Last Call: (Operational Security Considerations for (fwd)

Those of you who worry about opsec for IPv6 but aren't already following this IETF draft may wish to get your comments in. --- Begin Message --- The IESG has received a request from the Operational Security Capabilities for IP Network Infrastructure WG (opsec) to consider the following document:

Re: Oracle DBA

On Thu, 14 Mar 2019 07:26:40 -0400, Alain Hebert said: > ��� Run away from... And what realistic competitors does Oracle really have at the high end, when whatever MySQL calls itself now isn't sufficient? Remember to consider all factors, including whether you have a good supply of DBAs for

Re: Should Netflix and Hulu give you emergency alerts?

On Tue, 12 Mar 2019 13:45:23 -0700, William Herrin said: > In many cases, only the foreground app has a clear understanding of the > state of the screen. Not the OS and definitely not the hardware platform. > I'd be super pissed if I died in Overwatch because the BIOS tried to take > over the

Re: Should Netflix and Hulu give you emergency alerts?

On Sat, 09 Mar 2019 14:14:27 -0500, Brandon Martin said: > I think the solution to this is perhaps maybe that network operators > could "help" by building in some useful features to their network > without explicitly supporting EAS or otherwise. After all, we (or at > least most of us)

Re: 2FA, was A Deep Dive on the Recent Widespread DNS Hijacking

On Tue, 26 Feb 2019 08:36:11 -0800, Seth Mattinen said: > On 2/25/19 9:59 PM, Keith Medcalf wrote: > > Are you offering an indemnity in case that code is malicious? What are the > > terms and the amount of the indemnity? > Anyone who is that paranoid should read the RFC and write their own TOTP

Re: A Deep Dive on the Recent Widespread DNS Hijacking

On Mon, 25 Feb 2019 18:23:44 -0700, Paul Ebersman said: > Agreed. But this also gets down to the risk vs hassle tradeoff. Joe's > Bait & Tackle Shop probably isn't getting attacked by nation states who > can hack SS7, so SMS text might be good enough. And certainly better > than just an 8 char

Re: A Deep Dive on the Recent Widespread DNS Hijacking

On Mon, 25 Feb 2019 12:14:59 -0700, Paul Ebersman said: > ekuhnke> One thing to consider with authentication for domain registrar > ekuhnke> accounts: > > ekuhnke> DO NOT USE 2FA VIA SMS. > > Yup. This is a good example of what I'm advocating. Just saying "use > 2FA" or "use DNSSEC" or "have a

Re: A Zero Spam Mail System [Feedback Request]

On Wed, 20 Feb 2019 20:22:51 +, Matthew Black said: > Have you ever created a sendmail.cf without using M4? Sendmail 5.6mumble or so, for a machine that was on UUCP, Arpa/Milnet, and Bitnet and gatewayed between them. Bitnet was particularly ugly because (a) EBCDIC and (b) no way to

Re: A Zero Spam Mail System [Feedback Request]

On Mon, 18 Feb 2019 12:29:54 -0700, "Anne P. Mitchell, Esq." said: > Especially when they are well-respected members of both NANOG and the greater > email community. Seriously?? Attacking John and Suresh?? It's been a while since the time somebody was dorksplaining RIP to Tony Li. :)

Re: A Zero Spam Mail System [Feedback Request]

On Mon, 18 Feb 2019 12:28:21 +0530, Viruthagiri Thirumavalavan said: > Literally everyone attacking me here. Could you tell me why? Because I have > been rude to John Levine, right? No, it's because (a) every aspect we could understand from your writing has already been tried and failed, and

Re: A Zero Spam Mail System [Feedback Request]

On Sun, 17 Feb 2019 22:16:50 -0500, Jon Lewis said: > Anyone else having flashbacks to Jim Fleming telling us about how IPv8 was > the final ultimate solution to IPv4 runout? I was thinking more of the guy who was convinced that each octet in an IPV4 address could store 0 through 256.

Re: A Zero Spam Mail System [Feedback Request]

On Mon, 18 Feb 2019 07:33:32 +0530, Viruthagiri Thirumavalavan said: > My name is Viruthagiri Thirumavalavan. I'm the guy who proposed SMTP over > TLS on Port 26 Unfortunately, your attempt there didn't demonstrate an in-depth knowledge of the email ecology of the sort needed to *actually* solve

Re: OT/venting: RIPE legal - please stop this madness!

