michael Dillon
/~brent/rsyncntdoc.html and it has
working links to the pieces of Cygwin and MS Resource Kit
that are required.
--Michael Dillon
that there are no
leaks.
No guarantees but I'd be interested to hear a report
if you try this.
--Michael Dillon
the homepages
of the authors.
--Michael Dillon
temperature) and it was much more comfortable than that week
with the portable coolers.
--Michael Dillon
P.S. it would be interesting to know if anyone has some creative solutions
to data center design to cope with cooling system failure other than
n+1 redundant coolers.
questions are the ones that don't have a right
answer.
--Michael Dillon
for. For example I could have told a recruiter
that the answer should mention TTL and echo-reply.
If you shop for a recruiter who is willing to learn about your
needs and properly select candidates according to *YOUR* requirements
I think that recruiters can be much better than hiring directly.
--Michael
that
do stuff, he understood what was happening inside the network
layers themselves.
There are lots of people who know how to use traceroute or
Infovista but you wouldn't want them logging into your core
routers for troubleshooting.
--Michael Dillon
sort
of fashion fad?
--Michael Dillon
is time and hard work. We have to put in the effort to address *ALL* the
weaknesses until we've raised the bar so high that only the toughest
black hats have the time, skills and energy to break the weakest link.
--Michael Dillon
IPv6 firewall function, i.e. IPv6 NAT.
It wouldn't be the first time that acronyms have been reinvented, e.g.
RED, GSM.
--Michael Dillon
give a traffic
ticket to the little old lady doing 30 mph on the freeway.
--Michael Dillon
people will do IPv6 leaving you in the
dust when critical mass finally arrives. It's that simple.
--Michael Dillon
the possibility of secure web mail service is there.
Seems to me that you could sell some service and
educate the users about safe email practices at
the same time.
--Michael Dillon
.
It is not appropriate to require network operators to
take actions to adapt to a change that may or may not
occur depending on some policy approval process. The
two notice periods need to be decoupled so that the
policy approval is done first and then the technical
notice period begins.
--Michael Dillon
the user why they were diverted to the page,
explains the privacy risks of the Verisign diversion, gives them
an option to change DNS servers to opt-out of the University's
diversion, and provides links to online dictionaries, spell-checking
software, keyboarding software, etc.
--Michael Dillon
.
But if you have a good job opening in your company,
then get the word out to these people and to their
colleagues who did not attend NANOG.
--Michael Dillon
there first so people have
formed the habit of buying from them without thinking.
--Michael Dillon
and an alias onto
Apache. If you want to get rid of the .com domain name then you
need some way of identifying which traffic still uses the old
.com domain name and then you need some means of notifying the
users to change their own records or address books.
--Michael Dillon
and I would be happy to see the list owner come
down hard on the perp. Banishment?
You should make sure you know who the perp is before making such
pronouncements (or maybe it doesn't matter).
Not really. It's the list owner who should know who the perp is
before taking action.
In any case,
You know what, go and fuck yourself you little whore..
Please don't hesitate to contact us if you have any more questions.
Best Regards,
Shazad
eServers - driving the e into your business.
This is the second time recently that a member of
this list has dragged their own personal disputes
of the
technical information about the various broadband
routers so that ISPs have an exhaustive and definitive
source to refer to.
--Michael Dillon
P.S. I have always used a router on my Internet connection
even when it was only a dialup connection. Back then it
was a FreeBSD box running TIS firewalls
default config and un-blocked
service.
If the user has to intervene in order to enable
a server type application to function, that
makes it a lot harder for trojan exploits to
take hold.
--Michael Dillon
these things? The trouble with a mailing
list discussion is that it wanders all over the place.
But at NANOG you could focus on the network
operational issues of these networks of compromised
machines.
--Michael Dillon
foro de redes has been going on since '91. the mailing list is
enredo.
And you can find them at http://www.enred.org
The mailing list link is in the upper right hand corner.
