I know this tactic isn't exactly new .. just thought I'd pass this along.
Text below is exact with exception of our ARIN information and ranges
(which any of you could figure out anyway).
Cheers,
Michael Holstein
Cleveland State University
--snip--
Description: ABC Widgets
*Greetings, NOC
$0.02)
Michael Holstein
Cleveland State University
) new
towers at this map of locations, based on our usage patterns.
Michael Holstein
Cleveland State University
/products_configuration_example09186a008046f31a.shtml#t10
Are you familiar with the CLI or do you strictly use the GUI? .. you'll
find the former is much more common.
Cheers,
Michael Holstein
Cleveland State Unviersity
to the challenges you ask about.
Regards,
Michael Holstein
Cleveland State University
. Not exactly objective, and wasn't disclosed up-front.
Cheers,
Michael Holstein
Cleveland State University
http://e.businessinsider.com/public/184962
Somebody should invent a a way to stream groups of shows simultaneously
and just arrange for people to watch the desired stream at a particular
time. Heck, maybe even do it wireless.
problem solved, right?
Cheers,
Michael Holstein
Cleveland State
Just a weird idea I had. If it's a good idea then please consider this
intellectual property.
It's easy .. the zeros are fatter than the ones.
http://dilbert.com/strips/comic/2004-12-09/
~Mike.
and lulz.
My guess would be routing problems, probably Comcast's. If some of the
whiners would post traceroutes maybe help could be had.
Cheers,
Michael Holstein
Cleveland State University
Confirmed on 3 VPS servers in California, Chicago and Scranton:
All the packets die at piratpartiet.se
You're assuming that the webserver permits ICMP. Try traceroute -T -p
80 thepiratebay.org
10 as40475.ge-0-2-1.cr1.sfo1.us.nlayer.net (69.22.153.90) 97.411 ms
97.049 ms 97.207 ms
11
11 thepiratebay.piratpartiet.se (194.14.56.29) 197.033 ms 199.376
ms 197.917 ms
12 * * *
At this point, my guess would be that they're doing some sort of DDOS
protection in there somewhere, and haven't gotten it tuned up quite right.
13 * * *
~Mike.
would have some
weight behind it.
Stanford (in)famously managed to get DMCA notices for all the printers
on campus, just by faking a client into putting the printer's IP into
the tracker as a seed.
Cheers,
Michael Holstein
Cleveland State University
of technical folks were to pro-bono as expert
witnesses, the presumption of innocence would return pretty fast.
Cheers,
Michael Holstein
Cleveland State University
http://www.wired.com/images_blogs/threatlevel/2011/05/expendibleipaddresses.pdf
The dates in the timestamps are back in February. We deleted those logs
..in the regular course of business..
a LONG TIME AGO.
If you didn't do that, you really ought to ask yourself why.
Regards,
Michael
In the EU you have Directive 2006/24/EC:
But I'm not, and neither are most of the ISPs in the linked document.
Regards,
Michael Holstein
Information Security Administrator
Cleveland State University
.*
There are various legislative attempts afoot to create one here in the
US .. but none have passed.
Regards,
Michael Holstein
Information Security Administrator
Cleveland State Unviersity
(*): US Court of Appeals, District of Columbia, 50-1504.
and say won't work, need to buy $x.
My $0.02.
Michael Holstein
Cleveland State University
PS: I'm not making a business judgment on going either route .. there's
a case to be made for free, but takes 3 weeks to configure versus
costs WHAT? .. but you get 24x7 support. It's just that sometimes
just buying one that'd fit.
Also, as someone else mentioned .. what happens next time it needs to move?
Regards,
Michael Holstein
Cleveland State University
was represented in the CCC slides
somebody else posted (FPGA with own logic), but on a PCIe card.
Once you've got the ethernet - interface problem addressed, you need to
examine bottlenecks in interface-bus and particularly bus-disk.
Regards,
Michael Holstein
Cleveland State Unversity
--Kyle
I'd be curious to see what effects (if any) those who use
GPS-disciplined NTP references in Southeastern Georgia see from this
experiment.
Aren't CDMA BTS clocked off GPS?
NTP isn't going to be the only ripple.
Regards,
Michael Holstein
Cleveland State University
it takes to negotiate a DH key exchange.
For bonus points, call the voice auth service simultaneously and just
sit on hold.
Cheers,
Michael Holstein
Cleveland State University
on a larger scale, but it becomes a matter of trust (as has been
discussed many times before .. just because *you* say it's bad, doesn't
make it so).
Cheers,
Michael Holstein
Cleveland State University
/towairSearch.jsp
Regards,
Michael Holstein
Cleveland State University
, and test .. then
recompile back into ACL syntax. Also works on IPtables, PF, and a few
other things.