On Fri, 15 Feb 2019 16:30:21 +, David Guo via NANOG said: > They are based in Netherlands and may be not familiar with Germany business > laws I'd expect that due diligence on their part would be to find an actual expert on German business law. And given that RIPE deals with most of Europe,

Re: AT/as7018 now drops invalid prefixes from peers

On Mon, 11 Feb 2019 09:53:45 -0500, Jay Borkenhagen said: > The AT/as7018 network is now dropping all RPKI-invalid route > announcements that we receive from our peers. Congrats! Are you able to comment on what amount of routes are getting dropped?

Re: Last Mile Design

On Thu, 07 Feb 2019 18:46:40 -0500, David Ratkay said: > I am not sure if this is a easy question to answer. Actually,trivial to answer: "It depends". Often due to "hysterical raisins". > even within the last mile POP. Do you just have POP's delegated to > residential users and a separate POP

Re: Calling LinkedIn, Amazon and Akamai @ DE-CIX NY

On Wed, 30 Jan 2019 23:55:40 +, "i3D.net - Martijn Schmidt" said: > Here: all networks that didn't already change their peering IP are not > yet connected to the updated route-server. Some networks are not > connected to any route-server. Therefore, those networks did not yet > change

Re: BGP Experiment

On Sat, 26 Jan 2019 11:37:05 -0800, Owen DeLong said: > 1. Compile a list of lists that should be notified of such > experiments in > advance. Try to get the word out to as much of the community > as possible through various NOGs and other relevant industry

Re: BGP Experiment

On Thu, 24 Jan 2019 04:00:27 +1100, Ben Cooper said: > You caused again a massive prefix spike/flap, That's twice now you've said that without any numbers or details. Care to explain what you mean by "massive" in a world where the IPv4 table has like 700K+ routes? And as percieved by what

Re: Network Speed Testing and Monitoring Platform

On Wed, 16 Jan 2019 10:52:58 -0600, Colton Conor said: > As an internet service provider with many small business and residential > customers, our most common tech support calls are speed related. Customers > complaining on slow speeds, slowdowns, etc. So out of curiosity - does anybody have info

Re: Network Speed Testing and Monitoring Platform

On Wed, 16 Jan 2019 19:26:41 +, Chris Kimball said: > Would a raspberry pi work for this? > > Could 3D print a nice case with your logo for it. The Pi has a bandwidth limit at 300mbits/sec due to a USB port being used. I wonder if something like the RIPE Atlas probes could be flashed with

Re: plaintext email?

Without reading further... which of your recent postings is this a reply to? Obviously you already know, because you said you don't need to see the text to know the context... Nope, it wasn't the one about how things became quoted text. On Tue, 15 Jan 2019 13:36:38 -0500,

Re: plaintext email?

A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail? And now you're sitting here wondering what possible relevance that might have to some line or other - the only

Re: (Netflix/GlobalConnect a/s) Scheduled Open Connect Appliance upgrade is starting

On Sun, 13 Jan 2019 20:01:20 -0800, Brian Kantor said: > Clearly, editing inclusions is a lost art. > - Brian The September That Never Ended was so long ago that pretty much everybody from before that event is now well into "get off my lawn" territory.

Re: (Netflix/GlobalConnect a/s) Scheduled Open Connect Appliance upgrade is starting

On Sun, 13 Jan 2019 20:55:54 +0100, Christoffer Hansen said: > (*it is frustrating when content parity between HTML and PLAINTEXT > sections is e-mails is inconsistent. :/ ) Back when we were designing MIME, somebody (Vernon Schryver?) stated that multipart/alternative with text/plain and

Re: (Netflix/GlobalConnect a/s) Scheduled Open Connect Appliance upgrade is starting

On Sun, 13 Jan 2019 13:50:58 -0600, Mike Hammett said: > People use plain-text e-mail on purpose? Yes. Next question?