--Michael Dillon
on
the NANOG mailing list. At minimum, you should send copies to both ICANN
and to the Berkman Center (read the above paper for a URL).
--Michael Dillon
archives, it is at
http://lists.elistx.com/archives/sitefinder-tech-discuss/
--Michael Dillon
.
--Michael Dillon
publications, then if none of them
print it, resubmit it as a letter to the editor.
In general, a case study is easier to write up
that a paper and it can be used later as raw material
by people who are doing research for a more
detailed paper.
--Michael Dillon
of the matter.
And this list is definitely not the place to
discuss writing a letter of protest. If political
activity is your bag, then try http://www.meetup.com
--Michael Dillon
. A number of people who
posted messages to this list could rectify that
lack of data by writing up their findings in a short
paper and presenting it at a conference or publishing
it in a magazine or journal.
I don't think the fight is over yet.
--Michael Dillon
is a UNIX box then it is easy to take a simple
proxy such as udprelay and extend it to do some application layer
checking.
--Michael Dillon
cylinder car park tower next door. You
can find out more details on their web page
http://www.loewshotels.com/hotels/chicago/default.asp
but I don't really know about Internet access in the
hotel.
--Michael Dillon
-parseable source for this information.
--Michael Dillon
device and the net protects it from
abuse, but since this UNIX server is a pass-through device from the point
of view of NTP, it does not change the stratum level of the service any
more than an IP router does.
--Michael Dillon
flying to Chicago, why not attend the
ARIN members meeting on the 2 1/2 days following
NANOG. More info here
http://www.arin.net/ARIN-XII/index.html
--Michael Dillon
and distribute a tool that fixes the problem. Make sure the
tool can run windowless as part of an ISP or corporate install
script. Then sit back and watch while MS assimilates the
functionality of this new tool in a later release.
--Michael Dillon
and their
policies.
Bandaid fixes only buy time, they don't fix the problem.
--Michael Dillon
P.S. ASRG is a good idea because it is systematically collecting and
validating a lot of what we know about spam to make it easier for
decision makers to understand the issues.
http://www.irtf.org/asrg/
someone who is also listed as a whois contact. But right
now I don't see any good way to systematically identify
clueful complainers.
--Michael Dillon
to the plate. As much as I
don't
care for Netgear's products, they did show decent corporate
responsibility
when UW was able to escalate to the appropriate management at Netgear.
Sounds like a great example to put
before the judge when you sue Microsoft.
Can anyone say class action?
--Michael
this point forms
an indirect support of Verisign's action by the U.S.
government.
--Michael Dillon
implementation. The technical review panel will consist of
leading experts in the field.
Is he lying about this? If not, where is this panel and who is on it?
--Michael Dillon
this point forms
an indirect support of Verisign's action by the U.S.
government.
--Michael Dillon
and messages.
Son of Carnivore?
--Michael Dillon
keyloggers on computers that sniff out Internet
banking passwords. This would be far more effective if the
keyloggers were installed by a man-in-the-middle so that they
were targetted only at the intended victims.
--Michael Dillon
real impact on Verisign.
--Michael Dillon
How does this sound for a new mail distribution network.
Customers can only send mail through their direct provider
ISPs can only send mail to their customers and their upstream provider.
Sounds like NIMTP. See Google for more...
--Michael Dillon
today?
Failing that, why can't they bundle up just the updates onto a CD that is
released every few months and shipped out to all of their regular
customers along with permission to copy and redistribute. That way more
OEM's would ship out fully updated machines.
--Michael Dillon
it before, they can do it again.
--Michael Dillon
that they never
propogate very far from their source AS?
--Michael Dillon
://www.spin.rice.edu/Software/pathChirp/
Both of these websites have documents that you may find useful, or you can
google on pathrate or pathchirp to find additional documents.
--Michael Dillon
everybody does it), bring it on over to '[EMAIL PROTECTED]'.
I've just joined the ASRG list and if I can find the time I will try to
write this up as a draft architecture and post it. But feel free to copy
these emails to ASRG if you feel it would be worth discussing there.