Cheers,
Michael Holstein
Cleveland State University
Why is it that network operators can't work together
on instances like this and have a botnet killswitch
Trust (or lack thereof).
Cheers,
Michael Holstein
Cleveland State University
://www.theregister.co.uk/2003/08/20/slammer_worm_crashed_ohio_nuke/
The utility claims that there was never a risk, but take that with a
grain of salt since this is the same utility that conveniently managed
to overlook a hole the size of a book in the reactor head for several years.
Cheers,
Michael
/technologies_tech_note09186a0080093fca.shtml
Cheers,
Michael Holstein
Cleveland State University
what you need : http://www.ladyada.net/make/mintyboost/
There are also any number of commercial devices that can do universal
voltage (100-250v 50/60hz) to 5v USB that are barely larger than a
matchbook.
Cheers,
Michael Holstein
Cleveland State University
,
Michael Holstein
Cleveland State Unviersity
Is it possible for you to share that filter list you have for china?
im getting bogged down by those ssh-bruts as well coming in from
china.
Good ones available here : in several notations (including Cisco ACL) :
http://www.okean.com/antispam/china.html
Cheers,
Michael Holstein
http://thehill.com/blogs/hillicon-valley/technology/90747-fcc-dealt-major-blow-in-net-neutrality-ruling-favoring-comcast
Seems on-topic, even though policy related.
Between that and the ACTA foolishness .. seems to be a good time to get
into the VPN business.
/rant
Michael Holstein
Adding to the recent debate over raised v's solid floor, seem there's
another option that wasn't discussed...
http://www.iphouse.com/
Nice to see smaller companies take the time to put up a good April
fool's joke as well.
we don't support that yet, call whoever
makes your router.
My $0.02.
Cheers,
Michael Holstein
Cleveland State University
space.
Cheers,
Michael Holstein
Cleveland State University
investigating
wrongly-placed blame for missing or delayed emails. One server at
TWC (which still has an *.adelphia.net name) in particular seemed to
hold messages for the default retry interval 100% of the time
(misconfigured greylisting?).
Cheers,
Michael Holstein
Cleveland State University
of sufficient capacity to
absorb a 100k botnet type of DDOS and the accompanying RTBH gear (Arbor,
et.al.).
Cheers,
Michael Holstein
Cleveland State University
on the other side of the IP
device. It needs to work like the Lantronics ones do (take tcp/(port)
and spit it out as rs232).
Thanks,
Michael Holstein
Cleveland State University
more from a misspelling of facebook that had to be a spam
probe.
For @*myspace* it was 17 messages.
For @*linkedin* it was 20 messages.
Not too big of an issue, IMHO.
Cheers,
Michael Holstein
Cleveland State University
,
Michael Holstein
Cleveland State University
these statistics, and actually includes the good/bad percentage on
every junk summary that goes to the end users.
Oh .. and what's up with this ? : http://www.av8.com/unauthtemplate
Cheers,
Michael Holstein
Cleveland State University
PS: I *am* ab...@.
...
Cheers,
Michael Holstein
Cleveland State University
What does application use 8.8080,0 port for the proper purpose?
I've seen newer BitTorrent clients do this (UDP is supported, and the
port can be arbitrary).
Cheers,
Michael Holstein
Cleveland State University
,
Michael Holstein
Cleveland State University
.
Cheers,
Michael Holstein
Cleveland State University
for that.
Only caveat is it drives websites like BoA and eBay bonkers .. they want
to verify you every time you re-visit.
Cheers,
Michael Holstein
Cleveland State University
have proper A=PTR, SPFv1 records, abuse@ contacts, etc.
/thread
Regards,
Michael Holstein
Cleveland State University
setting, but certainly not at gigabit
speeds : http://www.netequalizer.com/nda.htm
They claim models are available up to 5gbps ($11k). 1gbps is ~$9k.
Cheers,
Michael Holstein
Cleveland State University
gets put in the outward-facing DNS (both A and PTR). Otherwise it stays
the default csu-x-x-x-x.csuohio.edu, regardless of what it is on the inside.
Regards,
Michael Holstein
Cleveland State Unviersity
we've basically told them to go to hell and we advise everyone who uses
their RBL lists to remove their RBLs from their configs, as what we have
here is a mismanaged list.
Same thing we told them (snippit of my response below).
Cheers,
Michael Holstein
Cleveland State University
.
12.19.148.137.in-addr.arpa domain name pointer antispam2.csuohio.edu.
Cheers,
Michael Holstein
Cleveland State University
correct by most
everyone else's standards. Personally, I think this is just so they can
have a big list when they sell it (.. our DNSBL has $x million more
entries than $competitor..).
Cheers,
Michael Holstein
Cleveland State University
?
(Note: they did eventually say okay, we see the MXs as static so those aren't
listed .. but not without some discussion).