Re: yet another round of SMTP Over TLS on Port 26 - Implicit TLS Proposal [Feedback Request]

On Sun, 13 Jan 2019 04:57:26 +0530, Viruthagiri Thirumavalavan said: > Guys, I can't able to disclose my work at this point. But I'm happy to > publish my work again next month. In the meantime, I have no issues if you > all think my work is bad. You'd probably do the world a favor if you spent

Re: yet another round of SMTP Over TLS on Port 26 - Implicit TLS Proposal [Feedback Request]

On Sun, 13 Jan 2019 04:51:40 +0530, Viruthagiri Thirumavalavan said: > I don't know why you are all try to defend a man who try to silence my work. Rest assured that if he was actually trying to silence your work you wouldn't have been able to post your message to NANOG.

Re: yet another round of SMTP Over TLS on Port 26 - Implicit TLS Proposal [Feedback Request]

On Sat, 12 Jan 2019 17:37:02 -0500, Eric Tykwinski said: > even headers. My guess though is that if this gains traction, there will be a > corresponding law like CALEA for LEO to intercept. Hopefully *this* time we'll do it in such a way that LEO use will remain higher than bad-guys use. I'm

Re: SMTP Over TLS on Port 26 - Implicit TLS Proposal [Feedback Request]

On Sat, 12 Jan 2019 09:45:12 +0530, Viruthagiri Thirumavalavan said: > But I still want the future of email to adopt Implicit TLS. So someday we > can kill Opportunistic TLS. I already lost the case for security. So my > smtps part of the proposal not gonna fly. I'm just here to learn whether >

Re: SMTP Over TLS on Port 26 - Implicit TLS Proposal [Feedback Request]

On Sat, 12 Jan 2019 09:45:12 +0530, Viruthagiri Thirumavalavan said: > When I originally drafted the SMTPS proposal, I thought those plaint text > part before the STARTTLS command leaks some sensitive info. So - given that multiple people have explained to you on the ietf-smtp list that there's

Re: BGP Experiment

On Tue, 08 Jan 2019 17:48:46 +0100, niels=na...@bakker.net said: > After seeing this initial result I'm wondering why the researchers > couldn't set up their own sandbox first before breaking code on the > internet. I believe FRR is a free download and comes with GNU autoconf. Perhaps you'd

Re: CenturyLink

On Mon, 31 Dec 2018 10:28:25 +0200, Saku Ytti said: > For the tl;dr folk, crystal drifts +-4.5us per day, Rb +-1.1us (both > seem like unsatisfactorily high numbers to me, i.e. you don't want to > be free-running 24h with Rb). There's another number that's missing - the stability of the drift.

Re: ECN, DNS and Firewalls

On Fri, 28 Dec 2018 13:35:04 +1100, Mark Andrews said: > There are major operators that still have STUPID firewall settings > in front of DNS servers that drop SYN packets with ECE and CWR set > 17 years after ECN was specified. Time to name-n-shame?

Re: Stupid Question maybe?

On Wed, 19 Dec 2018 21:11:39 +0100, Thomas Bellman said: > On 2018-12-19 20:47 MET, valdis.kletni...@vt.edu wrote: > > There was indeed a fairly long stretch of time (until the CIDR RFC came out > > and > > specifically said it wasn't at all canon) where we didn't have an RFC that > >

Re: Stupid Question maybe?

On Tue, 18 Dec 2018 17:12:45 -0500, "David Edelman" said: > I seem to remember that before the advent of VLSM and CIDR there was no > requirement for the 1 bits in the netmask to be contiguous with no intervening > 0 bits and there was always someone who tested it out on a production network >

Re: Pinging a Device Every Second

On Sat, 15 Dec 2018 12:20:01 -0700, Raymond Burkholder said: > Another aspect is congestion.  Large uploads or downloads can cause > packet loss (including dropping the pings with which you are testing).  > Therefore management packets such as these could be marked and > processed, on your side

Re: [outages] facebook slow

On Fri, 30 Nov 2018 13:16:31 -0700, "Keith Medcalf" said: > Why don't you just write all your password on big sheets of construction > paper and put them on the front of the building or in the nearest Starbucks? I'm going to go out on a limb and say that with all the problems inherent in using a