--Michael Dillon
servers. Users could continue to use authenticated SMTP to
initiate the sending of email, but nobody would accept any unauthenticated
SMTP servers any more.
--Michael Dillon
not hard to think
up value-added services that could be provided by such boxes and generate
additional revenue.
--Michael Dillon
on the
observed trends in IPv4 /32's.
I'm not sure where one would take this, but I think a lot of people would
be interested in seeing some type of well-presented analysis of these
questions.
--Michael Dillon
of SPAM
and spammers from this mailing list since it is not related to network
engineering or operating an IP network.
---
Michael Dillon
Capacity Planning, Prescot St., London, UK
Mobile: +44 7900 823 672Internet: [EMAIL PROTECTED]
Phone
for thought...
--Michael Dillon
, wavelengths,
circuit boards, chips) and are continually dropping in price.
Perhaps it will require government regulations regarding diversity and
resilience to change this but wouldn't it be nice if the industry could
get together and solve this problem in a self-regulatory fashion?
--Michael
The situation is that we'd need to take a DS3 backhaul for DSL in
northern
Jersey somewhere, and find a cheap way to cross the Hudson and have it
land at Telehouse.
Free space optical, perhaps?
http://www.isp-planet.com/cplanet/business/piscitelloaug01.html
--Michael Dillon
for
evil purposes is not as easy as it looks.
--Michael Dillon
written!?
--Michael Dillon
yawn
Does anyone know of case studies of companies collapsing multiple ASes
into one on their network? I have the Allegiance Telecom presentation from
NANOG 27 but I would like to hear how other people have done it as well.
--Michael Dillon
.
--Michael Dillon
before. It does not impress us.
Thanks,
--Michael Dillon
P.S. No, I'm not the NANOG police; I'm just stating my opinion.
then, this is still a string and sealing wax solution. It's
situations like this that demonstrate just how primitive our supposedly
high technology really is.
--Michael Dillon
networks, who have never heard of NANOG.
There is no universal forum anymore. The Internet isn't special anymore.
--Michael Dillon
random jitter insertion guarantees on such a service to foil people
using timing attacks?
--Michael Dillon
.
;-)
--Michael Dillon
to work around obstructions like HVAC or racks.
--Michael Dillon
P.S. of course, my first answer might have been right too...
http://www.innmug.org/information/switchview.html
Replace the cordless phone system with 802.11b and VOIP and some LDAP
servers and this phoneset
http://www.symbol.com
are an amazing TCP/IP guru? MRTG is
utterly obsolete; replace it! http://rtg.sourceforge.net
And if you can't make it to every NANOG meeting, then do check the website
for useful presentations like this one
http://www.nanog.org/mtg-0302/ppt/beverly.pdf
--Michael Dillon
P.S. considering the price of huge
are simple and can be solved using a router and some PERL
scripts. Some problems are hard technically and socially. These kinds of
problems can only be solved if you are willing to look at the big picture
as well as the immediate impacts.
--Michael Dillon
the bogon
problem.
--Michael Dillon
and get this on the agenda with them. Technical details
can be worked out later, but now we need a commitment from ARIN that they
can and will make this data available and keep it up to date.
--Michael Dillon
network admins which will drive all ISPs and device
vendors to fix the problem.
If anyone wants to discuss this further, then I suggest that the upcoming
ARIN meeting in Memphis is the ideal venue to do so.
--Michael Dillon
in routers and
switches to identify which bits of the hardware generate the most heat
(i.e. consume the most power) and which functions generate the most heat?
Maybe there are opportunities for dramatically reducing power consumption
by changing the way we configure our networks.
--Michael Dillon
.
-- Michael Dillon
.
--Michael Dillon
be required.
Cisco is already a member of ARIN. If anyone out there buys Juniper
routers, perhaps you might suggest that they also join ARIN and work
together with Cisco and the network operators to move this forward.
--Michael Dillon
501 - 600 of 646 matches
Mail list logo