Cheers,
Michael Holstein
Cleveland State University
to work.
Set both sides auto/auto : bam. problem solved.
The app was Sonicwall Email Security (on the off-chance someone else is
fighting that same issue).
Cheers,
Michael Holstein
Cleveland State University
) .. if so, I'd love to hear about it so I can tell our Lotus
admins.
Cheers,
Michael Holstein
Cleveland State University
Regards,
Michael Holstein
Cleveland State University
I wonder how much bandwidth homes will be using 10 years from now...
100% of it (if you let us).
Cheers,
Michael Holstein
Cleveland State University
=106432
Cheers,
Michael Holstein
Cleveland State University
for taking the attitude do it right, then
spend your money on advertising (with us). If you do it half-ass and
spend your money on SEO instead, we might smite you.
Cheers,
Michael Holstein
Cleveland State University
Oh, that's easy. If the government pays for 90% of the plant cost
There have been countless times where a local government wanted to
install the fiber *themselves*, only to have the ILEC file a lawsuit
and/or petition (bribe) the State Legislature to prevent installation.
Cheers,
Michael
However it doesn't scale
Anyone who's seen the fail whale might argue the same about Twitter.
Cheers,
Michael Holstein
Cleveland State University
, but do you really need to be obtuse about who owns the domain?
Also .. the Netalyzr project isn't even listed on the projects page at
www.icir.org.
Cheers,
Michael Holstein
Cleveland State University
,
Michael Holstein
Cleveland State University
/Operation_Ivy_Bells
Of course these days, it doesn't require nearly as much effort .. just a
friendly phone call to ATT (who, ironically, also built the devices
used in the above).
Cheers,
Michael Holstein
Cleveland State University
Earth's imagray of both areas is quite good (~.5m maybe) .. but
not quite good enough to make out manholes.
Also interesting to note .. from one of the news articles .. ATT's
contract with the Communication Workers of America expired at 11:59 p.m.
Saturday
Cheers,
Michael Holstein
Cleveland
- GoDaddy.com, Inc.
So you can tell the good guys are still at it pre-registering the bulk
of the conflickr-related domain names.
Cheers,
Michael Holstein
Cleveland State University
will be registered at some point (if not already) by
the worm authors.
Read up on the specifics at one of the (many) sites where research is
being done on it : http://www.dshield.org/conficker
~Mike.
On Wed, Apr 1, 2009 at 8:38 AM, Michael Holstein
michael.holst...@csuohio.edu wrote
Is it common for an ISP to install a lased line (circuit) and when the
service ends, the service is not unbundled again but all the cabling is left
where it is? I have even seen that a circuit is still active on there
exchanges after years and no one at the ISP seems to care that they are
Anyone else noticing Google's logo has been scrambled?
Did you notice what happens when you mouse-over it (same thing that
happens anytime they do a doodle, btw).
http://www.google.com/search?q=Jackson+Pollockhl=enct=pollock09oi=ddle
http://en.wikipedia.org/wiki/Google_logo
ls it possible t convert the interger to ip
#!/usr/local/bin/perl
# Perl script to convert between numeric and dotted quad IPs.
# give credit to Paul Gregg for this one
while (STDIN) {
chomp; $input = $_;
if (/\./) {
($a, $b, $c, $d) = split(/\./);
$decimal = $d + ($c * 256) + ($b
In MySQL :
mysql SELECT INET_NTOA(ip_in_decimal) AS ipa;
.. or the reverse :
mysql SELECT INET_ATON('dotted.quad') AS ipn;
adverts. The original verify your account stuff comes in from various
botnet PCs.
Cheers,
Michael Holstein
Cleveland State University
(FreeBSD))
(envelope-from [EMAIL PROTECTED]) id 1JzEFp-0006tP-1S
for nanog@nanog.org; Thu, 22 May 2008 17:07:01 +
Cheers,
Michael Holstein
Cleveland State University
for the various industry interest groups
and thus be ignored by the p2p users?
Cheers,
Michael Holstein
Cleveland State University
___
NANOG mailing list
NANOG@nanog.org
http://mailman.nanog.org/mailman/listinfo/nanog
is content-agnostic.
p2p users want their content
netops want efficient utilization
lawyers want logfiles
You can have 2 out of 3.
Cheers,
Michael Holstein
Cleveland State University
___
NANOG mailing list
NANOG@nanog.org
http://mailman.nanog.org/mailman
Try the voice route .. their helpdesk is (859) 257-1300
Cheers,
Michael Holstein
Cleveland State University
I've tried from 4-5 different mail providers to send something to
[EMAIL PROTECTED]
Can't figure out what's wrong, as I've never seen AuthRequired anywhere
before.
Every single
75 matches
Mail list logo