Re: netflix OCA in a CG-NAT world

On Wed, 28 Nov 2018 14:37:06 +0300, Nikolay Shopik said: > Sony Entertainment is know to be slowpoke in this area. PS4 > firmware/kernel is SLAC enabled IPv6 but its not exposed to devs and > thus apps doesn't use it at all. Odd. Mine does DHCPv6. It might do SLAC as well, my OpenWRT wouldn't

Re: IGP protocol

On Mon, 12 Nov 2018 20:21:26 +, "Naslund, Steve" said: > 2. Most corporate networks will be running OSPF and/or EIGRP as an IGP. And I'm sure there's still some crazies out there using RIPv2. :) pgpPMFjssCptV.pgp Description: PGP signature

Re: Whats going on at Cogent

On Sun, 28 Oct 2018 17:19:41 -0700, Matthew Petach said: > I can vouch for it. > > The cake was delicious and moist. I'm glad to hear it did *some* sort of good. :) pgpZqiULFZh90.pgp Description: PGP signature

Re: Cogent charging 50/mo for BGP (not IPs, the service)

On Wed, 17 Oct 2018 15:53:47 -, David Hubbard said: > Yep we pay it on our circuits, begrudgingly. Wouldn’t mind it as much if > it > actually delivered me every BGP prefix in the global routing table… On Wed, 17 Oct 2018 11:49:10 -0400, Jason Canady said: >  I believe IPv6 BGP is

Re: bloomberg on supermicro: sky is falling

On Mon, 08 Oct 2018 08:53:55 -0500, Daniel Taylor said: > Especially when you have companies out there that consider VPN a > reasonable way to handle secure data transfer cross-connects with > vendors or clients. At some point, you get to balance any inherent security problems with the concept of

Re: Oct. 3, 2018 EAS Presidential Alert test

On Sat, 06 Oct 2018 15:09:09 -0700, "Scott Weeks" said: > Or some live where there is no cell coverage, don't > watch TV, live where their neighbors are far away > and no gov't folks are going to knock on doors > because the driveway is long, locked at the front > gate and there're dogs in the

Re: bloomberg on supermicro: sky is falling

On Thu, 04 Oct 2018 14:10:07 -0700, "Scott Weeks" said: > Classified networks do not connect to other networks unless > they are equally or higher classified. No internet connection. > Period. Well, if your classified network is connecting to a higher classified net, then *that* network is

Re: bloomberg on supermicro: sky is falling

On Thu, 04 Oct 2018 21:00:57 -, "Naslund, Steve" said: > The other thing I am highly skeptical of is the suggestion of attempting to > tap sensitive intel agency systems this way. Talking to a C server is > suicide from within their network. How long do you think it would take them > to >

Re: bloomberg on supermicro: sky is falling

On Thu, 04 Oct 2018 15:26:15 -0400, William Herrin said: > The Bloomberg article described them as looking like 'signal > conditioning couplers" on the motherboard. There is no such part on > server boards but maybe they meant optoisolators or power conditioning > capacitors. You overlook the

Re: Oct. 3, 2018 EAS Presidential Alert test

On Wed, 03 Oct 2018 12:53:57 -0700, mike.l...@gmail.com said: > Interesting question though... I wonder if people on micro-cells and/or wifi > calling don’t get the alerts. That would be extremely dumb and > irresponsible of > the cell phone carriers, so its likely the case :) Oddball corner

Verizon FIOS finally gets IPv6?

Chatter here is that at least some areas are seeing actual functional IPv6, dhcpv6-pd and all... https://www.dslreports.com/forum/r32136440-Networking-IPv6-working

Re: CloudFlare D.N.S. Resolvers... (1.1.1.1 & 1.0.0.1)

On Wed, 26 Sep 2018 10:52:07 +0300, Michael Bullut said: > Has anyone deployed the aforementioned in your individual networks? A quick > test suggests it is quite fast compared with Google's D.N.S. resolvers: > *Reply from 1.1.1.1 : bytes=32 time=3ms TTL=61* 3ms indicates

Re: OpenDNS CGNAT Issues

On Wed, 12 Sep 2018 09:42:11 -0700, Owen DeLong said: > If you do it for a mere footlocker, I will be happy to watch and laugh. So.. taking this as a size: https://www.containerstore.com/s/storage/trunks/black-rolling-trunk-with-tray/12d?productId=1230 We'll shave off an inch or so off each

Re: OpenDNS CGNAT Issues

On Wed, 12 Sep 2018 14:10:05 -, Kenny Taylor said: > For a truckload of gold, I’m pretty sure most of us would make that work ☺ Unless they get underbid by the one of us willing to settle for a foot locker full of gold. pgp6lNCVQkTiq.pgp Description: PGP signature

Re: Best practices on logical separation of abuse@ vs dmca@ role inboxes

On Mon, 06 Aug 2018 09:51:17 -0500, Matt Harris said: > But then the question becomes "how are they supposed to find the 'proper > address' for their reports?" Asked and answered already. On 8/5/2018 16:53:35, "John Levine" wrote: >See https://www.copyright.gov/dmca-directory/ If you are in

Re: Security team objectives

On Mon, 30 Jul 2018 06:43:35 +0200, Ramy Hashish said: > Good day all, > > If you are going to start a security team in a newly founded IT > organization, what will the objectives/results be? The answer will depend heavily on the organization that contains the IT group. The right answers will be

Re: Rising sea levels are going to mess with the internet

On Thu, 26 Jul 2018 20:48:58 -, "Naslund, Steve" said: > Don't panic though about the 70 meter rise though. According to this article > by National Geographic, it would take around 5000 years to melt that much ice > even assuming the current temperature rise continues. Was that article from

Re: Rising sea levels are going to mess with the internet

On Thu, 26 Jul 2018 16:07:56 -0400, Rob McEwen said: > On 7/26/2018 3:49 PM, valdis.kletni...@vt.edu wrote: > > Compound interest is a bitch. >> it took ~40 years or so to get to that 1mm increase (to be extra clear, >> this is a reported increase over how much oceans are rising now compared >>

Re: Rising sea levels are going to mess with the internet

On Thu, 26 Jul 2018 19:43:37 -, "Naslund, Steve" said: > As an engineer I would like to know how we separate what would be happening > without us from what effect we are having. Well, when all previous data shows temperature changes on the order of degrees per millenium (absent major

Re: Rising sea levels are going to mess with the internet

On Thu, 26 Jul 2018 15:39:51 -0400, Rob McEwen said: > JUST BARELY curve upwards. So I dug into THEIR actual data - and even > THEIR data shows something like a cumulative 1mm/year increase - and - > it took ~40 years or so to get to that 1mm increase (to be extra clear, > this is a reported

Re: California fires: smart speakers and emergency alerts

On Thu, 26 Jul 2018 09:54:10 -0700, Seth Mattinen said: > People in tornado areas seem to be the most aware that alert radios > already exist. No internet access required. Do those use a frequency band that's suitable for cellphones to monitor (antenna size, power, etc)? Because your best chance

Re: Rising sea levels are going to mess with the internet

On Thu, 26 Jul 2018 16:56:08 -, "Naslund, Steve" said: > Since we have been able to cope with train derailments, backhoes, forest > fires, traffic accidents, etc, I am pretty confident that the networks will > keep up with the lightning fast 1/8" per year rise in sea level. Have they

Re: Rising sea levels are going to mess with the internet

On Mon, 23 Jul 2018 09:25:28 -0400, William Herrin said: > Climate science is interesting and worthy, but it's still too shaky > and incomplete to justify trillion dollar decisions. So cleaner, less polluting energy sources don't justify it right there? Check the air quality in Beijing or parts

Re: Rising sea levels are going to mess with the internet

On Mon, 23 Jul 2018 02:09:23 -0500, Colin Baker said: > These guys would freak if they popped open a manhole in the spring It's a lot harder to pump out a manhole if it's now below the water table. pgpuLFbGi3gUF.pgp Description: PGP signature

Re: using expect to log into devices

On Sun, 22 Jul 2018 00:10:06 -0400, J Crowe said: > Have you looked into utilizing Ansible? Yes, we use Ansible heavily on production services. But Ansible doesn't *stop* somebody from downloading modules, especially if it's a laptop used for diagnosis/testing. pgpCUNzXhlEPO.pgp Description:

Re: using expect to log into devices

On Sun, 22 Jul 2018 00:43:35 +0200, Niels Bakker said: > Fine as a personal exercise, of course. The inability to download > modules seems sadistic to me, though. And given the adage "Never create a rule you can't enforce", I wonder how they enforce it - have to be pretty hardcore to make sure

Re: Proving Gig Speed

On Wed, 18 Jul 2018 08:24:15 -0500, Mike Hammett said: > Check your Google portal for more information as to what Google can do with > BGP Communities related to reporting. For a horrifying moment, I misread this as Google surfacing performance stats via a BGP stream by encoding stat_name:value

Re: NANOG list errors

On Tue, 17 Jul 2018 23:24:51 -0500, Andy Ringsmuth said: > Fellow list members, > The last several days, I’ve been receiving mail forwarding loop errors for > the list. I’ll receive them several hours after sending a message. I’ll > paste > the latest two of them below, separated by %

Re: Proving Gig Speed

On Tue, 17 Jul 2018 13:44:07 -0400, b...@theworld.com said: > Do they need 10gb? Or do they need multiple 1gb (e.g.) channels which > might be cheaper and easier to provision? Doesn't DOCSIS channel bonding already do that? pgp9iFUM4Ez85.pgp Description: PGP signature

Re: Anyone from Delta on list?

On 13 Jul 2018 15:21:52 -0400, "John Levine" said: > Delta the airline? Delta the hotel chain? Delta the plumbing fixture > maker? Delta the construction company? The joys of mapping an address space defined by trademark law into an address space defined by '.com'. And it just went downhill

Re: Time to add 2002::/16 to bogon filters?

On Mon, 09 Jul 2018 15:21:31 +0200, "Fabien VINCENT (NaNOG)" said: > I think it's still used a bit ? I see today announcements over the > following OriginAS over more than 2000 peers. > > as1103SURFnet bv > as1835Forskningsnettet - Danish network for Research and Education > as2847

Re: IPv6 faster/better proof? was Re: Need /24 (arin) asap

On Sat, 23 Jun 2018 12:27:35 -0400, "Jean | ddostest.me via NANOG" said: > Because, Apple adds a 25 ms artifical penalty to ipv4 dns resolution. > > https://ma.ttias.be/apple-favours-ipv6-gives-ipv4-a-25ms-penalty/ Umm.. It's 3 year old news that Apple implemented Happy Eyeballs. And if you

Re: Impacts of Encryption Everywhere (any solution?)

On Tue, 19 Jun 2018 11:33:50 -0400, William Herrin said: > The innovation I'd like to see is a multi-level streaming cache. > Here's the basic idea: > > Define a network protocol such as "mlcache" > > mlcache://data.netflix.com/starwars/chunk12345 is a chunk of some > video that netflix has. It's

Re: What are people using for IPAM these days?

On Tue, 12 Jun 2018 17:23:14 -0700, Randy Bush said: > emacs! > >>> vim! > >> ed! > > TECO! > cat IBM 029. pgpdETe0f_upT.pgp Description: PGP signature

Re: Need /24 (arin) asap

On Mon, 11 Jun 2018 10:27:04 -0600, Michael Crapse said: > For an eyeball network, you cannot count on an IPv6 only network. Because > all of your "customers" will complain because they can't get to hulu, or > any other ipv4 only eyeball service. You still need the ipv4s to operate a > proper

Re: Whois vs GDPR, latest news

On Sat, 26 May 2018 10:31:29 +0200, "Michel 'ic' Luczak" said: > "When the regulation does not apply > Your company is service provider based outside the EU. It provides services > to customers outside the EU. Its clients can use its services when they > travel > to other countries, including

Re: Whois vs GDPR, latest news

On Thu, 17 May 2018 14:06:27 -0400, Fletcher Kittredge said: > What about my right to not have this crap on NANOG? procmail is your friend. pgpSkSM4c3_8E.pgp Description: PGP signature

Re: Curiosity about AS3356 L3/CenturyLink network resiliency (in general)

On Sun, 20 May 2018 09:16:25 +0200, Baldur Norddahl said: > He is complaining about AS3356 in specific and claiming they COULD > reroute around it but choose not to. This leads me to assume there are > alternatives. Two places, Miami and Texas, are mentioned and that a > double fault, one in

Re: Curiosity about AS3356 L3/CenturyLink network resiliency (in general)

On Sat, 19 May 2018 22:28:07 +0200, Baldur Norddahl said: > What happened to do not trust anyone? Create your own resiliency by being > multihomed to as many transits you can afford. Re-read what David Hubbard said: > unacceptable period of time (many hours). I’m learning that the entire >

Re: How are you configuring BFD timers?

On Sun, 06 May 2018 14:23:11 +0200, Mark Tinka said: > We have links as short as 5km, all the way to 14,500km. Any words of wisdom / battle scars regarding running links that are in the 10K+ distance? pgpGUy0drh8FA.pgp Description: PGP signature

Re: Is WHOIS going to go away?

On Wed, 25 Apr 2018 13:47:24 -0400, Rob McEwen said: > SUGGESTION: Initially register with private registration - then change > it to regular non-hidden registration a few weeks later or so. That will work for about 2 weeks - until the people who currently run automated software looking for new

Re: Is WHOIS going to go away?

On Fri, 20 Apr 2018 21:25:09 -, "Naslund, Steve" said: > And you would be violating the law if it was ruled that your publication was > in fact a publication under the law. Citation please, where anonymous publication is, in and of itself, illegal under US law pgp3RkhByE_QC.pgp

Re: Is WHOIS going to go away?

On Fri, 20 Apr 2018 20:53:06 -, "Naslund, Steve" said: > "Those who would give up essential Liberty, to purchase a little temporary > Safety, deserve neither Liberty nor Safety." > > No one ever had the liberty of publishing information to the public without > accountability. > You are

Re: Is WHOIS going to go away?

On Fri, 20 Apr 2018 12:03:37 +0200, Tei said: > Maybe a good balance for whois is to include organization information > so I know where a website is hosted, but not personal information, so > I can't show in their house and steal their dog. In many cases, the *OWNER* of a website doesn't have any

Re: Yet another Quadruple DNS?

On Fri, 30 Mar 2018 14:27:47 -0400, Ken Chase said: > uh, quad the f do you think you're doing?! > > you think anything.255 is routable by COTS gear? :) Obviously posted 48 hours early. :) pgpKuzBvYWA9n.pgp Description: PGP signature

Re: CDN-provided caching platforms?

On Tue, 27 Mar 2018 02:26:24 -, Russell Berg said: > I was wondering if there are other CDN caching platforms out there we should > be researching/deploying? Does traffic analysis show any other destinations that have enough traffic that caching might help? pgpuOk1TczoI0.pgp Description:

Re: Websurfing trouble to .gov and .il.us

On Mon, 12 Mar 2018 17:44:47 -, Sam Kretchmer said: > I am part of a small ISP based in Chicago. We have several clients > complaining of an inability to hit a couple specific government websites, > specifically http://tierii.iema.state.il.us/TIER2MANAGER/Account/Login.aspx > and >

Re: improving signal to noise ratio from centralized network syslogs

On Mon, 05 Feb 2018 20:27:13 +, James Bensley said: > On 5 February 2018 at 18:57, wrote: > > On Mon, 05 Feb 2018 10:49:42 -0800, "Scott Weeks" said: > >> I have no knowledge of syslog-ng. Does it do the > >> real time scrolling like I mention? > > > > Use 'tail -f'

Re: improving signal to noise ratio from centralized network syslogs

On Mon, 05 Feb 2018 10:49:42 -0800, "Scott Weeks" said: > I have no knowledge of syslog-ng. Does it do the > real time scrolling like I mention? Use 'tail -f' or similar. pgppqrj2ic42P.pgp Description: PGP signature

Re: listserv hosed? [Was: Fwd: nanog.org mailing list memberships reminder]

On Fri, 02 Feb 2018 19:13:04 +0100, Måns Nilsson said: > A VM/370 app that still does all internal processing in EBCDIC, even on > POSIX OSes[0], with almost-ascii config files, and that ran very well > on VMS? What is there not to love? > [0] Eric Thomas, mr LISTSERV himself, told me this when

Re: listserv hosed? [Was: Fwd: nanog.org mailing list memberships reminder]

On Fri, 02 Feb 2018 06:30:20 -0500, Rich Kulawiec said: > > 1. It's not a listserv. It's a mailing list. ListServ is obsolete, > expensive, closed-source garbage software used exclusively by people > who don't know any better and like to waste their money. Well Rich, your bias is obvious. Have

Re: Blockchain and Networking

On Tue, 23 Jan 2018 17:27:45 -0600, Jimmy Hess said: > However, a blockchain could also be used to allow an authority to make a > statement representing > a resource that can be made a non-withdrawable statement --- in other words, > the authority's role > or job in the registration process

Re: Blockchain and Networking

On Thu, 11 Jan 2018 15:28:19 -0500, William Herrin said: > On Thu, Jan 11, 2018 at 2:46 PM, Dale W. Carder wrote: > > > > Traceroute or any other path diagnostics comes to mind. > That's not obvious to me. Assuming the time-exceeded message was modified > to include the

Re: MTU to CDN's

On Mon, 08 Jan 2018 17:55:55 -0500, Dovid Bender said: > Hi, > > N00b here trying to understand why certain CDN's such as Cloudfare have > issues where my MTU is low. For instance if I am using pptp and the MTU is > at 1300 it wont work. If I increase to 1478 it may or may not work. Wait, what?

Re: IPv4 smaller than /24 leasing?

On Thu, 04 Jan 2018 19:20:26 -0500, Justin Wilson said: > How is this a good use of resources when they have to justify 80% of a /24 in > which they only need half of? I have 5 ISPs I work with that have 300-500 > customer and are using a /26 or smaller of IP space. They can’t have true >

Re: Attacks from poneytelecom.eu

On Thu, 04 Jan 2018 12:58:48 -0800, Dan Hollis said: > On Thu, 4 Jan 2018, valdis.kletni...@vt.edu wrote: > > Been there, done that. Been out of the country and offline for 36 hours, > > reconnect and there's a user with a problem that would have been dealt > > with 36 hours earlier if they had

Re: IPv4 smaller than /24 leasing?

On Thu, 04 Jan 2018 17:40:27 -0500, Justin Wilson said: > I know of dozens, if not hundreds of small ISPs that can’t participate in > BGP > because they don’t have big enough blocks. What's the business model, if you have less than 120 customers? Selling value-add services on top of moving

Re: Attacks from poneytelecom.eu

On Thu, 04 Jan 2018 09:48:24 -0700, Michael Crapse said: > I've never dealt with a support queue that resolved the issue faster than a > direct contact. Which would the user prefer - a guaranteed 15 minute response time from the queue, or 10 minute from a direct contact, unless it's an hour

Re: Attacks from poneytelecom.eu

On Thu, 04 Jan 2018 09:33:51 -0500, William Herrin said: > Why anyone thinks it's acceptable for the form submission to vanish in to > the faceless support queue is more of a quandary. The form submission > should provide a case number, the individual to whom it is assigned, direct > contact

Re: Threads that never end (was: Waste will kill ipv6 too)

On Sun, 31 Dec 2017 13:36:32 +0900, Randy Bush said: > thomas watson: i think there is a world market for maybe five computers "The Yale Book of Quotations quotes an I.B.M. source that this '... is a misunderstanding of remarks made at I.B.M.'s annual stockholders meeting on April 28, 1953. In

Re: Waste will kill ipv6 too

On Fri, 29 Dec 2017 15:36:51 +1100, Mark Andrews said: > PD is designed so that a device (router) can request multiple PD requests > upstream. The interior router just needs to make a upstream request on behalf > of the downstream device and any prefixes it will be allocating itself. OK, I

Re: Waste will kill ipv6 too

On Thu, 28 Dec 2017 22:41:57 -0500, "Chuck Church" said: > If we'd just put a stake in the ground and say residences can have one > router and bridge everything below that we'd be further ahead. I just can't > see 99.999% of users being interested in subnetting their homes and writing >

Re: Waste will kill ipv6 too

On Thu, 28 Dec 2017 20:26:46 -0700, Brock Tice said: > I will again say I am indeed no expert, I am happy to get feedback. Is > there some kind of allocation scheme where a residential user or even a > small or medium business will have any chance of using 4096 /64s? They won't burn 4096

  1   2   3   4   5   6   7   8   9   10   >